Fraudulent “CryptoRom” trading apps sneak into Apple and Google app stores
https://news.sophos.com/en-us/2023/02/01/fraudulent-cryptorom-trading-apps-sneak-into-apple-and-google-app-stores/

‘InTheBox’ Web Injects Targeting Android Banking Applications Worldwide
https://blog.cyble.com/2023/01/31/inthebox-web-injects-targeting-android-banking-applications-worldwide/

Analysis of HOOKBOT – a new mobile malware
https://cebrf.knf.gov.pl/komunikaty/artykuly-csirt-knf/362-ostrzezenia/858-hookbot-a-new-mobile-malware

Reversing UK mobile rail tickets
https://eta.st/2023/01/31/rail-tickets.html

PixPirate: a new Brazilian Banking Trojan
https://www.cleafy.com/cleafy-labs/pixpirate-a-new-brazilian-banking-trojan

TgToxic Malware’s Automated Framework Targets Southeast Asia Android Users
https://www.trendmicro.com/en_us/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html

A three day video course on Android Malware Analysis:
Day 1: http://youtube.com/watch?v=CwCOGf4Uunk
Day 2: http://youtube.com/watch?v=yZe8tGzm8nA
Day 3: http://youtube.com/watch?v=JdBu9yEu8g4

Testing MEDUSA Android dynamic instrumentation Tool for Android pentesting & malware analysis
https://youtu.be/4hpjRuNJNDw

Android OS Privacy Under the Loupe
We use a combination of static and dynamic code analysis techniques to study the data transmitted by the preinstalled system apps on Android smartphones from three of the most popular vendors in China.
https://arxiv.org/abs/2302.01890

Money Lover App Vulnerability Exposed Personal Info
The exposed data included email addresses, wallet names, and limited transaction data.
https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/money-lover-app-vulnerability-exposes-personal-info/

Technical analysis of Godfather android malware
https://muha2xmad.github.io/malware-analysis/godfather/

Android Pentest 101
A list of Android Security materials and resources for pentesters and bug hunters
https://github.com/dn0m1n8tor/AndroidPentest101

Indian social media app Slick exposed childrens’ user data
https://techcrunch.com/2023/02/10/slick-social-media-app-data-exposed

Telegram: How a messenger turned into a cybercrime ecosystem by 2023
https://ke-la.com/wp-content/uploads/2023/02/KELA_Telegram_CEBIN.pdf

APT Bahamut Attacks Indian Intelligence Operative using Android Malware
https://www.cyfirma.com/outofband/apt-bahamut-attacks-indian-intelligence-operative-using-android-malware/

APKHunt - static code analysis tool for Android apps that is based on the OWASP MASVS framework
https://github.com/Cyber-Buddy/APKHunt

1) CVE-2023-23529
Vulnerability in WebKit browser engine for iPhones and iPads once exploited could result in arbitrary code execution.
This zero-day flaw has been actively exploited in the wild.

2) CVE-2023-23514
An app may be able to execute arbitrary code with kernel privileges affecting iPhones and iPads.
https://support.apple.com/en-us/HT213635

SQL injection vulnerabilities in Owncloud Android app - CVE-2023-24804, CVE-2023-23948
The Owncloud Android app uses content providers to manage its data. The provider FileContentProvider has SQL injection vulnerabilities that allow malicious applications or users in the same device to obtain internal information of the app
https://securitylab.github.com/advisories/GHSL-2022-059_GHSL-2022-060_Owncloud_Android_app/

MediaTek Android information disclosure | CVE-2023-20606
By executing a specially-crafted application, an attacker could exploit this vulnerability to obtain sensitive information.
Affected Software Versions: Android 12.0, 12.1
https://www.redpacketsecurity.com/mediatek-android-information-disclosure-cve-2023-20606/

Inappropriate implementation in Full screen mode in Google Chrome on Android
It allowed a remote attacker to spoof the contents of the security UI via a crafted HTML page.
[$4000] - CVE-2023-0697
https://chromereleases.googleblog.com/2023/02/stable-channel-update-for-desktop.html

Android Banker Deep Dive (Part 1)
Fully reverse engineering of a Android Banker trojan from start to finish
https://youtu.be/Vs9Z3NDnVT8