We dig in a malicious sample of Android/TangleBot of May 2024. TangleBot is also reported as a BankBot, although it is more an Android RAT…

In this guide, I’ll walk you through the steps to install Kali NetHunter on TicWatch Pro smartwatches. With NetHunter, which is sometimes also called FitHunter

In previous blog I guide you how to root TicWatch Pro and install Kali NetHunter. In this tutorial, I will lead you how to start clean by flashing default stock system ROM (factory firmware) on your TicWatch Pro smartwatches. Why? In case you end up in any…

You tried to flash custom ROM, root it or install Kali NetHunter on your TicWatch Pro (catfish) but something went wrong? Your smartwatches end-up in bootloop, always boots into recovery, from installation logs you were informed there is not enough free space…

Scan for secrets, endpoints, and other sensitive data after decompiling and deobfuscating Android files. (.apk, .xapk, .dex, .jar, .class, .smali, .zip, .aar, .arsc, .aab, .jadx.kts). - LucasFaudma...

If you successfully installed NetHunter as described in previous blogs, we can start use its tools. In this blog, I will focus on Duck Hunter provided by NetHunter. Using DuckHunter allows our TicWatch Pro smartwatches to behave as Rubber Ducky, also known…

Uncover the intricate web of the Konfety ad fraud operation spreading through 'evil twin' apps, exposing malicious tactics and deceptive practices in the mobile advertising realm.

Our data shows a pattern of APK malware bundled as BadPack files. We discuss how this technique is used to garble malicious Android files, creating challenges for analysts.

ESET researchers discovered a zero-day Telegram for Android exploit that allows sending malicious files disguised as videos.

Injecting and Exploiting Synthetic Remote Vulnerabilities to explore Signal-iOS and WebRTC

It’s another average Friday morning and my iPhone shows 705 unread Signal messages. Signal has not completely supplanted my use of iMessage, but it does dominate communications…

Exploiting this trick can easily mislead non-tech-savvy users into installing a malicious app that impersonates a PDF document. The trick lies in manipulating the file extension within the WhatsApp Messenger using API interface.

ESET research reveals how the success of Hamster Kombats has attracted malicious actors trying to abuse interest in the game for monetary gain.

In previous series of blogs I focused on installation of Kali NetHunter on older model of TicWatch Pro 2018 (catfish) which might be for some of you a good choice if you already have them forgotten in your drawer or you can get them cheap to play around.…