MOBEXLER - A Mobile Application Penetration Testing Platform
https://enciphers.github.io/Mobexler/
https://enciphers.github.io/Mobexler/
Review of harmful apps found on Google Play in September 2019: 172 apps with 335,952,400+ installs
https://lukasstefanko.com/2019/10/android-security-monthly-recap-9.html
https://lukasstefanko.com/2019/10/android-security-monthly-recap-9.html
Huawei’s Undocumented APIs — A Backdoor to Reinstall Google Services
https://medium.com/@topjohnwu/huaweis-undocumented-apis-a-backdoor-to-reinstall-google-services-c3a5dd71a7cd
https://medium.com/@topjohnwu/huaweis-undocumented-apis-a-backdoor-to-reinstall-google-services-c3a5dd71a7cd
Medium
Huawei’s Undocumented APIs — A Backdoor to Reinstall Google Services
A few clicks, and Google Services are back. Sounds good, right?
Eight vulnerabilities found in the Android operating system's VoIP components
https://www.zdnet.com/article/academics-find-eight-vulnerabilities-in-androids-voip-components/
https://www.zdnet.com/article/academics-find-eight-vulnerabilities-in-androids-voip-components/
ZDNET
Academics find eight vulnerabilities in Android's VoIP components
The vulnerabilities can be exploited to make unauthorized VoIP calls, spoof caller IDs, deny voice calls, and even execute malicious code on users' devices.
Popular Android malware seen in September 2019 with samples
http://skptr.me/malware_timeline_2019.html
Samples: https://github.com/sk3ptre/AndroidMalware_2019
http://skptr.me/malware_timeline_2019.html
Samples: https://github.com/sk3ptre/AndroidMalware_2019
GitHub
GitHub - sk3ptre/AndroidMalware_2019: Popular Android threats in 2019
Popular Android threats in 2019. Contribute to sk3ptre/AndroidMalware_2019 development by creating an account on GitHub.
Detailed analysis of RCE vulnerability in WhatsApp via receiving malicoius .GIF
Patched in WhatsApp v2.19.244
https://awakened1712.github.io/hacking/hacking-whatsapp-gif-rce/
Video demo: https://drive.google.com/file/d/1T-v5XG8yQuiPojeMpOAG6UGr2TYpocIj/view
Patched in WhatsApp v2.19.244
https://awakened1712.github.io/hacking/hacking-whatsapp-gif-rce/
Video demo: https://drive.google.com/file/d/1T-v5XG8yQuiPojeMpOAG6UGr2TYpocIj/view
Home
How a double-free bug in WhatsApp turns to RCE
In this blog post, I’m going to share about a double-free vulnerability that I discovered in WhatsApp for Android, and how I turned it into an RCE. I informed this to Facebook. Facebook acknowledged and patched it officially in WhatsApp version 2.19.244.…
The State of Stalkerware in 2019
Increase of mobile Stalkerware. Based on Kaspersky, there is more Stalkerware detected in 2019 than in 2018.
https://securelist.com/the-state-of-stalkerware-in-2019/93634/
Increase of mobile Stalkerware. Based on Kaspersky, there is more Stalkerware detected in 2019 than in 2018.
https://securelist.com/the-state-of-stalkerware-in-2019/93634/
Securelist
The State of Stalkerware in 2019
This report examines the use of stalkerware and the number of users affected by this software in the first eight months of 2019.
Bad OpSec led to the botnet’s discovery — revealing 800,000 victims in Russia
https://threatpost.com/virus-bulletin-geost-android-botnet/148864/
https://threatpost.com/virus-bulletin-geost-android-botnet/148864/
Threat Post
Virus Bulletin 2019: Geost Android Botnet Goes After Millions of Euros
Bad OpSec led to the botnet's discovery — revealing 800,000 victims in Russia.
Forwarded from The Bug Bounty Hunter
URL Bar Spoofing Flaw in Safari for iOS 12.3 and iOS 13 Beta | CVE-2019–8727
https://medium.com/@justm0rph3u5/url-bar-spoofing-in-safari-for-ios-12-3-and-ios-13-beta-cve-2019-8727-d87490f8ee29
https://medium.com/@justm0rph3u5/url-bar-spoofing-in-safari-for-ios-12-3-and-ios-13-beta-cve-2019-8727-d87490f8ee29
Medium
URL Bar Spoofing in Safari for iOS 12.3 and iOS 13 Beta | CVE-2019–8727
While working for browser-based attacks on the URL bar, I learned a way where it was still possible to spoof address bar in safari. None…
Statistics and analysis of "Hqware" Android Banking malware family
https://securelist.com/hqwar-the-higher-it-flies-the-harder-it-drops/93689/
https://securelist.com/hqwar-the-higher-it-flies-the-harder-it-drops/93689/
Securelist
HQWar: the higher it flies, the harder it drops
Now one can say that only the lazy did not use Hqwar: Kaspersky's collection of viruses features over 200,000 Trojans packed using Hqwar.
Kernel privilege escalation bug in Android affecting fully patched Pixel 2 & others
The bug was allegedly being used or sold by the NSO Group.
Local PoC exploit included. CVE-2019-2215
https://bugs.chromium.org/p/project-zero/issues/detail?id=1942
The bug was allegedly being used or sold by the NSO Group.
Local PoC exploit included. CVE-2019-2215
https://bugs.chromium.org/p/project-zero/issues/detail?id=1942
Spy campaign against handpicked political, social activists, high-profile journalists and members of non-profit organizations in Egypt.
One of the spy app found on Google Play with 5,000+ installs.
https://research.checkpoint.com/the-eye-on-the-nile/
One of the spy app found on Google Play with 5,000+ installs.
https://research.checkpoint.com/the-eye-on-the-nile/
Check Point Research
The Eye on the Nile - Check Point Research
Introduction Back in March 2019, Amnesty International published a report that uncovered a targeted attack against journalists and human rights activists in Egypt. The victims even received an e-mail from Google warning them that government-backed attackers…
GEOST BOTNET - ANALYSIS OF A NEW ANDROID BANKING TROJAN FROM AN OPSEC ERROR
http://public.avast.com/research/VB2019-Garcia-etal.pdf
http://public.avast.com/research/VB2019-Garcia-etal.pdf
Signal Bug Could Have Let Hackers Listen to Android Users Via Microphone
https://www.vice.com/en_us/article/3kx7n8/signal-bug-could-have-let-hackers-listen-to-android-users-via-microphone
https://www.vice.com/en_us/article/3kx7n8/signal-bug-could-have-let-hackers-listen-to-android-users-via-microphone
Vice
Signal Bug Could Have Let Hackers Listen to Android Users Via Microphone
Google’s Project Zero recently reported the issue, which the Signal maintainers have now fixed.
Mobile Pentesting with Frida
https://drive.google.com/file/d/1JccmMLi6YTnyRrp_rk6vzKrUX3oXK_Yw/view
https://drive.google.com/file/d/1JccmMLi6YTnyRrp_rk6vzKrUX3oXK_Yw/view
👍1
Automated Frida hook generation with JEB
https://bhamza.me/2019/10/06/Automated-Frida-hook-generation-with-JEB.html
jeb2frida: https://github.com/Hamz-a/jeb2frida
https://bhamza.me/2019/10/06/Automated-Frida-hook-generation-with-JEB.html
jeb2frida: https://github.com/Hamz-a/jeb2frida
How to modify iOS app with Frida to use Meterpreter
https://sensepost.com/blog/2019/mettle-your-ios-with-frida/
https://sensepost.com/blog/2019/mettle-your-ios-with-frida/
A Run-Time Approach For Pen-Testing IOS Applications Part-II (Objection In Action)
https://blog.securelayer7.net/a-run-time-approach-for-pen-testing-ios-applications-part-ii-objection-in-action/
https://blog.securelayer7.net/a-run-time-approach-for-pen-testing-ios-applications-part-ii-objection-in-action/
SecureLayer7 - Offensive Security, API Scanner & Attack Surface Management
A run-time approach for pen-testing iOS applications Part-II (Objection in Action)
Objection in Action Once all things go right, we can inject Frida noscripts into our target application. Open target application and enter following command in powershell objection -g...
Vulnerable Twitter API of iOS apps may lead to possible MITM attack
The Twitter Kit framework through 3.4.2 for iOS does not properly validate the api.twitter.com SSL certificate. CVE-2019-16263
https://blog.appicaptor.com/2019/10/04/vulnerable-library-warning-twitterkit-for-ios/
The Twitter Kit framework through 3.4.2 for iOS does not properly validate the api.twitter.com SSL certificate. CVE-2019-16263
https://blog.appicaptor.com/2019/10/04/vulnerable-library-warning-twitterkit-for-ios/