For the second time this year, security researchers discovered that the popular Android browser apps UC Browser and UC Browser Mini exposed users to man-in-the-middle (MiTM) attacks by downloading third-party components via insecure connections. In August of this year, Zscaler ThreatLabZ researchers analyzed the two browsers, which have a total

Last month, researchers with Dr. Web discovered that a number of apps on the Google Play Store were riddled with malware, including banking Trojans, adware, spyware, and info stealers. The malicious apps claimed to be games, tools, camera plugins or other seemingly legitimate software. Among the discovered malware samples was

Google has released patches for 28 security vulnerabilities, 11 of which where critical flaws, affecting the Android operating system. Three of the critical bugs are remote code execution (RCE) flaws that could be exploited by attackers to run arbitrary code on vulnerable devices. The RCE vulnerabilities, tracked as CVE-2019-2184, CVE-2019-2185

A security flaw in the privacy-focused encrypted messaging service Signal could enable a threat actor to listen to the audio stream recorded by the Android device of another Signal user, without their knowledge. The vulnerability, tracked as CVE-2019-17191, closely resembles a FaceTime flaw that was discovered earlier this year. Attackers

Google is warning that hundreds of millions of Android devices are vulnerable to an attack developed by NSO Group, an Israeli spyware vendor. No patch has been released for the flaw, which affects many popular phones including the Google Pixel 2, Huawei P20, Xiaomi Redmi 5A, Xiaomi Redmi Note 5,

Earlier this week, the New York Times covered what it referred to as an “attack on Egyptian journalists, academics, lawyers, opposition politicians and human rights activists.” The report was based on recent research by Check Point, which in turn followed a report by Amnesty from March of this year. Check

Despite Google’s efforts to keep the Play Store safe, cybercriminals keep sneaking malicious software onto the official Android app store. In September, security researchers found 172 malicious Android apps on the Play Store with a combined total of more than 335 million installations, a new report by ESET researcher Lukas

A threat actor using the moniker ‘Gnosticplayers’ recently told The Hacker News that he had compromised Zynga, a US developer of various  popular social games for mobile. The hacker claims to have stolen a database containing records on over 218 million players of Zynga’s ‘Words With Friends’ game for Android

Various Tibetan organizations were the targeted of a six-month cyber espionage campaign targeting iOS and Android devices, a new Citizen Lab report shows. Hackers from a threat group dubbed Poison Carp contacted individuals via WhatsApp, while masquerading as journalists and human rights researchers. The attackers used social engineering to encourage

Google Play has once again made the news because a security researcher discovered malicious apps on the official Android app store. Four VPN and antivirus apps by developers from Hong Kong and China were found serving ads in a malicious ways, such as running ads in the background or displaying