Android Security & Malware

前往频道在 Telegram

Mobile cybersecurity channel Links: https://linktr.ee/mobilehacker Contact: mobilehackerofficial@gmail.com

显示更多

📈 Telegram 频道 Android Security & Malware 的分析概览

频道 Android Security & Malware (@androidmalware) 英语语言赛道中的是活跃参与者。目前社区聚集了 43 891 名订阅者，在 技术与应用 类别中位列第 3 094，并在美国地区排名第 727 位。

📊 受众指标与增长动态

自 невідомо 创建以来，项目保持高速增长，吸引了 43 891 名订阅者。

根据 14 六月, 2026 的最新数据，频道保持稳定运转。过去 30 天订阅人数变化为 168，过去 24 小时变化为 10，整体触达仍然可观。

认证状态： 未认证
互动率 (ER)： 平均受众互动率为 11.91%。内容发布后 24 小时内通常能获得 4.63% 的反应，占订阅者总量。
帖子覆盖： 每篇帖子平均可获得 5 227 次浏览，首日通常累积 2 032 次浏览。
互动与反馈： 受众积极参与，单帖平均反应数为 12。
主题关注点： 内容集中在 cve-2025, exploit, rat, trojan, bypass 等核心主题上。

📝 描述与内容策略

作者将该频道定位为表达主观观点的平台：
“Mobile cybersecurity channel Links: https://linktr.ee/mobilehacker Contact: mobilehackerofficial@gmail.com”

凭借高频更新（最新数据采集于 15 六月, 2026），频道始终保持新鲜度与高覆盖。分析显示受众积极互动，使其成为 技术与应用 类别中的关键影响点。

43 891

订阅者

+1024 小时

+887 天

+16830 天

5 227

帖子浏览量

~ 2 03224 小时

~ 2 77848 小时

11.91%

参与率

无数据

每日帖子数

Ads index

beta

帖子存档

43 891

A vulnerability in DuckDuckGo’s Android browser allows file exfiltration via malicious intent:// URLs to gain access to a victim’s Sync account data such as account credentials and email protection information (CVE-2025-48464) https://tuxplorer.com/posts/dont-leave-me-outdated/

43 891

EnFeSTDroid: Ensembled feature selection techniques based Android malware detection https://www.sciencedirect.com/science/article/pii/S0045790625007062

43 891

MCGDroid: An Android Malware Classification Method Based on Multi-Feature Class-Call Graph Characterization https://www.sciencedirect.com/science/article/abs/pii/S016740482500402X

43 891

0-click vulnerability in Dolby's DDPlus decoder affected Android (CVE-2025-54957) A malformed audio file can trigger an out-of-bounds write due to integer overflow in evolution data handling—leading to memory corruption and crashes. Android decodes audio messages locally, making this exploitable without user interaction. Reproduction: Just send a crafted RCS voice message (dolby_android_crash.mp4) Details: https://project-zero.issues.chromium.org/issues/428075495

43 891

New Android BEERUS framework for dynamic analysis & reverse engineering BEERUS brings Frida auto-injection, sandbox exfiltration, memory dumps, Magisk integration and more for on device app analysis. https://github.com/hakaioffsec/beerus-android

43 891

[beginners] Android Intents: operation, security and examples of attacks https://mobeta-fr.translate.goog/android-intent-hijacking-pentest-mobile/?_x_tr_sl=auto&_x_tr_tl=en&_x_tr_hl=en

43 891

Modern iOS Security Features – A Deep Dive into SPTM, TXM, and Exclaves https://arxiv.org/pdf/2510.09272

43 891

GhostBat RAT: Inside the Resurgence of RTO-Themed Android Malware https://cyble.com/blog/ghostbat-rat-inside-the-resurgence-of-rto-themed-android-malware/

43 891

APK Tool GUI: GUI for apktool, signapk, zipalign and baksmali utilities https://github.com/AndnixSH/APKToolGUI

43 891

New Pixnapping Attack allows any Android app without permissions to leak info displayed by other apps exploiting Android APIs and a hardware side channel (CVE-2025-48561). Pixnapping is not fixed and probably affects all Androids. PoC: Not available yet. Video demonstrates stealing 2FA codes from Google Authenticator.

43 891

ClayRat: A New Android Spyware Targeting Russia https://zimperium.com/blog/clayrat-a-new-android-spyware-targeting-russia

43 891

Android Physical Memory: CVE-2025-21479 Rights Elevation Record https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/

43 891

Patch Diffing CVE-2024-23265: An iOS Kernel Memory Corruption Vulnerability https://8ksec.io/patch-diffing-ios-kernel/

43 891

Exploit for a vulnerability in the Nothing Phone 2a/CMF Phone 1 secure boot chain (and possibly other MediaTek devices) Info + PoC: https://github.com/R0rt1z2/fenrir

43 891

iOS Crypto Heist: iMessage Zero-Click RCE Chain (CVE-2025-31200, CVE-2025-31201) CVE-2025-31200 is a zero-day, zero-click RCE in iOS CoreAudio’s AudioConverterService, triggered by a malicious audio file via iMessage/SMS. Exploitation bypassed Blastdoor, enabled kernel escalation (CVE-2025-31201), and allowed token theft until patched in iOS 18.4.1 (Apr 16, 2025) Info: https://github.com/JGoyd/iOS-Attack-Chain-CVE-2025-31200-CVE-2025-31201 PoC exploit: https://www.dropbox.com/scl/fi/oerpnhq1ui3xfswsszfh2/Audio-clip.amr?rlkey=7n54m1o84poezyipxvd2f9slx&e=3&st=b1tkonvr&dl=0

43 891

Two spyware strains - ProSpy & ToSpy - masquerade as Signal and ToTok to infect Androids https://www.welivesecurity.com/en/eset-research/new-spyware-campaigns-target-privacy-conscious-android-users-uae/

43 891

Attacking telecom: security bugs from 2G to 5G, SMS exploits, and SS7 & Diameter protocols [presentation] https://www.youtube.com/watch?v=364R1SoGGJ4

43 891

Phones auto-connecting to "FreeWiFi_Secure" Wi-Fi network leak full IMSI in cleartext during EAP-SIM exchange Anyone nearby with sniffer could capture it → track users, or correlate identities. Fixed pushed disabling FreeWiFi_Secure on legacy boxes starting Oct 1, 2025. https://7h30th3r0n3.fr/the-vulnerability-that-killed-freewifi_secure/

43 891

Silent Smishing : The Hidden Abuse of Cellular Router APIs Cellular router’s API was exploited to send malicious SMS messages containing phishing URLs https://blog.sekoia.io/silent-smishing-the-hidden-abuse-of-cellular-router-apis/

43 891

Klopatra: exposing a new Android banking trojan operation with roots in Turkey https://www.cleafy.com/cleafy-labs/klopatra-exposing-a-new-android-banking-trojan-operation-with-roots-in-turkey