en
Feedback
Android Security & Malware

Android Security & Malware

Open in Telegram

📈 Analytical overview of Telegram channel Android Security & Malware

Channel Android Security & Malware (@androidmalware) in the English language segment is an active participant. Currently, the community unites 44 472 subscribers, ranking 3 016 in the Technologies & Applications category and 678 in the USA region.

📊 Audience metrics and dynamics

Since its creation on невідомо, the project has demonstrated rapid growth, gathering an audience of 44 472 subscribers.

According to the latest data from 13 July, 2026, the channel demonstrates stable activity. Although there has been a change in the number of participants by 575 over the last 30 days and by 40 over the last 24 hours, overall reach remains high.

  • Verification status: Not verified
  • Engagement rate (ER): The average audience engagement rate is 19.39%. Within the first 24 hours after publication, content typically collects 3.70% reactions from the total number of subscribers.
  • Post reach: On average, each post receives 8 619 views. Within the first day, a publication typically gains 1 646 views.
  • Reactions and interaction: The audience actively supports content: the average number of reactions per post is 44.
  • Thematic interests: Content is focused on key topics such as cve-2025, exploit, rat, trojan, bypass.

📝 Description and content policy

The author describes the resource as a platform for expressing subjective opinions:
Mobile cybersecurity channel Links: https://linktr.ee/mobilehacker Contact: mobilehackerofficial@gmail.com

Thanks to the high frequency of updates (latest data received on 14 July, 2026), the channel maintains relevance and a high level of publication reach. Analytics show that the audience actively interacts with content, making it an important point of influence in the Technologies & Applications category.

44 472
Subscribers
+4024 hours
+1607 days
+57530 days
Posts Archive
Reading Contact Photos Without READ_CONTACTS: A Google Messages Confused Deputy Bug https://blog.devploit.dev/posts/google-messages-avatarcontentprovider-contacts-bypass/

RedHook Android malware abuses ADB Wireless Debugging and Shizuku to get shell-level privileges https://www.group-ib.com/blog/redhook-android-rat-upgraded/

GoldPickaxe Returns: When Your Biometric Information is as Important as Your Money https://zimperium.com/blog/goldpickaxe-returns-when-your-biometric-information-is-as-important-as-your-money

Glitch SPY: New Android RAT Distributed Through a Fake Polish Rental App https://cyble.com/blog/glitch-spy-rat-distributed-via-fake-polish-app/

Android 17 root: full chain browser-to-kernel exploit with two 0-day vulnerabilities affecting Firefox before v151.0.2 (CVE-2026-10702) Click on the link -> root Android https://x.com/nebusecurity/status/2069707520160227688

Android Malware Disguised as Document Reader Reaches 100K Downloads on Google Play | Anatsa banker https://x.com/Threatlabz/status/2069190345418854810

Android reverse engineering entirely on-device. Radare2 binary analysis, 8 Java decompilers, Flutter & Unity il2cpp support https://github.com/UltraSina/androidReverse

[slides] OffensiveCon 2026: Tile-Based Deferred Rooting: When Your GPU Starts Rendering To Kernel Code Space! (CVE-2025-25180) https://androidoffsec.withgoogle.com/slides/art_imagination_gpu_offensivecon_2026.pdf

Rokarolla : Android Banker with Complete Device Takeover Capabilities https://zimperium.com/blog/rokarolla-android-banker-with-complete-device-takeover-capabilities

Local Privilege Escalation (LPE) vulnerability in MEmu Android Emulator 9.2.7.0 (CVE-2026-36213) https://github.com/sec-zone/CVE-2026-36213

I tested Nearby Glasses app to detect "spy" smart glasses - I explained why it is not working reliably and how the app can be even spoofed with fake Bluetooth signals https://www.mobile-hacker.com/2026/06/14/smart-glasses-can-record-you-and-detecting-them-isnt-so-simple/

FirefUXSS 0-day: Universal XSS in Firefox Focus for iOS via Redirect-Scheme Validation Race Condition - not patched yet https://github.com/v12-security/pocs/tree/main/firefox

Tested the raw socket layer of a pre-production POS system. Found 4 critical/high vulnerabilities — including a replay attack, cross-merchant IDOR, ghost transactions, and card identity bypass https://m4kr0.vercel.app/posts/iso-8583-under-fire-finding-vulnerabilities-in-a-payment-socket

NFCShare evolves: from a banking phishing APK to a GitHub-hosted Android NFC fraud campaign https://www.d3lab.net/nfcshare-evolves-from-a-banking-phishing-apk-to-a-github-hosted-android-nfc-fraud-campaign/

Android Spyware Asin Targets Arabic Users via Fake News, PDF and War Map Apps https://thehackernews.com/2026/06/android-spyware-asin-targets-arabic.html

Android.MagicAd displays background ads without SYSTEM_ALERT_WINDOW. Bypasses restrictions via system media controls abuse, vendor-specific intents, and Binder IPC abuse on Xiaomi/Vivo/Amazon devices. Distributed in 50+ apps via GetApps/Galaxy Store https://news.drweb.com/show/?i=15262&c=5&lng=en

A $300 Creative speaker can be hacked over Bluetooth (no pairing) to install malicious firmware and silently turn into a BadUSB keyboard that can takes over USB connected PC. Creative don’t consider it a vulnerability - it is not patched! https://blog.nns.ee/2026/06/03/katana-badusb/

Bypassing SSL Pinning on Play Store Android Device Emulators without Frida https://www.mfumis.com/posts/bypassing-ssl-pinning-on-play-store-avds-without-frida/