Android Security & Malware

You might find this to be a fitting prologue to my earlier post on Creating and using JVM instances in Android C/C++ applications… and you…

Read part - 7 of our mobile malware series to learn about Blackrock Malware and tricks it uses like messing with accessibility settings. Read more now!

The "Antidot" Android Banking Trojan masquerades as a Google Play Update app. It strategically targets Android users across various regions and employs VNC and Overlay techniques to harvest credentials.

I share what I find interesting here..

Overview The SonicWall Capture Labs threat research team has been regularly sharing information about malware targeting Android devices. We've encountered similar RAT samples before, but this one includes extra commands and phishing attacks designed to…

I recently worked on a Flutter-based application and learned that it is different from other hybrid frameworks like React Native or…

Intro Recently I have been getting into userland application testing on Android. I want to credit Iddo and Jacob for their excellent course on attacking IM Applications which I took at zer0con. As a …

Finland's Transport and Communications Agency (Traficom) has issued a warning about an ongoing Android malware campaign targeting banking accounts.

We were recently made aware of multiple potential DNS leaks on Android. They stem from bugs in Android itself, and only affect certain apps.

Virus analysts at Doctor Web uncovered an Android application containing a clicker trojan that silently opens advertising sites and clicks on webpages. Such trojans can be used to stealthily display ads, generate click fraud, sign up unsuspecting victims for paid subscriptions or launch DDoS attacks.