uz
Feedback
Android Security & Malware

Android Security & Malware

Kanalga Telegram’da o‘tish

📈 Telegram kanali Android Security & Malware analitikasi

Android Security & Malware (@androidmalware) Ingliz til segmentidagi kanali faol ishtirokchi. Hozirda hamjamiyat 44 441 obunachidan iborat bo'lib, Texnologiyalar & Aralashmalar toifasida 3 017-o'rinni va AQSH mintaqasida 680-o'rinni egallagan.

📊 Auditoriya ko‘rsatkichlari va dinamika

невідомо sanasidan buyon loyiha tez o‘sib, 44 441 obunachiga ega bo‘ldi.

12 Iyul, 2026 dagi oxirgi ma’lumotlarga ko‘ra kanal barqaror faollikka ega. Oxirgi 30 kunda obunachilar soni 556 ga, so‘nggi 24 soatda esa 20 ga o‘zgardi va umumiy qamrov yuqori darajada qolmoqda.

  • Tasdiqlash holati: Tasdiqlanmagan
  • Jalb etish (ER): Auditoriya o‘rtacha 18.30% darajada jalb etiladi. Nashrdan keyingi dastlabki 24 soatda kontent odatda umumiy obunachilar sonining 3.71% ini tashkil etuvchi reaksiyalarni to‘playdi.
  • Post qamrovi: Har bir post o‘rtacha 8 124 marta ko‘riladi; birinchi sutkada odatda 1 646 ta ko‘rish yig‘iladi.
  • Reaksiyalar va o‘zaro ta’sir: Auditoriya faol: har bir postga o‘rtacha 42 ta reaksiya keladi.
  • Tematik yo‘nalishlar: Kontent cve-2025, exploit, rat, trojan, bypass kabi asosiy mavzularga jamlangan.

📝 Tavsif va kontent siyosati

Muallif resursni shaxsiy fikrni ifoda etish maydoni sifatida ta’riflaydi:
Mobile cybersecurity channel Links: https://linktr.ee/mobilehacker Contact: mobilehackerofficial@gmail.com

Yuqori yangilanish chastotasi (oxirgi ma’lumot 13 Iyul, 2026 da olingan) sababli kanal doimo dolzarb va katta qamrovli bo‘lib qoladi. Analitika auditoriya kontent bilan faol hamkorlik qilishini, uni Texnologiyalar & Aralashmalar toifasidagi muhim ta’sir nuqtasiga aylantirishini ko‘rsatadi.

44 441
Obunachilar
+2024 soatlar
+1357 kunlar
+55630 kunlar
Postlar arxiv
RedHook Android malware abuses ADB Wireless Debugging and Shizuku to get shell-level privileges https://www.group-ib.com/blog/redhook-android-rat-upgraded/

GoldPickaxe Returns: When Your Biometric Information is as Important as Your Money https://zimperium.com/blog/goldpickaxe-returns-when-your-biometric-information-is-as-important-as-your-money

Glitch SPY: New Android RAT Distributed Through a Fake Polish Rental App https://cyble.com/blog/glitch-spy-rat-distributed-via-fake-polish-app/

Android 17 root: full chain browser-to-kernel exploit with two 0-day vulnerabilities affecting Firefox before v151.0.2 (CVE-2026-10702) Click on the link -> root Android https://x.com/nebusecurity/status/2069707520160227688

Android Malware Disguised as Document Reader Reaches 100K Downloads on Google Play | Anatsa banker https://x.com/Threatlabz/status/2069190345418854810

Android reverse engineering entirely on-device. Radare2 binary analysis, 8 Java decompilers, Flutter & Unity il2cpp support https://github.com/UltraSina/androidReverse

[slides] OffensiveCon 2026: Tile-Based Deferred Rooting: When Your GPU Starts Rendering To Kernel Code Space! (CVE-2025-25180) https://androidoffsec.withgoogle.com/slides/art_imagination_gpu_offensivecon_2026.pdf

Rokarolla : Android Banker with Complete Device Takeover Capabilities https://zimperium.com/blog/rokarolla-android-banker-with-complete-device-takeover-capabilities

Local Privilege Escalation (LPE) vulnerability in MEmu Android Emulator 9.2.7.0 (CVE-2026-36213) https://github.com/sec-zone/CVE-2026-36213

I tested Nearby Glasses app to detect "spy" smart glasses - I explained why it is not working reliably and how the app can be even spoofed with fake Bluetooth signals https://www.mobile-hacker.com/2026/06/14/smart-glasses-can-record-you-and-detecting-them-isnt-so-simple/

FirefUXSS 0-day: Universal XSS in Firefox Focus for iOS via Redirect-Scheme Validation Race Condition - not patched yet https://github.com/v12-security/pocs/tree/main/firefox

Tested the raw socket layer of a pre-production POS system. Found 4 critical/high vulnerabilities — including a replay attack, cross-merchant IDOR, ghost transactions, and card identity bypass https://m4kr0.vercel.app/posts/iso-8583-under-fire-finding-vulnerabilities-in-a-payment-socket

NFCShare evolves: from a banking phishing APK to a GitHub-hosted Android NFC fraud campaign https://www.d3lab.net/nfcshare-evolves-from-a-banking-phishing-apk-to-a-github-hosted-android-nfc-fraud-campaign/

Android Spyware Asin Targets Arabic Users via Fake News, PDF and War Map Apps https://thehackernews.com/2026/06/android-spyware-asin-targets-arabic.html

Android.MagicAd displays background ads without SYSTEM_ALERT_WINDOW. Bypasses restrictions via system media controls abuse, vendor-specific intents, and Binder IPC abuse on Xiaomi/Vivo/Amazon devices. Distributed in 50+ apps via GetApps/Galaxy Store https://news.drweb.com/show/?i=15262&c=5&lng=en

A $300 Creative speaker can be hacked over Bluetooth (no pairing) to install malicious firmware and silently turn into a BadUSB keyboard that can takes over USB connected PC. Creative don’t consider it a vulnerability - it is not patched! https://blog.nns.ee/2026/06/03/katana-badusb/

Bypassing SSL Pinning on Play Store Android Device Emulators without Frida https://www.mfumis.com/posts/bypassing-ssl-pinning-on-play-store-avds-without-frida/