#android

Chinese Group TheWizards Exploits IPv6 to Drop WizardNet Backdoor

ESET has discovered Spellbinder, a new tool used by the China-linked cyber espionage group TheWizards to conduct AitM…

3 months ago

#android #mac #windows #git #backdoor #xiaomi

GHSA-mwfg-948f-2cc5: Mobile Security Framework (MobSF) Allows Stored Cross Site Scripting (XSS) via malicious SVG Icon Upload

**Vulnerable MobSF Versions:** <= v4.3.2 **CVSS V4.0 Score:** 8.6 (CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N) **Details:** A Stored Cross-Site Scripting (XSS) vulnerability has been identified in MobSF versions ≤ 4.3.2. The vulnerability arises from improper sanitization of user-supplied SVG files during the Android APK analysis workflow. When an Android Studio project contains a malicious SVG file as an app icon (e.g path, /app/src/main/res/mipmap-hdpi/ic_launcher.svg), and the project is zipped and uploaded to MobSF, the tool processes and extracts the contents without validating or sanitizing the SVG. Upcon ZIP extraction this icon file is saved by MobSF to: user/.MobSF/downloads/<filename>.svg This file becomes publicly accessible via the web interface at: http://127.0.0.1:8081/download/filename.svg If the SVG contains embedded JavaScript (e.g., an XSS payload), accessing this URL via a browser leads to the execution of the script in the context of th...

3 months ago

ghsa

Open in Source

#xss #vulnerability #web #android #git #java

On world password day, Microsoft says fewer passwords, more passkeys

Passwords are becoming things of the past. Passkeys are more secure, easier to manage, and speed up the log in process

4 months ago

Malwarebytes

Open in Source

#web #ios #android #mac #windows #google #microsoft #linux #git #intel #auth #chrome #ssl

Apple AirPlay SDK devices at risk of takeover—make sure you update

Researchers found a set of vulnerabilities that puts all devices leveraging Apple's AirPlay at risk.

4 months ago

Malwarebytes

Open in Source

#vulnerability #ios #android #mac #apple #dos #rce #buffer_overflow #auth #wifi #ssl

The 3 biggest cybersecurity threats to small businesses

These 3 cybersecurity threats may not be the most sophisticated, but they're the most effective—and serious—threats for small businesses.

4 months ago

Malwarebytes

Open in Source

#vulnerability #web #android #apple #google #git #intel #auth #sap

A week in security (April 21 – April 27)

A list of topics we covered in the week of April 21 to April 27 of 2025

4 months ago

Malwarebytes

Open in Source

#android #mac #google #aws

Protecting Your Phone—and Your Privacy—at the US Border

In this episode of Uncanny Valley, our hosts explain how to prepare for travel to and from the United States—and how to stay safe.

4 months ago

Wired

Open in Source

#vulnerability #web #ios #android #mac #apple #cisco #git #intel #backdoor #auth #sap

Android malware turns phones into malicious tap-to-pay machines

A newly discovered malicious program effectively turns Android phones into malicious tap machines that vacuum up payment card data.

4 months ago

Malwarebytes

Open in Source

#ios #android #mac #apple #google #samsung #sap

Android Spyware Disguised as Alpine Quest App Targets Russian Military Devices

Cybersecurity researchers have revealed that Russian military personnel are the target of a new malicious campaign that distributes Android spyware under the guise of the Alpine Quest mapping software. "The attackers hide this trojan inside modified Alpine Quest mapping software and distribute it in various ways, including through one of the Russian Android app catalogs," Doctor Web said in an

4 months ago

The Hacker News

Open in Source

#web #android #The Hacker News

Fake Alpine Quest Mapping App Spotted Spying on Russian Military

Fake Alpine Quest app laced with spyware was used to target Russian military Android devices, stealing location data,…

4 months ago

HackRead

Open in Source

#web #android #google #sap

Tag

#android