New Vulnerability on Android 4.3 allows attackers bypass VPN, exposes protected data

Security researchers at Ben Gurion University have discovered a serious  flaw on Android’s VPN implementation, exposes protected data. As per the researchers, the Android vulnerability allows a malicious app to bypass virtual private network (VPN) configurations( no root permission required) , and ultimately send unencrypted data to an attacker. “The secure data communications can be captured in […]
Share Button
Continue reading →

Apps on Unpatched Android 4.3 can Remove Device Locks from Android Phone – Curesec Research Team – CVE-2013-6271

Recently Google introduced a remote Device locking feature  to  its Android Device Manager to unlock a stolen or lost device. This feature was exploited Researchers from Curesec Research Team from Germany discovered a vulnerability on Android 4.3 that allow a malicious app to remove device locks.leading to CVE 2013-6271. As per the blog, “ The bug […]
Share Button
Continue reading →

Android Firefox Zero day exploit up for sale by a Russian Hacker

A underground hacker from Russia with handle ‘fil9”  posted a zero day android exploit for sale. (screenshot below) This zero day exploit works on Firefox 23/24/26 as claimed by the author. Joshua from Malwarebytes spotted this advertisement on Inj3ct0r, an exploit database, where the author was selling the zero day for $460 Us dollars. As […]
Share Button
Continue reading →

Android Trojan Obad.a Trojan spreading via mobile botnets discovered

According to Securelist.com, Obad.a infects in two steps along with another mobile Trojan named as TrojanSMS.AndroidOS.Opfake.a.  This Trojan was noted as one of the most sophisticated Trojan by Kaspersky this May. The infection starts when a legitimate user gets a text message with following text. “MMS message has been delivered, download from www.otkroi.com”. When a […]
Share Button
Continue reading →

Google Cloud Messaging Service being exploited by Android Malware

A Researcher at Kaspersky Lab published an article about the malicious Andoird Apps using Google Cloud Platform Messaging Service and leverage it as CnC (Control & Command Server) to carry out attacks. Kaspersky Researchers found 1,000,000 different OpFake installers disguised mostly games. The app sends several commands from both the GCM and its own C&C, […]
Share Button
Continue reading →

McCafe identifies Trojanized Android app with unusual behavior – comments on NSA surveillance

McAfee identified a unusual behavior of a Android app that was set to go on for July 4th. The app. As per Netsec , “The app in question is Jay Z Magna Carta, which has ben recently made available on Google Play, and allows users of certain Samsung devices to listen to the rapper’s new […]
Share Button
Continue reading →

Sharp rise in malware targeting Android by Kaspersky lab

  In recent days Android security threat has evolved as one of the biggest threat in the mobile world. A research from kaspersky labs shows a graph displaying it. ( below) http://www.net-security.org/images/articles/kaspersky082012-1.jpg Highlights from net-sec: Over the three months in question, over 14,900 new malicious programs targeting this platform were added to Kaspersky Lab’s database. […]
Share Button
Continue reading →

Ransomeware (Doxware) disguises itself as Battery Monitoring App on Google Play infects millions

One of Checkpoint’s customer’s employee downloaded a malicious app called “EnergyRescue” which consisted of zero day mobile ransomeware (Doxware)from Google Play store. The ransomeware dubbed “Charger” and has appeared to be downloaded by millions of Android users. The ransomeware infected app gets access to contacts and SMS messages from the user’s device requesting admin permissions appears to be […]
Share Button
Continue reading →

New Variant of HummingBad malware found inside more than 20 apps on Google play infects millions

New Variant of HummingBad malware found inside more than 20 apps on Google play infects millions Researchers from Checkpoint have discovered a dubbed HummingWhale Android malware, Hummingbad was found inside more than 20 Google play apps. One of the apps inside Google play with Hummingbad infection appears to have been downloaded more than a millions […]
Share Button
Continue reading →

More than 20 countries were infected with adware mobile malware – Kemoge

In September, researchers at FireEye Labs discovered a group of malicious adware created by a company based in China and Singapore called NGE Mobi/Xinyinhe. On October 7, FireEye detected a similar adware family capable of completely taking over Android based devices. Researchers have named it kemoge after its CnC domain aps.kemoge.net. It is believed that […]
Share Button
Continue reading →