Bleeping Computer

Exploit released for Android local elevation flaw impacting 7 OEMs

A proof-of-concept (PoC) exploit for a local privilege elevation flaw impacting at least seven Android original equipment manufacturers (OEMs) is now publicly available on GitHub. However, as the ...
Android Police

This exploit can bypass Android's parental controls for web browsing

Manuel Vonau was Android Police's Google Editor until April 2024, with expertise in Android, Chrome, Pixels, and other Google products. For five years, he covered tech news and reviewed devices after ...

Google just fixed an Android zero-day exploit used by Serbian authorities

If you thought that there was no way the government could spy on your phone, the authorities in Serbia have some magic beans ...
InfoWorld

Android exploit eats up WhatsApp chat databases

Bas Bosschert, a self-billed “consultant/sysadmin/entrepreneur,” has demonstrated a proof-of-concept exploit that shows how the locally stored message database ...
Bleeping Computer

Google finds more Android, iOS zero-days used to install spyware

Google's Threat Analysis Group (TAG) discovered several exploit chains using Android, iOS, and Chrome zero-day and n-day vulnerabilities to install commercial spyware and malicious apps on targets' ...
Android Central on MSN

Google warns Android users of a zero-day software exploit causing instability

Google is delivering a warning to Android users about a crucial zero-day exploit in the wild. The issue can reportedly allow ...
Ars Technica

Android app from China executed 0-day exploit on millions of devices

Android apps digitally signed by China’s third-biggest e-commerce company exploited a zero-day vulnerability that allowed them to surreptitiously take control of millions of end-user devices to steal ...
9to5google

Patched Chromecast with Google TV exploit bypassed Android Verified Boot

Following this month’s updates to both the HD and 4K models of Chromecast with Google TV, a group of LineageOS developers have shared the details of a (now-patched) exploit that enabled rooting the ...
WeLiveSecurity

Cursed tapes: Exploiting the EvilVideo vulnerability on Telegram for Android

ESET researchers discovered a zero-day exploit that targets Telegram for Android, which appeared for sale for an unspecified price in an underground forum post from June 6 th, 2024. Using the exploit ...
Fox News

New Android attack tricks you into giving dangerous permissions

A team of academic researchers has uncovered a new Android security exploit that raises a lot of questions about the platform’s permission system. The technique, named TapTrap, uses user interface ...
9to5google

Latest Android 12 QPR3 Beta includes fix for Dirty Pipe exploit on Pixel 6

As part of the Android 12 QPR3 Beta which previews the June Feature Drop, Google has included a fix for the major Dirty Pipe exploit affecting Pixel 6 and Pixel 6 Pro. Last month, security researchers ...
Android

Google just fixed an Android zero-day exploit used by Serbian authorities

According to the report, Cellebrite, an Israeli-based digital forensics company, exploited the flaw as part of an Android zero-day attack. The exploit targets Android USB drivers, making billions of ...