Android Police

Articles Tagged:

vulnerability

3

Twitter finally gets around to patching Android app security hole... 22 months later

Twitter has patched its app from a vulnerability within Android that could let a malicious app siphon users' private date — including their direct messages — while bypassing system permissions. Every Twitter for Android user was notified about the security hole which affects users on versions 8 Oreo and 9 Pie.

Read More
5

WhatsApp fixes issue that exposed some users' phone numbers to search engines

Facebook went on a whack-a-mole expedition patching a security vulnerability that exposed thousands of WhatsApp users' phone numbers with a fairly simple Google search. The Indian researcher who found this loophole is also crying foul for not being able to receive a bounty for his bug find.

Read More
23

MediaTek security vulnerability allowed root access on devices from Nokia, Amazon, BLU, Sony, ZTE, and others

Security vulnerabilities are unfortunately extremely common in smartphones, given the complexity and varying codebases of most devices. That's why Google has been releasing monthly security patches for years, and if you needed another reason for why those updates are so important, the March 2020 release fixes a critical flaw on many MediaTek devices.

Read More
7

Mozilla patches zero-day exploit for Firefox desktop and Android browsers (APK Download)

Mozilla has patched a zero-day exploit in late revisions to Firefox 72 and version 68 of the Android web browser. In a security advisory, the company said that it was made aware of "targeted attacks in the wild abusing this flaw."

Read More
54

[Update: Patched] Pixel, Samsung, and Xiaomi phones among those susceptible to resurfaced zero-day vulnerability

Android security has come a long way in recent years. The promotion of monthly patches has kept many rising threats at bay while Google Play Protect largely bars malware from the Play Store. Despite these achievements, there are still instances where bad actors can exploit Android's code for nefarious purposes. Google's Project Zero team recently reported such an incident, and you may be at risk if you own one of the affected phones.

Read More
10

KNOB Attack compromises Bluetooth security, but fix is already hitting Android

A research team has publicized about a vulnerability in Bluetooth that may affect nearly every device that supports the wireless communication protocol. Chipmakers were made aware to the so-called Key Negotiation of Bluetooth (KNOB) Attack in November. BlackBerry and Google have announced patches for Android devices.

Read More
23

Presidential alerts can be easily spoofed, thanks to LTE security vulnerabilities

Last year, the United States performed the first public test of the national Wireless Emergency Alert (WEA), an alert system designed to send messages to smartphones, TVs, and other systems simultaneously. The test was specifically for the 'Presidential Alert,' a new category that can't be opted out of (like AMBER alerts). It turns out these types of alerts can be easily spoofed, thanks to various security vulnerabilities with LTE towers.

Read More
3

Mozilla patches zero-day vulnerability with Firefox 67.0.3 update [APK Download]

Firefox developer Mozilla has rolled out an update to the release channel of its browser app for Android that adds an important security fix. The update to version number 67.0.3 patches the critical zero-day flaw and protects users from potential attacks.

Read More
28

HMD Global investigating easily-fooled Nokia 9 fingerprint sensors

Owners of the Nokia 9 PureView have had a rough go with the in-display fingerprint sensor they've bought their phones — our Ryan Whitwam was not impressed with the fussing around and finger-jambing he had to do in order to achieve authentication. A software update last week was supposed to loosen up and get the sensor working as it should. But manufacturer HMD Global is now investigating a complaint saying that the phone is too loose, producing false positives from unknown fingers and even a packet of gum.

Read More
32

WhatsApp vulnerability could be used to spread fake news and scam users

Cybersecurity researchers from Check Point have unearthed a vulnerability in WhatsApp that could allow attackers to trick users by intercepting messages and editing the content. This opens up the possibility of scamming people and spreading misinformation.

Read More
Mastodon