Android Authority

New Qualcomm exploit chain brings bootloader unlocking freedom to Android flagships

A vulnerability in Qualcomm’s Android Bootloader implementation allows unsigned code to run via the “efisp” partition on Android 16 devices. This is paired with a “fastboot” command oversight to ...
The Hacker News

Six Android Malware Families Target Pix Payments, Banking Apps, and Crypto Wallets

Six Android malware families discovered targeting banking apps and crypto wallets, exploiting accessibility features to steal funds and data.

Security researchers broke into a MediaTek-powered Nothing phone in just 45 seconds

Security researchers cracked a MediaTek-powered Nothing CMF Phone 1 in 45 seconds, exposing a vulnerability that potentially ...
Decrypt

Android Phone Crypto Wallets Could Be at Risk Due to MediaTek Exploit: Ledger

A vulnerability in some MediaTek-powered phones could allow attackers to extract encrypted data, including wallet seed ...

Fact Check: Images depicting capture of US ‘Delta Force’ troops in Iran are-AI generated

Four images depicting U.S. soldiers captured in Iran were created using AI, according to Google’s SynthID tool, and there ​is no evidence of Iran having announced that it ‌arrested any U.S. soldiers, ...

This security flaw could affect 1 in 4 Android phones - how to check yours

The hardware vulnerability - found primarily in budget handsets - makes it possible to steal sensitive user data, including crypto wallet seed phrases, in less than a minute.

What Gives Cellebrite DI Ltd. (CLBT) a Competitive Moat?

Voss Capital, LLC, an investment management company, released its fourth-quarter 2025 investor letter. A copy of the letter can be downloaded here.
TechCrunch

Treasury sanctions Russian zero-day broker accused of buying exploits stolen from US defense contractor

The U.S. government announced on Tuesday sanctions against two companies that acquire and resell zero-day exploits, as well as sanctioning their founders and their associates. Officials with the U.S.
Computer Weekly

PromptSpy Android malware may exploit Gemini AI

An Android-specific malware targeting mobile device takeover appears to use generative AI (GenAI) services in its execution flows to maintain persistence on the victim’s smartphone, researchers at ...
WeLiveSecurity

PromptSpy ushers in the era of Android threats using GenAI

ESET researchers uncovered the first known case of Android malware abusing generative AI for context-aware user interface manipulation. While machine learning has been used to similar ends already – ...
Infosecurity-magazine.com

Chinese APT Group Exploits Dell Zero-Day for Two Years

Dell has released a patch for a critical zero-day vulnerability in its RecoverPoint for Virtual Machines product, which Mandiant said has been silently exploited by a Chinese APT group since 2024. CVE ...
TechSpot

Researchers uncover firmware-level backdoor installed on several Android tablet brands

Facepalm: Keenadu is a firmware-level backdoor that has infected thousands of devices worldwide. Kaspersky analysts discovered the threat while investigating Triada, a trojan pre-installed on ...