Massiv: When your IPTV app terminates your savings
https://www.threatfabric.com/blogs/massiv-when-your-iptv-app-terminates-your-savings
https://www.threatfabric.com/blogs/massiv-when-your-iptv-app-terminates-your-savings
ThreatFabric
Massiv: When your IPTV app terminates your savings
Massiv is a new Device Takeover (DTO) malware family without direct links to other known threats, masquerading as an IPTV app.
π€£8β‘2π2π€1
MythDetector: Android app designed to detect presence of Frida in Android apps
https://github.com/arvinjangid/MythDetector
https://github.com/arvinjangid/MythDetector
GitHub
GitHub - arvinjangid/MythDetector: MythDetector is a lightweight Android application designed to help developers and testers detectβ¦
MythDetector is a lightweight Android application designed to help developers and testers detect presence of Frida in Android apps. - arvinjangid/MythDetector
π©10π6π5π€‘4β‘2
Intent Redirection in a Samsung Dialer SVE-2025β1217
https://medium.com/@happyjester80/intent-redirection-in-a-samsung-dialer-duplicate-sve-2025-1217-0160b0d79a74
https://medium.com/@happyjester80/intent-redirection-in-a-samsung-dialer-duplicate-sve-2025-1217-0160b0d79a74
Medium
Intent Redirection in a Samsung Dialer (Duplicate) SVE-2025β1217
Ψ¨ΩΨ³ΩΩ
Ω Ψ§ΩΩΩΩΩΩΩ Ψ§ΩΨ±ΩΩΨΩΩ
ΩΩΩ°ΩΩ Ψ§ΩΨ±ΩΩΨΩΩΩ
Ω
π₯18π5π3β€1
Firstβever Mobile Hacking Conference, happening next week β fully online and completely free.
Iβve summarized everything you need to know in one place β speakers, talks, CTFs, giveaways, free courses, and more.
https://www.mobile-hacker.com/2026/02/23/the-first-mobile-hacking-conference-is-coming-this-march/
Iβve summarized everything you need to know in one place β speakers, talks, CTFs, giveaways, free courses, and more.
https://www.mobile-hacker.com/2026/02/23/the-first-mobile-hacking-conference-is-coming-this-march/
Mobile Hacker
The First Mobile Hacking Conference Is Coming This March Mobile Hacker
The world of mobile security is getting its very first dedicated online conference - and youβre invited! Get ready for summit dedicated entirely to mobile hacking, organized by Mobile Hacking Lab - a one of leading platform for offensive mobile security trainingβ¦
π20π9π3
SURXRAT: From ArsinkRAT roots to LLM Module Downloads Signaling Capability Expansion
https://cyble.com/blog/surxrat-downloads-large-llm-module-from-hugging-face/
https://cyble.com/blog/surxrat-downloads-large-llm-module-from-hugging-face/
Cyble
SURXRAT Downloads Large LLM Module From Hugging Face
Cyble uncovers SURXRATβs evolution across versions, built on ArsinkRAT code, and now downloading large LLM modules signaling an expansion of its operational capabilities.
β€6β‘3π3
A Step-by-Step Guide to Uncovering Vulnerabilities in a Mobile App
https://ahmadaabdulla.medium.com/a-step-by-step-guide-to-uncovering-vulnerabilities-in-a-mobile-app-5a6b05e6b23b
https://ahmadaabdulla.medium.com/a-step-by-step-guide-to-uncovering-vulnerabilities-in-a-mobile-app-5a6b05e6b23b
Medium
A Step-by-Step Guide to Uncovering Vulnerabilities in a Mobile App
β€15π5π3
Android mental health apps are filled with security flaws
https://www.bleepingcomputer.com/news/security/android-mental-health-apps-with-147m-installs-filled-with-security-flaws/
https://www.bleepingcomputer.com/news/security/android-mental-health-apps-with-147m-installs-filled-with-security-flaws/
BleepingComputer
Android mental health apps with 14.7M installs filled with security flaws
Several mental health mobile apps with millions of downloads on Google Play contain security vulnerabilities that could expose users' sensitive medical information.
β€15π5π4
How Predator spyware defeats iOS recording indicators
https://www.jamf.com/blog/predator-spyware-ios-recording-indicator-bypass-analysis/
https://www.jamf.com/blog/predator-spyware-ios-recording-indicator-bypass-analysis/
Jamf
How Predator Spyware Defeats iOS Recording Indicators
An analysis documenting how a commercial spyware sample, Predator, operates post-compromise.
π13π€£3π3β€2π₯°1
How to run virtual iOS 26 iPhone on Apple Silicon Macs, built from Appleβs Private Cloud Compute firmware
https://github.com/wh1te4ever/super-tart-vphone-writeup
https://github.com/wh1te4ever/super-tart-vphone-writeup
GitHub
GitHub - wh1te4ever/super-tart-vphone-writeup
Contribute to wh1te4ever/super-tart-vphone-writeup development by creating an account on GitHub.
β€10π4π2
artifacts: CLI toolkit for static triage of suspicious APKs
https://github.com/drego85/artifacts
https://github.com/drego85/artifacts
GitHub
GitHub - drego85/artifacts: artifacts is a CLI toolkit for static triage of suspicious APKs.
artifacts is a CLI toolkit for static triage of suspicious APKs. - drego85/artifacts
β€7π3
Gadgetinjector: Frida Gadget injector for iOS 17 / iOS 18 IPAs, designed to work with Objection in listen mode
https://github.com/Saurabh221662/GadgetInjector
https://github.com/Saurabh221662/GadgetInjector
GitHub
GitHub - Saurabh221662/GadgetInjector
Contribute to Saurabh221662/GadgetInjector development by creating an account on GitHub.
π11β€2
Captures Android network traffic without proxies or certificates
https://github.com/ProxymanApp/atlantis-android
https://github.com/ProxymanApp/atlantis-android
GitHub
GitHub - ProxymanApp/atlantis-android: Capture HTTP/HTTPS traffic from Android apps and send to Proxyman for debugging.
Capture HTTP/HTTPS traffic from Android apps and send to Proxyman for debugging. - ProxymanApp/atlantis-android
β€11π2π€‘1
1 script to run the virtual iPhone (iOS 26.1), already jailbroken with full bootstrap installed on Mac
https://github.com/34306/vphone-aio
https://github.com/34306/vphone-aio
GitHub
GitHub - 34306/vphone-aio: 1 script run the vphone
1 script run the vphone. Contribute to 34306/vphone-aio development by creating an account on GitHub.
π21β€4π1
areclaw: Android Reverse Engineering CLI Automation Workspace. AI-driven security analysis with Claude Code.
https://github.com/TheQmaks/areclaw
https://github.com/TheQmaks/areclaw
GitHub
GitHub - TheQmaks/areclaw: Android Reverse Engineering Command-Line Automation Workspace. AI-driven security analysis with Claudeβ¦
Android Reverse Engineering Command-Line Automation Workspace. AI-driven security analysis with Claude Code. - TheQmaks/areclaw
π€‘6π6β€3π2π1
π΄ Weβre LIVE! Join the Mobile Hacking Conference Now.
Be part of the live stream and dive into the latest mobile security and hacking research
Join here: https://www.youtube.com/watch?v=yFROPsi6J7Y
Be part of the live stream and dive into the latest mobile security and hacking research
Join here: https://www.youtube.com/watch?v=yFROPsi6J7Y
YouTube
π΄ Live: Mobile Hacking Conference | Day 1 + CTF (Pt. 2)
π Exclusive Security Training Deals (Limited Time)
Level up your Android security, exploitation & forensics skills with these special discounts π
ββββββββββββββββββ
π₯ Advanced Android Hacking
πΈ β¬250 OFF
π Code: AAH-MAR-33
π https://www.mobilehackinglβ¦
Level up your Android security, exploitation & forensics skills with these special discounts π
ββββββββββββββββββ
π₯ Advanced Android Hacking
πΈ β¬250 OFF
π Code: AAH-MAR-33
π https://www.mobilehackinglβ¦
π₯8
Coruna: Inside the Nation-State-Grade iOS Exploit Kit We've Been Tracking
https://iverify.io/blog/coruna-inside-the-nation-state-grade-ios-exploit-kit-we-ve-been-tracking
https://iverify.io/blog/coruna-inside-the-nation-state-grade-ios-exploit-kit-we-ve-been-tracking
iverify.io
Coruna: Inside the Nation-State-Grade iOS Exploit Kit We've Been Tracking
Google's 'Coruna' iOS exploit kit targets iPhones via 23 exploits. See how iVerify's research expands these findings & what it means for everyday users
π7β€2π₯2
π΄ Live: Mobile Hacking Conference | Day 2
https://www.youtube.com/watch?v=CfioCImyo1U
https://www.youtube.com/watch?v=CfioCImyo1U
YouTube
π΄ Live: Mobile Hacking Conference | Day 2
π Exclusive Security Training Deals (Limited Time)
Level up your Android security, exploitation & forensics skills with these special discounts π
ββββββββββββββββββ
π₯ Advanced Android Hacking
πΈ β¬250 OFF
π Code: AAH-MAR-33
π https://www.mobilehackinglβ¦
Level up your Android security, exploitation & forensics skills with these special discounts π
ββββββββββββββββββ
π₯ Advanced Android Hacking
πΈ β¬250 OFF
π Code: AAH-MAR-33
π https://www.mobilehackinglβ¦
β€6π2π1
RedAlert Trojan Campaign: Fake Emergency Alert App Spread via SMS Spoofing Israeli Home Front Command
https://www.cloudsek.com/blog/redalert-trojan-campaign-fake-emergency-alert-app-spread-via-sms-spoofing-israeli-home-front-command
https://www.cloudsek.com/blog/redalert-trojan-campaign-fake-emergency-alert-app-spread-via-sms-spoofing-israeli-home-front-command
Cloudsek
RedAlert Trojan Campaign: Fake Emergency Alert App Spread via SMS Spoofing Israeli Home Front Command | CloudSEK
CloudSEK has uncovered a malicious SMS spoofing campaign spreading a fake version of Israelβs βRed Alertβ emergency app amid the ongoing conflict. Disguised as a trusted warning platform, the trojanized Android app can steal SMS, contacts, and location dataβ¦
π3
Auto Frida v2.0: all-in-one Android security testing automation toolkit. Connect your device and let Auto Frida handle everything - from Frida installation to intelligent protection detection and bypass script generation
https://github.com/ommirkute/Auto-Frida
https://github.com/ommirkute/Auto-Frida
GitHub
GitHub - ommirkute/Auto-Frida: Auto Frida is a powerful, all-in-one automation toolkit that handles everything from Frida installationβ¦
Auto Frida is a powerful, all-in-one automation toolkit that handles everything from Frida installation to script injection. Zero manual setup required β just connect your device and start testing....
β€5π3
Mobile malware evolution in 2025
https://securelist.com/mobile-threat-report-2025/119076/
https://securelist.com/mobile-threat-report-2025/119076/
Securelist
The mobile threat landscape in 2025
Statistics on Android malware and the most notable mobile threats of 2025: preinstalled backdoors Keenadu and Triada, spyware Trojans, the Kimwolf IoT botnet, and Mamont banking Trojans.
π4