PixPirate: a new Brazilian Banking Trojan
https://www.cleafy.com/cleafy-labs/pixpirate-a-new-brazilian-banking-trojan
https://www.cleafy.com/cleafy-labs/pixpirate-a-new-brazilian-banking-trojan
Cleafy
PixPirate: a new Brazilian Banking Trojan | Cleafy LABS
Learn about PixPirate, the new Android banking trojan discovered by Cleafy TIR. This malware uses ATS to automate malicious money transfers via the Pix payment platform used by multiple Brazilian banks. Discover its features, including interception of bankingβ¦
π13
TgToxic Malwareβs Automated Framework Targets Southeast Asia Android Users
https://www.trendmicro.com/en_us/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html
https://www.trendmicro.com/en_us/research/23/b/tgtoxic-malware-targets-southeast-asia-android-users.html
Trend Micro
TgToxic Malwareβs Automated Framework Targets Southeast Asia Android Users
We look into an ongoing malware campaign we named TgToxic, targeting Android mobile users in Taiwan, Thailand, and Indonesia since July 2022. The malware steals usersβ credentials and assets such as cryptocurrency from digital wallets, as well as money fromβ¦
π12
A three day video course on Android Malware Analysis:
Day 1: https://youtube.com/watch?v=CwCOGf4Uunk
Day 2: https://youtube.com/watch?v=yZe8tGzm8nA
Day 3: https://youtube.com/watch?v=JdBu9yEu8g4
Day 1: https://youtube.com/watch?v=CwCOGf4Uunk
Day 2: https://youtube.com/watch?v=yZe8tGzm8nA
Day 3: https://youtube.com/watch?v=JdBu9yEu8g4
YouTube
A Course on Android Malware Analysis: Day 1 of 3
A Course on Android Malware Analysis
The ISTS and Google are pleased to offer a 3-day Zoom course on Android Malware Analysis on Sep 9, 10, 11 2020. For more information please visit ists.dartmouth.edu.
Wednesday, September 9, 2020
12:00pm β 6:00pm
Zoomβ¦
The ISTS and Google are pleased to offer a 3-day Zoom course on Android Malware Analysis on Sep 9, 10, 11 2020. For more information please visit ists.dartmouth.edu.
Wednesday, September 9, 2020
12:00pm β 6:00pm
Zoomβ¦
π29β€1
Testing MEDUSA Android dynamic instrumentation Tool for Android pentesting & malware analysis
https://youtu.be/4hpjRuNJNDw
https://youtu.be/4hpjRuNJNDw
YouTube
MEDUSA Android dynamic instrumentation Tool | Android Penetration tool | Android malware analysis
MEDUSA is an Extensible and Modularised framework that automates processes and techniques practiced during the dynamic analysis of Android Applications.
github : https://github.com/Ch0pin/medusa
Some of the MEDUSA's features include:
Tracing and instrumentationβ¦
github : https://github.com/Ch0pin/medusa
Some of the MEDUSA's features include:
Tracing and instrumentationβ¦
π18π4π₯3
Android OS Privacy Under the Loupe
We use a combination of static and dynamic code analysis techniques to study the data transmitted by the preinstalled system apps on Android smartphones from three of the most popular vendors in China.
https://arxiv.org/abs/2302.01890
We use a combination of static and dynamic code analysis techniques to study the data transmitted by the preinstalled system apps on Android smartphones from three of the most popular vendors in China.
https://arxiv.org/abs/2302.01890
π8π€4
Money Lover App Vulnerability Exposed Personal Info
The exposed data included email addresses, wallet names, and limited transaction data.
https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/money-lover-app-vulnerability-exposes-personal-info/
The exposed data included email addresses, wallet names, and limited transaction data.
https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/money-lover-app-vulnerability-exposes-personal-info/
Trustwave
Money Lover App Vulnerability Exposes Personal Info | Trustwave
An information disclosure vulnerability has been identified in Money Lover, a finance tracking application created by Finsify and available on Android, iOS, Microsoft Store, with a web interface.
π10π±1
Technical analysis of Godfather android malware
https://muha2xmad.github.io/malware-analysis/godfather/
https://muha2xmad.github.io/malware-analysis/godfather/
muha2xmad
Technical analysis of Godfather android malware
Ψ¨Ψ³Ω
Ψ§ΩΩΩ Ψ§ΩΨ±ΨΩ
Ω Ψ§ΩΨ±ΨΩΩ
π15β€2π₯2
Android Pentest 101
A list of Android Security materials and resources for pentesters and bug hunters
https://github.com/dn0m1n8tor/AndroidPentest101
A list of Android Security materials and resources for pentesters and bug hunters
https://github.com/dn0m1n8tor/AndroidPentest101
GitHub
GitHub - dn0m1n8tor/AndroidPentest101: The motive to build this repo is to help beginner to start learn Android Pentesting by providingβ¦
The motive to build this repo is to help beginner to start learn Android Pentesting by providing a roadmap. - dn0m1n8tor/AndroidPentest101
π39π₯2
Indian social media app Slick exposed childrensβ user data
https://techcrunch.com/2023/02/10/slick-social-media-app-data-exposed
https://techcrunch.com/2023/02/10/slick-social-media-app-data-exposed
TechCrunch
Indian social media app Slick exposed childrens' user data | TechCrunch
The emerging Indian social media app exposed a database of young users' private information, including school-going children.
π9π€¬5π₯1
Telegram: How a messenger turned into a cybercrime ecosystem by 2023
https://ke-la.com/wp-content/uploads/2023/02/KELA_Telegram_CEBIN.pdf
https://ke-la.com/wp-content/uploads/2023/02/KELA_Telegram_CEBIN.pdf
π12π€£6π₯±4
APT Bahamut Attacks Indian Intelligence Operative using Android Malware
https://www.cyfirma.com/outofband/apt-bahamut-attacks-indian-intelligence-operative-using-android-malware/
https://www.cyfirma.com/outofband/apt-bahamut-attacks-indian-intelligence-operative-using-android-malware/
CYFIRMA
APT Bahamut Attacks Indian Intelligence Operative using Android Malware - CYFIRMA
Executive Summary In November 2022, CYFIRMA detected a cyber-attack on an intelligence operative in India. In this attack, the threat...
π10π₯3
APKHunt - static code analysis tool for Android apps that is based on the OWASP MASVS framework
https://github.com/Cyber-Buddy/APKHunt
https://github.com/Cyber-Buddy/APKHunt
GitHub
GitHub - Cyber-Buddy/APKHunt: APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASPβ¦
APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security teste...
π14π1
1) CVE-2023-23529
Vulnerability in WebKit browser engine for iPhones and iPads once exploited could result in arbitrary code execution.
This zero-day flaw has been actively exploited in the wild.
2) CVE-2023-23514
An app may be able to execute arbitrary code with kernel privileges affecting iPhones and iPads.
https://support.apple.com/en-us/HT213635
Vulnerability in WebKit browser engine for iPhones and iPads once exploited could result in arbitrary code execution.
This zero-day flaw has been actively exploited in the wild.
2) CVE-2023-23514
An app may be able to execute arbitrary code with kernel privileges affecting iPhones and iPads.
https://support.apple.com/en-us/HT213635
Apple Support
About the security content of iOS 16.3.1 and iPadOS 16.3.1
This document describes the security content of iOS 16.3.1 and iPadOS 16.3.1.
π9π₯4β€1
SQL injection vulnerabilities in Owncloud Android app - CVE-2023-24804, CVE-2023-23948
The Owncloud Android app uses content providers to manage its data. The provider FileContentProvider has SQL injection vulnerabilities that allow malicious applications or users in the same device to obtain internal information of the app
https://securitylab.github.com/advisories/GHSL-2022-059_GHSL-2022-060_Owncloud_Android_app/
The Owncloud Android app uses content providers to manage its data. The provider FileContentProvider has SQL injection vulnerabilities that allow malicious applications or users in the same device to obtain internal information of the app
https://securitylab.github.com/advisories/GHSL-2022-059_GHSL-2022-060_Owncloud_Android_app/
GitHub Security Lab
GHSL-2022-059_GHSL-2022-060: SQL injection vulnerabilities in Owncloud Android app - CVE-2023-24804, CVE-2023-23948
The Owncloud Android app uses content providers to manage its data. The provider FileContentProvider has SQL injection vulnerabilities that allow malicious applications or users in the same device to obtain internal information of the app. The app also handlesβ¦
π9π’3
MediaTek Android information disclosure | CVE-2023-20606
By executing a specially-crafted application, an attacker could exploit this vulnerability to obtain sensitive information.
Affected Software Versions: Android 12.0, 12.1
https://www.redpacketsecurity.com/mediatek-android-information-disclosure-cve-2023-20606/
By executing a specially-crafted application, an attacker could exploit this vulnerability to obtain sensitive information.
Affected Software Versions: Android 12.0, 12.1
https://www.redpacketsecurity.com/mediatek-android-information-disclosure-cve-2023-20606/
RedPacket Security
MediaTek Android information disclosure | CVE-2023-20606 - RedPacket Security
NAME__________MediaTek Android information disclosure
π6π₯3
Inappropriate implementation in Full screen mode in Google Chrome on Android
It allowed a remote attacker to spoof the contents of the security UI via a crafted HTML page.
[$4000] - CVE-2023-0697
https://chromereleases.googleblog.com/2023/02/stable-channel-update-for-desktop.html
It allowed a remote attacker to spoof the contents of the security UI via a crafted HTML page.
[$4000] - CVE-2023-0697
https://chromereleases.googleblog.com/2023/02/stable-channel-update-for-desktop.html
Chrome Releases
Stable Channel Update for Desktop
The Chrome team is delighted to announce the promotion of Chrome 110 to the stable channel for Windows, Mac and Linux . This will roll out ...
π19π₯1π₯°1
Android Banker Deep Dive (Part 1)
Fully reverse engineering of a Android Banker trojan from start to finish
https://youtu.be/Vs9Z3NDnVT8
Fully reverse engineering of a Android Banker trojan from start to finish
https://youtu.be/Vs9Z3NDnVT8
YouTube
Android Banker Deep Dive (Part 1)
In this [RE]laxing new series, I fully reverse a difficult Android Banker trojan from start to finish.
These extensive "Deep Dive" segments concentrate on dissecting malware specimens and delving into the individual approaches employed to fully reverse them.β¦
These extensive "Deep Dive" segments concentrate on dissecting malware specimens and delving into the individual approaches employed to fully reverse them.β¦
π13π4π1
Embedding Frida in iOS TestFlight Apps
https://naehrdine.blogspot.com/2023/02/embedding-frida-in-ios-testflight-apps.html
https://naehrdine.blogspot.com/2023/02/embedding-frida-in-ios-testflight-apps.html
Blogspot
Embedding Frida in iOS TestFlight Apps
Wireless and firmware hacking, PhD life, Technology
π14
Re-Exploiting Huawei Recovery With FaultyUSB
FaultyUSB: exploiting a TOCTOU race condition bug in recovery to get root on Huawei devices by emulating a malicious USB flash drive
https://labs.taszk.io/articles/post/reunzip/
FaultyUSB: exploiting a TOCTOU race condition bug in recovery to get root on Huawei devices by emulating a malicious USB flash drive
https://labs.taszk.io/articles/post/reunzip/
labs.taszk.io
[BugTales] REUnziP: Re-Exploiting Huawei Recovery With FaultyUSB
Huawei Recovery Update Zip ToC-ToU Vulnerability
π₯11π3
[new version] OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS
https://github.com/OWASP/igoat-swift
https://github.com/OWASP/igoat-swift
GitHub
GitHub - OWASP/iGoat-Swift: OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS
OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS - OWASP/iGoat-Swift
π12
Resource for Android static analysis and vulnerability assessment
Tutorials, tools, and resources for identifying and mitigating security vulnerabilities in Android applications
https://github.com/krizzsk/HackersCave4StaticAndroidSec
Tutorials, tools, and resources for identifying and mitigating security vulnerabilities in Android applications
https://github.com/krizzsk/HackersCave4StaticAndroidSec
GitHub
GitHub - krizzsk/HackersCave4StaticAndroidSec: A comprehensive resource for Android static analysis and vulnerability assessment.β¦
A comprehensive resource for Android static analysis and vulnerability assessment. Tutorials, tools, and resources for identifying and mitigating security vulnerabilities in Android applications. -...
π13π1