CVE-2026-11275

Inappropriate implementation in Page Info in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

A week in security (March 2 – March 8)

Last week on Malwarebytes Labs: One click on this fake Google Meet update can give attackers control of your PC Beware of fake OpenClaw installers, even if Bing points you to GitHub Fake CleanMyMac site installs SHub Stealer and backdoors crypto wallets Windows File Shredder: When deleting a file...

EUVD-2020-4922

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2016-3830

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - codecs/aacdec/SoftAAC2.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 allow...

CVE-2025-36896

WLAN in Android before 2025-09-05 on Google Pixel devices allows elevation of privilege, aka A-394765106...

PT-2025-35311

Name of the Vulnerable Software and Affected Versions: Transbyte Scooper News App versions up to 1.2 Description: A flaw exists in Transbyte Scooper News App up to version 1.2 on Android, related to improper export of android application components due to manipulation of the AndroidManifest.xml...

Google Android 输入验证错误漏洞

Google Android is a Linux-based open source operating system from Google Inc. in the United States. A security vulnerability exists in Google Android, which stems from a missing size check in the PVRSRVBridgeRGXKickRS of the PowerVR kernel driver component means that an integer overflow allowing...

Google Pixel 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that stems from a proxy obfuscation issue. An attacker can exploit the vulnerability to escalate privileges...

CVE-2022-23835

The Visual Voice Mail VVM application through 2022-02-24 for Android allows persistent access if an attacker temporarily controls an application that has the READSMS permission, and reads an IMAP credentialing message that is by design not displayed to the victim within the AOSP SMS/MMS messaging...

Google Android 信息泄露漏洞

Google Android is a Linux-based open source operating system from Google, Inc. Google Android is vulnerable to an information disclosure vulnerability that could be exploited by unauthorized attackers to obtain sensitive information about affected components...

DEBIAN-CVE-2021-38000

Insufficient validation of untrusted input in Intents in Google Chrome on Android prior to 95.0.4638.69 allowed a remote attacker to arbitrarily browser to a malicious URL via a crafted HTML page...

Facebook Messenger Bug Lets Hackers Listen to You Before You Pick Up the Call

Facebook has patched a bug in its widely installed Messenger app for Android that could have allowed a remote attacker to call unsuspecting targets and listen to them before even they picked up the audio call. The flaw was discovered and reported to Facebook by Natalie Silvanovich of Google's...

DEBIAN-CVE-2019-13707

Insufficient validation of untrusted input in intents in Google Chrome on Android prior to 78.0.3904.70 allowed a local attacker to leak files via a crafted application...

January 22, 2017 – Morning Cyber Coffee Headlines – “NFL” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! January 22, 2018 - Headlines Carbon Black in the News: Strategic Cyber Ventures...

January 22, 2018 – Morning Cyber Coffee Headlines – “NFL” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! January 22, 2018 - Headlines Carbon Black in the News: Strategic Cyber Ventures...

THN Weekly Roundup — Top 10 Stories You Should Not Miss

Here we are with our weekly roundup, briefing this week's top cybersecurity threats, incidents, and challenges, just in case you missed any of them. Last week has been very short with big news from the theft of over 4,700 Bitcoins from the largest cryptocurrency mining marketplace to the discover...

Bluetooth Hack Affects 20 Million Amazon Echo and Google Home Devices

Remember BlueBorne? A series of recently disclosed critical Bluetooth flaws that affect billions of Android, iOS, Windows and Linux devices have now been discovered in millions of AI-based voice-activated personal assistants, including Google Home and Amazon Echo. As estimated during the discover...

The vulnerability of the Mediaserver application in the Android operating system allows a hacker to cause a service failure, freeze the device, and force it to restart.

The vulnerability of the Mediaserver application in the Android operating system is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to cause service failures, device freezes, and reboots by using a specially created file...

The vulnerability of the Android operating system, which allows a hacker to obtain extended privileges

The vulnerability of the Android operating system lies in the fact that when a secure application based on Qualcomm Secure Execution Environment receives a memory cell address, it does not undergo verification to ensure that the address belongs to the user’s memory space, rather than the kernel’s...

The vulnerability of the Android operating system, which allows a hacker to execute an application with privileges of the current user

The vulnerability of the NVIDIA GPU operating system for Android is related to deficiencies in access control for certain functions. Exploiting this vulnerability allows a malicious actor to execute an application with privileges of the current user...