Android Security Bulletin—January 2026Stay organized with collectionsSave and categorize content based on your preferences.

This Android Security Bulletin contains details of security vulnerabilities that affect Android devices. Security patch levels of 2026-01-05 or later address all of these issues. To learn how to check a device's security patch level, see Check and update your Android version. Within 48 hours afte...

How to Protect Your iPhone or Android Device From Spyware

Being targeted by sophisticated spyware is relatively rare, but experts say that everyone needs to stay vigilant as this dangerous malware continues to proliferate worldwide...

The Kimwolf Botnet is Stalking Your Local Network

The story you are reading is a series of scoops nestled inside a far more urgent Internet-wide security advisory. The vulnerability at issue has been exploited for months already, and it's time for a broader awareness of the threat. The short version is that everything you thought you knew about...

PT-2026-26510

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 146.0.7680.153 Description A flaw exists in the WebGL component of Google Chrome on Android that could allow a remote attacker to potentially escape the sandbox through a specially crafted HTML page. The issue...

EUVD-2025-206056

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in nebelhorn Blappsta Mobile App Plugin & Your native, mobile iPhone App and Android App allows Reflected XSS.This issue affects Blappsta Mobile App Plugin Your native, mobile iPhone App and Android...

CVE-2025-50053

CVE-2025-50053 affects the WordPress Blappsta Mobile App Plugin and related native mobile apps (iPhone/Android) up to version 0.8.8.8. The issue is a Reflected Cross-Site Scripting (XSS) flaw caused by improper input neutralization during web page generation, enabling injected scripts in pages vi...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-993011)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993011 advisory. In the Linux kernel, the following vulnerability has been resolved: android: binder: stop saving a pointer to the VMA Do not record a pointer to a VMA outside of the...

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Google Android

Khora Exploit Framework v2.0 ============================ Mod...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992285)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992285 advisory. In the Linux kernel, the following vulnerability has been resolved: android: binder: stop saving a pointer to the VMA Do not record a pointer to a VMA outside of the...

⚡ Weekly Recap: MongoDB Attacks, Wallet Breaches, Android Spyware, Insider Crime & More

Last week's cyber news in 2025 was not about one big incident. It was about many small cracks opening at the same time. Tools people trust every day behave in unexpected ways. Old flaws resurfaced. New ones were used almost immediately. A common theme ran through it all in 2025. Attackers moved...

Malware in 2025 spread far beyond Windows PCs

This blog is part of a series highlighting new and concerning trends we noticed over the last year. Trends matter because they almost always provide a good indication of what 's coming next. If there’s one thing that became very clear in 2025, it’s that malware is no longer focused on Windows...

CVE-2025-57840

ADBAndroid Debug Bridge is affected by type privilege bypass, successful exploitation of this vulnerability may affect service availability...

CVE-2022-50778

In the Linux kernel, the following vulnerability has been resolved: fortify: Fix compiletimestrlen under UBSANBOUNDSLOCAL With CONFIGFORTIFY=y and CONFIGUBSANLOCALBOUNDS=y enabled, we observe a runtime panic while running Android's Compatibility Test Suite's CTS android.hardware.input.cts.tests...

CVE-2025-57840

ADBAndroid Debug Bridge is affected by type privilege bypass, successful exploitation of this vulnerability may affect service availability...

CVE-2025-57840 Privilege Bypass in ADB

ADBAndroid Debug Bridge is affected by type privilege bypass, successful exploitation of this vulnerability may affect service availability...

EUVD-2025-205061

ADBAndroid Debug Bridge is affected by type privilege bypass, successful exploitation of this vulnerability may affect service availability...

CVE-2025-57840 Privilege Bypass in ADB

ADBAndroid Debug Bridge is affected by type privilege bypass, successful exploitation of this vulnerability may affect service availability...

CVE-2025-57840

CVE-2025-57840 affects ADB (Android Debug Bridge). The root cause is a type privilege bypass in ADB, with potential impact on service availability. Documented data lists a low CVSS v3.1 score (2.2, Local exploit, High complexity, Low privileges required, User interaction required) but no concrete...

LLM-Driven Feature-Level Adversarial Attacks on Android Malware Detectors

The rapid growth in both the scale and complexity of Android malware has driven the widespread adoption of machine learning ML techniques for scalable and accurate malware detection. Despite their effectiveness, these models remain vulnerable to adversarial attacks that introduce carefully crafte...

PT-2025-52871

Name of the Vulnerable Software and Affected Versions ADB Android Debug Bridge affected versions not specified Description ADB Android Debug Bridge is susceptible to a type privilege bypass issue. Successful exploitation of this issue could lead to service availability problems. Recommendations A...