PT-2026-6005

Name of the Vulnerable Software and Affected Versions Android VPU driver versions prior to the February 2026 security patch Description The issue resides within the vpu ioctl function, specifically in the vpu mmap component. A missing bounds check allows for a potential arbitrary address mapping...

EUVD-2022-25649

Malicious code in bioql PyPI...

EUVD-2022-35902

Malicious code in bioql PyPI...

EUVD-2022-35972

Malicious code in bioql PyPI...

Update your browser: Security fix for Chrome zero-day CVE-2025-10585

News, Security Update your browser: Security fix for Chrome zero-day CVE-2025-10585 Share September 18th, 2025 Hi everyone! The latest patches to Opera, Opera GX, Opera Air, and Opera for Android address several recent vulnerabilities, including a zero-day exploit CVE-2025-10585. We recommend...

Update your browser: Security fix for Chrome zero-day CVE-2025-6554

News, Security Update your browser: Security fix for Chrome zero-day CVE-2025-6554 Share July 3rd, 2025 Hi everyone! The latest patches to the Opera, Opera GX, Opera Air, and Opera for Android address several recent vulnerabilities, including a zero-day exploit CVE-2025-6554. We recommend updatin...

CVE-2019-8632

Some analytics data was sent using HTTP rather than HTTPS. This was addressed by no longer sending this analytics data. This issue is fixed in Texture 5.11.10 for iOS, Texture 4.22.0.4 for Android. An attacker in a privileged network position may be able to intercept analytics data...

Update ASAP: Google Fixes Android Flaw (CVE-2025-27363) Exploited by Attackers

Google has released its monthly security updates for Android with fixes for 46 security flaws, including one vulnerability that it said has been exploited in the wild. The vulnerability in question is CVE-2025-27363 CVSS score: 8.1, a high-severity flaw in the System component that could lead to...

Google Releases Android Update to Patch Two Actively Exploited Vulnerabilities

Google has shipped patches for 62 vulnerabilities, two of which it said have been exploited in the wild. The two high-severity vulnerabilities are listed below - CVE-2024-53150 CVSS score: 7.8 - An out-of-bounds flaw in the USB sub-component of Kernel that could result in information disclosure...

Pixel Watch Security Bulletin—January 2026Stay organized with collectionsSave and categorize content based on your preferences.

The Pixel Watch Security Bulletin contains details of security vulnerabilities affecting Pixel Watch devices Google Devices. For Google devices, security patch levels of 2026-01-01 or later address all issues in this bulletin and all issues in the January 2026 Android Security Bulletin and all...

A week in security (November 4 – November 10)

Last week on Malwarebytes Labs: Hello again, FakeBat: popular loader returns after months-long hiatus TikTok ordered to close Canada offices following "national security review" Air fryers are the latest surveillance threat you didn’t consider Malwarebytes acquires AzireVPN to fuel additional VPN...

PT-2025-28385 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions prior to 15 Description: The issue concerns an out-of-bounds write in the handling of macro blocks for the MPEG4 codec in the libsavsvc.so library. This allows local attackers to write out-of-bounds memory. Recommendations: F...

PT-2024-5907 · Google +4 · Google Chrome +4

Name of the Vulnerable Software and Affected Versions: Google Chrome on Android versions prior to 128.0.6613.84 Microsoft Edge affected versions not specified Description: The issue is related to a use-after-free vulnerability in the Passwords component, which could allow a remote attacker to...

Widespread Use of Rafel RAT Puts 3.9 Billion Android Devices at Risk

The new Rafel RAT is an Android malware capable of stealing data, spy on you, and even lock your phone. Keep your Android updated, download apps safely, and avoid phishing attacks to stay secure...

Minor update(4) for Vivaldi Android Browser 6.7

Head to the Google Play Store and download the browser. Alternatively, you can download Vivaldi from Uptodown, the Android app store. Your rating for our browser matters. ⭐️ ⭐️ ⭐️ ⭐️ ⭐️ Enjoy! Changelog The following is a list of changes since the third 6.7 stable, minor update: Upgraded to...

PT-2023-21688 · Unknown · Newspicks App

Name of the Vulnerable Software and Affected Versions: NewsPicks App for Android versions 10.4.5 and earlier NewsPicks App for iOS versions 10.4.2 and earlier Description: The issue is related to hard-coded credentials in the NewsPicks App, which may allow a local attacker to analyze data in the...

CVE-2022-32906

This issue was addressed with using HTTPS when sending information over the network. This issue is fixed in Apple Music 3.9.10 for Android. A user in a privileged network position may intercept SSL/TLS connections...

PT-2022-25107 · Google · Persona Manager

Name of the Vulnerable Software and Affected Versions: Persona Manager versions prior to Android T13 Description: The issue allows a local attacker to access user profiles information due to exposure of sensitive information to an unauthorized actor. Recommendations: For versions prior to Android...

Hacker Rewarded $70,000 for Finding Way to Bypass Google Pixel Phones' Lock Screens

Google has resolved a high-severity security issue affecting all Pixel smartphones that could be trivially exploited to unlock the devices. The vulnerability, tracked as CVE-2022-20465 and reported by security researcher David Schütz in June 2022, was remediated as part of the search giant's...

PT-2022-14508 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: In Bluetooth, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interactio...