PT-2026-1549

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 143.0.7499.192 Description Insufficient policy enforcement in the WebView tag allows a remote attacker to inject scripts or HTML into privileged pages via a crafted Chrome extension. This issue can be exploited ...

Kimwolf Android Botnet Infects Over 2 Million Devices via Exposed ADB and Proxy Networks

The botnet known as Kimwolf has infected more than 2 million Android devices by tunneling through residential proxy networks, according to findings from Synthient. "Key actors involved in the Kimwolf botnet are observed monetizing the botnet through app installs, selling residential proxy...

Android XR Bulletin—February 2026Stay organized with collectionsSave and categorize content based on your preferences.

XR is releasing a set of patches as part of our Android Security Bulletin Monthly Release process. Review the Security bulletin FAQ article for more details about the security updates and instructions to validate the integrity of the supplied patches. The XR Security Bulletin contains details of...

Android Security Bulletin—January 2026Stay organized with collectionsSave and categorize content based on your preferences.

This Android Security Bulletin contains details of security vulnerabilities that affect Android devices. Security patch levels of 2026-01-05 or later address all of these issues. To learn how to check a device's security patch level, see Check and update your Android version. Within 48 hours afte...

How to Protect Your iPhone or Android Device From Spyware

Being targeted by sophisticated spyware is relatively rare, but experts say that everyone needs to stay vigilant as this dangerous malware continues to proliferate worldwide...

The Kimwolf Botnet is Stalking Your Local Network

The story you are reading is a series of scoops nestled inside a far more urgent Internet-wide security advisory. The vulnerability at issue has been exploited for months already, and it's time for a broader awareness of the threat. The short version is that everything you thought you knew about...

PT-2026-26510

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 146.0.7680.153 Description A flaw exists in the WebGL component of Google Chrome on Android that could allow a remote attacker to potentially escape the sandbox through a specially crafted HTML page. The issue...

EUVD-2025-206056

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in nebelhorn Blappsta Mobile App Plugin & Your native, mobile iPhone App and Android App allows Reflected XSS.This issue affects Blappsta Mobile App Plugin Your native, mobile iPhone App and Android...

CVE-2025-50053

CVE-2025-50053 affects the WordPress Blappsta Mobile App Plugin and related native mobile apps (iPhone/Android) up to version 0.8.8.8. The issue is a Reflected Cross-Site Scripting (XSS) flaw caused by improper input neutralization during web page generation, enabling injected scripts in pages vi...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-993011)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993011 advisory. In the Linux kernel, the following vulnerability has been resolved: android: binder: stop saving a pointer to the VMA Do not record a pointer to a VMA outside of the...

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Google Android

Khora Exploit Framework v2.0 ============================ Mod...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992285)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992285 advisory. In the Linux kernel, the following vulnerability has been resolved: android: binder: stop saving a pointer to the VMA Do not record a pointer to a VMA outside of the...

⚡ Weekly Recap: MongoDB Attacks, Wallet Breaches, Android Spyware, Insider Crime & More

Last week's cyber news in 2025 was not about one big incident. It was about many small cracks opening at the same time. Tools people trust every day behave in unexpected ways. Old flaws resurfaced. New ones were used almost immediately. A common theme ran through it all in 2025. Attackers moved...

Malware in 2025 spread far beyond Windows PCs

This blog is part of a series highlighting new and concerning trends we noticed over the last year. Trends matter because they almost always provide a good indication of what 's coming next. If there’s one thing that became very clear in 2025, it’s that malware is no longer focused on Windows...

CVE-2025-57840

ADBAndroid Debug Bridge is affected by type privilege bypass, successful exploitation of this vulnerability may affect service availability...

CVE-2022-50778

In the Linux kernel, the following vulnerability has been resolved: fortify: Fix compiletimestrlen under UBSANBOUNDSLOCAL With CONFIGFORTIFY=y and CONFIGUBSANLOCALBOUNDS=y enabled, we observe a runtime panic while running Android's Compatibility Test Suite's CTS android.hardware.input.cts.tests...

CVE-2025-57840

ADBAndroid Debug Bridge is affected by type privilege bypass, successful exploitation of this vulnerability may affect service availability...

CVE-2025-57840 Privilege Bypass in ADB

ADBAndroid Debug Bridge is affected by type privilege bypass, successful exploitation of this vulnerability may affect service availability...

EUVD-2025-205061

ADBAndroid Debug Bridge is affected by type privilege bypass, successful exploitation of this vulnerability may affect service availability...

CVE-2025-57840

CVE-2025-57840 affects ADB (Android Debug Bridge). The root cause is a type privilege bypass in ADB, with potential impact on service availability. Documented data lists a low CVSS v3.1 score (2.2, Local exploit, High complexity, Low privileges required, User interaction required) but no concrete...