PT-2026-3764

GitHub - canyie/CVE-2024-23700: PoC for CVE-2024-23700, privilege escalation allows silently obtain permissions to read/write contacts, SMS, calendar, call log and voicemail, make outgoing calls or answer incoming calls, manipulate call settings, access https://t.co/CCm7jUKWw6...

CVE-2018-14066

The content://wappush content provider in com.android.provider.telephony, as found in some custom ROMs for Android phones, allows SQL injection. One consequence is that an application without the READSMS permission can read SMS messages. This affects Infinix X571 phones, as well as various Lenovo...

EUVD-2018-5988

Malware in sbrugna...

EUVD-2011-4690

Malware in sbrugna...

New Android Malware 'FluHorse' Targeting East Asian Markets with Deceptive Tactics

Various sectors in East Asian markets have been subjected to a new email phishing campaign that distributes a previously undocumented strain of Android malware called FluHorse that abuses the Flutter software development framework. "The malware features several malicious Android applications that...

Modified Version of WhatsApp for Android Spotted Installing Triada Trojan

A modified version of the WhatsApp messaging app for Android has been trojanized to intercept text messages, serve malicious payloads, display full-screen ads, and sign up device owners for unwanted premium subscriptions without their knowledge. "The Trojan Triada snuck into one of these modified...

From Now On, Only Default Android Apps Can Access Call Log and SMS Data

A few hours ago the company announced its "non-shocking" plans to shut down Google+ social media network following a "shocking" data breach incident. Now to prevent abuse and potential leakage of sensitive data to third-party app developers, Google has made several significant changes giving user...

CVE-2018-14066

The content://wappush content provider in com.android.provider.telephony, as found in some custom ROMs for Android phones, allows SQL injection. One consequence is that an application without the READSMS permission can read SMS messages. This affects Infinix X571 phones, as well as various Lenovo...

Apple iOS v10.3 - UI SMS Access Permission Vulnerability

Document Title: =============== Apple iOS v10.3 - UI SMS Access Permission Vulnerability References: =========== https://www.vulnerability-lab.com/getcontent.php?id=2079 Video: https://www.youtube.com/watch?v=jePRogkoon8 Advisory: https://www.vulnerability-lab.com/getcontent.php?id=2078...

Apple iOS v10.3 - UI SMS Access Permission Vulnerability

Document Title: =============== Apple iOS v10.3 - UI SMS Access Permission Vulnerability References: =========== https://www.vulnerability-lab.com/getcontent.php?id=2079 Video: https://www.youtube.com/watch?v=jePRogkoon8 Advisory: https://www.vulnerability-lab.com/getcontent.php?id=2078...

How to access Twitter in Turkey - #TwitterisBlockedinTurkey

Twitter, the biggest Social Media platform used for vital communication is now banned in Turkey from the last few days, after Prime Minister Recep Tayyip Erdoğan promised to root out the social media service during an election rally this week with the help of a court order. “Twitter and so on, we...

CVE-2008-4230

The Passcode Lock feature in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 displays SMS messages when the emergency-call screen is visible, which allows physically proximate attackers to obtain sensitive information by reading these messages. NOTE: this might be a...