#mobile-security — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #mobile-security, aggregated by home.social.
-
Android's new Advanced Protection Mode includes Intrusion Logging, a feature designed specifically to capture events relevant to security and related to possible intrusions, with the explicit goal of enabling consensual forensic analysis. This new feature is poised to significantly improve the ability of civil society investigators to identify and investigate sophisticated attacks on Android. https://securitylab.amnesty.org/latest/2026/05/android-intrusion-logging-as-a-new-source-of-data-for-consensual-forensic-analysis/ #mobilesecurity
-
Android's new Advanced Protection Mode includes Intrusion Logging, a feature designed specifically to capture events relevant to security and related to possible intrusions, with the explicit goal of enabling consensual forensic analysis. This new feature is poised to significantly improve the ability of civil society investigators to identify and investigate sophisticated attacks on Android. https://securitylab.amnesty.org/latest/2026/05/android-intrusion-logging-as-a-new-source-of-data-for-consensual-forensic-analysis/ #mobilesecurity
-
Luma is here!
This week at the inaugural @owasp MAScon in Vienna, NowSecure security researcher @oleavr unveiled Luma: the official #Frida GUI. Persistent sessions, an interactive REPL, frida-trace, and real-time collaborative editing, all in one native app across macOS, iOS, Linux, and Windows.
Luma is free and open source. NowSecure is proud to sponsor the project and contribute engineering resources to its development.
Huge congratulations to @oleavr and the entire Frida team on an incredible launch and what this release represents for the community: https://loom.ly/KRIF_LI
#Luma #ReverseEngineering #MobileSecurity #DeveloperTools #OpenSource #NowSecure #OWASPMAScon
-
Luma is here!
This week at the inaugural @owasp MAScon in Vienna, NowSecure security researcher @oleavr unveiled Luma: the official #Frida GUI. Persistent sessions, an interactive REPL, frida-trace, and real-time collaborative editing, all in one native app across macOS, iOS, Linux, and Windows.
Luma is free and open source. NowSecure is proud to sponsor the project and contribute engineering resources to its development.
Huge congratulations to @oleavr and the entire Frida team on an incredible launch and what this release represents for the community: https://loom.ly/KRIF_LI
#Luma #ReverseEngineering #MobileSecurity #DeveloperTools #OpenSource #NowSecure #OWASPMAScon
-
Your phone is the primary target for modern hackers. It holds more sensitive data than your laptop, so stop treating it like a secondary device. Time to lock down your mobile perimeter before you become the next statistic. 🛡️💻
-
Your phone is the primary target for modern hackers. It holds more sensitive data than your laptop, so stop treating it like a secondary device. Time to lock down your mobile perimeter before you become the next statistic. 🛡️💻
-
FCC proposal would require telecoms to collect government ID, name, and address for all mobile customers under “Know-Your-Customer” rules. 📵
Privacy advocates warn it could effectively end anonymous “burner phones,” increasing risks for journalists, survivors, and marginalized users. 🔐🔗 https://www.cnet.com/news/privacy/if-the-fcc-bans-burner-phones-it-could-be-a-privacy-nightmare/
#TechNews #FCC #Privacy #Surveillance #Telecom #DigitalRights #CyberSecurity #DataPrivacy #CivilLiberties #Encryption #Policy #MobileSecurity #Mobile #USA #US #Trump
-
FCC proposal would require telecoms to collect government ID, name, and address for all mobile customers under “Know-Your-Customer” rules. 📵
Privacy advocates warn it could effectively end anonymous “burner phones,” increasing risks for journalists, survivors, and marginalized users. 🔐🔗 https://www.cnet.com/news/privacy/if-the-fcc-bans-burner-phones-it-could-be-a-privacy-nightmare/
#TechNews #FCC #Privacy #Surveillance #Telecom #DigitalRights #CyberSecurity #DataPrivacy #CivilLiberties #Encryption #Policy #MobileSecurity #Mobile #USA #US #Trump
-
GrapheneOS notes Android 17 “sort of” support, reflecting early compatibility work rather than a fully stable rollout across devices. 📱
It tracks Android 17 privacy upgrades like stronger permissions and encryption while maintaining its hardened AOSP-based security model. 🔐#TechNews #GrapheneOS #Android #Privacy #Security #OpenSource #FOSS #Mobile #MobileSecurity #Encryption #AOSP #CyberSecurity #DataProtection #Linux #UserPrivacy
-
GrapheneOS notes Android 17 “sort of” support, reflecting early compatibility work rather than a fully stable rollout across devices. 📱
It tracks Android 17 privacy upgrades like stronger permissions and encryption while maintaining its hardened AOSP-based security model. 🔐#TechNews #GrapheneOS #Android #Privacy #Security #OpenSource #FOSS #Mobile #MobileSecurity #Encryption #AOSP #CyberSecurity #DataProtection #Linux #UserPrivacy
-
Fileless RCE on stock Android (~2.5B devices). Reported to Google VRP, confirmed by their own engineering team, closed as NSBC anyway.
#AndroidSecurity #infosec #Android #MobileSecurity #VulnerabilityResearch #RCE #BugBounty #VRP #ResponsibleDisclosure #AppSec #ThreatIntel #WebView #ZeroDay #CVE
-
Looking forward to #OWASP Global AppSec EU and the inaugural #MAScon next week. Excited for the opportunity to learn from researchers and practitioners who are pushing mobile security forward.
Check out some of the sessions: https://loom.ly/qC3L65o
@owasp #OWASPGlobalAppSec #MobileApps #MobileSecurity #SecurityResearch
-
Looking forward to #OWASP Global AppSec EU and the inaugural #MAScon next week. Excited for the opportunity to learn from researchers and practitioners who are pushing mobile security forward.
Check out some of the sessions: https://loom.ly/qC3L65o
@owasp #OWASPGlobalAppSec #MobileApps #MobileSecurity #SecurityResearch
-
Google is rolling out a new opt-in feature in Android that aims to help security researchers investigate spyware attacks. The feature is called “Intrusion Logging” and is part of Android’s Advanced Protection Mode, which Google launched last year.. Advanced Protection Mode is designed to counter government spyware attacks and police forensic devices that try to extract data from a person’s phone. https://techcrunch.com/2026/05/12/google-launches-new-android-security-feature-to-help-uncover-spyware-attacks/ #mobilesecurity
-
Google is rolling out a new opt-in feature in Android that aims to help security researchers investigate spyware attacks. The feature is called “Intrusion Logging” and is part of Android’s Advanced Protection Mode, which Google launched last year.. Advanced Protection Mode is designed to counter government spyware attacks and police forensic devices that try to extract data from a person’s phone. https://techcrunch.com/2026/05/12/google-launches-new-android-security-feature-to-help-uncover-spyware-attacks/ #mobilesecurity
-
🚨 CRITICAL: CVE-2026-48745 in traccar-client <=9.7.19 allows silent GPS data redirection via crafted deep links — no user prompt, persists after restart. Update to 9.7.20 now! https://radar.offseq.com/threat/cve-2026-48745-cwe-940-improper-verification-of-so-6b0c4b37 #OffSeq #Infosec #MobileSecurity #CVE202648745
-
Users worried their phone has a virus get a quick guide: signs, checks, cleanup, and prevention. Rapid battery drain, unknown apps, pop-ups, data spikes — act fast. Read more: https://proton.me/blog/phone-virus 🔍📱🛡️ #MobileSecurity #CyberSafety #Android #iPhone
-
Users worried their phone has a virus get a quick guide: signs, checks, cleanup, and prevention. Rapid battery drain, unknown apps, pop-ups, data spikes — act fast. Read more: https://proton.me/blog/phone-virus 🔍📱🛡️ #MobileSecurity #CyberSafety #Android #iPhone
-
I was tired of digging through endless random cybersecurity lists, so naturally I built another random cybersecurity list - just cleaner, prettier and actually organized.
Hack Hub is a curated directory of useful security resources.
#CyberSecurity #InfoSec #Hacking #EthicalHacking #Pentesting #RedTeam #BlueTeam #DFIR #OSINT #ThreatIntel #MalwareAnalysis #BugBounty #CloudSecurity #MobileSecurity #OpenSource #SecurityTools #SecurityResearch #Linux #Hackers #Tech
-
I was tired of digging through endless random cybersecurity lists, so naturally I built another random cybersecurity list - just cleaner, prettier and actually organized.
Hack Hub is a curated directory of useful security resources.
#CyberSecurity #InfoSec #Hacking #EthicalHacking #Pentesting #RedTeam #BlueTeam #DFIR #OSINT #ThreatIntel #MalwareAnalysis #BugBounty #CloudSecurity #MobileSecurity #OpenSource #SecurityTools #SecurityResearch #Linux #Hackers #Tech
-
Mobile apps are not “just apps” anymore!
They’re connected platforms handling identities, payments, sessions, APIs, and critical business workflows.
In this special episode of @sharedsecurity I talked with Joel DeStefano, Senior Product Manager at Guardsquare, about the modern mobile application threat landscape and why organizations need to rethink mobile app security.
We covered runtime manipulation, API abuse, account takeover, fake apps, overlays, reverse engineering, iOS vs Android risk, AI-assisted attacks, and why backend-only security is not enough.
Learn more about Guardsquare:https://guardsquare.com
Watch on YouTube:
https://youtu.be/C5eWp9IB30UListen wherever you like to get your podcasts:
https://sharedsecurity.net/2026/06/10/mobile-application-security-what-every-organization-needs-to-know/ -
Mobile apps are not “just apps” anymore!
They’re connected platforms handling identities, payments, sessions, APIs, and critical business workflows.
In this special episode of @sharedsecurity I talked with Joel DeStefano, Senior Product Manager at Guardsquare, about the modern mobile application threat landscape and why organizations need to rethink mobile app security.
We covered runtime manipulation, API abuse, account takeover, fake apps, overlays, reverse engineering, iOS vs Android risk, AI-assisted attacks, and why backend-only security is not enough.
Learn more about Guardsquare:https://guardsquare.com
Watch on YouTube:
https://youtu.be/C5eWp9IB30UListen wherever you like to get your podcasts:
https://sharedsecurity.net/2026/06/10/mobile-application-security-what-every-organization-needs-to-know/ -
📰 Mobile Banking Malware Surges 360% as Sophisticated Trojans Target 1,243 Financial Brands
📱 Mobile banking is under siege! Attacks are up 3.6x, with new trojans like Sturnus using 'blackout' modes to steal money while your screen is off. 1,243 financial brands are being targeted globally. 💸 #MobileSecurity #Malware #Banking
🌐 cyber[.]netsecops[.]io
-
Reverse engineered the Mintegral MBridge SDK (common in gaming APKs with aggressive adv).
The SDK assembles exfiltration endpoints at runtime via AES/XOR decryption + Android IPC Intents. No hardcoded domain in the binary. MobSF classifies the package as Advertisement and stops there. Knox and Play Protect see legitimate inter-process communication between signed components — nothing to flag.
Extracted 6 C2/collection domains. Loaded them into AegisDNS as a SIGINT feed.
Both Knox and Play Protect: no block, no alert.
AegisDNS: all 6 blocked at resolution.
The IPC obfuscation chain is effective against every on-device analysis layer. It stops at port 53 — the one operation the OS cannot perform inside the obfuscation boundary.
Full write-up with architecture, the structural argument for perimeter DNS vs MTD, and operational trade-offs (block rate, DoH bypass mitigation via iptables, PCRE2/FFI trade-off): -
Reverse engineered the Mintegral MBridge SDK (common in gaming APKs with aggressive adv).
The SDK assembles exfiltration endpoints at runtime via AES/XOR decryption + Android IPC Intents. No hardcoded domain in the binary. MobSF classifies the package as Advertisement and stops there. Knox and Play Protect see legitimate inter-process communication between signed components — nothing to flag.
Extracted 6 C2/collection domains. Loaded them into AegisDNS as a SIGINT feed.
Both Knox and Play Protect: no block, no alert.
AegisDNS: all 6 blocked at resolution.
The IPC obfuscation chain is effective against every on-device analysis layer. It stops at port 53 — the one operation the OS cannot perform inside the obfuscation boundary.
Full write-up with architecture, the structural argument for perimeter DNS vs MTD, and operational trade-offs (block rate, DoH bypass mitigation via iptables, PCRE2/FFI trade-off): -
Prywatność i cyberbezpieczeństwo to nie są hobbystyczne fanaberie dla ludzi w foliowych czapeczkach. Skompromitowane urządzenie mobilne to bezpośrednie zagrożenie dla Twojego życia osobistego, finansów i spokoju psychicznego.
Właśnie ruszyłem ze swoim blogiem, a to mój pierwszy wpis:
🔗 https://meridian.bearblog.dev/droga_do_grapheneos/Opisuję w nim historię z ukrytym korporacyjnym MDM na moim telefonie i to, jak techniki Incident Response oraz przejście na GrapheneOS pozwoliły mi odzyskać kontrolę.
To mój debiut, dlatego bardzo zależy mi na Waszym feedbacku. Co myślicie o tym tekście? Dajcie znać w komentarzach, czy taka tematyka Was interesuje i czy chcecie kolejne wpisy o konfiguracji i hardeningu GrapheneOS! 🛡️📱
#GrapheneOS #Cybersecurity #Privacy #Prywatnosc #Bezpieczenstwo #FOSS #MobileSecurity #PlFediverse #Blog
-
Prywatność i cyberbezpieczeństwo to nie są hobbystyczne fanaberie dla ludzi w foliowych czapeczkach. Skompromitowane urządzenie mobilne to bezpośrednie zagrożenie dla Twojego życia osobistego, finansów i spokoju psychicznego.
Właśnie ruszyłem ze swoim blogiem, a to mój pierwszy wpis:
🔗 https://meridian.bearblog.dev/droga_do_grapheneos/Opisuję w nim historię z ukrytym korporacyjnym MDM na moim telefonie i to, jak techniki Incident Response oraz przejście na GrapheneOS pozwoliły mi odzyskać kontrolę.
To mój debiut, dlatego bardzo zależy mi na Waszym feedbacku. Co myślicie o tym tekście? Dajcie znać w komentarzach, czy taka tematyka Was interesuje i czy chcecie kolejne wpisy o konfiguracji i hardeningu GrapheneOS! 🛡️📱
#GrapheneOS #Cybersecurity #Privacy #Prywatnosc #Bezpieczenstwo #FOSS #MobileSecurity #PlFediverse #Blog
-
Android 16 introduced a bug that allows a malicious app to send traffic outside the VPN tunnel, including with “Always-On VPN” + “Block connections without VPN” turned on. At the time of publishing, this affects all VPN apps. https://mullvad.net/en/blog/2026/5/12/any-app-on-recent-android-versions-can-leak-certain-traffic #mobilesecurity
-
Android 16 introduced a bug that allows a malicious app to send traffic outside the VPN tunnel, including with “Always-On VPN” + “Block connections without VPN” turned on. At the time of publishing, this affects all VPN apps. https://mullvad.net/en/blog/2026/5/12/any-app-on-recent-android-versions-can-leak-certain-traffic #mobilesecurity
-
Google Gemini on Android Exposed to Notification-Based Hijacking
Researchers have uncovered a vulnerability in Google Gemini on Android that allows hackers to hijack the assistant using a single hostile notification, no malicious app required. This shocking exploit lets anyone able to push a notification to a device deliver a payload and take control.
#AndroidSecurity #GoogleGemini #NotificationbasedHijacking #EmergingThreats #MobileSecurity
-
Mobile malware is becoming a billing engine.
Kern Smith of Zimperium explains how Android fraud campaigns silently subscribe victims to premium SMS services, intercept OTPs, and monetize users through carrier billing systems.
🔶 Carrier-specific targeting
🔶 OTP interception
🔶 Silent subscriptions
🔶 Automated monetizationRead the full discussion:
https://www.technadu.com/when-your-phone-is-subscribed-without-consent-the-attack-has-already-worked/628818/#MobileSecurity #Android #SMSFraud #CyberSecurity #ThreatResearch #Malware
-
🔍 HIGH-severity buffer overflow (CVE-2026-25277) in Qualcomm Snapdragon 8 Gen 2/3 & Elite. Exploitable locally for full device compromise. No patch yet — restrict local access & monitor vendor updates. https://radar.offseq.com/threat/cve-2026-25277-cwe-120-buffer-copy-without-checkin-64e68e4c #OffSeq #Vulnerability #Qualcomm #MobileSecurity
-
Data Breach Claimed on Trump Mobile Site
Over 27,000 users' personal data may have been exposed on Donald Trump's campaign mobile site. Find out what happened and who is affected.
#TrumpCampaign, #DataBreach, #Privacy, #MobileSecurity, #Election2026
https://newsletter.tf/trump-campaign-mobile-site-data-leak-27000-users/
-
Personal data for 27,000 people might have been exposed on the Trump campaign mobile site. This is a significant number of individuals affected by a potential data leak.
#TrumpCampaign, #DataBreach, #Privacy, #MobileSecurity, #Election2026
https://newsletter.tf/trump-campaign-mobile-site-data-leak-27000-users/ -
Bypassing SSL Pinning on Play Store AVDs without Frida
https://www.mfumis.com/posts/bypassing-ssl-pinning-on-play-store-avds-without-frida/
#cybersecurity #informationsecurity #frida #mobiledevice #infosec #mobilesecurity #mobile
-
Bypassing SSL Pinning on Play Store AVDs without Frida
https://www.mfumis.com/posts/bypassing-ssl-pinning-on-play-store-avds-without-frida/
#cybersecurity #informationsecurity #frida #mobiledevice #infosec #mobilesecurity #mobile
-
CW: Human+AI
I have been thinking about how much we trust our phones with our most sensitive data. Spyware is getting quieter, but it always leaves a trail. If your battery is draining fast or your data usage is spiking, it might be time to check for hidden apps. I found a great guide on how to detect spyware on your phone and stay secure.
-
Xiaomi’s HyperOS 4 next-year drops a privacy‑screen feature that limits view angles to protect your data. Following Samsung’s model, the tech blocks unapproved looks. Stay tuned for its rollout. #PrivacyTech #MobileSecurity
-
Laut aktuellen Berichten haben Cyberangriffe auf Mobilgeräte 2026 weltweit einen wirtschaftlichen Schaden von 442 Milliarden Euro verursacht. 86 % aller Phishing-Kampagnen sollen inzwischen KI-gesteuert sein, das entspricht rund 3,4 Milliarden betrügerischer Nachrichten täglich. Besonders auffällig: Banking-Trojaner wie „Mamont" und neue NFC-Angriffsvektoren zeigen, wie gezielt mobile Geräte heute angegriffen werden.
#Cybersecurity #MobileSecurity #Phishing #DigitaleSicherheit #OpenWeb -
Laut aktuellen Berichten haben Cyberangriffe auf Mobilgeräte 2026 weltweit einen wirtschaftlichen Schaden von 442 Milliarden Euro verursacht. 86 % aller Phishing-Kampagnen sollen inzwischen KI-gesteuert sein, das entspricht rund 3,4 Milliarden betrügerischer Nachrichten täglich. Besonders auffällig: Banking-Trojaner wie „Mamont" und neue NFC-Angriffsvektoren zeigen, wie gezielt mobile Geräte heute angegriffen werden.
#Cybersecurity #MobileSecurity #Phishing #DigitaleSicherheit #OpenWeb -
Apple Thwarts $2.2bn in App Store Fraud with AI-Driven Defenses
Apple's AI-powered defenses have successfully blocked a whopping $2.2 billion in App Store fraud over the past year, and a staggering $11.2 billion over six years, protecting consumers and businesses from malicious actors.
#AppStoreFraud #AidrivenDefenses #EmergingThreats #MobileSecurity #FinancialFraud
-
Apple Foils $11 Billion in App Store Fraud Over Six Years
Apple's vigilant efforts have paid off, blocking a whopping $11 billion in App Store fraud over the past six years, with a staggering $2.2 billion foiled in 2025 alone. The tech giant's winning combination of human review and cutting-edge tech has kept scammers at bay.
#AppStoreFraud #EmergingThreats #FinancialServices #FraudPrevention #MobileSecurity
-
Stolen phones - and specifically iPhones - have robust anti-theft protections. They are worthless once they're flagged - locked to their owner. So why are millions still being stolen every year?
In this paper, we uncover a thriving underground marketplace focused on unlocking stolen phones. It is powered by:Lookalike domains impersonating Apple, Xiaomi, Samsung and other brands
Smishing campaigns targeting device owners
Pay‑as‑you‑go “unlocking” tools sold on Telegram
By pivoting on DNS data, we identified 10,000+ malicious domains and a growing ecosystem turning locked devices into profit at scale.👉 Read how this supply chain works—from theft to resale—and why it’s growing fast. https://www.infoblox.com/blog/threat-intelligence/lookalike-domains-expose-the-iphone-theft-economy/
#ThreatIntel #CyberSecurity #Phishing #MobileSecurity #iOS #Smishing #dns #threatintelligence #cybercrime #infosec #infoblox #infobloxthreatintel #threatintelligence #cybercrime #infosec #infoblox #infobloxthreatintel
-
Most people use their smartphones every day without realizing how risky some habits have become in 2026.
Here are 10 things you should stop doing on your phone right now 👇📱
https://techputs.com/things-you-should-stop-doing-on-your-phone-today/
#Technology #PhoneTips #MobileSecurity #PrivacyTips #CyberAwareness #DigitalLife #TechPuts
-
Most people think their phone data is safe until it’s too late. I just published a guide on common scenarios where you might lose your data and how to prevent it.
Read it here: https://blog.keepita.com/phone-data-safety-scenarios-prevent/
Got a scenario I missed? Drop a comment! If it’s good, I’ll add it to the article and credit you/your profile personally. Let’s build the ultimate safety guide together. 🤝
#DataSafety #CyberSecurity #iPhone #Samsung #Android #Keepita #TechTips #Privacy #Backup #MobileSecurity #Infosec
-
5 security features I wish iPhones had
-
For the first time ever, OWASP MAScon hits OWASP Global AppSec EU 2026 in Vienna! Join top experts for cutting-edge mobile security talks, live demos & real-world insights.
🎟 Tickets: https://owasp.glueup.com/event/owasp-global-appsec-eu-2026-vienna-austria-162243/tickets.html
📖 Details: https://owaspglobalappseceuvienna20.sched.com/overview/type/MobileAppSecCon -
Your phone just became its own bodyguard.
AmnyX’s new Intruder Alert 📸
3 failed password attempts = instant email to you:
✓ Date & Time
✓ GPS Location
✓ IP Address
✓ Photo of the intruderBecause peace of mind should be automatic.
@AmnyX
#AmnyX #IntruderAlert #MobileSecurity #DataPrivacy #SmartSecurity #TechNews -
Quick thought experiment. Pull out your phone, look at your lock screen, and ask yourself who else is reading those notification previews. The answer is stranger than you think.
EFF just laid out what most people don't realize: push notifications usually route through Apple or Google servers before they hit your device, often with content visible in the clear. Then they get written to a local notification database that doesn't always get wiped when you swipe the alert away or even when you uninstall the app. 404 Media reported the FBI has pulled deleted Signal message text out of that database using standard forensic tools. Signal. The app you installed specifically because you didn't want this.
🔐 Apple and Google now require a court order for push notification data, but Apple's transparency report still shows hundreds of users handed over
📱 Lock screen previews are a free read for anyone who picks up your phone, including at a border crossing or traffic stop
🧹 Uninstalling an app does not guarantee its notification history goes with it, and we don't know what gets backed up to iCloud or Google
🛠️ Signal's notification setting "No Name or Content" is a 30-second fix that closes the easiest leakFor the security folks, this is a useful reminder that end-to-end encryption ends at the endpoint, and the endpoint includes a SQLite file most users have never heard of. For the executives, this is the reason your travel security policy for high-risk regions should say more than "use Signal." The default settings on a stock iPhone leak more than the app you chose to protect you.
https://www.eff.org/deeplinks/2026/04/how-push-notifications-can-betray-your-privacy-and-what-do-about-it
#Privacy #Cybersecurity #MobileSecurity #security #cloud #infosec