Android flaw allows attackers to permanently freeze your device

Android’s December 2019 updates patches a small list of system and Qualcomm flaws across the operating system’s two patch levels [1].
According with Google, a specific flaws (CVE-2019-2232) may allows an attacker to cause a permanent denial of service by simply sending a specifically crafted message [2].

Continue reading “Android flaw allows attackers to permanently freeze your device”

A new Android vulnerability (CVE-2019-2234) allows attackers to hijack Camera App

Researchers from Checkmarx Security Research Team has discovered and disclosed a vulnerability [2] in Android camera app that may allows a malicious app to bypass camera access permissions.

Continue reading “A new Android vulnerability (CVE-2019-2234) allows attackers to hijack Camera App”

ATFuzzer: exploiting AT commands on Android basebands using malicious USB and Bluetooth accessories

Researchers at Purdue College and University of Iowa have revealed a paper detailing how the baseband processors of a large number of common Android smartphones may be compromised using malicious USB and Bluetooth accessories.

Continue reading “ATFuzzer: exploiting AT commands on Android basebands using malicious USB and Bluetooth accessories”

146 new security vulnerabilities discovered in various Android versions

Researchers by security firm Kryptowire have discovered and revealed 146 vulnerabilities in various version of Android.

Continue reading “146 new security vulnerabilities discovered in various Android versions”

Watch out! A new vulnerability in WhatsApp for Android allows attackers to perform remote commands on devices

Security researcher Awakened has identified a vulnerability in the Android version of WhatsApp messaging app which could allow attackers to launch remote code execution attacks (with privilege elevation) on victims.

Continue reading “Watch out! A new vulnerability in WhatsApp for Android allows attackers to perform remote commands on devices”