Vulnerabilities exist in two fairly popular alternative browsers for Android – Dolphin and Mercury — that depending on the browser could result in either remote code execution or arbitrary read/write access.
Browsing Tag: Mobile security
Apple patched an issue last week in iOS that could have allowed attackers to bypass the third-party app-sandbox protection mechanism on devices and read arbitrary managed preferences via a special app.
A Stagefright vulnerability patch is incomplete and Android devices remain exposed. Google has made a new patch open source and will update devices over-the-air next month.
At Black Hat, two recent Boston University computer engineering graduates revealed software and hardware hacks against the latest versions of the popular Square Reader.
Google is changing the way that it updates its Nexus Android phones and will now send out monthly over-the-air updates to users.
Vulnerabilities in Stagefright, which processes media formats in Android, put 950 million devices at risk to remote attacks.
There’s a severe vulnerability in the way that all versions of Android handle the restoration of backups that can allow an attacker to inject a malicious APK file into the backup archive.
Google has pulled a malicious click fraud app from Google Play that spoofs the popular BatteryBot Pro app.
Many smartphones manufactured by LG contain a vulnerability that can allow an attacker to replace an APK file with a malicious file of his choice. The problem is the result of several conditions on LG phones. Like other manufacturers, LG includes custom apps on its handsets, which are not available through the normal Google Play[…]
Amazon patched three vulnerabilities in its Fire Phone, two of which allow for silent certificate installations.