Government-backed threat actors are using zero-day exploits to infect security researchers and exfiltrate critical vulnerability information A campaign by government-backed actors in North Korea is believed to be using zero-day exploits to target security researchers working on vulnerability research and development. Google’s threat analysis group (TAG) said it has been tracking the campaign since January […]
Google has rolled out monthly security patches for Android to address a number of flaws, including a zero-day bug that it said may have been exploited in the wild. Tracked as CVE-2023-35674, the high-severity vulnerability is described as a case of privilege escalation impacting the Android Framework. “There are indications that CVE-2023-35674 may be under […]
ESET researchers have identified two active campaigns targeting Android users, where the threat actors behind the tools for Telegram and Signal are attributed to the China-aligned APT group GREF. Most likely active since July 2020 and since July 2022, respectively for each malicious app, the campaigns have distributed the Android BadBazaar espionage code through the […]
Latest Comments