PlayPraetor Android trojan infects >11k devices through sophisticated fraud campaign.
Posted inCybersecurity News

PlayPraetor Android trojan infects >11k devices through sophisticated fraud campaign.

A newly discovered Android remote access trojan (RAT) known as PlayPraetor has rapidly surged across the globe, infecting more than 11,000 devices in countries including Portugal, Spain, France, Morocco, Peru, and Hong Kong. Security researchers have warned that the malware’s reach is expanding at a rate of over 2,000 new infections weekly, driven primarily by aggressive campaigns targeting Spanish- and French-speaking users.
New Android spyware variants of DCHSpy tied to Iran’s Intelligence Agency.
Posted inCybersecurity News

New Android spyware variants of DCHSpy tied to Iran’s Intelligence Agency.

Security researchers have discovered four new variants of Android spyware, collectively known as DCHSpy, that have been directly linked to Iran’s Ministry of Intelligence and Security (MOIS). These findings, surfacing in the wake of heightened regional tensions following Israeli strikes on Iranian sites, underscore the ongoing evolution and sophistication of Iranian cyber-espionage operations.
Computer hacker with Android robot on desk
Posted inCybersecurity News

Google dusts off its hands. Its job is done. For the first time in nearly a decade, there will be no monthly security update for Android.

In a notable departure from nearly a decade of routine, July 2025 marks the first month since August 2015 that Google has not released any security updates for Android devices. This pause in the monthly update cycle is unprecedented and has drawn attention from both industry experts and the broader Android community.
Google announces a major upgrade to Chrome’s security features on Android.
Posted inCybersecurity News

Google announces a major upgrade to Chrome’s security features on Android.

Google has announced a significant upgrade to Chrome’s security capabilities on Android, particularly for users enrolled in its Advanced Protection Program. With the latest updates in Android 16 and Chrome 137+, Google is bringing desktop-class security features to mobile devices, aiming to provide robust protection for high-risk individuals and anyone seeking maximum online safety.
A New Android vulnerability, TapTrap, bypasses Android protections using an ingenious invisible user interface.
Posted inCybersecurity News

A New Android vulnerability, TapTrap, bypasses Android protections using an ingenious invisible user interface.

A newly uncovered Android vulnerability, dubbed TapTrap, is raising concerns among cybersecurity experts for its ability to bypass Android’s permission system using a highly deceptive invisible user interface (UI) technique. This attack, developed by researchers at TU Wien and the University of Bayreuth, leverages UI animations to trick users into performing sensitive actions—such as granting permissions or even wiping their devices—without their knowledge.
Researchers note a dramatic surge in Android malware incidents in the second quarter of 2025.
Posted inCybersecurity News

Researchers note a dramatic surge in Android malware incidents in the second quarter of 2025.

The Android ecosystem has experienced a dramatic surge in malware incidents during the second quarter of 2025, with security researchers reporting a 151% increase in detected threats compared to the previous quarter. This escalation is marked by a notable rise in adware trojans, banking trojans, and cryptocurrency-targeted malware, reflecting both the growing sophistication and organization of cybercriminal operations targeting Android users worldwide.
Sophisticated Android MaaS malware, AntiDot, has compromised over 3,775 devices.
Posted inCybersecurity News

Sophisticated Android MaaS malware, AntiDot, has compromised over 3,775 devices.

Cybersecurity researchers have recently exposed the inner workings of a sophisticated Android malware called AntiDot, which has compromised over 3,775 devices across 273 distinct campaigns. AntiDot is operated by the financially motivated threat actor group LARVA-398 and is actively sold as Malware-as-a-Service (MaaS) on underground forums, enabling a wide range of mobile attack campaigns.