Forwarded from Android Security & Malware
Media is too big
VIEW IN TELEGRAM
New Pixnapping Attack allows any Android app without permissions to leak info displayed by other apps exploiting Android APIs and a hardware side channel (CVE-2025-48561)
Pixnapping is not fixed and probably affects all Androids.
PoC: Not available yet.
Video demonstrates stealing 2FA codes from Google Authenticator. It's like taking screenshot. Pixnapping exploits a side channel that allows the malicious app to map the pixels at those coordinates to letters, numbers, or shapes.
Info: https://www.pixnapping.com/
Pixnapping is not fixed and probably affects all Androids.
PoC: Not available yet.
Video demonstrates stealing 2FA codes from Google Authenticator. It's like taking screenshot. Pixnapping exploits a side channel that allows the malicious app to map the pixels at those coordinates to letters, numbers, or shapes.
Info: https://www.pixnapping.com/
Forwarded from Android Security & Malware
APK Tool GUI: GUI for apktool, signapk, zipalign and baksmali utilities
https://github.com/AndnixSH/APKToolGUI
https://github.com/AndnixSH/APKToolGUI
Forwarded from π½πΌπ½π π’ππ¦ | ππ’π¦π¦, ππΆπ³π², π π²πΊπ²π (Γmer)
Chance
Imageboard browser built using Flutter intended for use on iOS and Android.
π Links:
- Downtown
- Features
- Source code
Developer: Callum Moffat
π· Tags: #Android #iOS #Media #Social
Imageboard browser built using Flutter intended for use on iOS and Android.
π Links:
- Downtown
- Features
- Source code
Developer: Callum Moffat
β€οΈ Support the Project
If this project makes your life easier, here are a few quick ways to show some love:
β Star the repo/app
β Buy a coffee for the developer
π Contribute code, issues, or pull-requests
π· Tags: #Android #iOS #Media #Social
Forwarded from Android Authority
Now you can spot the apps tapping into Androidβs strongest security feature
by Stephen Schenck
https://www.androidauthority.com/advanced-protection-app-list-3607031/
by Stephen Schenck
https://www.androidauthority.com/advanced-protection-app-list-3607031/
Android Authority
Now you can spot the apps tapping into Android's strongest security feature
You'll now be able to see the apps aware of and able to tap into Android 16's Advanced Protection security mode.
Forwarded from π½πΌπ½π π’ππ¦ | ππ’π¦π¦, ππΆπ³π², π π²πΊπ²π (Γmer)
Yupp AI
Yupp.ai allows users to compare responses side by side by providing the same prompt to different AI models such as ChatGPT, Claude, and Gemini, rate their preferences based on criteria such as clarity, accuracy, or creativity, and provide feedback. This feedback is recorded in a blockchain-based secure environment, contributing to the continuous improvement of models through reinforcement learning. Users can earn "Yupp credits" in exchange for the quality feedback they provide, which can be used for new trials or converted into cash. This innovative platform offers both AI enthusiasts and developers a transparent, auditable, and rewarding AI evaluation experience.
π Link:
- Website
π· Tags: #Website #AI
Yupp.ai allows users to compare responses side by side by providing the same prompt to different AI models such as ChatGPT, Claude, and Gemini, rate their preferences based on criteria such as clarity, accuracy, or creativity, and provide feedback. This feedback is recorded in a blockchain-based secure environment, contributing to the continuous improvement of models through reinforcement learning. Users can earn "Yupp credits" in exchange for the quality feedback they provide, which can be used for new trials or converted into cash. This innovative platform offers both AI enthusiasts and developers a transparent, auditable, and rewarding AI evaluation experience.
π Link:
- Website
π· Tags: #Website #AI
Forwarded from ATT β’ Tech News (Leonardo)
YouTube
MY PIXEL 10 PRO FOLD EXPLODED -- CAUGHT LIVE ON CAMERA!
Google has tried nothing to strengthen the Pixel Fold 10 Pro and they are all out of ideas. The new Folding Pixel Phone has failed my durability test Catastrophically. If google needs better tools to build a better phone they can get one of my tool kits HERE:β¦
Forwarded from Tech & Leaks Zone
Firefox will render gradients properly now. Better late than never even if it takes 15 years.
https://fixvx.com/theo/status/1978161273214058786
https://fixvx.com/theo/status/1978161273214058786
Forwarded from It's FOSS
What is Telegram doing? Doesn't it know the difference between a bot and a human?
https://news.itsfoss.com/telegram-unfair-community-ban/
https://news.itsfoss.com/telegram-unfair-community-ban/
It's FOSS
Telegram, Please Learn Who's a Threat and Who's Not
Our Telegram community got deleted without an explanation.
Forwarded from Android Security & Malware
GhostBat RAT: Inside the Resurgence of RTO-Themed Android Malware
https://cyble.com/blog/ghostbat-rat-inside-the-resurgence-of-rto-themed-android-malware/
https://cyble.com/blog/ghostbat-rat-inside-the-resurgence-of-rto-themed-android-malware/
Forwarded from The Hacker News
β οΈ Heads-up! SAP just re-patched a critical CVSS 10.0 flaw (CVE-2025-42944) in NetWeaver AS Java β a deserialization bug that lets attackers execute commands without authentication.
Apply. The. Fix. β https://thehackernews.com/2025/10/new-sap-netweaver-bug-lets-attackers.html
Apply. The. Fix. β https://thehackernews.com/2025/10/new-sap-netweaver-bug-lets-attackers.html
Forwarded from The Hacker News
πͺ A cookie that spawns a shell π
A critical flaw (CVE-2025-2611, CVSS 9.3) in ICTBroadcast autodialer software is under active exploitation.
Attackers inject commands via the BROADCAST session cookie for unauthenticated remote code execution.
No patch yet β check your stack β https://thehackernews.com/2025/10/hackers-target-ictbroadcast-servers-via.html
~200 servers are exposed.
A critical flaw (CVE-2025-2611, CVSS 9.3) in ICTBroadcast autodialer software is under active exploitation.
Attackers inject commands via the BROADCAST session cookie for unauthenticated remote code execution.
No patch yet β check your stack β https://thehackernews.com/2025/10/hackers-target-ictbroadcast-servers-via.html
~200 servers are exposed.
Forwarded from The Hacker News
π₯ Agentic AI isnβt just automatingβitβs thinking and acting.
Zscalerβs CEO says itβs a bigger shift than cloud or IoT.
The upside? Faster support and instant threat response.
The risk? Rogue AIs scanning your network right now.
Learn why Zero Trust isnβt optional anymore β https://thehackernews.com/videos/2025/10/exploring-agentic-ai-innovation-meets.html
Zscalerβs CEO says itβs a bigger shift than cloud or IoT.
The upside? Faster support and instant threat response.
The risk? Rogue AIs scanning your network right now.
Learn why Zero Trust isnβt optional anymore β https://thehackernews.com/videos/2025/10/exploring-agentic-ai-innovation-meets.html
Forwarded from The Hacker News
βοΈ If you run industrial gear β check your Red Lion RTUs.
Two CVEs (both 10/10) let anyone pop root via one open port. Water, energy, transport β all at risk.
Patch ASAP. Details here β https://thehackernews.com/2025/10/two-cvss-100-bugs-in-red-lion-rtus.html
Two CVEs (both 10/10) let anyone pop root via one open port. Water, energy, transport β all at risk.
Patch ASAP. Details here β https://thehackernews.com/2025/10/two-cvss-100-bugs-in-red-lion-rtus.html
Forwarded from The Hacker News
π΄ Microsoft just dropped fixes for 183 security flaws.
3 are already being exploited β including one buried in every Windows PC since XP.
...and at the same time, it is ending Windows 10 support (unless you pay).
Details + patch info β https://thehackernews.com/2025/10/two-new-windows-zero-days-exploited-in.html
3 are already being exploited β including one buried in every Windows PC since XP.
...and at the same time, it is ending Windows 10 support (unless you pay).
Details + patch info β https://thehackernews.com/2025/10/two-new-windows-zero-days-exploited-in.html
Forwarded from Mishaal's Android News Feed
πΊGoogle TV is working on a one-touch camera feed shortcut for your remote
The customizable button on select Google TV remotes may soon be able to directly launch your camera feed.
More details in the linkπ
πhttps://www.androidauthority.com/google-tv-camera-feed-shortcut-rumor-3607128/
The customizable button on select Google TV remotes may soon be able to directly launch your camera feed.
More details in the linkπ
πhttps://www.androidauthority.com/google-tv-camera-feed-shortcut-rumor-3607128/
Forwarded from Tech & Leaks Zone
Meet Origin Island in OriginOS 6 Global β Designed by Apple in California, Recycled by BBK in China.
Follow @TechLeaksZone
https://fixvx.com/heyitsyogesh/status/1978455817826558054
Follow @TechLeaksZone
https://fixvx.com/heyitsyogesh/status/1978455817826558054
vxTwitter / fixvx
π 27
π 27
Yogesh Brar (@heyitsyogesh)
Another big addition is this new feature called 'Origin Island'
OriginOS has this drag and drop feature which lets you pick and drop elements (text, photos, videos, files) from one app to another.
Origin Island also tβ¦
OriginOS has this drag and drop feature which lets you pick and drop elements (text, photos, videos, files) from one app to another.
Origin Island also tβ¦
Forwarded from #TBOT: Take Back Our Tech
β‘οΈInside Big Techβs Surveillance Machine: My Interview on The Way Forward
I just sat down with Alec from The Way Forward for a powerful conversation on privacy, autonomy, and the deeper effects of living under big techβs surveillance.
We got into how our data is tracked and traded, what most people donβt realize about the systems behind it, and how we can start building a life beyond constant digital control.
If you care about freedom β both digital and spiritual β this oneβs worth watching.
π§ Watch or listen here.
π² Learn about Above Suite
β
π«Ά @takebackourtech
π© WEBSITE & NEWSLETTER | π₯ VIDEOS| XMPP | SUBSTACK
I just sat down with Alec from The Way Forward for a powerful conversation on privacy, autonomy, and the deeper effects of living under big techβs surveillance.
We got into how our data is tracked and traded, what most people donβt realize about the systems behind it, and how we can start building a life beyond constant digital control.
If you care about freedom β both digital and spiritual β this oneβs worth watching.
π§ Watch or listen here.
π² Learn about Above Suite
β
π«Ά @takebackourtech
π© WEBSITE & NEWSLETTER | π₯ VIDEOS| XMPP | SUBSTACK
YouTube
Rise Above Big Tech: Defying The Surveillance State And Spiritual Sabotage with Hakeem Anwar
Turn online alignment into an offline community β join us at TheWayFwrd.com to connect with like-minded people near you. Itβs the best way to support this podcast and the movement weβre building together: https://thewayfwrd.com/join/
Hakeem Anwar joins Alecβ¦
Hakeem Anwar joins Alecβ¦
Forwarded from The Hacker News
π₯ New free playbook from Pillar Security : a hands-on framework for red-teaming agentic AI systems.
Covers the AI Kill Chain, context engineering, and the CFS model for crafting and testing realistic attack simulations.
π No sign-up required: https://thn.news/agentic-defend
Covers the AI Kill Chain, context engineering, and the CFS model for crafting and testing realistic attack simulations.
π No sign-up required: https://thn.news/agentic-defend
Forwarded from The Hacker News
π¨ Over 100 VS Code extensions leaked access tokens β letting attackers push malicious updates to 150,000+ installs.
A single exposed key couldβve weaponized the software supply chain.
Full story β https://thehackernews.com/2025/10/over-100-vs-code-extensions-exposed.html
A single exposed key couldβve weaponized the software supply chain.
Full story β https://thehackernews.com/2025/10/over-100-vs-code-extensions-exposed.html