Android Security

WhatsApp introduces passkey backups with biometrics—learn how it simplifies security, resists threats, and protects your chats from unauthorized access.

Android Malware Herodotus Tricks Biometrics by Acting Like Humans

Posted: October 29, 2025

Categories: Malware Alerts, Android Security, Banking Trojan, Mobile Frauds

Tags: fp-3b, fp-3a, fp-2e, fp-2d, fp-2c, fp-2b, fp-2a, fp-1b

Author: Npav Lab

Herodotus Android trojan mimics typing to bypass detection—learn about its tactics, infection methods, and tips to secure your device from banking fraud.

Is Your Android App Spying on You? The Pixnapping Data Theft Exploit Explained

Posted: October 15, 2025

Categories: Security, Data Breach, Android Security, AI

Tags: fp-2e, fp-2d, fp-2c, fp-2b, fp-2a, fp-1b, fp-1a

Author: Npav Lab

UC researchers reveal Pixnapping, letting hackers steal 2FA and app data via Android side channels—up to 61% accurate with AI. No full patch yet; update devices, check permissions, and secure apps to avoid risks.

ClayRat Android Spyware Targets Russia with Fake WhatsApp and TikTok Apps for Data Theft and Auto-Spread

Posted: October 10, 2025

Categories: Data Breach, Android Security, Spyware, WhatsApp, Mobile Frauds

Tags: fp-2e, fp-2d, fp-2c, fp-2b, fp-2a, fp-1b

Author: Npav Lab

Zimperium exposes ClayRat spyware infecting Russian Android users via phishing sites and Telegram lures mimicking WhatsApp/TikTok—exfiltrates SMS, calls, photos; auto-sends to contacts. 600 samples detected; related African phone study reveals pre-installed app risks—update and scan devices now.

GitHub Exposes 'Most Powerful FUD Android RAT 2025' with Web C2, Ransomware, and Total AV Evasion

Posted: October 07, 2025

Categories: Ransomware, Android Security, RAT, Mobile Frauds

Tags: fp-2c, fp-2b, fp-2a, fp-1b

Author: Npav Lab

New Android RAT on GitHub ("Huckel789/Android-RAT") promises permanent stealth, web-based control from any device, and features like SMS theft, 2FA hijacking, live cams, ransomware—no PC needed. Experts warn of lowered cybercrime barriers; analyze in isolation for defenses.

Banking Trojans Disguise as Government Apps to Target Android Users in Indonesia and Vietnam

Posted: September 24, 2025

Categories: Android Security, Banking Trojan

Tags: fp-3b, fp-3a, fp-2c, fp-2a, fp-1b

Author: Npav Lab

Since August 2024, BankBot.Remo variants use WebSocket chunked downloads on spoofed Google Play pages to deliver malware as fake payment/identity apps like IdentitasKependudukanDigital.apk; over 100 Alibaba/Gname domains evade filters—monitor WebSockets and block C2 for defense.

Android Runtime Use-After-Free Vulnerability Risks Chrome Sandbox Escape and Privilege Escalation

Posted: September 05, 2025

Categories: Android Security, vulnerability

Tags: fp-2c, fp-1b

Author: Npav Lab

A use-after-free flaw in Android Runtime may allow Chrome sandbox escape and local privilege escalation. Learn about mitigation steps and security recommendations to protect your device.

Fake Loan Apps Resurface in India: Global Network Under Investigation

Posted: August 27, 2025

Categories: Android Security, Financial fraud, Fraud Protector, Mobile Frauds

Tags: fp-2e, fp-2d, fp-2c, fp-2b, fp-2a, fp-1a

Author: Npav Lab

Discover how fake loan apps in India are trapping users in harassment and blackmail. Learn about the global network behind these predatory practices and the ongoing regulatory challenges.

New Hook Android Banking Malware: Advanced Features and Threat Insights

Posted: August 27, 2025

Categories: Malware Alerts, Android Security

Tags: fp-3b, fp-3a, fp-2c

Author: Npav Lab

Zimperium’s zLabs has uncovered a new variant of the Hook Android banking trojan, featuring ransomware-style overlays and advanced credential theft tactics. Learn about its key features and technical insights.