Threat brief: Android.Backdoor.Baohuo.1.origin — trojanized Telegram X APKs; 58k+ devices; Redis-backed C2; Xposed/mirrors for stealth; targets Brazil & Indonesia.
Immediate actions:
• Block/unmonitored outbound Redis ports (6379/6378) from mobile management networks.
• Hunt for new persistent device sessions with hidden device IDs or missing active session entries.
• Use app-signature verification at install / MDM policy to block unverified APKs.
• Monitor for frequent 3-minute telemetry bursts and unusual clipboard access patterns.
Share indicators & mitigations in the comments and follow TechNadu for deeper TTP analysis and IOC lists.

#ThreatIntel #MobileSecurity #Android #Redis #Xposed #EDR #Hunting #InfoSec

#privacymatters #dataprivacy #surveillance #mobilesecurity

@naomibrockwell https://www.minds.com/newsfeed/1826624264223186944

Just came across this amazing tool: Beerus Framework

Developed to assist the mobile pentester during the entire process.

Check it out here: https://t.co/3a1wOTYAwh

#mobilesecurity #PenetrationTesting

Dockerized Android enables fast, customizable mobile cyber-range simulations with Docker—ideal for security testing and research. https://hackernoon.com/building-smarter-cyber-ranges-with-dockerized-android #mobilesecurity

This Secret Tech Tracked World Leaders, a Vatican Enemy, and Maybe You. #surveillance #malware #mobilesecurity #privacy #altamides #zeroday #zeroclick

https://www.youtube.com/watch?v=xfWyU5iXJ3I

🚨 AI-driven scams are on the rise, targeting Gen Z with sextortion, deepfakes, and virtual kidnappings.

📊 Stats:
- 58% of Gen Z targeted
- 28% victimized
- High emotional & reputational impact

💡 Tip: Stop. Test. Opt-out. Prove it.
💬 Share your experiences or tips in the comments & follow @technadu for expert cybersecurity insights.

#CyberSecurity #AI #Deepfakes #Sextortion #GenZ #MobileSecurity #InfoSec #DigitalSafety #OnlineSafety #TechNadu #ThreatIntel

A new “Pixnapping” attack steals MFA codes pixel by pixel from Android screens — proof that even screenshots can betray secrets. 📸🔐 #MobileSecurity #MFAR

https://www.bleepingcomputer.com/news/security/new-android-pixnapping-attack-steals-mfa-codes-pixel-by-pixel/

GrapheneOS is finally ready to break free from Pixels and it may never look back

https://www.androidauthority.com/graphene-os-major-android-oem-partnership-3606853/

#HackerNews #GrapheneOS #AndroidPrivacy #OpenSource #TechNews #MobileSecurity

ClayRat Malware: New Android Threat Mimics Popular Apps to Steal Data

#android #androidapps #ClayRat #malware #mobilesecurity
https://blazetrends.com/clayrat-malware-new-android-threat-mimics-popular-apps-to-steal-data/?fsp_sid=144307

Android malware alert: Mobdro Pro IP TV + VPN installs Klopatra banking Trojan, compromising devices and banking credentials.

More info: https://www.technadu.com/fake-vpn-spreads-malware-targeting-android-banking-accounts/611164/

#AndroidSecurity #CyberSecurity #BankingTrojan #MobileSecurity #VPN #TechNadu

⚠️ CVE-2025-21050 (HIGH): Samsung Mobile devices pre-Oct 2025 SMR let local attackers access contact data across profiles due to improper input validation. Patch when available & limit profile sharing! https://radar.offseq.com/threat/cve-2025-21050-cwe-20-improper-input-validation-in-8592d5e4 #OffSeq #Samsung #Vuln #MobileSecurity

Smishing Is Phishing Too 📲
Phishing isn’t just in your inbox anymore.
Text messages with suspicious links are on the rise — and one tap can infect your device.

✅ Don’t click unknown links
✅ Block and report suspicious numbers
✅ Enable mobile security tools

Think before you tap.

#CyberAwareness #Smishing #MobileSecurity #emtDisti #emtCyberMindful @emt

ClayRat is taking Android spyware to a new level—masquerading as trusted apps with fake reviews and a replica Play Store experience. How safe is your next download when the scam hides in plain sight?

https://thedefendopsdiaries.com/clayrat-how-sophisticated-android-spyware-exploits-user-trust/

#androidspyware
#clayrat
#phishing
#malware
#cybersecurity
#telegram
#socialengineering
#mobilesecurity
#infosec

Well done and thank you and all hail !
@GrapheneOS
#privacy #grapheneOS #mobilesecurity

Hundreds of free VPN apps on Android & iOS found exposing data:

- Outdated encryption (Heartbleed CVE-2014-0160)
- TLS bypass → MitM attacks
- GPS tracking & keylogging
- iOS apps missing privacy manifests

Full report: https://www.technadu.com/hundreds-of-free-vpn-apps-expose-user-data-on-android-and-ios/610816/

#CyberSecurity #VPN #MobileSecurity

🚨 Android Spyware Alert: ProSpy & ToSpy
ESET has discovered Android spyware campaigns targeting Signal and ToTok users.

These malicious apps, distributed via fake websites, exfiltrate contacts, SMS, media, and device data.

⚠️ Do NOT install apps from unofficial sources! Stay vigilant.
💬 How can mobile users and organizations improve defenses against spyware? Discuss & follow @technadu for cybersecurity alerts.

#ProSpy #ToSpy #AndroidMalware #CyberSecurity #MobileSecurity #SpywareAlert #Privacy #Infosec #ThreatIntel

Become a digital archaeologist! ⛏️ Learn Android static analysis to crack open APKs and expose hidden vulnerabilities, from hardcoded secrets to lazy permissions, before hackers do. #MobileSecurity #ReverseEngineering #BSidesNoVA

Workshop https://bsidesnova-2025.sessionize.com/session/999403
Ticket https://tinyurl.com/bsidesnova2025tix

Προσφέρει μέγιστη ασφάλεια για το κινητό η eSIM; Ακόμα και αν χαθεί ή κλαπεί η συσκευή, μπορεί να στείλει την τοποθεσία της και να προστατεύσει τα προσωπικά σου δεδομένα; Μάθε στο παρακάτω άρθρο!
https://greek-nea.com/giati-to-esim-einai-pio-asfales-apo-tin-klasiki-sim
#eSIM #ΑσφάλειαΚινητού #FindMyiPhone #ΨηφιακήSIM #ΠροστασίαΔεδομένων #MobileSecurity #ActivationLock #SIMvsESIM #Κινητό #Τεχνολογία

🚀 Introducing the Future of Mobile Security: MDP-X by Endoacustica 🛡️

🔹 Stops zero-click attacks before they strike
🔹 Detects malware, phishing, and spyware in real time
🔹 Blocks risky Wi-Fi, DNS hijacking & MITM attacks
🔹 Runs 100% offline with our patented z9™ AI engine

📲 Secure your devices. Safeguard your data. Stay one step ahead.

👉 Request a demo now: https://forpressrelease.com/forpressrelease/659474/21/endoacustica-launches-ai-powered-mobile-device-protection-app-for-android-and-iphone

#mobilesecurity #cybersecurity #AIprotection #enterprisesecurity #endoacustica #malwareprotection

Secret Service dismantles massive SIM farm. Mobile domain becoming security battleground.
https://jpmellojr.blogspot.com/2025/09/secret-service-telecom-takedown-sparks.html
#MobileSecurity #SIMFarm #NationalSecurity #SecretService