Bleeping Computer

Google finds more Android, iOS zero-days used to install spyware

Google's Threat Analysis Group (TAG) discovered several exploit chains using Android, iOS, and Chrome zero-day and n-day vulnerabilities to install commercial spyware and malicious apps on targets' ...
Computerworld

Proof-of-concept exploit available for Android app signature check vulnerability

Technical details and a proof-of-concept exploit have been published for a recently announced Android vulnerability that potentially affects millions of devices and allows attackers to turn legitimate ...
Hosted on MSN

Google patches active Android exploits in its September update

Google’s September 2025 Android security bulletin is out, tackling several high-risk vulnerabilities, including four labeled critical. As per the company's latest security bulletin, the September 2025 ...
Ars Technica

Android app from China executed 0-day exploit on millions of devices

Android apps digitally signed by China’s third-biggest e-commerce company exploited a zero-day vulnerability that allowed them to surreptitiously take control of millions of end-user devices to steal ...