Google issuing new security warnings for Galaxy and Pixel users — what you need to know


A new Android Safe Browsing warning has started to appear on some Samsung Galaxy and Google Pixel devices to help combat malware and protect users while using supported apps.

According to a recent post on X by Mishaal Rahman: “Google is rolling out a new ‘Android Safe Browsing‘ page to users that lets you see which apps support the feature as well as a toggle ‘live threat protection’ which enables ‘more accurate threat detection.’” 

See more

Source…

Top Antivirus Alternatives to Google Play Protect


In the ever-evolving digital landscape, Android devices have emerged as a prime target for malicious actors. Despite Google’s efforts to fortify its platform with Google Play Protect, recent studies reveal that this built-in security measure falls short in comparison to other antivirus solutions. As of February 14, 2024, Android users are strongly advised to consider alternative antivirus options to safeguard their devices and data.

Google Play Protect: An Inadequate Guard

Google Play Protect, a security feature pre-installed on Android devices, is designed to detect and eliminate harmful apps. However, recent findings from AV-TEST, an independent organization specializing in IT security and antivirus research, expose the deficiencies of this shield. In a six-month endurance test, Google Play Protect demonstrated a significantly lower malware detection rate than its competitors, leaving Android users vulnerable to a multitude of threats.

Top Alternatives to Google Play Protect

In the quest for optimal protection, Android users have access to a plethora of free antivirus software options. Let’s explore some of the leading choices:

  • AVG Antivirus: With over 100 million downloads on Google Play, AVG Antivirus offers robust protection against viruses, malware, and privacy intrusions.
  • Norton 360: Mobile Security: This comprehensive security solution boasts advanced features such as a smart firewall, web protection, and app adviser.
  • Avast Antivirus: Avast provides real-time protection, ensuring that your device remains secure from the latest threats.
  • Dr. Web Security Space: Recognized for its high detection rates, Dr. Web offers a reliable defense against various malware.
  • Kaspersky Antivirus & VPN: Kaspersky’s combination of antivirus and VPN technologies guarantees privacy and security across multiple fronts.
  • Lookout Security & Antivirus: In addition to antivirus protection, Lookout provides features such as identity protection and safe browsing.
  • Bitdefender Mobile Security: Bitdefender’s antivirus engine and comprehensive security tools ensure top-notch protection for your Android device.
  • ESET Mobile Security & Antivirus:…

Source…

Hackers uncover new TheTruthSpy stalkerware victims: Is your Android device compromised?


Image Credits: Bryce Durbin / TechCrunch

A consumer-grade spyware operation called TheTruthSpy poses an ongoing security and privacy risk to thousands of people whose Android devices are unknowingly compromised with its mobile surveillance apps, not least due to a simple security flaw that its operators never fixed.

Now, two hacking groups have independently found the flaw that allows the mass access of victims’ stolen mobile device data directly from TheTruthSpy’s servers.

Switzerland-based hacker maia arson crimew said in a blog post that the hacking groups SiegedSec and ByteMeCrew identified and exploited the flaw in December 2023. Crimew, who was given a cache of TheTruthSpy’s victim data from ByteMeCrew, also described finding several new security vulnerabilities in TheTruthSpy’s software stack.

SPYWARE LOOKUP TOOL

You can check to see if your Android phone or tablet was compromised here.

In a post on Telegram, SiegedSec and ByteMeCrew said they are not publicly releasing the breached data, given its highly sensitive nature.

Crimew provided TechCrunch with some of the breached TheTruthSpy data for verification and analysis, which included the unique device IMEI numbers and advertising IDs of tens of thousands of Android phones recently compromised by TheTruthSpy.

TechCrunch verified the new data is authentic by matching some of the IMEI numbers and advertising IDs against a list of previous devices known to be compromised by TheTruthSpy as discovered during an earlier TechCrunch investigation.

The latest batch of data includes the Android device identifiers of every phone and tablet compromised by TheTruthSpy up to and including December 2023. The data shows TheTruthSpy continues to actively spy on large clusters of victims across Europe, India, Indonesia, the United States, the United Kingdom and elsewhere.

TechCrunch has added the latest unique identifiers — about 50,000 new Android devices — to our free spyware lookup tool that lets you check if your Android device was compromised by TheTruthSpy.

Security bug in TheTruthSpy exposed victims’ device data

For a time, TheTruthSpy was one of the most prolific apps for facilitating…

Source…

Android malware posing as Google Chrome could steal your photos, contacts, and more — how to spot the fake


An updated version of the XLoader malware for Android devices doesn’t require any user interaction to launch once installed, according to researchers at McAfee (via BleepingComputer). Of course, you still need to click the malicious link in an SMS message to download and install the malware, but this XLoader variant doesn’t require users to manually launch the malware anymore.

Right now, the malware is being distributed through SMS texts on Android devices. If you’re targeted, the SMS text will include a shortened URL that, if clicked on, will direct you to a website to download an Android APK installation file for a mobile app.  McAfee says that, “While the app is installed, their malicious activity starts automatically.”

Source…