December 2, 2022

December 02, 2022

Folks, this is bad news. Very, very bad. Hackers and/or malicious insiders have leaked the platform certificates of several vendors. These are used to sign system apps on Android builds, including the "android" app itself. These certs are being used to sign malicious Android apps!

https://bugs.chromium.org/p/apvi/issues/detail?id=100

https://androiddev.social/@MishaalRahman/109440552872028377

obsessed with this article by the Android team. just looking at the graphs it's like "rust go up, exploits go down" https://security.googleblog.com/2022/12/memory-safe-languages-in-android-13.html

also holy shit Android has a lot of rust code now

https://toot.cat/@Gankra/109439730353295162

Great followup on The Mystery of Metador by @milenkowski

Discover the anti-analysis techniques of the Mafalda implant, a unique, feature-rich backdoor used by the Metador threat actor.

https://www.sentinelone.com/labs/the-mystery-of-metador-unpicking-mafaldas-anti-analysis-techniques/

https://infosec.exchange/@hegel/109439251724708035

Great stuff from Kelly.

I stumbled on @[email protected] 's excellent blog post "I Didn’t Learn Unix By Reading All The Manpages:" https://www.owlfolio.org/research/i-didnt-learn-unix-by-reading-all-the-manpages/

I could not agree more. Manpages are excellent references, but they are absolutely not educational. So, how do you learn? Tutorials, textbooks, and most importantly, tinkering with stuff until it works.

https://ioc.exchange/@nc2y/109441898025138767

Reply

or to participate.