Google is rolling out a new defense against phone scams on Android devices. Called in-call scam protection, this feature pauses suspicious calls for 30 seconds when users open financial apps during screen sharing.
It targets scammers who pose as banks to trick people into...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two high-severity Android Framework vulnerabilities to its Known Exploited Vulnerabilities catalog on December 2, 2025, signaling active exploitation in the wild.
CVE-2025-48572 enables local elevation of privilege, while CVE-2025-48633 allows information disclosure, both affecting core...
Google released the Android Security Bulletin for December 2025 on December 1, with an update on December 4 the advisory patches more than 107 vulnerabilities across Android 13 through 16 and later.
Security patch levels of 2025-12-01 or 2025-12-05 fix these issues completely. Two...
Qualcomm Technologies released its December 2025 Security Bulletin on December 1, 2025, revealing multiple high-severity flaws in proprietary and open-source code, with CVE-2025-47372 standing out as a critical threat to secure boot processes in numerous chipsets.
This vulnerability enables memory corruption during boot by...
Google is set to introduce warnings on the Google Play Store for Android apps that cause excessive battery drain due to poor background activity management.
This move aims to improve the user experience by highlighting apps that misuse system resources, particularly by prolonging the...
The vulnerability stems from an out-of-bounds write flaw in the libimagecodec.quram.so library, a core component for image processing on Samsung Android devices running versions 13 and later.
Classified under CWE-787, it allows attackers to corrupt memory and execute arbitrary code by sending specially crafted...