The StrandHogg vulnerability

Promon security researchers have found proof of a dangerous Android vulnerability, dubbed ‘StrandHogg’, that allows real-life malware to pose as legitimate apps, with users unaware they are being targeted. Lookout, a partner of Promon, confirmed that they have identified 36 malicious apps exploiting the vulnerability. Among them were variants of the BankBot banking trojan observed as early as 2017. *During testing, Promon researchers found that all of the 500 most popular apps (as ranked by app intelligence company 42 Matters) are vulnerable to StrandHogg. *All versions of Android affected, incl. Android 10 (note: the permission harvesting exploit is only from Android 6.0 and onwards).
BankBot: one of the most widespread banking trojans around, with dozens of variants and close relatives springing up all the time. BankBot attacks have been detected all over the world, in the U.S., Latin America, Europe and the Asia Pacific region.

18 ancient Egyptian tombs with dozens of gold 'tongues' discovered along the Mediterranean coast (photo)
119813.07.2026, 22:53
These 600-Year-Old Chinese Surgical Instruments Are Coated in an Early Local Anesthetic—Carefully Extracted From a Poisonous Plant
147913.07.2026, 03:19
Uruguay unveils giant dinosaur species dating back 80 million years (photo)
166712.07.2026, 20:39
Scientists Built a Life-Size Dinosaur Nest and the Results Were Surprising (video)
335105.07.2026, 20:58
Archaeologists discover ancient Maya city hidden in Mexican jungle for over 1,000 years
548727.06.2026, 00:49
How old is the North Pole Dome impact, Western Australia?
627124.06.2026, 21:22
First shipwrecks linked to real pirates of the Caribbean found in Bahamas
655714.06.2026, 16:57
Pompeii escape: AI reconstructs the last gesture of an eruption victim (photo)
831018.05.2026, 00:37