An overlay attack involving Android's Toast feature may mean users have to deal with malware removal issues.
A malicious Google Chrome extension dubbed Catch-All is using a simple phishing scheme to commit data theft against users in Brazil.
Users who downloaded a phony Adblock Plus app should be on the lookout for a possible data breach. Google has since removed the app from its Chrome Store.
With the introduction of Google's HTTPS Strict Transport Security (HSTS) preload program, TLDs owned by the search giant will now enforce HTTPS by default.
The August Android Security Bulletin has been published, and it enumerates over 40 security risks that Google recently fixed in the Android OS.
Google is rolling out a number of protections to combat phishing attacks through plug-ins. These verification steps will help users practice due diligence.
Google is changing how it does two-step verification by replacing one-time SMS codes with new features and login protocols.
Two apps that contained LeakerLocker ransomware, which locks and threatens to spread personal data, have been removed from the Google Play Store.
Google recently disclosed 138 Android vulnerabilities, including media framework issues that could enable attackers to execute arbitrary code remotely.
Chrysaor, a variant of Pegasus spyware, has appeared on a small handful of Android devices and surveils users with a variety of techniques.