Google's Threat Analysis Group (TAG) discovered several exploit chains using Android, iOS, and Chrome zero-day and n-day vulnerabilities to install commercial spyware and malicious apps on targets ...

TapTrap Android attack works by launching transparent system prompts over regular app interfaces. The result is a near-invisible layer that silently captures your taps and interactions.

A new variant of the DroidKungFu Android Trojan is posing as a legitimate application update in order to infect handsets, according to security researchers from Finnish antivirus vendor F-Secure.

Bad programming practices open up WhatsApp chat database backups to Android malware attack ...

So Metasploit will only inspire loyalty if exploits continue to be added quickly. Do you expect the commitment to the FOSS project to continue now that Express has entered the market?