SecurityWeek

Google API Keys in Android Apps Expose Gemini Endpoints to Unauthorized Access

The Google API keys, all using the ‘AIza…’ format, can be abused for retroactive privilege escalation: a key that a developer ...
TechSpot

Android isn't killing sideloading, but it's making it a lot harder

A hot potato: A year after announcing the most significant change to Android in a long time, Google is now introducing a new process aimed at making the mobile platform "open" again. Mountain View ...
Microsoft

Intent redirection vulnerability in third-party SDK exposed millions of Android wallets to potential risk

A severe Android intent‑redirection vulnerability in a widely deployed SDK exposed sensitive user data across millions of ...
9to5google

Here’s everything new in Android Canary 2603: App lock, Bubbles, Blur, & more

Google today rolled out Android Canary 2603 with a number of user-facing changes compared to the latest Android 17 Beta 2. ZP11.260220.007 with the March 2026 security patch is available for the Pixel ...
Infosecurity-magazine.com

Android OS-Level Attack Bypasses Mobile Payment Security

A new Android attack technique that manipulates the runtime environment instead of modifying applications has been identified. The method, discovered by CloudSEK researchers, uses the LSPosed ...