A flaw in the EngageLab SDK exposed 50 million Android users, allowing malicious apps to exploit trusted permissions and ...

Microsoft discovered that a third-party Android SDK widely used in cryptocurrency wallet applications is affected by a severe ...

A severe Android intent‑redirection vulnerability in a widely deployed SDK exposed sensitive user data across millions of ...

The Google API keys, all using the ‘AIza…’ format, can be abused for retroactive privilege escalation: a key that a developer ...

Anthropic's Claude Code CLI had its full TypeScript source exposed after a source map file was accidentally included in ...

Plus: The FBI says a recent hack of its wiretap tools poses a national security risk, attackers stole Cisco source code as ...

Gemma 4 is released under the Apache 2.0 license, which allows commercial and non-commercial use with minimal restrictions.

Everything you may have missed from the past week.

Google has detailed how users will be able to sideload apps from unverified developers once it implements its more restrictive policy towards downloading software on Android. The company originally ...

Even if connecting your Android phone to your car's dashboard via Android Auto is a daily ritual for you, you may not have explored much beyond the default settings for the interface. You probably ...

Y Combinator’s famed CEO Garry Tan told a SXSW audience that he’s got “cyber psychosis” and is barely sleeping because he’s so excited to be working with AI agents. “I sleep, like, four hours a night ...

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, repositories, and extensions on GitHub, npm, and VSCode/OpenVSX extensions. Evidence ...