The Hacker News

Microsoft 365 Android Apps Let Any App Steal Account Tokens via Leftover Debug Flag

Debug flag disabled Microsoft 365 Android token checks, letting untrusted apps access accounts; patches issued May 12 to ...

Microsoft 365 Android Apps Had a Token Flaw IT Teams Should Check Now

Microsoft patched a Microsoft 365 Android flaw that exposed account tokens across six apps. Here’s what IT teams should check ...
SecurityWeek

Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Risk

Six Microsoft 365 Android apps contain an identical flaw that could risk billions of downloads being compromised. The ...

Billions of Microsoft apps users were left vulnerable to account hack: Here's how

The post Billions of Microsoft Apps Users Were Left Vulnerable to Account Hack: Here's How appeared first on Android ...

Google Update: Android Flaw Could Put Billions of Devices at Risk

Google patched an Android zero-click RCE flaw affecting multiple versions. Here’s what IT teams should know and how to reduce mobile risk.
Hosted on MSN

Google patches critical Android zero‑click flaw with $1.5m bounty push

Google has patched a critical zero‑click vulnerability in Android's System component, tracked as CVE‑2026‑0073, that could allow remote code execution without user interaction. The flaw, linked to the ...