TitleCertificate Pinning Is Not Outdated if You Do It RightMcAiden Vulnerability No.MIDA2025-0002ProductAndroidFound2025-02-03ByNutthanon Thongcharoen (McAiden Consulting Co., Ltd.) Pumipat Korncharornpisuit (McAiden Consulting Co., Ltd.)…
TitleThird-Party Keyboard Detection on AndroidMcAiden Vulnerability No.MIDA2025-0001ProductAndroidFound2025-01-20ByNutthanon Thongcharoen (McAiden Consulting Co., Ltd.) Pumipat Korncharornpisuit (McAiden Consulting Co., Ltd.) McAiden Research Lab Vulnerability Overview/Description…
Committing to Superior Information Security At McAiden Consulting Co., Ltd., we are excited to announce our recent achievement: we are now officially ISO…
Welcome to McAiden, your trusted source for comprehensive mobile app client-side vulnerability report. Our 2023 edition is now available for download. Dive into…
Most applications utilize Android APIs for verifying untrusted Android Accessibility Service binding with an app. They have to implement a whitelist of multiple…
We wrote about the malicious app Bumble in Part 1. We introduced a bit about its packing and how it communicates to the…
