> mfw the root shell hits

I'm super excited to say that Google's Android Malware Research team is hiring again! We're looking for a mix of 4 senior and junior engineers who want to join our team in the Bangalore office!. Apply at

RT @netonightmare: A short review of the book related to cybersecurity that I read in 2023. #books #cybersecurity….

This was the last missing bit for this first edition and I'm looking forward to all the feedback that people have for what we could do better in a second edition. :).

Our book, The Android Malware Handbook: Detection and Analysis by Human and Machine, is now also available on Amazon: . The GitHub repository with malware files to follow along is also published at

Hey look, the author copies have arrived! The book is real!. I'll share some stories and thoughts about the book over the next few days over at

RT @nostarch: What do you get when you bring together an all-star team of ML and security experts to write an ingenious guide to detecting….

Our book has a cover now! I think it's also going into print this week or something.

Ready for pre-order 🥳.

This is not a new thing. Has been happening for months.

Or "Internal Server Error.The server encountered an internal error or misconfiguration and was unable to complete your request. Please contact the server administrator, you@your.address and inform them of the time the error occurred . ".

Starting a thread to find new jobs for people affected by the Google lay-offs. The first person is Jarrod, who is a great Android malware reverse engineer with a real desire to drive process improvements too. You can find his LinkedIn post at

I'm super-excited to see this finally published. It's sparse on details, so y'all can put on your threat hunting hats and figure out yourself how these signing keys got compromised.

IOC is if anybody wants to play around with it.

If you break the encrypted Lua code you can discover the C2s pointing at the right company which someone has even done publicly in the MalwareBytes forums at . Would be nice for @Malwarebytes to look into this and potentially fix the original article.

One thing that has been bugging me for two years is that I think @Malwarebytes wrongly attributed the behavior reported in to Adups (CTRL-F in the article).

How many microservices can you turn off Jenga-style before the tower collapses.

👇👇.

How did Ekoparty get to 11,000 attendees? Wasn't it just a few hundred recently in 2007???.