Android adbd wireless ADB authentication bypass (CVSS 8.8, adjacent-network, public PoC 2026-05-11) — § 2 gate not cleared
cve · CVE-2026-0073
Coverage timeline
1
first 2026-05-12 → last 2026-05-12
Briefs
1
1 distinct
Sources cited
47
29 hosts
Sections touched
0
—
Co-occurring entities
0
no co-occurrence
Story timeline
- 2026-05-12CTI Daily Brief — 2026-05-12
Source distribution
- thehackernews.com6 (13%)
- attack.mitre.org5 (11%)
- bleepingcomputer.com3 (6%)
- welivesecurity.com3 (6%)
- helpnetsecurity.com2 (4%)
- osservatorionessuno.org2 (4%)
- securityweek.com2 (4%)
- source.android.com2 (4%)
- other22 (47%)
External references
All cited sources (47)
- source.android.comprimaryinlineAndroid Security Bulletin May 2026https://source.android.com/docs/security/bulletin/2026/2026-05-01
- source.android.comprimaryinlineAndroid Bulletinhttps://source.android.com/docs/security/bulletin/2026/2026-06-01
- attack.mitre.orginlineT1090.002 Proxy: External Proxyhttps://attack.mitre.org/techniques/T1090/002/
- attack.mitre.orginlineT1496 Resource Hijackinghttps://attack.mitre.org/techniques/T1496/
- attack.mitre.orginline`T1516 Input Injection`https://attack.mitre.org/techniques/T1516/
- attack.mitre.orginlineT1566 Phishinghttps://attack.mitre.org/techniques/T1566/
- attack.mitre.orginline`T1626 Abuse Elevation Control Mechanism`https://attack.mitre.org/techniques/T1626/
- bleepingcomputer.cominlineBleepingComputer, 2026-06-02https://www.bleepingcomputer.com/news/security/google-fixes-one-actively-exploited-android-zero-day-124-flaws/
- bleepingcomputer.cominlineBleepingComputer, 2026-06-16https://www.bleepingcomputer.com/news/security/new-rokarolla-android-malware-targets-217-banking-crypto-apps/
- bleepingcomputer.cominlineBleepingComputer, 2026-05-05https://www.bleepingcomputer.com/news/security/scarcruft-hackers-push-birdcall-android-malware-via-game-platform/
- blog.talosintelligence.cominlineCisco Talos, 2026-05-05https://blog.talosintelligence.com/cloudz-pheno-infostealer/
- cert.ssi.gouv.frinlineCERT-FR / cert.ssi.gouv.fr, 2026-05-04/05https://www.cert.ssi.gouv.fr/
- cyber.gc.cainlineCCCS, 2026-06-03https://www.cyber.gc.ca/en/guidance/cyber-threat-bulletin-fifa-world-cup-2026tm
- edri.orginlineEDRi, 2026-05-28https://edri.org/our-work/inside-italys-low-cost-spyware-economy/
- fortinet.cominlineFortiGuard Labs, 2026-06-04https://www.fortinet.com/blog/threat-research/cybercriminals-are-targeting-the-fifa-world-cup-2026
- helpnetsecurity.cominlineHelp Net Security, 2026-05-26https://www.helpnetsecurity.com/2026/05/26/sharepoint-vulnerability-cve-2026-45659/
- helpnetsecurity.cominlineHelp Net Securityhttps://www.helpnetsecurity.com/2026/06/02/android-vulnerability-exploited-cve-2025-48595/
- isc.sans.eduinlineSANS ISC, 2026-06-01https://isc.sans.edu/diary/rss/33034
- krebsonsecurity.cominlineKrebs on Security, 2026-06-18https://krebsonsecurity.com/2026/06/popa-botnet-linked-to-publicly-traded-israeli-firm/
- labs.withsecure.cominlineWithSecure Labs, 2026-05-29https://labs.withsecure.com/publications/greyvibe
- microsoft.cominlineMicrosoft, 2026-05-30https://www.microsoft.com/en-us/security/blog/2026/05/29/33-malicious-npm-packages-abuse-dependency-confusion-profile-developer-environments/
- msrc.microsoft.cominlineMicrosoft MSRChttps://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45659
- ncsc.admin.chinlineNCSC Switzerlandhttps://www.ncsc.admin.ch/ncsc/en/home/aktuell/im-fokus/2026/massnahmen-grossanlaesse-konferenzen-g7.html
- noscope.cominlineNoScope, 2026-05-25https://www.noscope.com/blog/gitea-instances-exposing-private-container
- osservatorionessuno.orginlineOsservatorio Nessuno — Spyrtacus, 2026-04-09https://osservatorionessuno.org/blog/2026/04/italian-spyware-maker-sio-still-developing-and-distributing-spyrtacus/
- osservatorionessuno.orginlineOsservatorio Nessuno — Morpheus, 2026-04-23https://osservatorionessuno.org/blog/2026/04/morpheus-a-new-spyware-linked-to-ips-intelligence/
- penligent.aiinlinePenligent/Barghest researchhttps://www.penligent.ai/hackinglabs/cve-2026-0073-android-adbd-zero-click-shell-through-wireless-adb/
- posthogstatus.cominlinePostHog status, 2026-05-30https://www.posthogstatus.com/incidents/01KSV6HJYKG5QJAP8HVTSQVSM1
- qurium.orginlineQurium, 2026-06-18https://www.qurium.org/forensics/finding-popa/
- security-hub.ncsc.admin.chinlineNCSC-CH post 12594https://security-hub.ncsc.admin.ch/#/posts/12594
- securityaffairs.cominlineSecurity Affairs, 2026-05-12https://securityaffairs.com/192003/malware/android-banking-trojan-trickmo-evolves-using-ton-network-for-c2.html
- securityweek.cominlineSecurityWeek, 2026-06-02https://www.securityweek.com/exclusive-how-one-line-of-code-put-billions-of-microsoft-android-app-downloads-at-risk/
- securityweek.cominlineSecurityWeek, 2026-05-28https://www.securityweek.com/russia-linked-greyvibe-attackers-use-ai-to-supercharge-cyberattacks/
- sonatype.cominlineSonatype, 2026-05-28https://www.sonatype.com/blog/inside-a-176-package-npm-campaign-built-to-beat-your-internal-dependencies
- thehackernews.cominlineThe Hacker News, 2026-05-27https://thehackernews.com/2026/05/gitea-vulnerability-exposes-private.html
- thehackernews.cominlineThe Hacker Newshttps://thehackernews.com/2026/05/grandoreiro-malware-and-btmob-rat.html
- thehackernews.cominlineThe Hacker News, 2026-05-12https://thehackernews.com/2026/05/new-trickmo-variant-uses-ton-c2-and.html
- thehackernews.cominlineThe Hacker News, 2026-05-05https://thehackernews.com/2026/05/scarcruft-hacks-gaming-platform-to.html
- thehackernews.cominlineThe Hacker News, 2026-06-03https://thehackernews.com/2026/06/microsoft-365-android-apps-let-any-app.html
- thehackernews.cominlineThe Hacker Newshttps://thehackernews.com/2026/06/oracle-weblogic-cve-2024-21182-added-to.html
- threatfabric.cominlineThreatFabric, 2026-05-11https://www.threatfabric.com/blogs/new-trickmo-variant-device-take-over-malware-targeting-banking-fintech-wallet-auth-app
- threatfabric.cominlineThreatFabric, 2026-06-04https://www.threatfabric.com/blogs/own-goal-piracy-as-an-attack-vector-to-target-football-fans
- watchguard.cominlineWatchGuard — Grandoreiro Europe/LatAmhttps://www.watchguard.com/wgrd-security-hub/secplicity-blog/grandoreiro-malware-campaign-targets-europe-and-latin-america
- welivesecurity.cominlineWeLiveSecurity (ESET), 2026-05-07https://www.welivesecurity.com/en/eset-research/fake-call-logs-real-payments-how-callphantom-tricks-android-users/
- welivesecurity.cominlineESET WeLiveSecurity, 2026-05-05https://www.welivesecurity.com/en/eset-research/rigged-game-scarcruft-compromises-gaming-platform-supply-chain-attack/
- welivesecurity.cominlineESET WeLiveSecurity — BTMOBhttps://www.welivesecurity.com/en/malware/btmob-stealthy-rat-burrowing-deep-android-devices/
- zimperium.cominlineZimperium zLabs, 2026-06-16https://zimperium.com/blog/rokarolla-android-banker-with-complete-device-takeover-capabilities
Items in briefs about Android adbd wireless ADB authentication bypass (CVSS 8.8, adjacent-network, public PoC 2026-05-11) — § 2 gate not cleared
No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.