Security Affairs

JUNE 17, 2022

Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.

Spyware 73

Spyware Surveillance Telecommunications Mobile 73

Security Affairs

APRIL 8, 2020

In October 2019, WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks against its users. In May, Facebook has patched a critical zero-day vulnerability in WhatsApp, tracked as CVE-2019-3568 , that has been exploited to remotely install spyware on phones by calling the targeted device.

Surveillance 98

Surveillance Spyware Advertising Government 98

Security Affairs

NOVEMBER 19, 2019

Experts found multiple flaws (CVE-2019-2234) in the Android camera apps provided by Google and Samsung that could allow attackers to spy on users. SecurityAffairs – Android, CVE-2019-2234). The post CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance appeared first on Security Affairs.

Surveillance 56

Surveillance Manufacturing Advertising IoT 56

Security Affairs

MAY 20, 2019

Amnesty International filed a lawsuit against Israeli surveillance firm NSO and fears its staff may be targeted by the company with its Pegasus spyware. The name NSO Group made the headlines last week after the disclosure of the WhatsApp flaw exploited by the company to remotely install its surveillance software.

Surveillance 74

Surveillance Spyware Software Government 74

Security Affairs

MARCH 5, 2024

The surveillance software was also used to spy on U.S. Surveillance software was misused by foreign actors in attacks aimed at dissidents and journalists around the world. Predator spyware is known for its extensive data-stealing and surveillance capabilities. government officials, journalists, and policy experts.

Spyware 94

Spyware Surveillance Government Technology 94

Security Affairs

MARCH 3, 2023

According to rumors, the Polish special services are using surveillance software to spy on government opponents. The news of the hack was reported by the Gazeta Wyborcza daily, and unfortunately, it isn’t the first time that the Pegasus spyware was used in the country.

Spyware 86

Spyware Surveillance Hacking Government 86

Security Affairs

JANUARY 7, 2020

Security experts have found a malicious app in the Google Play that exploits the recently patched CVE-2019-2215 zero-day vulnerability. Earlier October, Google Project Zero researchers Maddie Stone publicly disclosed a zero-day vulnerability , tracked as CVE-2019-2215 , in Android. SecurityAffairs – Android, hacking).

Surveillance 76

Surveillance Advertising Marketing Encryption 76

Security Affairs

OCTOBER 30, 2019

WhatsApp sued Israeli surveillance firm NSO Group, accusing it of using a flaw in its messaging service to conduct cyberespionage on journalists and activists. WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks against its users. link] — Will Cathcart (@wcathcart) October 29, 2019.

Surveillance 50

Surveillance Technology Spyware Mobile 50

Security Affairs

SEPTEMBER 19, 2021

The trio has worked as hackers-for-hire for the United Arab Emirates cybersecurity company DarkMatter between January 2016 and November 2019. ExpressVPN published an official response that confirmed the accusation of the DoJ but that pointed out that the experts took part to the Project Raven before he joined to the company in 2019.

Surveillance 142

Surveillance VPN Hacking Cybersecurity 142

Security Affairs

SEPTEMBER 27, 2020

Experts from Amnesty International uncovered a surveillance campaign that targeted Egyptian civil society organizations with a new version of FinSpy spyware. The mobile version of the surveillance software in the first stage of the infection leverages the exploits to get root access. SecurityAffairs – hacking, FinSpy).

Spyware 136

Spyware Surveillance Mobile Advertising 136

Security Affairs

APRIL 25, 2020

The legal dispute between Facebook and NSO group continues even after the Israeli surveillance firm filed a motion to dismiss the case earlier this month. Facebook advocates have challenged a plea from spyware maker NSO Group to dismiss the legal dispute over the hacking accusations, arguing it has immunity from prosecution.

Spyware 101

Spyware Surveillance Advertising Mobile 101

Security Affairs

APRIL 19, 2022

The experts speculate the HOMAGE exploit was used since the last months of 2019, and involved an iMessage zero-click component that launched a WebKit instance in the com.apple.mediastream.mstreamd process, following a com.apple.private.alloy.photostream lookup for a Pegasus email address. . To nominate, please visit:?

Spyware 87

Spyware Surveillance Government Software 87

Security Affairs

SEPTEMBER 15, 2021

The trio has worked as hackers-for-hire for the United Arab Emirates cybersecurity company DarkMatter between January 2016 and November 2019. ” DOJ also ordered the former intelligence employees to cooperate with the relevant department and FBI components; they are also condemned to a lifetime ban on future US security clearances.

Surveillance 119

Surveillance Hacking Government Cybersecurity 119

Security Affairs

MAY 29, 2023

Security researchers at Cisco Talos and the Citizen Lab have shared technical details about a commercial Android spyware named Predator that is sold by the surveillance firm Intellexa (formerly known as Cytrox). The attacks aimed at installing the surveillance spyware Predator, developed by the North Macedonian firm Cytrox.

Spyware 86

Spyware Surveillance Media Malware 86

Security Affairs

OCTOBER 11, 2021

The attacks on the Togolese activists started in December 2019 and lasted two months. “The Togolese activist, who wishes to remain anonymous for security reasons, has a history of working with civil society organizations and is an essential voice for human rights in the country. SecurityAffairs – hacking, Donot Team APT).

Spyware 78

Spyware Surveillance Accountability Mobile 78

Security Affairs

DECEMBER 4, 2022

. “Court documents and government contracting records show the agencies tasked with monitoring the Mexican border have spent record sums on car hacking tools, while talking up the extraordinary amount of valuable evidence that can be reaped from onboard computers.” SecurityAffairs – hacking, infotainment systems).

Surveillance 99

Surveillance Technology Mobile Hacking 99

Security Affairs

OCTOBER 23, 2020

In 2013, Edward Snowden shed the light on the mass surveillance program operated by the US government to spy on its citizens and allies. The man expressed his desire to return to the United States where he is considered a criminal and a threat to homeland security due to his revelation. SecurityAffairs – hacking, Snowden).

Surveillance 121

Surveillance Advertising Hacking Government 121

ForAllSecure

NOVEMBER 3, 2021

His talk was nostalgic, reflecting on the 40+ years of computer hacking. Moss also said that all hacking is not infosec and that all infosec is not hacking. “Hacking can provide a lot of joy and absolutely no income. But hacking, not so much. Where with infosec the goal is to produce income. It’s a job.

Hacking 52

Hacking InfoSec Internet Internet 52

Security Affairs

JUNE 9, 2023

Stealth Soldier is surveillance software that allows operators to spy on the victims and exfiltrate collected data. The researchers noticed that the Stealth Soldier infrastructure has some overlaps with infrastructure the The Eye on the Nile , a campaign that targeted journalists and human rights activists in Egypt in 2019.

Surveillance 80

Surveillance Malware Social Engineering Engineering 80

Security Affairs

MAY 14, 2019

Facebook has recently patched a critical zero-day vulnerability in WhatsApp, tracked as CVE-2019-3568 , that has been exploited to remotely install spyware on phones by calling the targeted device. The bad news is that experts are aware of attacks exploiting the WhatsApp zero-day to deliver surveillance software. Pierluigi Paganini.

Spyware 91

Spyware Surveillance Mobile Software 91

Security Affairs

MARCH 21, 2021

A group of US hackers recently claimed to have gained access to footage from 150,000 security cameras at banks, jails, schools, healthcare clinics, and prominent organizations. Once Verkada became aware of the hack, it has disabled all internal administrator accounts to prevent any unauthorised access. ” continues the DoJ.

Identity Theft 69

Identity Theft Computers and Electronics Surveillance Hacking 69

Security Affairs

SEPTEMBER 11, 2022

The campaigns have been conducted since 2015 and are aimed at conducting information collection and surveillance operations against individuals and organizations of strategic interest to Teheran. ” The surveillance operations conducted by the APT group involved the distribution of Android malware such as VINETHORN and PINEFLOWER.

Surveillance 91

Surveillance Social Engineering Phishing Government 91

Security Affairs

OCTOBER 5, 2020

A China-linked threat actor used UEFI malware based on code from Hacking Team in attacks aimed at organizations with an interest in North Korea. The experts were investigating several suspicious UEFI firmware images when discovered four components, some of which were borrowing the source code a Hacking Team spyware. Pierluigi Paganini.

Firmware 122

Firmware Spyware Surveillance Hacking 122

Security Affairs

OCTOBER 18, 2019

A researcher has published a proof-of-concept (PoC) exploit code for the CVE-2019-2215 zero-day flaw in Android recently addressed by Google. Earlier October, Google Project Zero researchers Maddie Stone publicly disclosed a zero-day vulnerability , tracked as CVE-2019-2215, in Android. SecurityAffairs – CVE-2019-2215, zero-day).

Advertising 45

Advertising Surveillance Security Defenses Marketing 45

Security Affairs

JANUARY 7, 2024

Between 2017 and 2019, the APT group mainly used DNS hijacking in its campaigns. The group targets government entities, Kurdish (political) groups like PKK, telecommunication, ISPs, IT-service providers (including security companies), NGO, and Media & Entertainment sectors; Over the years, the group enhanced its evasion capabilities.

Media 105

Media Accountability Telecommunications Government 105

Security Affairs

SEPTEMBER 12, 2019

The scary part of the story is that a private surveillance firm was aware of the zero-day flaw since at least two years and is actively exploiting the SimJacker vulnerability to spy on mobile users in several countries. The researchers plan to disclose technical details of the attack at the VB2019 London conference , in October 2019.

Hacking 104

Hacking Mobile Spyware Manufacturing 104

Security Affairs

JUNE 23, 2019

The United States launched a series of cyber attacks on Iran after the Iranian military has downed an American surveillance drone. The military response to Iran, after the Iranian army has downed an American surveillance drone, started from the cyberspace. Trump (@realDonaldTrump) June 22, 2019. — Donald J.

Cyber Attacks 87

Cyber Attacks Surveillance Advertising Government 87

Security Affairs

JUNE 22, 2020

In October 2019, security experts at Amnesty International’s Security Lab have uncovered targeted attacks against Moroccan human rights defenders Maati Monjib and Abdessadak El Bouchattaoui that employed NSO Group surveillance tools. ” reads the report published by Amnesty International.

Spyware 109

Spyware Surveillance Mobile Advertising 109

Security Affairs

JANUARY 14, 2021

Security experts from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian government institutions and private companies. Malware researchers from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian entities exclusively. Pierluigi Paganini.

Malware 102

Malware Surveillance Phishing Government 102

Security Affairs

JANUARY 31, 2021

Last year, the group published a detailed analysis on how the Chinese government has improved its surveillance system to detect and block the popular circumvention tools Shadowsocks and its variants. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. SecurityAffairs – hacking, China).

Firewall 136

Firewall Surveillance Internet Internet 136

Security Affairs

FEBRUARY 14, 2021

SecurityAffairs – hacking, newsletter). The post Security Affairs newsletter Round 301 appeared first on Security Affairs. If you want to also receive for free the international press subscribe here. COMB breach: 3.2B COMB breach: 3.2B If you want to also receive for free the international press subscribe here.

Spyware 84

Spyware Phishing Data breaches Surveillance 84

Security Affairs

NOVEMBER 24, 2019

The best news of the week with Security Affairs. Tianfu Cup 2019 Day 1 – Chinese experts hacked Chrome, Edge, Safari, Office365. Tianfu Cup 2019 – 11 teams earned a total of 545,000 for their Zero-Day Exploits. CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance.

Data breaches 83

Data breaches Wireless Banking Advertising 83

Security Affairs

NOVEMBER 12, 2021

Evidence collected demonstrated that attackers exploited the CVE-2019-8506 flaw to execute malicious code in Safari. SecurityAffairs – hacking, watering hole). The post macOS Zero-Day exploited in watering hole attacks on users in Hong Kong appeared first on Security Affairs. The macOS exploits were different from the iOS ones.

Malware 128

Malware Media Surveillance Encryption 128

Security Affairs

JULY 15, 2020

CIA orchestrated dozens of hacking operations against targets worldwide, including APT34 and FSB hacks, states an exclusive report from Yahoo News. ” President Trump extended the powers granted to the CIA, which was involved in is offensive cyber operations along with surveillance and data collection activities.

Banking 97

Banking Hacking Advertising Media 97

Security Affairs

SEPTEMBER 3, 2022

SecurityAffairs – hacking, newsletter). The post Security Affairs newsletter Round 382 appeared first on Security Affairs. users China-linked APT40 used ScanBox Framework in a long-running espionage campaign Russian streaming platform Start discloses a data breach impacting 7.5M Pierluigi Paganini.

Data breaches 63

Data breaches Malware Surveillance Ransomware 63

Security Affairs

DECEMBER 29, 2019

Former contractor sentenced to 10 months in prison for hacking airline Jet2. CVE-2019-19781 Citrix flaw exposes 80,000 companies at risk. NVIDIA patches CVE-2019-5702 high-severity flaw in GeForce Experience. Thai Officials confirmed the hack of prison surveillance cameras and the video broadcast.

Cyber Attacks 55

Cyber Attacks Surveillance Advertising Ransomware 55

Security Affairs

OCTOBER 12, 2021

Operators behind the FreakOut (aka Necro, N3Cr0m0rPh) Python botnet have added a PoC exploit for Visual Tools DVR, a professional digital video recorder used in surveillance video systems. CVE-2019-12725 – Zeroshell 3.9.0. SecurityAffairs – hacking, Necro botnet). CVE-2021-2900 – Genexis PLATINUM 4410 2.1 P4410-V2-1.28

DDOS 89

DDOS Surveillance Hacking Internet 89