SecureWorld News

FEBRUARY 8, 2024

Major sporting events like the Super Bowl face elevated cyber risks due to the proliferation of connected networks and devices used by venues, teams, vendors, media, and attendees. This year, the U.S. Department of Homeland Security (DHS) is working closely with partners to assess and strengthen cyber protections.

Penetration Testing 105

Penetration Testing Surveillance Cyber Risk Malware 105

Security Affairs

DECEMBER 10, 2023

billion personal records compromised by data breaches in past two years — underscoring need for end‑to‑end encryption Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter) Will Enable Mass Spying Reddit Says Leaked U.S.-U.K.

Data breaches 87

Data breaches Ransomware Hacking Financial Services 87

Security Affairs

MARCH 21, 2021

Hackers also posted images captured from the hacked surveillance video on Twitter with an #OperationPanopticon hashtag, published images show that they have gained root shell access to the surveillance cameras used by Telsa and Cloudflare. SecurityAffairs – hacking, cybercrime). ” continues the DoJ.

Identity Theft 72

Identity Theft Computers and Electronics Surveillance Hacking 72

Security Affairs

MAY 30, 2024

Researchers spotted a macOS version of the LightSpy surveillance framework that has been active in the wild since at least January 2024. LightSpy can steal files from multiple popular applications like Telegram, QQ, and WeChat, as well as personal documents and media stored on the device.

Spyware 85

Spyware Malware Surveillance Mobile 85

Security Affairs

JUNE 23, 2022

The Israeli surveillance firm NSO Group revealed that its Pegasus spyware was used by at least five European countries. The controversial Israeli surveillance vendor NSO Group told the European Union lawmakers that its Pegasus spyware was used by at least five countries in the region. SecurityAffairs – hacking, NSO GROUP).

Spyware 79

Spyware Surveillance Software Media 79

Security Affairs

MAY 14, 2023

ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million

Data breaches 89

Data breaches DDOS Artificial Intelligence Ransomware 89

Krebs on Security

MARCH 29, 2022

There is a terrifying and highly effective “method” that criminal hackers are now using to harvest sensitive customer data from Internet service providers, phone companies and social media firms. The roster of the now-defunct “Infinity Recursion” hacking team, from which some members of LAPSUS$ allegedly hail.

Accountability 276

Accountability Government Hacking Social Engineering 276

Security Affairs

DECEMBER 24, 2019

According to a report published by the New York Times, the popular app ToTok was used by the UAE government as a surveillance tool. The report said US intelligence officials and a security researcher determined the app was being used by the UAE government for detailed surveillance. ” reported the AFP agency.

Government 61

Government Surveillance Advertising Mobile 61

Security Affairs

JULY 24, 2022

ransom and sued its insurance firm for refusing to cover this payment Crooks stole $375k from Premint NFT, it is one of the biggest NFT hacks ever Google is going to remove App Permissions List from the Play Store Security Affairs newsletter Round 374 by Pierluigi Paganini APT groups target journalists and media organizations since 2021.

Spyware 90

Spyware Surveillance Insurance Malware 90

ForAllSecure

MAY 26, 2022

Is hacking a crime? Bryan McAninch (Aph3x) talks about his organization, Hacking Is Not A Crime , and the ethical line it draws on various hacking activities. I used to hack the phone company quite a bit. The 33 year old from suffer faced charges from US prosecutors as hacking into computers at various American agencies.

Hacking 52

Hacking Technology InfoSec Media 52

Security Affairs

APRIL 16, 2023

Remcos is a legitimate remote monitoring and surveillance software developed by the company BreakingSecurity. Tax Day, Microsoft has observed a new Remcos RAT campaign targeting US accounting and tax return preparation firms. The phishing attacks began in February 2023, the IT giant reported.

Accountability 89

Accountability Phishing Financial Services Surveillance 89

Krebs on Security

NOVEMBER 15, 2022

Wanted Ukrainian cybercrime suspect Vyacheslav “Tank” Penchukov (right) was arrested in Geneva, Switzerland. “DJ Slava Rich,” seen here performing as a DJ in Ukraine in an undated photo from social media. “In early October, the Ukrainian surveillance team said they’d lost him,” he wrote.

Banking 278

Banking Small Business Accountability Cybercrime 278

Security Affairs

APRIL 23, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter ) The post Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Spyware 72

Spyware Ransomware Malware Data breaches 72

Security Affairs

JULY 18, 2021

SecurityAffairs – hacking, newsletter). If you want to also receive for free the international pre ss subscribe here. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. The post Security Affairs newsletter Round 323 appeared first on Security Affairs.

Spyware 54

Spyware Surveillance Ransomware Retail 54

Security Affairs

JANUARY 9, 2022

” Recently media shared an FBI training document that reveals the surveillance capabilities of the US law enforcement detailing which data can be extracted from encrypted messaging apps. SecurityAffairs – hacking, instant messaging). ” states the U.S. Follow me on Twitter: @securityaffairs and Facebook.

Computers and Electronics 103

Computers and Electronics Encryption Surveillance Cybercrime 103

Malwarebytes

NOVEMBER 2, 2023

Unlike other generations whose privacy fears are deeply entangled with concerns of traditional cybercrimes like identity and credit card theft, Gen Z worries most about the exposure of their private information because of the chance of harassment, bullying, and lost friendships. But it isn’t that Gen Z, wholesale, doesn’t care about privacy.

Identity Theft 122

Identity Theft Data breaches Hacking Surveillance 122

SecureList

NOVEMBER 14, 2023

Mail servers become priority targets In June, Recorded Future warned that BlueDelta (aka Sofacy, APT28, Fancy Bear and Sednit) exploited vulnerabilities in Roundcube Webmail to hack multiple organizations including government institutions and military entities involved in aviation infrastructure. Drone hacking!

Hacking 110

Hacking Energy and Utilities Media Malware 110

SC Magazine

MARCH 26, 2021

On the flip side, their employees had to grapple with the reality that their corporate devices could surveil their activities in their own homes. In the past, these items were given as a security measure for employees to cover their webcam on the slight chance their computer was hacked. I saw this demand as well.

Surveillance 57

Surveillance Software Media Data collection 57

Security Affairs

SEPTEMBER 30, 2018

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. . · Bitcoin Core Team fixes a critical DDoS flaw in wallet software. · SHEIN Data breach affected 6.42 Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Data breaches 57

Data breaches IoT Advertising Banking 57

Security Affairs

JULY 7, 2019

Vulnerability in Medtronic insulin pumps allow hacking devices. China installs a surveillance app on tourists phones while crossing in the Xinjiang. Google addressed three critical code execution flaws in Android Media Framework. Germany and the Netherlands agreed to build TEN, the first ever joint military internet.

Scams 47

Scams Spyware DNS Advertising 47

SecureList

OCTOBER 26, 2021

Upon further investigation we also discovered additional implants deployed through both ShadowPad and ShadowShredder, such as Quarian backdoor, PlugX, Poison Ivy and other hack tools. Historically, Lazarus used MATA to attack various industries for cybercrime-like intentions: stealing customer databases and spreading ransomware.

Malware 143

Malware Government Surveillance Spyware 143

SecureList

FEBRUARY 26, 2021

The Coalition Against Stalkerware warns that stalkerware “may facilitate intimate partner surveillance, harassment, abuse, stalking, and/or violence.” They still need physical access to the phone to jailbreak it, so iPhone users who fear surveillance should always keep an eye on their device.

Mobile 86

Mobile Surveillance Software Passwords 86

SecureList

OCTOBER 17, 2023

This strategic shift signals its intent to intensify its surveillance capabilities and expand its range of targets. These are new variants of the same hacking tools that we first reported in August 2019, and later detailed again in June 2021. Lazarus uses Trojanized apps, especially backdoored VNC apps, to access enterprise systems.

Government 110

Government Malware VPN Manufacturing 110

SecureList

APRIL 27, 2021

It was first publicly documented in 2014, in the aftermath of the Gamma Group hacking incident. The group’s operations were exposed in 2018, showing that it was conducting surveillance attacks against individuals in the Middle East. This server was disabled a day after our discovery last December.

Malware 142

Malware Spyware Government Social Engineering 142

Krebs on Security

MARCH 22, 2023

Google said it believes the exploit chain for Samsung devices belonged to a “commercial surveillance vendor,” without elaborating further. According to The Washington Post , four of the Apple App Store’s 10 most-downloaded free apps are owned by Chinese companies, including Temu and the social media network TikTok.

Malware 273

Malware eCommerce Mobile Media 273