Security Affairs

JUNE 1, 2023

Researchers discovered spyware, dubbed SpinOk, hidden in 101 Android apps with over 400 million downloads in Google Play. The malicious module is distributed as a marketing SDK that developers behind the apps embedded in their applications and games, including those available on Google Play. The full list of apps is available here.

Spyware 87

Spyware Advertising Malware Marketing 87

Security Affairs

JULY 15, 2023

Government agencies SonicWall urges organizations to fix critical flaws in GMS/Analytics products Citrix fixed a critical flaw in Secure Access Client for Ubuntu Cl0p hacker operating from Russia-Ukraine war front line – exclusive Fortinet fixed a critical flaw in FortiOS and FortiProxy Microsoft mitigated an attack by Chinese threat actor Storm-0558 (..)

Spyware 90

Spyware Hacking Data breaches Mobile 90

Security Affairs

APRIL 27, 2024

ThreatFabric researchers uncovered a new mobile malware named Brokewell, which is equipped with sophisticated device takeover features. The malware also supports multiple “ spyware ” functionalities, it can gather device information, call history, geolocation, and record audio.

Malware 108

Malware Spyware Authentication Mobile 108

Security Affairs

AUGUST 28, 2022

Intellexa is an Israeli surveillance firm founded by Israeli entrepreneur Tal Dilian, it offers surveillance and hacking solution to law enforcement and intelligence agencies. The offer includes remote, one-click browser-based exploits that allow threat actors to compromise both Android and iOS mobile devices. Pierluigi Paganini.

Surveillance 130

Surveillance Spyware Mobile Hacking 130

Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches 94

Data breaches Malware Mobile Spyware 94

Security Affairs

JANUARY 30, 2022

SecurityAffairs – hacking, newsletter). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. The post Security Affairs newsletter Round 351 appeared first on Security Affairs.

Spyware 82

Spyware Data breaches Ransomware Cybercrime 82

Security Affairs

JULY 19, 2022

The spyware is able to steal SMS messages, contact lists, and device information and to sign victims up for premium service subscriptions. The Facestealer spyware was first spotted on July 2021 by Dr. Web researchers, the development team behind the threat has frequently changed its code. SecurityAffairs – hacking, Joker).

Malware 119

Malware Spyware Banking Mobile 119

Security Affairs

MARCH 4, 2023

stolen credit/debit cards Pegasus spyware used to spy on a Polish mayor Hundreds of thousands of websites hacked as part of redirection campaign MQsTTang, a new backdoor used by Mustang Panda APT against European entities Trusted Platform Module (TPM) 2.0 FiXS, a new ATM malware that is targeting Mexican banks BidenCash leaks 2.1M

Spyware 84

Spyware Data breaches Retail Ransomware 84

Security Affairs

FEBRUARY 28, 2021

SecurityAffairs – hacking, newsletter). If you want to receive the weekly Security Affairs Newsletter for free subscribe here. Pierluigi Paganini. The post Security Affairs newsletter Round 303 appeared first on Security Affairs.

Spyware 81

Spyware Backups Manufacturing Data breaches 81

Security Affairs

AUGUST 29, 2021

SecurityAffairs – hacking, newsletter). SecurityAffairs – hacking, newsletter). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. If you want to also receive for free the international pre ss subscribe here. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Spyware 102

Spyware Data breaches Surveillance Hacking 102

Security Affairs

NOVEMBER 10, 2020

The Brazilian cybercrime underground is recognized as the most focuses on the development and commercialization of banking trojans. The Trojan supports common functions similar to other mobile RATs, such us the capability to mask its presence by hiding the icon from the app drawer and abuses Android’s accessibility features.

Banking 100

Banking Mobile Malware Spyware 100

SecureList

NOVEMBER 22, 2022

These are attractive aspects that cybercrime groups will be unable to resist. And not only cybercrime groups, but also state-sponsored groups who have already started targeting this industry. More cryptocurrency-related threats: fake hardware wallets, smart contract attacks, DeFi hacks, and more. million downloads.

Cryptocurrency 87

Cryptocurrency Mobile Ransomware Banking 87

Security Affairs

JUNE 29, 2023

The news of the data breach was first reported by the Polish security research blog Niebezpiecznik , which also confirmed that the threat actors behind the attack claimed to have seized the domain associated with the spyware. “It’s not clear who is behind the LetMeSpy hack or their motives. ” reported TechCrunch.

Data breaches 77

Data breaches Spyware Hacking Accountability 77

Security Affairs

JANUARY 12, 2020

The spyware is able to steal SMS messages, contact lists and device information along with to sign victims up for premium service subscriptions. The Joker spyware checks for SIM cards associated with one of the above countries. This approach allows the Joker spyware to make it hard static analysis. ” continues the report.

Malware 79

Malware Spyware Advertising Mobile 79

Security Affairs

MARCH 5, 2020

The MESSAGETAP spyware was reportedly used by WICKED PANDA to monitor short message service (SMS) traffic from telecom networks. MESSAGETAP is able to collect and store SMS data based on selection criteria, including phone numbers, international mobile subscriber identity (IMSI) numbers and keywords. SecurityAffairs – hacking, China).

Telecommunications 88

Telecommunications Mobile Spyware Advertising 88

Security Affairs

MAY 17, 2022

Experts spotted over 200 Android apps on the Play Store distributing spyware called Facestealer used to steal sensitive data. Trend Micro researchers spotted over 200 Android apps on the Play Store distributing spyware called Facestealer used to steal sensitive data from infected devices.

Spyware 90

Spyware Cryptocurrency VPN Malware 90

SecureWorld News

AUGUST 16, 2023

charity and movement by the cybersecurity industry that supports more than 2,000 individuals and sole traders impacted by cybercrime and online harm every month. It encompasses various forms of cybercrime and online harm, including cyberstalking, tracking, hacking accounts and intimate image abuse.

Surveillance 85

Surveillance Technology Accountability Spyware 85

Security Affairs

SEPTEMBER 2, 2018

Stopping a big botnet targeting USA, Canada and Italy. · What Happens to Whistleblowers After They Blow the Whistle? Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Spyware 41

Spyware Banking Data breaches Mobile 41

Security Affairs

SEPTEMBER 23, 2018

EOSBet Gambling application hacked, crooks stole $200,000 worth of EOS. NSO mobile Pegasus Spyware used in operations in 45 countries. Magecart cybercrime group stole customers credit cards from Newegg electronics retailer. Feedify cloud service architecture compromised by MageCart crime gang.

Computers and Electronics 54

Computers and Electronics Cryptocurrency Spyware Data breaches 54

Malwarebytes

SEPTEMBER 27, 2021

Stay safe, everyone! The post A week in security (Sept 20 – Sept 26) appeared first on Malwarebytes Labs.

Phishing 58

Phishing Surveillance Malware Backups 58

Security Affairs

APRIL 21, 2019

Attackers hacked support agent to access Microsoft Outlook email accounts. Scranos – A Cross Platform, Rootkit-Enabled Spyware rapidly spreading. RCE flaw in Electronic Arts Origin client exposes gamers to hack. Broadcom WiFi Driver bugs expose devices to hack. A new round of the weekly SecurityAffairs newsletter arrived!

Computers and Electronics 60

Computers and Electronics Spyware Data breaches Advertising 60

SecureWorld News

AUGUST 8, 2022

Cybercriminals often use malware to gain access to a computer or mobile device to deploy viruses, worms, Trojans, ransomware, spyware, and rootkits. FormBook FormBook is an information stealer advertised in hacking forums. AZORult's developers are constantly updating its capabilities.

Malware 88

Malware Banking Healthcare Penetration Testing 88

Responsible Cyber

APRIL 8, 2020

As cybercrime has become well-funded and increasingly sophisticated, phishing remains one of the most effective methods used by criminals to introduce malware into businesses. Hence, since ransomware locks down files permanently (unless businesses want to cough up the ransom) backups are a crucial safeguard to recover from the hack.

Cybersecurity 98

Cybersecurity DDOS Small Business Phishing 98

SecureWorld News

NOVEMBER 27, 2023

According to a study by the Ponemon Institute, $14,000 is the average value of the personal data contained on a mobile device. These radios are being tracked and tagged by marketers, telecom companies and individuals in an effort to resell that data to parties willing to pay. We never relied on metadata and any kind of saved user data.

Wireless 88

Wireless Energy and Utilities Technology Data privacy 88

SecureWorld News

NOVEMBER 30, 2023

Consequences of browser-focused cybercrime Hackers are able to utilize browser vulnerabilities to install malware and spyware on devices, steal login credentials for other services, extract sensitive user data, and maintain persistence inside systems.

Spyware 90

Spyware Surveillance Malware Risk 90

Security Boulevard

JANUARY 25, 2022

Folks, Who wants to dive deep into some of my latest commercially available research and stay on the top of their OSINT/cybercrime research and threat intelligence gathering game that also includes their team and organization? Dancho Danchev’s “Intell on the Criminal Underground – Who’s Who in Cybercrime for ” Presentation – [PDF].

Cybercrime 96

Cybercrime Hacking Scams Ransomware 96

Security Affairs

JULY 4, 2023

“The phishing pages were meticulously set up using Neo_Net’s panels, PRIV8, and implemented multiple defense measures, including blocking requests from non-mobile user agents and concealing the pages from bots and network scanners. ” concludes the report that also provides indicators of compromise (IoCs) for this campaign.

Banking 80

Banking Phishing Social Engineering Authentication 80

SecureList

MAY 27, 2022

Non-mobile statistics. Mobile statistics. One of the things you can do to protect yourself from advanced mobile spyware is to reboot your device on a daily basis. When they shut down the device, using the power and volume buttons, the spyware displays an image of the iOS shutdown screen, faking the shutdown.

Phishing 103

Phishing Spyware Firmware Malware 103

Security Affairs

MAY 8, 2020

This sharp upsurge in the number of blockages stems from the growing duration of phishing attacks: cybercriminals used to stop their fraudulent campaign as soon as their web pages were blocked, quickly mobilizing efforts for attacks on other brands. Today, they no longer dwell on it and continue replacing removed pages with new ones.

Phishing 56

Phishing Spyware Banking Malware 56

Security Affairs

JULY 18, 2021

SecurityAffairs – hacking, newsletter). Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the international press subscribe here. If you want to also receive for free the international pre ss subscribe here. Follow me on Twitter: @securityaffairs and Facebook.

Spyware 54

Spyware Surveillance Ransomware Retail 54

SecureList

APRIL 27, 2021

During routine monitoring of detections for FinFisher spyware tools, we discovered traces that point to recent FinFly Web deployments. It was first publicly documented in 2014, in the aftermath of the Gamma Group hacking incident. Domestic Kitten is a threat group mainly known for its mobile backdoors.

Malware 138

Malware Spyware Government Social Engineering 138

SecureList

OCTOBER 26, 2021

Upon further investigation we also discovered additional implants deployed through both ShadowPad and ShadowShredder, such as Quarian backdoor, PlugX, Poison Ivy and other hack tools. Historically, Lazarus used MATA to attack various industries for cybercrime-like intentions: stealing customer databases and spreading ransomware.

Malware 140

Malware Government Surveillance Spyware 140

SecureWorld News

FEBRUARY 7, 2023

The cybercrime campaigns below demonstrate how crooks can get a leg up in this cat-and-mouse game. One notorious scheme like this piggybacked on vulnerabilities in popular CMS platforms, such as WordPress and Drupal, to hack websites used by big-name nonprofits, U.S. government entities, and colleges.

Cybercrime 88

Cybercrime Phishing Accountability Government 88

SecureList

NOVEMBER 14, 2022

Mobile devices exposed to wide attacks. Although 2022 did not feature any mobile intrusion story on the scale of the Pegasus scandal, a number of 0-days have still been exploited in the wild by threat actors. One glaring example is Iran, which faced a series of spectacular hacks and sabotages. What we predicted in 2022.

Firmware 106

Firmware Surveillance Mobile Telecommunications 106

SecureList

NOVEMBER 14, 2023

Mail servers become priority targets In June, Recorded Future warned that BlueDelta (aka Sofacy, APT28, Fancy Bear and Sednit) exploited vulnerabilities in Roundcube Webmail to hack multiple organizations including government institutions and military entities involved in aviation infrastructure. Drone hacking!

Hacking 102

Hacking Energy and Utilities Media Malware 102

Security Affairs

NOVEMBER 5, 2023

Kinsing threat actors probed the Looney Tunables flaws in recent attacks ZDI discloses four zero-day flaws in Microsoft Exchange Okta customer support system breach impacted 134 customers Multiple WhatsApp mods spotted containing the CanesSpy Spyware Russian FSB arrested Russian hackers who supported Ukrainian cyber operations MuddyWater has been spotted (..)

Cyber Insurance 100

Cyber Insurance Cryptocurrency Internet Internet 100