Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches 98

Data breaches Malware Mobile Spyware 98

Security Affairs

APRIL 17, 2022

Gov believes North Korea-linked Lazarus APT is behind Ronin Validator cyber heist The unceasing action of Anonymous against Russia Threat actors target the Ukrainian gov with IcedID malware Threat actors use Zimbra exploits to target organizations in Ukraine Conti Ransomware Gang claims responsibility for the Nordex hack ZingoStealer crimeware released (..)

Wireless 97

Wireless Data breaches Hacking Surveillance 97

Security Affairs

JULY 15, 2023

Government agencies SonicWall urges organizations to fix critical flaws in GMS/Analytics products Citrix fixed a critical flaw in Secure Access Client for Ubuntu Cl0p hacker operating from Russia-Ukraine war front line – exclusive Fortinet fixed a critical flaw in FortiOS and FortiProxy Microsoft mitigated an attack by Chinese threat actor Storm-0558 (..)

Spyware 98

Spyware Hacking Data breaches Mobile 98

Security Affairs

DECEMBER 24, 2019

A popular mobile app in the Middle East called ToTok has been removed from both Apple and Google’s online stores because it was a spy tool. According to a report published by the New York Times, the popular app ToTok was used by the UAE government as a surveillance tool. SecurityAffairs – ToTok, surveillence).

Government 80

Government Surveillance Advertising Mobile 80

SecureList

NOVEMBER 17, 2021

Last year, we foresaw the APT and cybercrime worlds becoming more porous on an operational level. This included DarkHotel and APT29 (aka CozyDuke and CozyBear) with their WellMess malware ( as attributed by the UK NCSC (National Cyber Security Centre ). Mobile devices exposed to wide attacks.

Mobile 138

Mobile Surveillance Ransomware Government 138

Security Affairs

SEPTEMBER 14, 2023

A joint investigation conducted by Access Now and the Citizen Lab revealed that the journalist, who is at odds with the Russian government, was infected with the surveillance software. However, there is no public evidence that the Russian government is a client of the Israeli surveillance firm NSO Group. ” states Access Now.

Spyware 115

Spyware Surveillance Media Government 115

Malwarebytes

SEPTEMBER 27, 2021

Last week on Malwarebytes Labs.

Phishing 64

Phishing Surveillance Malware Backups 64

Security Affairs

OCTOBER 18, 2018

The malware was offered for sale in the criminal underground for as little as $40, it allows attackers to take complete control over the infected system. Grubbs offered for sale the malware for $39.99 Our modern society is dependent on computers, mobile devices, and the use of the internet. Pierluigi Paganini.

Computers and Electronics 81

Computers and Electronics Cybercrime Advertising Marketing 81

Security Affairs

JANUARY 14, 2022

This week a Hensholdt spokesperson confirmed the security breach to BleepingComputer explaining that a small number of mobile devices in its UK subsidiary has been affected. Hensoldt AG focuses on sensor technologies for protection and surveillance missions in the defence, security and aerospace sectors.

Ransomware 130

Ransomware Surveillance Mobile Encryption 130

Security Boulevard

DECEMBER 22, 2021

While well intentioned, you may have inadvertently created a security breach for the recipient or opened your family up to unwanted surveillance. Did you give or receive a toy or new parental control or security app for the holidays? The Internet of security breaches The Internet of Things (IoT) is not just for your smart.

IoT 143

IoT Surveillance Internet Internet 143

Security Affairs

AUGUST 29, 2021

Be sure it is up to date! LPE zero-day flaw in Razer Synapse allows attackers to take over Windows PCs Memorial Health System forced to cancel surgeries after ransomware attack Google discloses unpatched Microsoft WFP Default Rules AppContainer Bypass EoP.

Spyware 103

Spyware Data breaches Surveillance Hacking 103

SecureList

FEBRUARY 26, 2021

In total, 53,870 of our mobile users were affected globally by stalkerware in 2020. The Coalition Against Stalkerware warns that stalkerware “may facilitate intimate partner surveillance, harassment, abuse, stalking, and/or violence.” The risks of stalkerware can go beyond the online sphere and enter the physical world.

Mobile 92

Mobile Surveillance Software Passwords 92

SecureList

NOVEMBER 26, 2021

Mobile statistics. The PyInstaller module for Windows contains a script named “Guard” Interestingly, this malware was developed for both Windows and macOS operating systems. The malware tries to spread to other hosts on the network by infecting USB drives. IT threat evolution Q3 2021. IT threat evolution in Q3 2021.

Malware 98

Malware Banking Energy and Utilities Accountability 98

SecureWorld News

NOVEMBER 30, 2023

Consequences of browser-focused cybercrime Hackers are able to utilize browser vulnerabilities to install malware and spyware on devices, steal login credentials for other services, extract sensitive user data, and maintain persistence inside systems.

Spyware 89

Spyware Surveillance Malware Risk 89

Krebs on Security

NOVEMBER 6, 2018

that has been tracking down individuals engaged in unauthorized “SIM swaps” — a complex form of mobile phone fraud that is often used to steal large amounts of cryptocurrencies and other items of value from victims. In early July 2018, Ferri was traveling in Europe when he discovered his T-Mobile phone no longer had service.

Mobile 241

Mobile Cryptocurrency Accountability Passwords 241

eSecurity Planet

OCTOBER 21, 2022

Anyone who has used a computer for any significant length of time has probably at least heard of malware. Malware has been present in the digital space since the 1980s, with early prank malware like the Morris Worm or the (c)Brain. However, malware is not quite as amusing in a modern context. How Does Malware Work?

Malware 75

Malware Adware Spyware Antivirus 75

SecureList

NOVEMBER 29, 2021

The victim was infected by PowerShell malware and we discovered evidence that the actor had already stolen data from the victim and had been surveilling this victim for several months. Based on the findings from the compromised machine, we discovered additional malware. Contact: intelreports@kaspersky.com.

Surveillance 129

Surveillance Malware Phishing Encryption 129

SecureList

APRIL 27, 2021

In our initial report on Sunburst , we examined the method used by the malware to communicate with its C2 (command-and-control) server and the protocol used to upgrade victims for further exploitation. This campaign made use of a previously unknown malware family we dubbed FourteenHi.

Malware 142

Malware Spyware Government Social Engineering 142

Krebs on Security

MARCH 22, 2023

Google says it has suspended the app for the Chinese e-commerce giant Pinduoduo after malware was found in versions of the software. Google said it believes the exploit chain for Samsung devices belonged to a “commercial surveillance vendor,” without elaborating further. .

Malware 270

Malware eCommerce Mobile Media 270

Security Affairs

JULY 18, 2021

Biden discussed Russian ransomware gangs with Putin in a phone call Hackers accessed Mint Mobile subscribers data and ported some numbers Magecart hackers hide stolen credit card data into images and bogus CSS files Kaseya releases patches for flaws exploited in massive ransomware supply-chain attack BIOPASS malware abuses OBS Studio to spy on victims (..)

Spyware 54

Spyware Surveillance Ransomware Retail 54

SecureList

OCTOBER 26, 2021

Following this, they were tricked into downloading previously unknown malware. The backdoor, dubbed Tomiris, bears a number of similarities to the second-stage malware, Sunshuttle (aka GoldMax), used by DarkHalo last year. When victims tried to access their corporate mail, they were redirected to a fake copy of the web interface.

Malware 143

Malware Government Surveillance Spyware 143

SecureList

NOVEMBER 14, 2022

Mobile devices exposed to wide attacks. Although 2022 did not feature any mobile intrusion story on the scale of the Pegasus scandal, a number of 0-days have still been exploited in the wild by threat actors. SIGINT-delivered malware. But first, let’s examine how they fared with the predictions for 2022.

Firmware 116

Firmware Surveillance Mobile Telecommunications 116

SecureList

NOVEMBER 14, 2023

The malware posed as ransomware, demanding money from the victims for “decrypting” their data. UNC4841 deployed new malware designed to maintain presence on a small subset of high-priority targets compromised either before the patch was released or shortly afterwards. Verdict: prediction not fulfilled ❌ 7.

Hacking 116

Hacking Energy and Utilities Media Malware 116