Government, Hacking, Malware and Surveillance

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports

Security Affairs

AUGUST 6, 2022

Greek intelligence admitted it had spied on a journalist, while citizens ask the government to reveal the use of surveillance malware. The head of the Greek intelligence told a parliamentary committee that they had spied on a journalist with surveillance malware , Reuters reported citing two sources present.

Surveillance

Surveillance Malware Spyware Government

Security Risks of Government Hacking

Schneier on Security

SEPTEMBER 13, 2018

Some of us -- myself included -- have proposed lawful government hacking as an alternative to backdoors. A new report from the Center of Internet and Society looks at the security risks of allowing government hacking. This is the canonical lawful hacking paper.

Government

Government Hacking Risk Surveillance

China officially condemns Pegasus spyware surveillance and accuses US

CyberSecurity Insiders

JULY 22, 2021

Chine Foreign Ministry has issued a public statement condemning the distribution and usage of Pegasus Spyware surveillance software by various countries. It has also accused United States & NATO for circulating misinformation that the Chinese intelligence was funding hacking groups to launch cyber attacks on the west.

Surveillance

Surveillance Spyware Software Government

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

US NCSC and DoS share best practices against surveillance tools

Security Affairs

JANUARY 9, 2022

The US NCSC and the Department of State published joint guidance on defending against attacks using commercial surveillance tools. In the last years, we have reported several cases of companies selling commercial surveillance tools to governments and other entities that have used them for malicious purposes. Pierluigi Paganini.

Surveillance

Surveillance Mobile Spyware Malware

Massive iPhone Hack Targets Uyghurs

Schneier on Security

SEPTEMBER 3, 2019

China is being blamed for a massive surveillance operation that targeted Uyghur Muslims. Earlier this year, Google's Project Zero found a series of websites that have been using zero-day vulnerabilities to indiscriminately install malware on iPhones that would visit the site. The vulnerabilities were patched in iOS 12.1.4,

Hacking

Hacking Surveillance Malware Government

Is the Belarusian government behind the surveillance Android app banned by Google?

Security Affairs

SEPTEMBER 3, 2020

Google has removed an app from the Play Store that was used by the Belarusian government to spy on anti-government protesters. Google has removed the app NEXTA LIVE ( com.moonfair.wlkm ) from the official Play Store because it was used by the Belarusian government to spy on anti-government protesters. site (89.223.89[.]47).”

Surveillance

Surveillance Government Advertising Malware

Israeli surveillance firm QuaDream emerges from the dark

Security Affairs

FEBRUARY 6, 2022

One of the Apple iOS zero-day flaws exploited by the NSO group was also used by another surveillance firm named QuaDream. One of the vulnerabilities in Apple iOS that was previously exploited by the spyware developed by the Israeli company NSO Group was also separately used by another surveillance firm named QuaDream.

Surveillance

Surveillance Spyware Government Hacking

QuaDream surveillance firm’s spyware targeted iPhones with zero-click exploit

Security Affairs

APRIL 12, 2023

At least five members of civil society worldwide have been targeted with spyware and exploits developed by surveillance firm QuaDream. Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. ” concludes Citizen Lab.

Spyware

Spyware Surveillance Government Malware

Israeli surveillance firm Candiru used Windows zero-days to deploy spyware

Security Affairs

JULY 15, 2021

Experts said that Israeli surveillance firm Candiru, tracked as Sourgum, exploited zero-days to deliver a new Windows spyware. Microsoft and Citizen Lab believe that the secretive Israel-based Israeli surveillance firm Candiru, tracked as Sourgum, used Windows zero-day exploits to deliver a new Windows spyware dubbed DevilsTongue.

Spyware

Spyware Surveillance Manufacturing Government

US Gov adds surveillance firms Cytrox and Intellexa to Entity List for trafficking in cyber exploits

Security Affairs

JULY 19, 2023

government added surveillance technology vendors Cytrox and Intellexa to an economic blocklist for trafficking in cyber exploits. government. Government warns of the key role that surveillance technology plays in surveillance activities that can lead to repression and other human rights abuses.

Surveillance

Surveillance Spyware Government Technology

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

Security Affairs

NOVEMBER 11, 2022

Lookout researchers discovered two long-running surveillance campaigns targeting the ethnic minority Uyghurs. Researchers from mobile security firm Lookout uncovered two long-running surveillance campaigns targeting the Uyghurs minority. Bazar is a lesser known spelling of Bazaar.” ” reads the report published by Lookout.

Surveillance

Surveillance Spyware Malware Mobile

Israeli surveillance firm QuaDream is shutting down amidst spyware accusations

Security Affairs

APRIL 17, 2023

The Israeli surveillance firm QuaDream is allegedly shutting down its operations after Citizen Lab and Microsoft uncovered their spyware. Last week Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. and 14.4.2,

Surveillance

Surveillance Spyware Education Media

UAE government denies using ToTok for mass surveillance

Security Affairs

DECEMBER 30, 2019

The United Arab Emirates denied reports that the popular mobile app ToTok was used as part of a government massive surveillance program. According to a report recently published by the New York Times , the popular app ToTok was used by the UAE government as a surveillance tool. SecurityAffairs – ToTok, surveillance).

Surveillance

Surveillance Government Telecommunications Advertising

EU officials were targeted with Israeli surveillance software

Security Affairs

APRIL 13, 2022

According to a report published by Reuters, an Israeli surveillance software was used to spy on senior officials in the European Commission. ” “It was the first time Apple had sent a mass alert to users that they were in government hackers’ crosshairs.” SecurityAffairs – hacking, Pegasus).

Surveillance

Surveillance Software Spyware Hacking

U.S. Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp

Security Affairs

MARCH 2, 2024

Court ordered surveillance firm NSO Group to hand over the source code for its Pegasus spyware and other products to Meta. Judge ordered the surveillance firm to hand over the source code for its Pegasus spyware and other products to the social network giant. from April 29, 2018, to May 10, 2020).

Spyware

Spyware Surveillance Architecture Software

European Data Protection Supervisor call for bans on surveillance spyware like Pegasus

Security Affairs

FEBRUARY 17, 2022

The European Data Protection Supervisor (EDPS) authority this week called for a ban on the development and the use of surveillance software like the Pegasus spyware in the EU. Pegasus was used by governments with dubious human rights records and histories of abusive behaviour by their state security services. ” continues EDPS.

Surveillance

Surveillance Spyware Government Software

Google Suspends Chinese E-Commerce App Pinduoduo Over Malware

Krebs on Security

MARCH 22, 2023

Google says it has suspended the app for the Chinese e-commerce giant Pinduoduo after malware was found in versions of the software. Google said it believes the exploit chain for Samsung devices belonged to a “commercial surveillance vendor,” without elaborating further. and Western interests.

Malware

Malware eCommerce Mobile Media

Pegasus Project – how governments use Pegasus spyware against journalists

Security Affairs

JULY 19, 2021

Pegasus Project investigation into the leak of 50,000 phone numbers of potential surveillance targets revealed the abuse of NSO Group’s spyware. Pegasus Project is the name of a large-scale investigation into the leak of 50,000 phone numbers of potential surveillance targets that revealed the abuse of NSO Group’s spyware.

Spyware

Spyware Government Surveillance Media

Exodus, a government malware that infected innocent victims

Security Affairs

MARCH 30, 2019

Security researchers have found a new government spyware, tracked as Exodus, that was distributed through the Google Play Store. The malware was tracked as Exodus, after the name of the command and control servers the malicious apps connected to. Google said that less than 1,000 people were infected with malware , all Italian users.

Government

Government Malware Spyware Surveillance

German authorities raid the offices of the FinFisher surveillance firm

Security Affairs

OCTOBER 14, 2020

Earlier this month, German authorities have raided the offices of FinFisher, the German surveillance software firm, accused of providing its software to oppressive regimes. SecurityAffairs – hacking, K-Electric). The post German authorities raid the offices of the FinFisher surveillance firm appeared first on Security Affairs.

Surveillance

Surveillance Spyware Software Advertising

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Security Affairs

JUNE 24, 2022

Researchers from Google’s Threat Analysis Group (TAG) revealed that the Italian surveillance firm RCS Labs was helped by some Internet service providers (ISPs) in Italy and Kazakhstan to infect Android and iOS users with their spyware. SecurityAffairs – hacking, RCS Labs). Follow me on Twitter: @securityaffairs and Facebook.

Surveillance

Surveillance Mobile Spyware Telecommunications

U.S. Gov imposed Visa restrictions on 13 individuals linked to commercial spyware activity

Security Affairs

APRIL 23, 2024

The measure aims to counter the misuse of surveillance technology targeting journalists, academics, human rights defenders, dissidents, and US Government personnel, as documented in the Country Reports on Human Rights Practices. Government personnel.” ” In February, the U.S. ” In February, the U.S.

Spyware

Spyware Surveillance Government Technology

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Security Affairs

JUNE 17, 2022

Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.

Spyware

Spyware Surveillance Telecommunications Mobile

U.S. Gov imposes visa restrictions on individuals misusing Commercial Spyware

Security Affairs

FEBRUARY 6, 2024

government imposes visa restrictions on individuals who are involved in the illegal use of commercial spyware. government’s commitment to addressing the misuse of surveillance software, which poses a significant threat to society. government. The policy underscores the U.S. The policy underscores the U.S.

Spyware

Spyware Surveillance Government Technology

Commercial spyware vendors are behind most zero-day exploits discovered by Google TAG

Security Affairs

FEBRUARY 6, 2024

The latest report published by Google Threat Analysis Group (TAG), titled “ Buying Spying, an in-depth report with our insights into Commercial Surveillance Vendors (CSVs )”, warns of the rise of commercial spyware vendors and the risks to free speech, the free press, and the open internet. ” concludes Google. .

Spyware

Spyware Surveillance Government Software

NSO Group, Positive Technologies and other firms sanctioned by the US government

Security Affairs

NOVEMBER 3, 2021

sanctioned four companies for the development of surveillance malware or the sale of hacking tools used by nation-state actors, including NSO Group. NSO Group and Candiru are being sanctioned for the development and sale of surveillance software used to spy on journalists and activists. Department of Commerce.

Technology

Technology Government Surveillance Spyware

Zero-day exploit used to hack iPhones of Al Jazeera employees

Security Affairs

DECEMBER 21, 2020

Tens of Al Jazeera employees were targeted in a cyber espionage campaign leveraging a zero-click iOS zero-day vulnerability to hack their iPhones. Researchers from Citizen Lab reported that at least 36 Al Jazeera employees were targeted in a cyber espionage campaign leveraging a zero-click iOS zero-day vulnerability to hack their iPhones.

Hacking

Hacking Surveillance Spyware Government

Spyware, ransomware and Nation-state hacking: Q&A from a recent interview

Security Affairs

FEBRUARY 10, 2022

I transcribed a recent interview, here some questions and answers about nation-state hacking, spyware, and cyber warfare. Spyware are powerful weapons in the arsenal of governments and cybercrime gangs. Pegasus is probably the most popular surveillance software on the market, it has been developed by the Israeli NSO Group.

Spyware

Spyware Hacking Ransomware Surveillance

US Gov sanctioned Intellexa Consortium individuals and entities behind Predator spyware attacks

Security Affairs

MARCH 5, 2024

government sanctioned two individuals and five entities linked to the development and distribution of the Predator spyware used to target Americans. The surveillance software was also used to spy on U.S. government officials, journalists, and policy experts. government officials, journalists, and policy experts. .

Spyware

Spyware Surveillance Government Technology

Alleged Iranian threat actors leak the code of their CodeRAT malware

Security Affairs

SEPTEMBER 4, 2022

The author of the remote access trojan (RAT) CodeRAT has leaked the source code of its malware on GitHub. The development team behind the remote access trojan (RAT) CodeRAT has leaked the source code of its malware on GitHub after the. Experts believe that the malware is a surveillance software used by the Iranian government.

Malware

Malware Surveillance Government Hacking

US authorities track MuddyWater Hacking Group to Iran

CyberSecurity Insiders

JANUARY 13, 2022

US Cyber Command’s Cyber National Mission Force has identified a new hacking group dubbed MuddyWater and tracked its operations to an Iranian intelligence funded company. The post US authorities track MuddyWater Hacking Group to Iran appeared first on Cybersecurity Insiders.

Hacking

Hacking Spyware DNS Surveillance

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Krebs on Security

OCTOBER 28, 2020

In August, Gunnebo said it had successfully thwarted a ransomware attack, but this week it emerged that the intruders stole and published online tens of thousands of sensitive documents — including schematics of client bank vaults and surveillance systems. He declined to comment on the particulars of the extortion incident.

Hacking

Hacking Ransomware Banking Accountability

Amnesty International filed a lawsuit against Israeli surveillance firm NSO

Security Affairs

MAY 20, 2019

Amnesty International filed a lawsuit against Israeli surveillance firm NSO and fears its staff may be targeted by the company with its Pegasus spyware. The name NSO Group made the headlines last week after the disclosure of the WhatsApp flaw exploited by the company to remotely install its surveillance software.

Surveillance

Surveillance Spyware Software Government

Operation Spalax, an ongoing malware campaign targeting Colombian entities

Security Affairs

JANUARY 14, 2021

Security experts from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian government institutions and private companies. Malware researchers from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian entities exclusively. Pierluigi Paganini.

Malware

Malware Surveillance Phishing Government

NSO Group spyware used to compromise iPhones of 9 US State Dept officials

Security Affairs

DECEMBER 3, 2021

The US officials targeted by the surveillance software were either based in Uganda or focused on matters concerning the African country, revealed Reuters which was not able to determine which was NSO client that orchestrated the attacks. “The intrusions, first reported here, represent the widest known hacks of U.S.

Spyware

Spyware Surveillance Hacking Software

Amnesty International employee targeted with NSO group surveillance malware

Security Affairs

AUGUST 1, 2018

An employee at Amnesty International has been targeted with Israeli surveillance malware, the news was revealed by the human rights group. Amnesty International revealed that one of its employees was targeted with a surveillance malware developed by an Israeli firm. com , pine-sales[.]com com , and ecommerce-ads[.]org.”

Surveillance

Surveillance Malware Spyware Mobile

Iran-linked Chafer APT group targets governments in Kuwait and Saudi Arabia

Security Affairs

MAY 21, 2020

The Chafer APT group has distributed data stealer malware since at least mid-2014, it was focused on surveillance operations and the tracking of individuals. Most of the hacking activity occurs on Friday and Saturday, coinciding with the weekend in the Middle East. SecurityAffairs – Chafer APT, hacking).

Government

Government Social Engineering Telecommunications Hacking

A chink in the armor of China-based hacking group Nickel

Malwarebytes

DECEMBER 7, 2021

Microsoft has taken control of 42 web domains that a hacking group was using to try to breach its targets. Sadly, any setback to the Chinese hacking group or others will likely be temporary as the hackers will find and build new infrastructure to use in forthcoming attacks. An overview of Chinese hacking groups and their aliases.

Hacking

Hacking Malware Surveillance Data collection

Microsoft disrupts China-based hacking group Nickel

Malwarebytes

DECEMBER 7, 2021

Microsoft has taken control of 42 web domains that a hacking group was using to try to breach its targets. Sadly, any setback to the Chinese hacking group or others will likely be temporary as the hackers will find and build new infrastructure to use in forthcoming attacks. An overview of Chinese hacking groups and their aliases.

Hacking

Hacking Malware Surveillance Data collection

LW ROUNDTABLE: Will the U.S. Senate keep citizens safe, vote to force China to divest TikTok?

The Last Watchdog

MARCH 20, 2024

Finally, Congress appears to be heeding lessons available to be learned since the hacking John Podesta’s email account – not to mention all of the havoc Russia was able to foment in our 2016 elections, attempting to interfere in 39 states. During this same time frame, investigators at Pixalate , a Palo Alto, Calif.-based

Media

Media Identity Theft Government Surveillance

Security Affairs newsletter Round 435 by Pierluigi Paganini – International edition

Security Affairs

SEPTEMBER 3, 2023

Hacks QakBot, Quietly Removes Botnet Infections Under Siege: Rapid7-Observed Exploitation of Cisco ASA SSL VPNs Why is.US Being Used to Phish So Many of Us?

Social Engineering

Social Engineering Spyware Data breaches Surveillance

Security Affairs newsletter Round 447 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

NOVEMBER 26, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. million patients in the U.S. million patients in the U.S.

Data breaches

Data breaches Surveillance Cryptocurrency Ransomware

NYT report states that ToTok app is a government spy tool.

Security Affairs

DECEMBER 24, 2019

According to a report published by the New York Times, the popular app ToTok was used by the UAE government as a surveillance tool. The report said US intelligence officials and a security researcher determined the app was being used by the UAE government for detailed surveillance. SecurityAffairs – ToTok, surveillence).

Government

Government Surveillance Advertising Mobile

Hungarian official confirms Hungary used NSO Group Pegasus spyware

Security Affairs

NOVEMBER 8, 2021

A Hungarian government official confirmed that his government has bought and used the controversial NSO Group’s Pegasus spyware. According to Kosa, the use of surveillance software was authorized by a judge or the Minister of Justice. SecurityAffairs – hacking, surveillance. ” This week, the U.S.

Spyware

Spyware Surveillance Media Government

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports

Security Risks of Government Hacking

Webinars

Trending Sources

China officially condemns Pegasus spyware surveillance and accuses US

Webinars

US NCSC and DoS share best practices against surveillance tools

Massive iPhone Hack Targets Uyghurs

Is the Belarusian government behind the surveillance Android app banned by Google?

Israeli surveillance firm QuaDream emerges from the dark

QuaDream surveillance firm’s spyware targeted iPhones with zero-click exploit

Israeli surveillance firm Candiru used Windows zero-days to deploy spyware

US Gov adds surveillance firms Cytrox and Intellexa to Entity List for trafficking in cyber exploits

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

Israeli surveillance firm QuaDream is shutting down amidst spyware accusations

UAE government denies using ToTok for mass surveillance

EU officials were targeted with Israeli surveillance software

U.S. Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp

European Data Protection Supervisor call for bans on surveillance spyware like Pegasus

Google Suspends Chinese E-Commerce App Pinduoduo Over Malware

Pegasus Project – how governments use Pegasus spyware against journalists

Exodus, a government malware that infected innocent victims

German authorities raid the offices of the FinFisher surveillance firm

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

U.S. Gov imposed Visa restrictions on 13 individuals linked to commercial spyware activity

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

U.S. Gov imposes visa restrictions on individuals misusing Commercial Spyware

Commercial spyware vendors are behind most zero-day exploits discovered by Google TAG

NSO Group, Positive Technologies and other firms sanctioned by the US government

Zero-day exploit used to hack iPhones of Al Jazeera employees

Spyware, ransomware and Nation-state hacking: Q&A from a recent interview

US Gov sanctioned Intellexa Consortium individuals and entities behind Predator spyware attacks

Alleged Iranian threat actors leak the code of their CodeRAT malware

US authorities track MuddyWater Hacking Group to Iran

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Amnesty International filed a lawsuit against Israeli surveillance firm NSO

Operation Spalax, an ongoing malware campaign targeting Colombian entities

NSO Group spyware used to compromise iPhones of 9 US State Dept officials

Amnesty International employee targeted with NSO group surveillance malware

Iran-linked Chafer APT group targets governments in Kuwait and Saudi Arabia

A chink in the armor of China-based hacking group Nickel

Microsoft disrupts China-based hacking group Nickel

LW ROUNDTABLE: Will the U.S. Senate keep citizens safe, vote to force China to divest TikTok?

Security Affairs newsletter Round 435 by Pierluigi Paganini – International edition

Security Affairs newsletter Round 447 by Pierluigi Paganini – INTERNATIONAL EDITION

NYT report states that ToTok app is a government spy tool.

Hungarian official confirms Hungary used NSO Group Pegasus spyware

Stay Connected