Hacking, Mobile, Spyware and Surveillance

Hacking group updates Furball Android spyware to evade detection

Bleeping Computer

OCTOBER 20, 2022

A new version of the 'FurBall' Android spyware has been found targeting Iranian citizens in mobile surveillance campaigns conducted by the Domestic Kitten hacking group, also known as APT-C-50. [.].

Spyware

Spyware Hacking Surveillance Mobile

Experts found a macOS version of the sophisticated LightSpy spyware

Security Affairs

MAY 30, 2024

Researchers spotted a macOS version of the LightSpy surveillance framework that has been active in the wild since at least January 2024. Researchers from ThreatFabric discovered a macOS version of the LightSpy spyware that has been active in the wild since at least January 2024.

Spyware

Spyware Malware Surveillance Mobile

CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 1, 2023

CISA has added nine flaws to its Known Exploited Vulnerabilities catalog, including bugs exploited by commercial spyware on mobile devices. The exploits were used to install commercial spyware and malicious apps on targets’ devices. The experts pointed out that both campaigns were limited and highly targeted.

Spyware

Spyware Surveillance Mobile Education

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Security Affairs

JUNE 24, 2022

Google’s Threat Analysis Group (TAG) revealed that the Italian spyware vendor RCS Labs was supported by ISPs to spy on users. TAG researchers tracked more than 30 vendors selling exploits or surveillance capabilities to nation-state actors. SecurityAffairs – hacking, RCS Labs). Pierluigi Paganini.

Surveillance

Surveillance Mobile Spyware Telecommunications

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

Security Affairs

NOVEMBER 11, 2022

Lookout researchers discovered two long-running surveillance campaigns targeting the ethnic minority Uyghurs. Researchers from mobile security firm Lookout uncovered two long-running surveillance campaigns targeting the Uyghurs minority. List of installed packages. Call logs and geocoded location associated with the call.

Surveillance

Surveillance Spyware Malware Mobile

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Security Affairs

JUNE 17, 2022

Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.

Spyware

Spyware Surveillance Telecommunications Mobile

Pegasus spyware and how it exploited a WebP vulnerability

Malwarebytes

SEPTEMBER 27, 2023

Recent events have demonstrated very clearly just how persistent and wide-spread the Pegasus spyware is. The exploit chain based on these vulnerabilities was capable of compromising devices without any interaction from the victim and were reportedly used by the NSO Group to deliver its infamous Pegasus spyware.

Spyware

Spyware Surveillance Mobile Software

iShutdown lightweight method allows to discover spyware infections on iPhones

Security Affairs

JANUARY 17, 2024

Researchers devised a “lightweight method,” called iShutdown, to determine whether Apple iOS devices have been infected with spyware. Cybersecurity researchers from Kaspersky have identified a “lightweight method,” called iShutdown, to identify the presence of spyware on Apple iOS devices.

Spyware

Spyware Mobile Malware Surveillance

Researchers analyzed the PREDATOR spyware and its loader Alien

Security Affairs

MAY 29, 2023

Cisco Talos and the Citizen Lab researchers have published a technical analysis of the powerful Android spyware Predator. Security researchers at Cisco Talos and the Citizen Lab have shared technical details about a commercial Android spyware named Predator that is sold by the surveillance firm Intellexa (formerly known as Cytrox).

Spyware

Spyware Surveillance Media Malware

Experts attribute WyrmSpy and DragonEgg spyware to the Chinese APT41 group

Security Affairs

JULY 20, 2023

China-linked group APT41 was spotted using two previously undocumented Android spyware called WyrmSpy and DragonEgg China-linked APT group APT41 has been observed using two previously undocumented Android spyware called WyrmSpy and DragonEgg. Upon installing the two spyware, they request extensive device permissions.

Spyware

Spyware Surveillance Mobile Malware

The iPhone of a Russian journalist was infected with the Pegasus spyware

Security Affairs

SEPTEMBER 14, 2023

The iPhone of a prominent Russian journalist, who is at odds with Moscow, was infected with NSO Group’s Pegasus spyware. The iPhone of the Russian journalist Galina Timchenko was compromised with NSO Group’s Pegasus spyware. The threat actors used a zero-click exploit, likely the PWNYOURHOME. ” reported Citizen Lab.

Spyware

Spyware Surveillance Media Government

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports

Security Affairs

AUGUST 6, 2022

Greek intelligence admitted it had spied on a journalist, while citizens ask the government to reveal the use of surveillance malware. The head of the Greek intelligence told a parliamentary committee that they had spied on a journalist with surveillance malware , Reuters reported citing two sources present. ” reported Reuters.

Surveillance

Surveillance Malware Spyware Government

Surveillance firm’s leaked docs show the purchase of an $8M iOS RCE zero-day exploit?

Security Affairs

AUGUST 28, 2022

Leaked documents show the surveillance firm Intellexa offering exploits for iOS and Android devices for $8 Million. Intellexa is an Israeli surveillance firm founded by Israeli entrepreneur Tal Dilian, it offers surveillance and hacking solution to law enforcement and intelligence agencies. Pierluigi Paganini.

Surveillance

Surveillance Spyware Mobile Hacking

Sophisticated Android spyware PhoneSpy infected thousands of Korean phones

Security Affairs

NOVEMBER 10, 2021

South Korean users have been targeted with a new sophisticated Android spyware, tracked as PhoneSpy, as part of an ongoing campaign. Researchers from Zimperium zLabs uncovered an ongoing campaign aimed at infecting the mobile phones of South Korean users with new sophisticated android spyware dubbed PhoneSpy. Pierluigi Paganini.

Spyware

Spyware Mobile Social Engineering Surveillance

France’s government is giving the police more surveillance power

Security Affairs

JULY 9, 2023

According to the French newspaper Le Monde, law enforcement will be allowed to use spyware for their investigation, the software can remotely spy on the suspects using the microphone and camera of the devices and also collect their GPS location. “People’s lives will be saved” by the law, he added.”

Surveillance

Surveillance Government Spyware IoT

Indian-Made Mobile Spyware Targeted Human Rights Activist in Togo

The Hacker News

OCTOBER 11, 2021

A prominent Togolese human rights defender has been targeted with spyware by a threat actor known for striking victims in South Asia, marking the hacking group's first foray into digital surveillance in Africa.

Spyware

Spyware Mobile Surveillance Hacking

EU officials were targeted with Israeli surveillance software

Security Affairs

APRIL 13, 2022

According to a report published by Reuters, an Israeli surveillance software was used to spy on senior officials in the European Commission. One of the officials targeted with the infamous spyware there is Didier Reynders, a senior Belgian statesman who has served as the European Justice Commissioner since 2019. Pierluigi Paganini.

Surveillance

Surveillance Software Spyware Hacking

Recently patched Apple and Chrome zero-days exploited to infect devices in Egypt with Predator spyware

Security Affairs

SEPTEMBER 22, 2023

Citizen Lab and Google’s TAG revealed that the three recently patched Apple zero-days were used to install Cytrox Predator spyware. citizenlab in coordination with @Google ’s TAG team found that former Egyptian MP Ahmed Eltantawy was targeted with Cytrox’s #Predator #spyware through links sent via SMS and WhatsApp.

Spyware

Spyware Surveillance Mobile Hacking

Pegasus Project – how governments use Pegasus spyware against journalists

Security Affairs

JULY 19, 2021

Pegasus Project investigation into the leak of 50,000 phone numbers of potential surveillance targets revealed the abuse of NSO Group’s spyware. Pegasus Project is the name of a large-scale investigation into the leak of 50,000 phone numbers of potential surveillance targets that revealed the abuse of NSO Group’s spyware.

Spyware

Spyware Government Surveillance Media

Surveillance vendor exploited Samsung phone zero-days

Security Affairs

NOVEMBER 9, 2022

Google Project Zero researchers reported that a surveillance vendor is using three Samsung phone zero-day exploits. Google Project Zero disclosed three Samsung phone vulnerabilities, tracked as CVE-2021-25337, CVE-2021-25369 and CVE-2021-25370, that have been exploited by a surveillance company. SecurityAffairs – hacking, zero-day).

Surveillance

Surveillance Spyware Mobile Manufacturing

New zero-click exploit used to target Bahraini activists’ iPhones with NSO spyware

Security Affairs

AUGUST 24, 2021

Citizen Lab uncovered a new zero-click iMessage exploit that was used to deploy the NSO Group’s Pegasus spyware on devices belonging to Bahraini activists. Researchers from Citizen Lab spotted a zero-click iMessage exploit that was used to deploy NSO Group’s Pegasus spyware on Bahraini activists’ devices.

Spyware

Spyware Surveillance Hacking Mobile

Sextortion campaign uses Goontact spyware to target Android and iOS users

Security Affairs

DECEMBER 16, 2020

Security researchers from Lookout have discovered new spyware, dubbed Goontcat, that could target both Android and iOS users. Goontact implement common spyware features, including the ability to gather data from the infected devices and gather system info. The spyware is likely used as part of a sextortion campaign.

Spyware

Spyware Mobile Surveillance Malware

June 2023 Security Update for Android fixed Arm Mali GPU bug used by spyware?

Security Affairs

JUNE 7, 2023

June 2023 security update for Android released by Google fixes about fifty flaws, including an Arm Mali GPU bug exploited by surveillance firms in their spyware. The flaw made headlines because it was exploited by surveillance firms for their spyware. In early April, U.S.

Spyware

Spyware Surveillance Firmware Hacking

Experts spotted two Android spyware used by Indian APT Confucius

Security Affairs

FEBRUARY 11, 2021

Lookout researchers provided details about two Android spyware families employed by an APT group tracked as Confucius. Researchers at mobile security firm Lookout have provided details about two recently discovered Android spyware families, dubbed Hornbill and SunBird, used by an APT group named Confucius. Pierluigi Paganini.

Spyware

Spyware Surveillance Malware Mobile

German authorities raid the offices of the FinFisher surveillance firm

Security Affairs

OCTOBER 14, 2020

Earlier this month, German authorities have raided the offices of FinFisher, the German surveillance software firm, accused of providing its software to oppressive regimes. FinSpy can spy on most popular desktop and mobile operating systems, including Android, iOS, Windows, macOS, and Linux. SecurityAffairs – hacking, K-Electric).

Surveillance

Surveillance Spyware Software Advertising

Finnish diplomats’ devices infected with Pegasus spyware

Security Affairs

JANUARY 28, 2022

Finland Ministry for Foreign Affairs revealed that devices of Finnish diplomats have been infected with NSO Group’s Pegasus spyware. Finland’s Ministry for Foreign Affairs revealed that the devices of some Finnish diplomats have been compromised with the infamous NSO Group’s Pegasus spyware. Pierluigi Paganini.

Spyware

Spyware Surveillance Mobile Risk

Donot Team targets a Togo prominent activist with Indian-made spyware

Security Affairs

OCTOBER 11, 2021

A Togolese human rights advocate was hit by mobile spyware that has been allegedly developed by an Indian firm called Innefu Labs. Experts believe the attackers used a spyware developed by an Indian company called Innefu Labs. In the past, the Donot Team spyware was found in attacks outside of South Asia.

Spyware

Spyware Surveillance Accountability Mobile

NSO Group Pegasus spyware leverages new zero-click iPhone exploit in recent attacks

Security Affairs

APRIL 19, 2022

Researchers from Citizen Lab have published a report detailing the use of a new zero-click iMessage exploit, dubbed HOMAGE, to install the NSO Group Pegasus spyware on iPhones belonging to Catalan politicians, journalists, academics, and activists. SecurityAffairs – hacking, NSO Group Pegasus). To nominate, please visit:?

Spyware

Spyware Surveillance Government Software

Moroccan journalist targeted with network injection attacks using NSO Group ‘s spyware

Security Affairs

JUNE 22, 2020

Researchers at Amnesty International collected evidence that a Moroccan journalist was targeted with network injection attacks using NSO Group ‘s spyware. “Through our investigation we were able to confirm that his phone was targeted and put under surveillance during the same period he was prosecuted.”

Spyware

Spyware Surveillance Mobile Advertising

Apple Unveils 'Lockdown Mode' to Defend Against Spyware

SecureWorld News

JULY 8, 2022

Lockdown Mode is designed to protect users who could be targeted by "the most sophisticated digital threats," such as spyware developed by private companies like the highly controversial NSO Group. Configuration profiles cannot be installed, and the device cannot enroll into mobile device management (MDM), while Lockdown Mode is turned on.

Spyware

Spyware Mobile Surveillance Government

Apple Security Under Scrutiny Amid Fallout from NSO Spyware Scandal

eSecurity Planet

JULY 21, 2021

Reports that the NSO Group’s Pegasus spyware was used by governments to spy on Apple iPhones used by journalists, activists, government officials and business executives is becoming a global controversy for NSO, Apple and a number of governments at the center of the scandal. Mobile Security, Privacy at Issue. Apple Under Fire.

Spyware

Spyware Mobile Government Surveillance

Experts spotted a new advanced Android spyware posing as “System Update”

Security Affairs

MARCH 27, 2021

Researchers spotted a sophisticated Android spyware that implements exfiltration capabilities and surveillance features, including recording audio and phone calls. Experts from security firm Zimperium have spotted a new sophisticated Android spyware that masquerades itself as a System Update application. Pierluigi Paganini.

Spyware

Spyware Malware Surveillance Mobile

Android mobile devices from top vendors in China have pre-installed malware

Security Affairs

FEBRUARY 9, 2023

Researchers reported that the top-of-the-line Android mobile devices sold in China are shipped with malware. The smartphones analyzed by the r researchers were observed sending data to the device vendor and the Chinese mobile network operators (e.g., EU) Android OS distributions from the same OS developers.

Mobile

Mobile Malware Surveillance Spyware

The world’s most coveted spyware, Pegasus: Lock and Code S03E04

Malwarebytes

FEBRUARY 14, 2022

Two years ago, the FBI reportedly purchased a copy of the world’s most coveted spyware, a tool that can remotely and silently crack into Androids and iPhones without leaving a trace, spilling device contents onto a console possibly thousands of miles away, with little more effort than entering a phone number.

Spyware

Spyware Surveillance Government Mobile

Zero-day exploit used to hack iPhones of Al Jazeera employees

Security Affairs

DECEMBER 21, 2020

Tens of Al Jazeera employees were targeted in a cyber espionage campaign leveraging a zero-click iOS zero-day vulnerability to hack their iPhones. Researchers from Citizen Lab reported that at least 36 Al Jazeera employees were targeted in a cyber espionage campaign leveraging a zero-click iOS zero-day vulnerability to hack their iPhones.

Hacking

Hacking Surveillance Spyware Government

NSO CEO claims Facebook wanted NSO surveillance tool to spy on users

Security Affairs

APRIL 8, 2020

In October 2019, WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks against its users. In May, Facebook has patched a critical zero-day vulnerability in WhatsApp, tracked as CVE-2019-3568 , that has been exploited to remotely install spyware on phones by calling the targeted device.

Surveillance

Surveillance Spyware Advertising Government

Unknown FinSpy Mac and Linux versions found in Egypt

Security Affairs

SEPTEMBER 27, 2020

Experts from Amnesty International uncovered a surveillance campaign that targeted Egyptian civil society organizations with a new version of FinSpy spyware. FinSpy can spy on most popular desktop and mobile operating systems, including Android, iOS, Windows, macOS, and Linux. SecurityAffairs – hacking, FinSpy).

Spyware

Spyware Surveillance Mobile Advertising

APT C-23 group targets Middle East with an enhanced Android spyware variant

Security Affairs

NOVEMBER 26, 2021

A threat actor, tracked as APT C-23, is using new powerful Android spyware in attacks aimed at targets in the Middle East. The APT C-23 cyberespionage group (also known as GnatSpy, FrozenCell, or VAMP) continues to target entities in the Middle East with enhanced Android spyware masqueraded as seemingly harmless app updates (i.e.

Spyware

Spyware Social Engineering Surveillance Engineering

Kamran Spyware Targets Gilgit Baltistan Users Through Hunza News

Hackology

NOVEMBER 11, 2023

The emergence of Kamran spyware, targeting users of a regional news website, has raised concerns among cybersecurity experts. Distributed through a possible watering-hole attack on the Hunza News website , the spyware prompts users to grant permissions, allowing access to sensitive data.

Spyware

Spyware Malware Risk Mobile

Snowden speaks about the role of surveillance firm NSO Group in Khashoggi murder

Security Affairs

NOVEMBER 9, 2018

Snowden warns of abuse of surveillance software that also had a role in the murder of the Saudi Arabian journalist Jamal Khashoggi. Officially the sale of surveillance software is limited to authorized governments to support investigation of agencies on criminal organizations and terrorist groups. COUNTRY NEXUS. 2012-2014.

Surveillance

Surveillance Spyware Software Advertising

Android Spyware Monokle, developed by Russian defense contractor, used in targeted attacks

Security Affairs

JULY 25, 2019

Researchers at Lookout discovered a new mobile spyware dubbed Monokle that was developed by a Russian defense contractor. Experts at Lookout discovered a new Android mobile spyware in the wild, dubbed Monokle, that was developed by a Russian defense contractor named Special Technology Centre Ltd. ( Pierluigi Paganini.

Spyware

Spyware Surveillance Mobile Advertising

Experts spotted the iOS version of the Exodus surveillance app

Security Affairs

APRIL 9, 2019

In the last weeks, a new Android surveillance malware dubbed Exodus made the headlines, now expert found the iOS version of the government spyware. Security experts at LookOut have discovered an iOS version of the dreaded surveillance Android app Exodus that was initially found on the official Google Play Store.

Surveillance

Surveillance Spyware Phishing Malware

Signal denies claims of an alleged zero-day flaw in its platform

Security Affairs

OCTOBER 16, 2023

Some researchers reported that the flaw affected the link preview feature of the mobile app and urged users to disable it. Researchers fear that commercial surveillance vendors could be aware of a zero-day vulnerability in the Signal app that allowed their spyware to completely control the target devices.

Spyware

Spyware Surveillance Encryption Mobile

China installs a surveillance app on tourists’ phones while crossing in the Xinjiang

Security Affairs

JULY 3, 2019

Chinese border guards are secretly installing a surveillance app on smartphones of tourists and people crossings in the Xinjiang region who are entering from Kyrgyzstan. The surveillance software allows operators to spy on victims, accessing emails, text messages, contacts, calendar entries, call records. Pierluigi Paganini.

Surveillance

Surveillance Spyware Advertising Government

Hacking group updates Furball Android spyware to evade detection

Experts found a macOS version of the sophisticated LightSpy spyware

Webinars

Trending Sources

CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog

Webinars

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Pegasus spyware and how it exploited a WebP vulnerability

iShutdown lightweight method allows to discover spyware infections on iPhones

Researchers analyzed the PREDATOR spyware and its loader Alien

Experts attribute WyrmSpy and DragonEgg spyware to the Chinese APT41 group

The iPhone of a Russian journalist was infected with the Pegasus spyware

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports

Surveillance firm’s leaked docs show the purchase of an $8M iOS RCE zero-day exploit?

Sophisticated Android spyware PhoneSpy infected thousands of Korean phones

France’s government is giving the police more surveillance power

Indian-Made Mobile Spyware Targeted Human Rights Activist in Togo

EU officials were targeted with Israeli surveillance software

Recently patched Apple and Chrome zero-days exploited to infect devices in Egypt with Predator spyware

Pegasus Project – how governments use Pegasus spyware against journalists

Surveillance vendor exploited Samsung phone zero-days

New zero-click exploit used to target Bahraini activists’ iPhones with NSO spyware

Sextortion campaign uses Goontact spyware to target Android and iOS users

June 2023 Security Update for Android fixed Arm Mali GPU bug used by spyware?

Experts spotted two Android spyware used by Indian APT Confucius

German authorities raid the offices of the FinFisher surveillance firm

Finnish diplomats’ devices infected with Pegasus spyware

Donot Team targets a Togo prominent activist with Indian-made spyware

NSO Group Pegasus spyware leverages new zero-click iPhone exploit in recent attacks

Moroccan journalist targeted with network injection attacks using NSO Group ‘s spyware

Apple Unveils 'Lockdown Mode' to Defend Against Spyware

Apple Security Under Scrutiny Amid Fallout from NSO Spyware Scandal

Experts spotted a new advanced Android spyware posing as “System Update”

Android mobile devices from top vendors in China have pre-installed malware

The world’s most coveted spyware, Pegasus: Lock and Code S03E04

Zero-day exploit used to hack iPhones of Al Jazeera employees

NSO CEO claims Facebook wanted NSO surveillance tool to spy on users

Unknown FinSpy Mac and Linux versions found in Egypt

APT C-23 group targets Middle East with an enhanced Android spyware variant

Kamran Spyware Targets Gilgit Baltistan Users Through Hunza News

Snowden speaks about the role of surveillance firm NSO Group in Khashoggi murder

Android Spyware Monokle, developed by Russian defense contractor, used in targeted attacks

Experts spotted the iOS version of the Exodus surveillance app

Signal denies claims of an alleged zero-day flaw in its platform

China installs a surveillance app on tourists’ phones while crossing in the Xinjiang

Stay Connected