2011, Malware and Spyware - Cyber Security Informer

New FinSpy Malware Variant Infects Windows Systems With UEFI Bootkit

The Hacker News

SEPTEMBER 29, 2021

Detected in the wild since 2011, FinFisher (aka FinSpy or Wingbird) is a spyware toolset for Windows, macOS, and Linux

Spyware

Spyware Firmware Malware

APT trends report Q3 2024

SecureList

NOVEMBER 28, 2024

We also found Cobalt Strike beacons and several traces tying this actor to the ShadowPad malware and UNC2643 activity, which is in turn associated with the HAFNIUM threat actor. Epeius is a commercial spyware tool developed by an Italian company that claims to provide intelligence solutions to law enforcement agencies and governments.

Malware

Malware Government Software Spyware

Unknown FinSpy Mac and Linux versions found in Egypt

Security Affairs

SEPTEMBER 27, 2020

Experts from Amnesty International uncovered a surveillance campaign that targeted Egyptian civil society organizations with a new version of FinSpy spyware. Since 2011 it was employed in attacks aimed at Human Rights Defenders (HRDs) in many countries, including Bahrain, Ethiopia, UAE, and more.

Spyware

Spyware Surveillance Mobile Advertising

Mobile malware evolution 2020

SecureList

MARCH 1, 2021

The word “covid” in various combinations was typically used in the names of packages hiding spyware and banking Trojans, adware or Trojan droppers. The mobile malware Trojan-Ransom.AndroidOS.Agent.aq Last year was notable for both malware and adware, the two very close in terms of capabilities. More on that later.

Mobile

Mobile Malware Adware Banking

German authorities raid the offices of the FinFisher surveillance firm

Security Affairs

OCTOBER 14, 2020

In September, Amnesty International uncovered a new surveillance campaign that targeted Egyptian civil society organizations with previously undisclosed versions of the infamous FinSpy surveillance spyware. The new versions employed in this campaign allow its operators to spy on both Linux and macOS systems.

Surveillance

Surveillance Spyware Software Advertising

The Belgacom hack was the work of the UK GCHQ intelligence agency

Security Affairs

OCTOBER 28, 2018

Back to September 2013, Belgacom (now Proximus), the largest telecommunications company in Belgium and primarily state-owned, announced its IT infrastructure had suffered a malware-based attack. Specifically, these are IP addresses of computers where the spyware software communicated from Belgacom. ” wrote The Intercept.

Hacking

Hacking Spyware Telecommunications Malware

NullMixer: oodles of Trojans in a single dropper

SecureList

SEPTEMBER 26, 2022

NullMixer is a dropper leading to an infection chain of a wide variety of malware families. These websites are often related to crack, keygen and activators for downloading software illegally, and while they may pretend to be legitimate software, they actually contain a malware dropper. Malware execution instructions.

Malware

Malware Cryptocurrency Passwords Software

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Herjavec Group

AUGUST 26, 2021

After being released in 2003, he uses WiFi to commit attacks, program malware and steal credit card information. 2008 — Heartland Payment Systems — 134 million credit cards are exposed through SQL injection to install spyware on Heartland’s data systems. 1998-2007 — Max Butler — Max Butler hacks U.S.

Cybercrime

Cybercrime Computers and Electronics Banking Hacking

APT trends report Q1 2021

SecureList

APRIL 27, 2021

In our initial report on Sunburst , we examined the method used by the malware to communicate with its C2 (command-and-control) server and the protocol used to upgrade victims for further exploitation. This campaign made use of a previously unknown malware family we dubbed FourteenHi.

Malware

Malware Government Spyware Social Engineering

Phishers turning hard-working: CERT-GIB records upsurge of phishing resource blockages as duration of attacks grows

Security Affairs

MAY 8, 2020

Malware delivery: what’s on the menu? H2 2019 has proved the tendency of past several years: mail remains the main method of delivering ransomware, spyware, backdoors and other malware, being used by cyber crooks in 94 percent of cases.

Phishing

Phishing Spyware Banking Malware

Updates from the MaaS: new threats delivered through NullMixer

Security Affairs

MARCH 27, 2023

A technical analysis of NullMixer malware operation revealed Italy and France are the favorite European countries from the attackers’ perspective. Executive Summary Our insights into a recent NullMixer malware operation revealed Italy and France are the favorite European countries from the opportunistic attackers’ perspective.

Malware

Malware Social Engineering Encryption Marketing

Security Affairs newsletter Round 178 – News of the week

Security Affairs

SEPTEMBER 2, 2018

Stopping a big botnet targeting USA, Canada and Italy. · What Happens to Whistleblowers After They Blow the Whistle?

Banking

Banking Spyware Data breaches Mobile

What is Employee Monitoring? Full Guide to Getting It Right

eSecurity Planet

OCTOBER 21, 2022

While the article was written in 2011, the lion’s share of information on the topic of employee monitoring still belongs to businesses. Employee monitoring software can look very similar to spyware, a type of malware used by hackers to track user activity and steal their data.

Computers and Electronics

Computers and Electronics Surveillance Software Manufacturing

Meet the World’s Biggest ‘Bulletproof’ Hoster

Krebs on Security

JULY 16, 2019

For at least the past decade, a computer crook variously known as “ Yalishanda ,” “ Downlow ” and “ Stas_vl ” has run one of the most popular “bulletproof” Web hosting services catering to a vast array of phishing sites, cybercrime forums and malware download servers.

Cybercrime

Cybercrime Phishing Banking Malware

FinSpy: unseen findings

SecureList

SEPTEMBER 28, 2021

Kaspersky has been tracking deployments of this spyware since 2011. The Pre-Validator ensures that the victim machine is not used for malware analysis. The nature of these shellcodes indicates that they are used to fingerprint the system and verify that it is not used for malware analysis. MacOS Infection.

Encryption

Encryption Malware Spyware Architecture

Don't plug your phone into a free charging station, warns FBI

Malwarebytes

APRIL 11, 2023

In a recent tweet , the FBI office in Denver warned consumers against using free public charging stations, stating that criminals have managed to hijack public chargers with the objective of infecting devices with malware or other software that can give hackers access to your phone, tablet or computer.

Mobile

Mobile Banking Malware Spyware

Cyber Security Informer

New FinSpy Malware Variant Infects Windows Systems With UEFI Bootkit

APT trends report Q3 2024

Trending Sources

Unknown FinSpy Mac and Linux versions found in Egypt

Mobile malware evolution 2020

German authorities raid the offices of the FinFisher surveillance firm

The Belgacom hack was the work of the UK GCHQ intelligence agency

NullMixer: oodles of Trojans in a single dropper

Cyber CEO: The History Of Cybercrime, From 1834 To Present

APT trends report Q1 2021

Phishers turning hard-working: CERT-GIB records upsurge of phishing resource blockages as duration of attacks grows

Updates from the MaaS: new threats delivered through NullMixer

Security Affairs newsletter Round 178 – News of the week

What is Employee Monitoring? Full Guide to Getting It Right

Meet the World’s Biggest ‘Bulletproof’ Hoster

FinSpy: unseen findings

Don't plug your phone into a free charging station, warns FBI

Stay Connected