2012 and Spyware - Cyber Security Informer

APT32 state hackers target human rights defenders with spyware

Security Affairs

FEBRUARY 24, 2021

The threat actors used by spyware to take over the target systems, spy on the victims, and exfiltrate data. The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. ” reads the post published by Amnesty International. .

Spyware

Spyware Surveillance Government Phishing

NetWire Remote Access Trojan Maker Arrested

Schneier on Security

MARCH 14, 2023

From Brian Krebs : A Croatian national has been arrested for allegedly operating NetWire, a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. The arrest coincided with a seizure of the NetWire sales website by the U.S. Federal Bureau of Investigation (FBI).

Cybercrime

Cybercrime Marketing Passwords Spyware

Hackers exploit old Microsoft Vulnerability to drop Zloader Malware

CyberSecurity Insiders

JANUARY 5, 2022

Microsoft that fixed this security vulnerability in 2012-13 by implementing strict file verification policies is busy urging admins to follow its legacy advisory published in August 2013 in order to fix the issue. Keeping the systems loaded with anti-spyware or antivirus software makes complete sense.

Malware

Malware Spyware Antivirus Cyber threats

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Deadglyph, a very sophisticated and unknown backdoor targets the Middle East

Security Affairs

SEPTEMBER 24, 2023

Stealth Falcon is a nation-state actor active since at least 2012, the group targeted political activists and journalists in the Middle East in past campaigns. In 2016, researchers from the non-profit organization CitizenLab published a report that describes a campaign of targeted spyware attacks carried out by the Stealth Falcon.

Spyware

Spyware Malware Architecture Encryption

Dark Caracal: Global Espionage Malware from Lebanon

Schneier on Security

JANUARY 22, 2018

The EFF and Lookout are reporting on a new piece of spyware operating out of Lebanon. From the Lookout announcement: Dark Caracal has operated a series of multi-platform campaigns starting from at least January 2012, according to our research. The campaigns span across 21+ countries and thousands of victims.

Malware

Malware Spyware Manufacturing Mobile

Snowden speaks about the role of surveillance firm NSO Group in Khashoggi murder

Security Affairs

NOVEMBER 9, 2018

In July, Citizen Lab collected evidence of attacks against 175 targets worldwide carried on with the NSO spyware. YEAR(S) IN WHICH SPYWARE INFECTION WAS ATTEMPTED. In August, an Amnesty International report confirmed that its experts identified a second human rights activist, in Saudi Arabia, who was targeted with the powerful spyware.

Surveillance

Surveillance Spyware Software Advertising

School Gives Malware Infected Laptops to Students

SecureWorld News

JANUARY 23, 2021

a worm discovered by Microsoft in 2012. This malware strain works by installing spyware, used to gather information about browsing habits and personal data. Any schools that have concerns should contact the Department for Education.". Reports on the malware have indicated that the Windows laptops contained Gamarue.I,

Malware

Malware Education Spyware Government

A new variant of Asruex Trojan exploits very old Office, Adobe flaws

Security Affairs

AUGUST 23, 2019

Asruex first appeared in the threat landscape 2015, researchers linked it to the spyware used by the DarkHotel APT group. CVE-2012-0158 is a critical remote code execution (RCE) vulnerability that affected Microsoft Office. . ” reads the report published by Trend Micro. . ” reads the report published by Trend Micro.

Malware

Malware Spyware Advertising Encryption

Stealth Falcon’s undocumented backdoor uses Windows BITS to exfiltrate data

Security Affairs

SEPTEMBER 9, 2019

Stealth Falcon is a nation-state actor active since at least 2012, the group targeted political activists and journalists in the Middle East in past campaigns. In 2016, researchers from non-profit organization CitizenLab published a report that describes a campaign of targeted spyware attacks carried by the Stealth Falcon.

Malware

Malware Advertising System Administration Spyware

Security Affairs newsletter Round 235

Security Affairs

OCTOBER 13, 2019

Amnesty claims that 2 Morocco rights advocates were targeted by NSO Group spyware. Ops, popular iTerm2 macOS Terminal App is affected by a critical RCE since 2012. Attor malware was developed by one of the most sophisticated espionage groups. iTunes Zero-Day flaw exploited by the gang behind BitPaymer ransomware.

VPN

VPN Spyware Data breaches Advertising

China-linked APT41 group targets telecommunications companies with new backdoor

Security Affairs

OCTOBER 31, 2019

” The APT41 has been active since at least 2012, it was involved in both state-sponsored espionage campaigns and financially-motivated attacks since 2014. The spyware uses the “ libpcap library to listen to all traffic and parses network protocols starting with Ethernet and IP layers.

Telecommunications

Telecommunications Malware Mobile Advertising

APT trends report Q3 2022

SecureList

NOVEMBER 1, 2022

In June, we identified a previously unknown Android spyware app that targets Persian-speaking individuals. The spyware itself collects various data from the victims’ devices, such as call logs or lists of contacts. SandStrike is distributed as a means to access resources about the Bahá?í í religion that are banned in Iran.

Malware

Malware Ransomware Spyware Encryption

Mobile malware evolution 2020

SecureList

MARCH 1, 2021

The word “covid” in various combinations was typically used in the names of packages hiding spyware and banking Trojans, adware or Trojan droppers. This is a typical example of the kind of old-school text-message scams that were popular in 2011 and 2012. Pandemic theme in mobile threats. apk and coviddetect.apk.

Mobile

Mobile Malware Adware Banking

Amnesty International employee targeted with NSO group surveillance malware

Security Affairs

AUGUST 1, 2018

. “In June 2018, an Amnesty International staff member received a malicious WhatsApp message with Saudi Arabia-related bait content and carrying links Amnesty International believes are used to distribute and deploy sophisticated mobile spyware. Year(s) in which spyware infection was attempted. Country Nexus. Saudi Arabia.

Surveillance

Surveillance Malware Spyware Mobile

NSO mobile Pegasus Spyware used in operations in 45 countries

Security Affairs

SEPTEMBER 18, 2018

A new report published by Citizen Lab revealed that the NSO Pegasus spyware was used against targets across 45 countries worldwide. A new investigation of the Citizen Lab revealed that the powerful Pegasus mobile spyware was used against targets across 45 countries around the world over the last two years. COUNTRY NEXUS.

Spyware

Spyware Mobile Surveillance DNS

How to Track Your Kids (and Other People's Kids) With the TicTocTrack Watch

Troy Hunt

APRIL 15, 2019

Not to mention the various spyware apps often installed on kids' phones to track them which then subsequently leak their data all over the internet. Certainly not the current gen XS, does that resolution put it back in about the iPhone 5 era from 2012? mSpy leaked data. SpyFone leaked data. Mobiispy leaked data.

Spyware

Spyware Passwords Manufacturing Marketing

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Herjavec Group

AUGUST 26, 2021

2008 — Heartland Payment Systems — 134 million credit cards are exposed through SQL injection to install spyware on Heartland’s data systems. While initial estimates of damages came up to around $25 million, later reports add up the total cost of damages to over $250 million.

Cybercrime

Cybercrime Computers and Electronics Banking Hacking

Advanced threat predictions for 2023

SecureList

NOVEMBER 14, 2022

In 2022, the GReAT team tracked several threat actors leveraging SilentBreak’s toolset as well as a commercial Android spyware we named MagicKarakurt. CobaltStrike, released in 2012, is a threat emulation tool designed to help red teams understand the methods an attacker can use to penetrate a network.

Firmware

Firmware Surveillance Mobile Telecommunications

Cyber Security Informer

APT32 state hackers target human rights defenders with spyware

NetWire Remote Access Trojan Maker Arrested

Webinars

Trending Sources

Hackers exploit old Microsoft Vulnerability to drop Zloader Malware

Webinars

Deadglyph, a very sophisticated and unknown backdoor targets the Middle East

Dark Caracal: Global Espionage Malware from Lebanon

Snowden speaks about the role of surveillance firm NSO Group in Khashoggi murder

School Gives Malware Infected Laptops to Students

A new variant of Asruex Trojan exploits very old Office, Adobe flaws

Stealth Falcon’s undocumented backdoor uses Windows BITS to exfiltrate data

Security Affairs newsletter Round 235

China-linked APT41 group targets telecommunications companies with new backdoor

APT trends report Q3 2022

Mobile malware evolution 2020

Amnesty International employee targeted with NSO group surveillance malware

NSO mobile Pegasus Spyware used in operations in 45 countries

How to Track Your Kids (and Other People's Kids) With the TicTocTrack Watch

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Advanced threat predictions for 2023

Stay Connected