2014, Social Engineering and Spyware - Cyber Security Informer

Agent Tesla includes new password-stealing capabilities from browsers and VPNs

Security Affairs

AUGUST 12, 2020

Agent Tesla is a spyware that is used to spy on the victims by collecting keystrokes, system clipboard, screenshots, and credentials from the infected system. To do this, the spyware creates different threads and timer functions in the main function. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Passwords

Passwords Spyware VPN Malware

New Coronavirus-themed malspam campaign delivers FormBook Malware

Security Affairs

MARCH 8, 2020

FormBook data-stealing malware was used with cyber espionage purposes, like other spyware it is capable of extracting data from HTTP sessions, keystroke logging, stealing clipboard contents. See Using Caution with Email Attachments and Avoiding Social Engineering and Phishing Scams for more information. Pierluigi Paganini.

Malware

Malware Scams Social Engineering Phishing

IDF soldiers tricked into installing malicious apps by Hamas operatives posing as attractive women

Security Affairs

FEBRUARY 17, 2020

This kind of social engineering attacks was already used by Hamas hackers in the past, in July 2018 Israeli military intelligence accused Hamas operatives of creating tainted apps to lure soldiers into downloading spyware onto their phones. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Social Engineering

Social Engineering Media Advertising Spyware

Experts discovered the first mobile malware families linked to Russia’s Gamaredon

Security Affairs

DECEMBER 12, 2024

The Russia-linked APT Gamaredon used two new Android spyware tools calledBoneSpyandPlainGnome against former Soviet states. Gamaredon has been launching cyber-espionage campaigns on Ukraine since at least 2014. Lookout researchers linked the BoneSpy and PlainGnome Android surveillance families to the Russian APT group Gamaredon (a.k.a.

Mobile

Mobile Malware Surveillance Social Engineering

APT annual review 2021

SecureList

NOVEMBER 30, 2021

In November, Apple announced that it was taking legal action against NSO Group for developing software that targets its users with “malicious malware and spyware” Detecting infection traces from Pegasus and other advanced mobile malware is very tricky, and complicated by the security features of modern OSs such as iOS and Android.

Malware

Malware Mobile Spyware Surveillance

APT trends report Q1 2021

SecureList

APRIL 27, 2021

During routine monitoring of detections for FinFisher spyware tools, we discovered traces that point to recent FinFly Web deployments. It was first publicly documented in 2014, in the aftermath of the Gamma Group hacking incident. FinFly Web is, in essence, a suite of tools and packages that implement a web-based exploitation server.

Malware

Malware Government Spyware Social Engineering

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Herjavec Group

AUGUST 26, 2021

1970-1995 — Kevin Mitnick — Beginning in 1970, Kevin Mitnick penetrates some of the most highly-guarded networks in the world, including Nokia and Motorola, using elaborate social engineering schemes, tricking insiders into handing over codes and passwords, and using the codes to access internal computer systems.

Cybercrime

Cybercrime Computers and Electronics Banking Hacking

Malvertising campaign on PornHub and other top adult brands exposes users to tech support scams

Malwarebytes

FEBRUARY 12, 2021

The scammers created those fake identities to redirect traffic away from the adult platforms onto pages showing bogus alerts claiming users were infected with pornographic spyware. This well-known scheme attempts to scare victims into calling so-called technicians for assistance but in fact defrauds them for hundreds of dollars.

Scams

Scams Advertising Spyware Mobile

IRISSCON 2022 roundup: a new hope

BH Consulting

NOVEMBER 15, 2022

He argued that security works when it costs €100,000 for spyware to hack into a politician’s iPhone. He analysed ten years of ransomware and found the problem, in terms of volume and frequency, was in 2014. “So Sharon Conheady’s entertaining talk explored the ethical side of social engineering.

Social Engineering

Social Engineering Insurance Ransomware CISO

Common Techniques Hackers Use to Penetrate Systems and How to Protect Your Organization

ForAllSecure

APRIL 26, 2023

Common Types of Cyber Attacks Common techniques that criminal hackers use to penetrate systems include social engineering, password attacks, malware, and exploitation of software vulnerabilities. It uses psychological manipulation to trick users into making security mistakes or giving away sensitive information.”

Social Engineering

Social Engineering Passwords Engineering Software

IT threat evolution Q3 2022

SecureList

NOVEMBER 18, 2022

Prilex, active since 2014, is a well-known threat actor targeting ATMs and Point of Sale (PoS) terminals. The group delivers its malware using social engineering. After receiving the data, the first-stage C2 servers forward the archives to a second-stage server located in China. Other malware.

Malware

Malware Computers and Electronics Adware Cryptocurrency

Cyber Threats to the FIFA World Cup Qatar 2022

Digital Shadows

NOVEMBER 10, 2022

Threat actors can develop fake mobile apps to install adware, steal PII and financial data, extract cookies and credentials, and download further payloads (such as spyware) from a remote-controlled domain. 100% NOT a pyramid scheme Social media pages are not the only concern when it comes to brand and logo theft.

Cyber threats

Cyber threats Media Social Engineering Mobile

APT trends report Q3 2021

SecureList

OCTOBER 26, 2021

Historically, its Windows implant was represented by a single-stage spyware installer. While the MBR infection has been known since at least 2014, details of the UEFI bootkit were only publicly revealed for the first time in our article. This version was detected and researched several times up to 2018. Final thoughts.

Malware

Malware Government Surveillance Spyware

Advanced threat predictions for 2022

SecureList

NOVEMBER 17, 2021

Blackberry released a report centered around an entity they call Zebra 2104 and which appears to be an “initial access broker” According to their research, Zebra 2014 has provided ransomware operators with an initial foothold into some of their victims.

Mobile

Mobile Surveillance Ransomware Government

Spam and phishing in Q2 2021

SecureList

AUGUST 5, 2021

WhatsApp was bought by Facebook in 2014. Sixth and eighth places were occupied by Noon spyware Trojans, which infect any (2.66%) or only 32-bit (2.47%) versions of Windows. Another traditional scam aims to persuade the user that they are the lucky winner of a tidy sum. Next come malicious ISO disk images (3.29%).

Phishing

Phishing Banking Scams Computers and Electronics

Cyber Security Informer

Agent Tesla includes new password-stealing capabilities from browsers and VPNs

New Coronavirus-themed malspam campaign delivers FormBook Malware

Trending Sources

IDF soldiers tricked into installing malicious apps by Hamas operatives posing as attractive women

Experts discovered the first mobile malware families linked to Russia’s Gamaredon

APT annual review 2021

APT trends report Q1 2021

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Malvertising campaign on PornHub and other top adult brands exposes users to tech support scams

IRISSCON 2022 roundup: a new hope

Common Techniques Hackers Use to Penetrate Systems and How to Protect Your Organization

IT threat evolution Q3 2022

Cyber Threats to the FIFA World Cup Qatar 2022

APT trends report Q3 2021

Advanced threat predictions for 2022

Spam and phishing in Q2 2021

Stay Connected