SecureList

JUNE 16, 2021

Ferocious Kitten is an APT group that since at least 2015 has been targeting Persian-speaking individuals who appear to be based in Iran. We were able to trace the implant back to at least 2015, where it also had variants intended to hijack the execution of the Telegram and Chrome applications as a persistence method. Background.

Surveillance 145

Surveillance Malware Password Management Passwords 145

Security Affairs

APRIL 9, 2019

In the last weeks, a new Android surveillance malware dubbed Exodus made the headlines, now expert found the iOS version of the government spyware. Security experts at LookOut have discovered an iOS version of the dreaded surveillance Android app Exodus that was initially found on the official Google Play Store. to eSurv S.R.L.

Surveillance 104

Surveillance Spyware Phishing Malware 104

Security Affairs

JUNE 17, 2022

Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.

Spyware 107

Spyware Surveillance Telecommunications Mobile 107

Security Affairs

MAY 20, 2019

Amnesty International filed a lawsuit against Israeli surveillance firm NSO and fears its staff may be targeted by the company with its Pegasus spyware. The name NSO Group made the headlines last week after the disclosure of the WhatsApp flaw exploited by the company to remotely install its surveillance software.

Surveillance 106

Surveillance Spyware Software Government 106

Security Affairs

MARCH 30, 2019

The malware was tracked as Exodus, after the name of the command and control servers the malicious apps connected to. The malware was undetected for months, and unfortunately, this isn’t the first time that malicious codes are hosted on the Google Play store without being detected. ” continues the report.

Government 111

Government Malware Spyware Surveillance 111

Security Affairs

MAY 10, 2020

Attackers confirmed that attackers compromised the IT network of the company and deployed some of its machines with malware that was used to exfiltrate data from the infected devices. “Stadler internal surveillance services found out that the company’s IT network has been attacked by malware which has most likely led to a data leak.

Manufacturing 142

Manufacturing Malware Data breaches Backups 142

Security Affairs

DECEMBER 30, 2019

The United Arab Emirates denied reports that the popular mobile app ToTok was used as part of a government massive surveillance program. According to a report recently published by the New York Times , the popular app ToTok was used by the UAE government as a surveillance tool. SecurityAffairs – ToTok, surveillance).

Surveillance 95

Surveillance Government Telecommunications Advertising 95

Security Affairs

SEPTEMBER 7, 2020

US authorities have indicted a Russian national for conspiring to recruit a Tesla employee to install malware onto the company’s infrastructure. Russian national Egor Igorevich Kriuchkov (27) has been indicted in the United States for conspiring to recruit a Tesla employee to install malware onto the company’s network.

Malware 135

Malware Surveillance Advertising Hacking 135

CyberSecurity Insiders

JUNE 17, 2021

And information is out that the campaign could have started by a hacking group dubbed Ferocious Kitten that has been active since 2015 and was conducting spying through a highly sophisticated malware named MarkiRAT. . Why the malware spreading hackers are targeting only Persian-speaking people is yet to be revealed to the public.

Malware 118

Malware Surveillance Antivirus Hacking 118

Security Affairs

JULY 3, 2019

Chinese border guards are secretly installing a surveillance app on smartphones of tourists and people crossings in the Xinjiang region who are entering from Kyrgyzstan. The surveillance software allows operators to spy on victims, accessing emails, text messages, contacts, calendar entries, call records. Pierluigi Paganini.

Surveillance 96

Surveillance Spyware Government Advertising 96

Security Affairs

AUGUST 1, 2018

An employee at Amnesty International has been targeted with Israeli surveillance malware, the news was revealed by the human rights group. Amnesty International revealed that one of its employees was targeted with a surveillance malware developed by an Israeli firm. com , pine-sales[.]com com , and ecommerce-ads[.]org.”

Surveillance 67

Surveillance Malware Spyware Mobile 67

Security Affairs

JUNE 20, 2020

Malicious Chrome browser extensions were employed in a surveillance campaign on a large scale, millions of users potentially impacted. According to Awake Security, the extensions were downloaded 33 million times and they were part of a massive surveillance campaign that was aided by the internet domain registrar CommuniGal Communication Ltd.

Surveillance 144

Surveillance Financial Services Internet Internet 144

Security Affairs

APRIL 17, 2020

Syrian-linked APT group SEA recently used COVID-19-themed lures as part of a long-running surveillance campaign, security researchers warn. Notably, the C2 servers of SilverH awk , an Android malware family previously reported on by Lookout researchers, were located on IP addresses belonging to STE.” The experts conclude.”It

Surveillance 131

Surveillance Telecommunications Mobile Malware 131

The Hacker News

SEPTEMBER 23, 2022

A new wave of a mobile surveillance campaign has been observed targeting the Uyghur community as part of a long-standing spyware operation active since at least 2015, cybersecurity researchers disclosed Thursday.

Spyware 116

Spyware Mobile Surveillance Malware 116

Security Affairs

OCTOBER 5, 2020

A China-linked threat actor used UEFI malware based on code from Hacking Team in attacks aimed at organizations with an interest in North Korea. Researchers from Kaspersky have spotted a UEFI malware that was involved in attacks on organizations with an interest in North Korea. Pierluigi Paganini. SecurityAffairs – hacking, UEFI).

Firmware 145

Firmware Spyware Surveillance Hacking 145

Security Affairs

OCTOBER 30, 2019

WhatsApp sued Israeli surveillance firm NSO Group, accusing it of using a flaw in its messaging service to conduct cyberespionage on journalists and activists. WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks against its users. ” reads the lawsuit. ” continues the post.

Surveillance 75

Surveillance Technology Spyware Mobile 75

Security Affairs

OCTOBER 15, 2018

BlackEnergy made the headlines as the responsible for the massive power outage that occurred in Ukraine in December 2015. The BlackEnergy malware is a threat improved to target SCADA systems, some variants include the KillDisk component developed to wipe the disks and make systems inoperable. ” states the ukrinform.net. .”

Cyber Attacks 111

Cyber Attacks Surveillance Telecommunications Antivirus 111

Security Affairs

NOVEMBER 24, 2019

Adobe announces end of support for Acrobat 2015 and Adobe Reader 2015. CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance. Payment solutions giant Edenred announces malware infection. Russian author of NeverQuest banking malware gets 4 Years in U.S. Pierluigi Paganini.

Data breaches 132

Data breaches Banking Wireless Surveillance 132

Security Affairs

SEPTEMBER 18, 2020

Security researchers discovered Android malware capable of bypassing 2FA that was developed by an Iran-linked group dubbed Rampant Kitten. Security researchers from Check Point discovered an Android malware, developed by an Iran-linked group dubbed Rampant Kitten, that is able to bypass 2FA. Pierluigi Paganini.

Malware 111

Malware Phishing Accountability Surveillance 111

Security Affairs

SEPTEMBER 9, 2018

CheckPoint uncovered an extensive surveillance operation conducted by Iranian APT actor and tracked as Domestic Kitten aimed at specific groups of individuals. ” This means that the Domestic Kitten surveillance operation had collateral victims whose details were leaked from contact lists or conversations with the targets.

Surveillance 81

Surveillance Mobile Spyware Advertising 81

Security Affairs

SEPTEMBER 27, 2020

Experts from Amnesty International uncovered a surveillance campaign that targeted Egyptian civil society organizations with a new version of FinSpy spyware. The mobile version of the surveillance software in the first stage of the infection leverages the exploits to get root access. ” reads the Amnesty’s report.

Spyware 145

Spyware Surveillance Advertising Hacking 145

Security Affairs

APRIL 25, 2020

The legal dispute between Facebook and NSO group continues even after the Israeli surveillance firm filed a motion to dismiss the case earlier this month. The surveillance implant used by the NSO group used an exploit for a vulnerability, tracked as CVE-2019-3568 , in the WhatsApp VoIP feature. Pierluigi Paganini.

Spyware 133

Spyware Surveillance Advertising Government 133

Security Affairs

DECEMBER 16, 2020

Security experts spotted a new malware strain, named Goontact, that allows its operators to spy on both Android and iOS users. The malware allows operators to retrieve phone identifiers and steal contacts, SMS messages, photos, and even location data. The spyware is likely used as part of a sextortion campaign.

Spyware 144

Spyware Mobile Surveillance Malware 144

Security Affairs

JUNE 22, 2020

In October 2019, security experts at Amnesty International’s Security Lab have uncovered targeted attacks against Moroccan human rights defenders Maati Monjib and Abdessadak El Bouchattaoui that employed NSO Group surveillance tools. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Spyware 144

Spyware Surveillance Mobile Advertising 144

Security Affairs

SEPTEMBER 11, 2022

The campaigns have been conducted since 2015 and are aimed at conducting information collection and surveillance operations against individuals and organizations of strategic interest to Teheran. “Mandiant has observed over 30 confirmed targeted APT42 operations spanning these categories since early 2015.

Surveillance 100

Surveillance Phishing Social Engineering Government 100

Security Affairs

APRIL 4, 2020

The attack described by Microsoft begun with a phishing message that was opened by an internal employee, the malware infected its systems and made lateral movements infected other systems in the same network. The incident also affected the surveillance camera network of the company along with the finance department.

Antivirus 144

Antivirus Malware Phishing Advertising 144

Security Affairs

MARCH 23, 2020

Experts observed multiple botnets exploiting zero-day vulnerabilities in DVRs for surveillance systems manufactured by Taiwan-based LILIN. Botnet operators are exploiting several zero-day vulnerabilities in digital video recorders (DVRs) for surveillance systems manufactured by Taiwan-based LILIN-. Pierluigi Paganini.

Firmware 139

Firmware Surveillance Manufacturing Advertising 139

Security Affairs

DECEMBER 24, 2019

According to a report published by the New York Times, the popular app ToTok was used by the UAE government as a surveillance tool. The report said US intelligence officials and a security researcher determined the app was being used by the UAE government for detailed surveillance. SecurityAffairs – ToTok, surveillence).

Government 94

Government Surveillance Advertising Mobile 94

Security Affairs

OCTOBER 10, 2019

NSO Group ‘s surveillance spyware made the headlines again, this time the malware was used to spy on 2 rights activists in Morocco according Amnesty International. Monjib is a historian and a columnist, co-founder of the NGO Freedom that in 2015 was accused of threatening the internal security of the state ”through “propaganda.”.

Spyware 80

Spyware Surveillance Advertising Malware 80

Security Affairs

MAY 13, 2019

Yoroi Cyber Security Annual Report 2018 – In 2018 cyber-security experts observed an increased number of cyber attacks, malware endure to be the most aggressive and pervasive threat. Section 1 describes the evolution of the malware in the threat landscape in the past twelve months. Download the Yoroi Cyber Security Report 2018.

Malware 108

Malware DNS Surveillance Advertising 108

Security Affairs

JULY 25, 2019

“Lookout has discovered a highly targeted mobile malware threat that uses a new and sophisticated set of custom Android surveillanceware tools called Monokle that has possible connections to Russian threat actors.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Spyware 107

Spyware Surveillance Mobile Advertising 107

Security Affairs

AUGUST 23, 2020

If these conditions are met, it will start to monitor removable media, and for each of these, the malware will try to infect the device and steal files of interest.”. The legitimate directories’ attribute is set to “hidden” while the actual directories are being replaced with a copy of the malware using the same directory name.

Malware 145

Malware Media Advertising Surveillance 145

Security Affairs

APRIL 12, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. hacked, data of 600k users available for sale Updated: Italian email provider Email.it

Hacking 109

Hacking Surveillance Advertising Phishing 109

Security Affairs

OCTOBER 4, 2019

Researchers at Check Point discovered that Egypt ‘ government has been spying citizens in a sophisticated surveillance program. Researchers at Check Point discovered that the Egyptian government has been spying on activists and opponents as part of a sophisticated surveillance program. SecurityAffairs – Egypt, surveillance).

Mobile 109

Mobile Surveillance Government Advertising 109

Security Affairs

AUGUST 4, 2019

Sonicwall warns of a spike in the number of attacks involving encrypted malware and IoT malware. Malware researchers analyzed an intriguing Java ATM Malware. million fine for selling flawed surveillance technology to the US Gov. SystemBC, a new proxy malware is being distributed via Fallout and RIG EK.

Data breaches 96

Data breaches eCommerce Hacking Cyber Attacks 96

Security Affairs

JUNE 19, 2019

Threat actors are using a piece of malware detected as GolfSpy, that implements multiple features and can hijack the victim’s device. Attackers distributed the malware in tainted legitimate applications that are hosted on websites advertised on social media. ” reads the blog post published by Trend Micro.

Mobile 109

Mobile Malware Advertising Encryption 109

Security Affairs

JUNE 18, 2019

The head of London’s Serpentine Galleries resigned on Tuesday following a Guardian report about her links to the Israeli surveillance firm NSO Group. Pegasus is a perfect tool for surveillance, it is able to steal any kind of data from smartphones and use them to spy on the surrounding environment through their camera and microphone.

Surveillance 88

Surveillance Spyware Software Advertising 88