2017, Social Engineering and Spyware - Cyber Security Informer

APT C-23 group targets Middle East with an enhanced Android spyware variant

Security Affairs

NOVEMBER 26, 2021

A threat actor, tracked as APT C-23, is using new powerful Android spyware in attacks aimed at targets in the Middle East. The APT C-23 cyberespionage group (also known as GnatSpy, FrozenCell, or VAMP) continues to target entities in the Middle East with enhanced Android spyware masqueraded as seemingly harmless app updates (i.e.

Spyware

Spyware Social Engineering Surveillance Malware

New Coronavirus-themed malspam campaign delivers FormBook Malware

Security Affairs

MARCH 8, 2020

The final payload is the FormBook information-stealing Trojan, a malware that was first spotted by researchers at FireEye in October 2017. FormBook data-stealing malware was used with cyber espionage purposes, like other spyware it is capable of extracting data from HTTP sessions, keystroke logging, stealing clipboard contents.

Malware

Malware Scams Social Engineering Phishing

Experts discovered the first mobile malware families linked to Russia’s Gamaredon

Security Affairs

DECEMBER 12, 2024

The Russia-linked APT Gamaredon used two new Android spyware tools calledBoneSpyandPlainGnome against former Soviet states. net, consistent with Gamaredons techniques since 2017. Lookout researchers linked the BoneSpy and PlainGnome Android surveillance families to the Russian APT group Gamaredon (a.k.a.

Mobile

Mobile Malware Surveillance Social Engineering

Operation Falcon: Group-IB helps INTERPOL identify Nigerian BEC ring members

Security Affairs

NOVEMBER 25, 2020

Since at least 2017, the prolific gang compromised at least 500,000 government and private sector companies in more than 150 countries. Business Email Compromise (BEC) is a type of email phishing attack that relies on social engineering. The investigation continues as some of the gang members remain at large.

Cybercrime

Cybercrime Phishing Social Engineering Spyware

APT trends report Q3 2024

SecureList

NOVEMBER 28, 2024

Epeius is a commercial spyware tool developed by an Italian company that claims to provide intelligence solutions to law enforcement agencies and governments. MuddyWater is an APT actor that surfaced in 2017 and has traditionally targeted countries in the Middle East, Europe and the USA.

Malware

Malware Government Software Spyware

APT trends report Q1 2021

SecureList

APRIL 27, 2021

Further investigation of the Sunburst backdoor revealed several features that overlap with a previously identified backdoor known as Kazuar , a.NET backdoor first reported in 2017 and tentatively linked to the Turla APT group. webshells and Exaramel implants. Final thoughts.

Malware

Malware Government Spyware Social Engineering

APT trends report Q3 2022

SecureList

NOVEMBER 1, 2022

In June, we identified a previously unknown Android spyware app that targets Persian-speaking individuals. The spyware itself collects various data from the victims’ devices, such as call logs or lists of contacts. Where CVE-2017-0261 was used before, CVE-2017-11228 replaces it. í religion that are banned in Iran.

Malware

Malware Ransomware Spyware Encryption

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Herjavec Group

AUGUST 26, 2021

1970-1995 — Kevin Mitnick — Beginning in 1970, Kevin Mitnick penetrates some of the most highly-guarded networks in the world, including Nokia and Motorola, using elaborate social engineering schemes, tricking insiders into handing over codes and passwords, and using the codes to access internal computer systems.

Cybercrime

Cybercrime Computers and Electronics Banking Hacking

IT threat evolution Q3 2022

SecureList

NOVEMBER 18, 2022

In another, they were able to compromise a WebLogic server through an exploit for the CVE-2017-10271 vulnerability, which ultimately allowed them to run a script. The group delivers its malware using social engineering. The attackers used five different backdoors at the same time – probably for redundancy.

Malware

Malware Computers and Electronics Adware Cryptocurrency

Mobile malware evolution 2020

SecureList

MARCH 1, 2021

In their campaigns to infect mobile devices, cybercriminals always resort to social engineering tools, the most common of these passing a malicious application off as another, popular and desirable one. Mobile malicious installation packages for Android in 2017 through 2020 ( download ). This malware was first spotted in 2017.

Mobile

Mobile Malware Adware Banking

APT trends report Q2 2023

SecureList

JULY 27, 2023

Following this, we released the first of a series of additional reports describing the final payload in the infection chain: a highly sophisticated spyware implant that we dubbed “TriangleDB” Operating in memory, this implant periodically communicates with the C2 (command and control) infrastructure to receive commands.

Malware

Malware Government Phishing Social Engineering

Australian man charged with creating and selling the Imminent Monitor spyware

Security Affairs

AUGUST 1, 2022

An Australian national has been charged for the creation and sale of the Imminent Monitor (IM) spyware, which was also used for criminal purposes. The 24-year-old Australian national Jacob Wayne John Keen has been charged for his alleged role in the development and sale of spyware known as Imminent Monitor (IM). Pierluigi Paganini.

Spyware

Spyware Malware Hacking Cybercrime

Types of Malware & Best Malware Protection Practices

eSecurity Planet

FEBRUARY 16, 2021

In 2017, more than 300,000 WordPress websites were affected by a malicious plugin that allowed an attacker to place embedded hidden links on victim websites. Additional features of botnets include spam, ad and click fraud, and spyware. Phishing and Social Engineering. Jump ahead: Adware. Bots and botnets. RAM scraper.

Malware

Malware Adware Spyware Antivirus

GUEST ESSAY. Everyone should grasp these facts about cyber threats that plague digital commerce

The Last Watchdog

FEBRUARY 28, 2021

Cybercriminals often leverage social engineering tactics like phishing and spear-phishing to propagate sophisticated malware. It is not unusual to have your system or network infected with malware, such as spyware, that often lingers secretly with no apparent symptoms. NotPetya shook the entire world in June 2017.

Cyber threats

Cyber threats Computers and Electronics Adware Spyware

The Most Common Types of Malware in 2021

CyberSecurity Insiders

JANUARY 31, 2021

Cybercriminals often leverage social engineering tactics like phishing and spear-phishing to propagate sophisticated malware. It is not unusual to have your system or network infected with malware, such as spyware, that often lingers secretly with no apparent symptoms. NotPetya shook the entire world in June 2017.

Malware

Malware Computers and Electronics Adware Spyware

APT trends report Q3 2021

SecureList

OCTOBER 26, 2021

ShadowPad is a highly sophisticated, modular cyberattack platform that APT groups have used since 2017. Historically, its Windows implant was represented by a single-stage spyware installer. Notably, the Quarian backdoor and Poison Ivy showed similarities with previous IceFog activity targeting users in Central Asia. Final thoughts.

Malware

Malware Government Surveillance Spyware

Advanced threat predictions for 2022

SecureList

NOVEMBER 17, 2021

The Israeli Defense Forces (IDF) have claimed that threat actors have been using catfishing to lure Israeli soldiers into installing spyware. On September 24, the EU issued a statement regarding a disinformation campaign called “Ghostwriter”, ongoing since March 2017, intended to discredit NATO.

Mobile

Mobile Surveillance Ransomware Government

Spam and phishing in Q2 2021

SecureList

AUGUST 5, 2021

Exploits for CVE-2017-11882 (4.07%), an Equation Editor vulnerability popular with cybercriminals, gave ground and dropped to fourth place. Sixth and eighth places were occupied by Noon spyware Trojans, which infect any (2.66%) or only 32-bit (2.47%) versions of Windows. TOP 10 malware families in mail traffic, Q2 2021 ( download ).

Phishing

Phishing Banking Scams Computers and Electronics

Spam and phishing in 2022

SecureList

FEBRUARY 16, 2023

Attackers actively used social engineering techniques in their emails, adding signatures with logos and information from specific organizations, creating a context appropriate to the company’s profile, and applying business language. In 2022, we saw an evolution of malicious emails masquerading as business correspondence.

Phishing

Phishing Scams Accountability Energy and Utilities

Spam and phishing in 2021

SecureList

FEBRUARY 9, 2022

In another 3.95% of cases, our products blocked attacks exploiting the CVE-2017-11882 vulnerability in Microsoft Equation Editor, which remains significant for the fourth year in a row. Second place was taken by Badun Trojans (6.31%), distributed in archives and disguised as electronic documents.

Phishing

Phishing Scams Accountability Banking

Cyber Security Informer

APT C-23 group targets Middle East with an enhanced Android spyware variant

New Coronavirus-themed malspam campaign delivers FormBook Malware

Trending Sources

Experts discovered the first mobile malware families linked to Russia’s Gamaredon

Operation Falcon: Group-IB helps INTERPOL identify Nigerian BEC ring members

APT trends report Q3 2024

APT trends report Q1 2021

APT trends report Q3 2022

Cyber CEO: The History Of Cybercrime, From 1834 To Present

IT threat evolution Q3 2022

Mobile malware evolution 2020

APT trends report Q2 2023

Australian man charged with creating and selling the Imminent Monitor spyware

Types of Malware & Best Malware Protection Practices

GUEST ESSAY. Everyone should grasp these facts about cyber threats that plague digital commerce

The Most Common Types of Malware in 2021

APT trends report Q3 2021

Advanced threat predictions for 2022

Spam and phishing in Q2 2021

Spam and phishing in 2022

Spam and phishing in 2021

Stay Connected