Security Affairs

DECEMBER 12, 2018

Experts from Kaspersky Lab reported that that the recently patched Windows kernel zero-day vulnerability ( CVE-2018-8611 ) has been exploited by several threat actors. Microsoft’s Patch Tuesday updates for December 2018 address nearly 40 flaws, including a zero-day vulnerability affecting the Windows kernel. Pierluigi Paganini.

Advertising 111

Advertising Spyware Accountability Malware 111

Schneier on Security

JANUARY 24, 2020

Instead, they only found a suspicious video file sent to Bezos on May 1, 2018 that "appears to be an Arabic language promotional film about telecommunications." Following execution of the encrypted downloader sent from MBS' account, egress on the device immediately jumped by approximately 29,000 percent," it notes.

Hacking 268

Hacking Backups Spyware Encryption 268

eSecurity Planet

JULY 21, 2021

Reports that the NSO Group’s Pegasus spyware was used by governments to spy on Apple iPhones used by journalists, activists, government officials and business executives is becoming a global controversy for NSO, Apple and a number of governments at the center of the scandal. Both incidents occurred in 2018. Apple Under Fire.

Spyware 125

Spyware Mobile Government Surveillance 125

Security Affairs

MARCH 19, 2019

Security experts at Group-IB presented at Money2020 Asia the results of an interesting analysis of hi-tech crime landscape in Asia in 2018. The number of leaked cards increased in 2018 by 56%. The total underground market value of Singaporean banks’ cards compromised in 2018 is estimated at nearly $640 000.

Banking 109

Banking Government Passwords Marketing 109

SecureWorld News

JULY 18, 2022

The controversial Pegasus spyware continues to stay in the news cycle, as a new report from the Citizen Lab details how the technology was used to target pro-democracy activists in Thailand. The increase in surveillance also means the use of Pegasus spyware. Pegasus spyware in Thailand. So, what is the situation in Thailand?

Spyware 98

Spyware Surveillance Government Hacking 98

Security Affairs

NOVEMBER 11, 2022

The threat actors behind the campaigns used two Android spyware to spy on the victims and steal sensitive information. The BadBazaar campaign dates back to late 2018, over the time the researchers obtained 111 unique apps that masquerade as harmless apps such as radio apps, messaging apps, dictionaries, religious apps, and even TikTok.

Surveillance 98

Surveillance Spyware Malware Mobile 98

Security Affairs

APRIL 16, 2019

Scranos is a powerful cross-platform rootkit-enabled spyware discovered while investigating malware posing as legitimate software like video players, drivers and even anti-virus products. According to the experts, the operation is in a consolidation stage, first samples date back to November 2018, with a massive spike in December and January.

Spyware 106

Spyware Adware Malware Accountability 106

Security Affairs

APRIL 8, 2019

Bahrain, 08.04.2019 – Group-IB, an international company that specializes in preventing cyberattacks , and NGN International, a global system integrator, analyzed cybersecurity landscape in Gulf countries in 2018. According to Group-IB’s annual Hi-Tech Crime Trends 2018 report, on average, from June 2017 to August 2018, the details of 1.8

Artificial Intelligence 100

Artificial Intelligence Government Banking Advertising 100

Security Affairs

JUNE 24, 2022

Google’s Threat Analysis Group (TAG) revealed that the Italian spyware vendor RCS Labs was supported by ISPs to spy on users. The following image shows a landing page to trick Italian users into installing one of the following apps in order to recover their accounts. Follow me on Twitter: @securityaffairs and Facebook.

Surveillance 139

Surveillance Mobile Spyware Telecommunications 139

Security Affairs

APRIL 22, 2024

The list also includes criminals, suspected terrorists, intelligence operatives and a European spyware firm. Compromised data vary by individuals and organizations, it includes names, passport numbers, Social Security numbers, online crypto account identifiers and bank account numbers, and more. LSEG acquired Refinitiv is 2021.

Risk 142

Risk Spyware Hacking Accountability 142

Security Affairs

OCTOBER 19, 2020

Researchers spotted new variants of the Windows GravityRAT spyware that now can also infect Android and macOS devices. The researchers reported that the malware was employed in approximately 100 successful attacks between 2015 and 2018. The list of targets includes employees at defense, police, and other departments and organizations.

Malware 141

Malware Computers and Electronics Spyware Advertising 141

SecureWorld News

NOVEMBER 21, 2023

The report, titled " Predator Files: Caught in the Net ," delves into the operations of the "Intellexa alliance," a complex network of interconnected companies that develop and market powerful spyware used to monitor and manipulate individuals worldwide. Cytrox is now part of Intellexa."

Surveillance 124

Surveillance Spyware Media Technology 124

The Last Watchdog

JANUARY 28, 2019

Worldwide spending on information security products and services rose to $114 billion in 2018, up from $102 billion in 2017, an increase of 12.4 The perpetrators deploy botnets to automate the injection of surreptitiously obtained usernames and password pairs until they gain fraudulent access to a targeted account.

Passwords 196

Passwords Password Management Internet Internet 196

Security Affairs

MARCH 11, 2019

Experts observed the STOP ransomware installing the Azorult password-stealing Trojan to steal account credentials, cryptocurrency wallets, and more. Experts observed the ransomware also installing the dreaded Azorult password-stealing Trojan on victim’s machine to steal account credentials, cryptocurrency wallets, documents and more.

Encryption 109

Encryption Ransomware Cryptocurrency Passwords 109

Security Affairs

FEBRUARY 17, 2020

The military has identified at least six social media accounts that were used by attackers to trick the victims into installing malicious apps. The accounts were named Sarah Orlova, Maria Jacobova, Eden Ben Ezra, Noa Danon, Yael Azoulay, and Rebecca Aboxis, respectively. Jonathan Conricus.

Social Engineering 103

Social Engineering Media Advertising Spyware 103

Security Affairs

OCTOBER 30, 2019

In May, Facebook has patched a critical zero-day vulnerability in WhatsApp, tracked as CVE-2019-3568 , that has been exploited to remotely install spyware on phones by calling the targeted device. Today @WhatsApp is taking a stand against the dangerous use of spyware. This abuse must be stopped. ” continues the post.

Surveillance 75

Surveillance Technology Spyware Mobile 75

SecureList

MAY 27, 2022

The attackers are mainly interested in collecting data on user accounts, IP addresses and session information; and they steal configuration files from programs that work directly with cryptocurrency and may contain account credentials. Since 2018, we have been tracking Roaming Mantis – a threat actor that targets Android devices.

Phishing 136

Phishing Spyware Firmware Malware 136

Security Affairs

MARCH 12, 2019

As shown in the above figure, the malicious website hosts both the Android and IOS version of the fake app, but only the Android one has been taken into account for this analysis. Figure 3: popup required by app to verify EA mobile account. Despite its dimensions, this is the only apk that shows a spyware behavior. Attribution.

Spyware 106

Spyware Malware Mobile Phishing 106

The Last Watchdog

MAY 2, 2019

In 2018, attackers shifted their focus to refining and deploying banking trojans, which essentially act as spyware. In 2017, for instance, SMBs were under tremendous pressure to defend their networks against rapidly morphing ransomware attacks. There are so many more ways to subvert authentication.

Risk 182

Risk Cyber Risk Cyber threats Banking 182

Security Affairs

JULY 13, 2019

Hackers compromised a Canonical GitHub account, Ubuntu source code was not impacted. UK ICO fines British Airways £183 Million under GDPR over 2018 security breach. New FinFisher spyware used to spy on iOS and Android users in 20 countries. Croatia government agencies targeted with news SilentTrinity malware.

Data breaches 79

Data breaches Spyware Advertising Government 79

Herjavec Group

AUGUST 26, 2021

They hack into their teacher’s account and leave messages making fun of him. Air Force research facility, discover a password “sniffer” has been installed onto their network, compromising more than 100 user accounts. banks using the Zeus Trojan virus to crack open bank accounts and divert money to Eastern Europe.

Cybercrime 135

Cybercrime Computers and Electronics Hacking Banking 135

Hacker's King

OCTOBER 3, 2024

WhatsApp Pegasus Spyware Attack (2019) One of the most famous zero-day exploits happened on WhatsApp in 2019. Hackers discovered a vulnerability in WhatsApp’s call feature, allowing them to install spyware on phones without the user’s knowledge. Even if the user didn’t answer the call, spyware called Pegasus was installed.

Media 52

Media Spyware Accountability Marketing 52

CyberSecurity Insiders

MARCH 21, 2021

Back in 2018, almost two-thirds of the small businesses suffered from cyber security attacks. . Make sure all devices and computers at your office have installed anti-virus, and anti-spyware as these are connected to the network, offering a gateway to hackers. In fact, Phishing alone accounts for 90% of small business cyber attacks.

Small Business 145

Small Business Cyber Attacks VPN Backups 145

Security Affairs

MAY 8, 2020

In H2 2019, as part of its work to detect and prevents threats distributing online, Group-IB’s Computer Emergency Response Team (CERT-GIB) blocked a total of 8, 506 phishing web resources, while in H2 2018, the figure stood at 2,567.This Malware delivery: what’s on the menu?

Phishing 86

Phishing Spyware Banking Malware 86

SecureList

NOVEMBER 1, 2022

Kaspersky first discovered this malware in 2018, together with the CVE-2018-8453 vulnerability. In June, we identified a previously unknown Android spyware app that targets Persian-speaking individuals. The spyware itself collects various data from the victims’ devices, such as call logs or lists of contacts.

Malware 145

Malware Ransomware Spyware Encryption 145

SecureList

MARCH 1, 2021

The word “covid” in various combinations was typically used in the names of packages hiding spyware and banking Trojans, adware or Trojan droppers. Users attacked by adware in 2018 through 2020 ( download ). For example, an attacker could log in to a victim’s Facebook account and post a phishing link or spread spam.

Mobile 145

Mobile Malware Adware Banking 145

NopSec

MARCH 20, 2019

The attacker could then install programs, view, change, or delete data, or create new accounts with full user rights. While FruityArmor is known to have used zero-days before, SandCat is a relatively new advanced persistent threat (APT) group first observed in 2018. Targets of SandCat have been mostly observed in the Middle East.

Spyware 40

Spyware Accountability Malware Risk 40

SecureList

MARCH 8, 2023

Taking into account the developments in digital stalking software over the past few years, the data suggests there is a trend towards stabilization. Other types of monitoring or spyware apps that fall outside of the Coalition’s definition are not included in the report statistics.

Mobile 126

Mobile Software Accountability Cybersecurity 126

SecureList

SEPTEMBER 26, 2022

NullMixer is a dropper that includes more than just specific malware families; it drops a wide variety of malicious binaries to infect the machine with, such as backdoors, bankers, downloaders, spyware and many others. To get more information about a user’s Facebook account, Disbuk queries Facebook Graph API.

Malware 145

Malware Cryptocurrency Passwords Software 145

SecureList

MARCH 13, 2024

Other types of monitoring or spyware apps that fall outside of the Coalition’s definition are not included in the statistics found here. Diagram 1 below shows how this number varied year to year starting in 2018. Do not share your online account passwords with anyone. Brazil was followed by Mexico and Colombia.

Mobile 110

Mobile Passwords Surveillance Technology 110

SecureList

AUGUST 30, 2023

Since 2018, Lazarus has persistently targeted crypto-currency-related businesses for a long time, using malicious Word documents and themes related to the crypto-currency business to lure potential targets. Using a number of vulnerabilities in iOS, the attachment is executed and installs spyware.

Malware 98

Malware Spyware Government Cryptocurrency 98

SecureList

DECEMBER 1, 2023

However, they included an additional module that constantly monitored the messenger and sent data to the spyware creator’s C2 server. This included all contacts, sent and received messages with attached files, names of chats/channels, name and phone number of the account owner – the target’s entire correspondence.

Malware 141

Malware Ransomware Encryption Energy and Utilities 141

eSecurity Planet

JUNE 8, 2023

This article explores: What Is Email Security Best Options to Secure Business Email Email Security Best Practices How Email Security Blocks Threats Bottom Line: Email Security What Is Email Security Email security is a concept that protects email accounts, servers, and communications from unauthorized access, data loss, or compromise.

Firewall 80

Firewall DNS Authentication Malware 80

SecureList

JULY 29, 2024

After a two-year break, the Mandrake Android spyware returned to Google Play and lay low for two years. Technical details Background The original Mandrake campaign with its two major infection waves, in 2016–2017 and 2018–2020, was analyzed by Bitdefender in May 2020. Our findings, in a nutshell, were as follows.

Spyware 145

Spyware Encryption Malware Mobile 145

Security Affairs

JULY 1, 2019

Experts at Kaspersky have uncovered a spyware campaign dubbed ViceLeaker that spreads in the Middle East to spy on Android users. . Kaspersky spotted a spyware campaign, tracked as ViceLeaker, that spreads in the Middle East to steal device and communications data from Android users. . Pierluigi Paganini.

Spyware 108

Spyware Mobile Advertising Malware 108

SecureList

FEBRUARY 21, 2022

Especially notable in 2021 were the Joker Trojan, which signs victims up to paid subscriptions, the Facestealer Trojan, which steals credentials from Facebook accounts, and various banking Trojan loaders. Speaking of mobile threats, we cannot fail to mention the high-profile investigation of the Pegasus spyware. Statistics.

Mobile 145

Mobile Malware Adware Banking 145

SecureList

FEBRUARY 15, 2021

Contact us to lose your money or account! In 2020, Bitcoin blackmailers stuck to their old scheme, demanding that their victims transfer money to a certain account and threatening adversity for failure to meet their demands. Viewing the file required entering the password to the recipient’s corporate email account.

Phishing 145

Phishing Malware Accountability Scams 145