eSecurity Planet

JUNE 8, 2023

Email security consists of the policies, tools, and services deployed to protect against threats specific to email such as spam, phishing attacks, malware-infested attachments, impersonation, and email interception. First, the protocols improve the reputation of an organization which boosts the deliverability of marketing emails.

Firewall 65

Firewall DNS Authentication Malware 65

SecureList

MAY 27, 2022

Our analysis of the rogue firmware, and other malicious artefacts from the target’s network, revealed that the threat actor behind it had tampered with the firmware to embed malware that we call MoonBounce. Since 2018, we have been tracking Roaming Mantis – a threat actor that targets Android devices.

Phishing 103

Phishing Spyware Firmware Malware 103

CyberSecurity Insiders

JANUARY 13, 2022

The Congressional Research Service (CRS) that conducts surveillance on adversaries confirmed MuddyWater was being funded by the Iranian Ministry of Intelligence and Security(MOIS) having a history of breaching governments networks across the globe and having a developmental hold in the blacklisted NSO Group that developed the dreaded Pegasus Spyware. (..)

Hacking 110

Hacking Spyware DNS Surveillance 110

SecureList

APRIL 27, 2021

In our initial report on Sunburst , we examined the method used by the malware to communicate with its C2 (command-and-control) server and the protocol used to upgrade victims for further exploitation. This campaign made use of a previously unknown malware family we dubbed FourteenHi.

Malware 138

Malware Spyware Government Social Engineering 138

Security Affairs

JULY 7, 2019

ViceLeaker Android spyware targets users in the Middle East. Sodin Ransomware includes exploit for Windows CVE-2018-8453 bug. Cryptomining Campaign involves Golang malware to target Linux servers. Godlua backdoor, the first malware that abuses the DNS over HTTPS (DoH).

Scams 48

Scams Spyware DNS Advertising 48

Schneier on Security

SEPTEMBER 19, 2018

Citizen Lab has published a new report about the Pegasus spyware. From a ZDNet article : The malware, known as Pegasus (or Trident), was created by Israeli cyber-security firm NSO Group and has been around for at least three years -- when it was first detailed in a report over the summer of 2016.

Spyware 226

Spyware DNS Malware Internet 226

SecureList

OCTOBER 26, 2021

In June, more than six months after DarkHalo had gone dark, we observed the DNS hijacking of multiple government zones of a CIS member state that allowed the attacker to redirect traffic from government mail servers to computers under their control – probably achieved by obtaining credentials to the control panel of the victims’ registrar.

Malware 140

Malware Government Surveillance Spyware 140

Security Affairs

SEPTEMBER 18, 2018

A new report published by Citizen Lab revealed that the NSO Pegasus spyware was used against targets across 45 countries worldwide. A new investigation of the Citizen Lab revealed that the powerful Pegasus mobile spyware was used against targets across 45 countries around the world over the last two years. COUNTRY NEXUS.

Spyware 81

Spyware Mobile Surveillance DNS 81

Herjavec Group

AUGUST 26, 2021

After being released in 2003, he uses WiFi to commit attacks, program malware and steal credit card information. 2002 – Internet Attack — By targeting the thirteen Domain Name System (DNS) root servers, a DDoS attack assaults the entire Internet for an hour. Marriott announces it in late 2018. . billion dollars in damages.

Cybercrime 135

Cybercrime Computers and Electronics Banking Hacking 135

SecureList

SEPTEMBER 26, 2022

NullMixer is a dropper leading to an infection chain of a wide variety of malware families. These websites are often related to crack, keygen and activators for downloading software illegally, and while they may pretend to be legitimate software, they actually contain a malware dropper. Malware execution instructions.

Malware 108

Malware Cryptocurrency Passwords Software 108