Security Affairs

MAY 30, 2024

Researchers spotted a macOS version of the LightSpy surveillance framework that has been active in the wild since at least January 2024. ThreatFabric observed threat actors using two publicly available exploits (CVE-2018-4233, CVE-2018-4404) to deliver macOS implants. The flaw resides in WebKit and impacts macOS version 10.13.3

Spyware 85

Spyware Malware Surveillance Mobile 85

Security Affairs

AUGUST 30, 2019

A Russian security researcher has found that hardware wiretapping equipment composing Russia’s SORM surveillance system had been leaking user data. SORM is a mass surveillance system that allows the Government of Moscow to track online activities of single individuals thanks to the support of the Russian ISPs. Pierluigi Paganini.

Surveillance 79

Surveillance Firmware Mobile Advertising 79

Security Affairs

NOVEMBER 14, 2018

The Zero Day Initiative’s Pwn2Own Tokyo 2018 is a success, participants earned over $300,000 for disclosing flaws affecting iPhone X, Xiaomi Mi 6 and Samsung Galaxy S9 smartphones. During the first day of the Pwn2Own Tokyo 2018 contest, participants hacked Apple iPhone X, Samsung Galaxy S9 and Xiaomi Mi 6 devices earning more than $225,000.

Hacking 79

Hacking Advertising Surveillance IoT 79

Security Affairs

NOVEMBER 9, 2018

Snowden warns of abuse of surveillance software that also had a role in the murder of the Saudi Arabian journalist Jamal Khashoggi. Officially the sale of surveillance software is limited to authorized governments to support investigation of agencies on criminal organizations and terrorist groups. COUNTRY NEXUS. Saudi Arabia.

Surveillance 86

Surveillance Spyware Software Advertising 86

Security Affairs

MAY 13, 2019

Yoroi Cyber Security Annual Report 2018 – In 2018 cyber-security experts observed an increased number of cyber attacks, malware endure to be the most aggressive and pervasive threat. Yoroi Cyber Security Annual Report 2018 analyzes the evolution of the threat landscape observed between January 2018 and December 2018.

Malware 76

Malware Advertising DNS Surveillance 76

Security Affairs

MARCH 3, 2023

According to rumors, the Polish special services are using surveillance software to spy on government opponents. The news of the hack was reported by the Gazeta Wyborcza daily, and unfortunately, it isn’t the first time that the Pegasus spyware was used in the country.

Spyware 86

Spyware Surveillance Hacking Government 86

Security Affairs

MAY 2, 2023

Threat actors are attempting to exploit a five-year-old authentication bypass issue, tracked as CVE-2018-9995 (CVSS score of 9.8), in TBK DVR devices. The CVE-2018-9995 flaw is due to an error when handling a maliciously crafted HTTP cookie. At this time, the vendor has yet to release security patches to address the flaw.

Authentication 97

Authentication Retail Surveillance Education 97

Security Affairs

JULY 19, 2021

Pegasus Project investigation into the leak of 50,000 phone numbers of potential surveillance targets revealed the abuse of NSO Group’s spyware. Pegasus Project is the name of a large-scale investigation into the leak of 50,000 phone numbers of potential surveillance targets that revealed the abuse of NSO Group’s spyware.

Spyware 108

Spyware Government Surveillance Media 108

Security Affairs

NOVEMBER 8, 2021

Lajos Kosa, chair of the Parliament’s Defense and Law Enforcement Committee, confirmed that Hungary is one of the clients of the Israeli surveillance firm NSO Group and that it bought and used the controversial Pegasus spyware. According to Kosa, the use of surveillance software was authorized by a judge or the Minister of Justice.

Spyware 88

Spyware Surveillance Media Government 88

Schneier on Security

MARCH 5, 2020

To do so, they are using a variety of digital communications and surveillance systems. Like much of the medical infrastructure, these systems are highly vulnerable to hacking and interference. Numerous health surveillance systems are monitoring the spread of COVID-19 cases, including the CDC's influenza surveillance network.

Surveillance 338

Surveillance Hacking Government Risk 338

Security Affairs

APRIL 17, 2020

Syrian-linked APT group SEA recently used COVID-19-themed lures as part of a long-running surveillance campaign, security researchers warn. Syrian hackers are behind a long-running campaign that has been active since January 2018 and that targets Arabic-speaking Android users. SecurityAffairs – SEA, hacking).

Surveillance 90

Surveillance Telecommunications Mobile Advertising 90

Security Affairs

AUGUST 1, 2018

An employee at Amnesty International has been targeted with Israeli surveillance malware, the news was revealed by the human rights group. Amnesty International revealed that one of its employees was targeted with a surveillance malware developed by an Israeli firm. com , pine-sales[.]com com , and ecommerce-ads[.]org.”

Surveillance 42

Surveillance Malware Spyware Mobile 42

Malwarebytes

JULY 22, 2021

And between 2016 and 2018, more than 1,000 IP addresses were found to be associated with it. It enables abuses like the mobile phone hack of Hatice Cengiz , former fiancée of murdered Washington Post columnist Jamal Khoshoggi. Digital forensics labs know how to catch it.

Spyware 120

Spyware Surveillance Mobile Government 120

Security Affairs

OCTOBER 30, 2019

WhatsApp sued Israeli surveillance firm NSO Group, accusing it of using a flaw in its messaging service to conduct cyberespionage on journalists and activists. WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks against its users. The lawsuit filed by WhatsApp in U.S.

Surveillance 50

Surveillance Technology Spyware Mobile 50

Schneier on Security

FEBRUARY 13, 2021

Bloomberg News has a major story about the Chinese hacking computer motherboards made by Supermicro, Levono, and others. This is a follow on, with a lot more detail, to a story Bloomberg reported on in fall 2018. ”) Here’s me in 2018: Supply-chain security is an incredibly complex problem.

Surveillance 361

Surveillance Internet Internet Government 361

Krebs on Security

MARCH 22, 2021

An ad for RedTorch’s “Cheetah” counter-surveillance tech. ” Frigg promises to include “elements that stems [sic] from major data hacks of known systems like Ashley Madison, LinkedIn, Dropbox, Fling.com, AdultFriendFinder and hundreds more. Last month, the U.S.

Surveillance 275

Surveillance Computers and Electronics Internet Internet 275

Schneier on Security

DECEMBER 28, 2020

Sometime before March, hackers working for the Russian SVR — previously known as the KGB — hacked into SolarWinds and slipped a backdoor into an Orion software update. (We Other examples of this sort of attack include fake apps in the Google Play store, and hacked replacement screens for your smartphone. Probably.).

Hacking 358

Hacking Government Internet Internet 358

Security Affairs

MARCH 4, 2024

How does the European Consumer Organisation view Meta’s data processing practices in relation to surveillance-based business models? This is the biggest fine since the adoption of the General Data Protection Regulation (GDPR) by the European Union (EU) on May 25, 2018.

Data collection 92

Data collection Surveillance Hacking Information Security 92

Security Affairs

FEBRUARY 11, 2021

Since 2018, the hackers started targeting mobile users with an Android surveillance malware ChatSpy. “We are confident SunBird and Hornbill are two tools used by the same actor, perhaps for different surveillance purposes.” SecurityAffairs – hacking, Confucius). ” reads the report published by Lookout.

Spyware 105

Spyware Surveillance Malware Mobile 105

CyberSecurity Insiders

FEBRUARY 13, 2022

A report published by Sentinel One states that a hacking group named “Modified Elephant” was seen carrying out such criminal activities since 2012 and has started the game of planting criminal evidence on devices of innocent online users. Then how to keep such cyber crimes at bay?

Surveillance 94

Surveillance Passwords Malware Hacking 94

SecureWorld News

JULY 18, 2022

The current Thai government was not exactly thrilled by this and responded with a wave of arrests and increased surveillance dramatically. The increase in surveillance also means the use of Pegasus spyware. In 2018, the Citizen Lab reported on a potential Pegasus operator being located within the country.

Spyware 75

Spyware Surveillance Government Hacking 75

Malwarebytes

SEPTEMBER 27, 2023

For years, Citizen Lab has been tracking the spread of Pegasus, searching for government clients and tracking down mobile devices that were hacked by the spyware. In 2018, Citizen Lab also identified 45 countries that were potentially relying on Pegasus to conduct surveillance. ” Pegasus is not new.

Spyware 135

Spyware Surveillance Mobile Software 135

Security Affairs

JULY 15, 2020

CIA orchestrated dozens of hacking operations against targets worldwide, including APT34 and FSB hacks, states an exclusive report from Yahoo News. In 2018, Trump signed the Presidential_finding that authorizes covert operations of the Central Intelligence Agency (CIA). officials with direct knowledge of the matter.”

Banking 97

Banking Hacking Advertising Media 97

ForAllSecure

MAY 26, 2022

Is hacking a crime? Bryan McAninch (Aph3x) talks about his organization, Hacking Is Not A Crime , and the ethical line it draws on various hacking activities. I used to hack the phone company quite a bit. The 33 year old from suffer faced charges from US prosecutors as hacking into computers at various American agencies.

Hacking 52

Hacking Technology InfoSec Media 52

Security Affairs

FEBRUARY 24, 2021

Vietnam-linked APT32 group targeted Vietnamese human rights defenders (HRDs) between February 2018 and November 2020. “This unlawful surveillance violates the right to privacy and stifles freedom of expression.” SecurityAffairs – hacking, APT32). ” reads the post published by Amnesty International. .

Spyware 87

Spyware Surveillance Government Phishing 87

Security Affairs

OCTOBER 18, 2020

SecurityAffairs – hacking, newsletter). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. The post Security Affairs newsletter Round 286 appeared first on Security Affairs.

VPN 73

VPN Surveillance Advertising Ransomware 73

Security Affairs

APRIL 2, 2022

CVE-2016-5674 targets NUUO NVRmini2, NVRsolo, Crystal Devices, and NETGEAR ReadyNAS Surveillance products. SecurityAffairs – hacking, Beastmode botnet). ” concludes the report. ” Follow me on Twitter: @securityaffairs and Facebook. . ” Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

DDOS 81

DDOS Firmware Surveillance IoT 81

Security Affairs

SEPTEMBER 18, 2018

Pegasus is a surveillance malware developed by the Israeli surveillance NSO Group that could infect both iPhones and Android devices, it is sold exclusively to the governments and law enforcement agencies. Our technique identified a total of 45 countries where Pegasus operators may be conducting surveillance operations.

Spyware 78

Spyware Mobile Surveillance DNS 78

The Last Watchdog

SEPTEMBER 17, 2018

Related: Nation-state hacks suggest cyber war is underway. I had an invigorating discussion with Jeff Hudson, CEO of Venafi , about this at Black Hat USA 2018. The government wants to be able to surveil network traffic and They want backdoors so they can see everything. Because it’s there, the bad guys will get to it.

Encryption 157

Encryption Government Surveillance Technology 157

Security Affairs

JULY 19, 2020

SecurityAffairs – hacking, newsletter). A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

DNS 74

DNS Advertising Surveillance Malware 74

Security Affairs

DECEMBER 16, 2020

The campaign has been active since at least 2013, but the Goontact malware samples were first observed by Lookout in November 2018. SecurityAffairs – hacking, Goontact). ” conclude the experts. . ” conclude the experts. Pierluigi Paganini.

Spyware 106

Spyware Mobile Surveillance Malware 106

Security Affairs

NOVEMBER 1, 2021

Both Remcos and NanoCore are used for information gathering, data exfiltration, surveillance, and control of the victims’ computers. . The group has been active at least since August 2018, it conducted multiple campaigns per month through October 2020. SecurityAffairs – hacking, Balikbayan Foxes). Pierluigi Paganini.

Malware 87

Malware Government Surveillance Phishing 87

CyberSecurity Insiders

JULY 18, 2021

Pegasus is the spying malware that is in discussion and has reportedly developed by Israel’s NSO Group that usually supplies such kind of software to governments across the world that indulge in mass surveillance programs.

Mobile 82

Mobile Malware Spyware Surveillance 82

Security Affairs

JANUARY 14, 2021

Security experts from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian government institutions and private companies. Malware researchers from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian entities exclusively. Pierluigi Paganini.

Malware 102

Malware Surveillance Phishing Government 102

Security Affairs

OCTOBER 10, 2019

NSO Group ‘s surveillance spyware made the headlines again, this time the malware was used to spy on 2 rights activists in Morocco according Amnesty International. Amnesty International collected evidence of new abuses of the NSO Group ‘s surveillance spyware, this time the malware was used to spy two rights activists in Morocco.

Spyware 55

Spyware Surveillance Advertising Malware 55

ForAllSecure

MARCH 14, 2022

Can you hack an airplane? Vamosi: Maybe you remember this: In 2014, researchers Charlie Miller and Chris Valasek succeeded in hacking a Jeep Cherokee while a reporter was driving it on a freeway during rush hour in St Louis, Missouri. So, given that we can now hack into cars remotely, could we hack into other systems as well?

Hacking 52

Hacking Computers and Electronics Government Media 52

Security Affairs

FEBRUARY 1, 2021

. “Three different malware families were spotted being distributed from tailored malicious updates to selected victims, with no sign of leveraging any financial gain, but rather surveillance-related capabilities.” SecurityAffairs – hacking, NoxPlayer). Pierluigi Paganini.

Malware 115

Malware Surveillance Mobile Hacking 115