Security Affairs

AUGUST 30, 2019

A Russian security researcher has found that hardware wiretapping equipment composing Russia’s SORM surveillance system had been leaking user data. SORM is a mass surveillance system that allows the Government of Moscow to track online activities of single individuals thanks to the support of the Russian ISPs.

Surveillance 105

Surveillance Firmware Advertising Mobile 105

Security Affairs

JUNE 24, 2022

Researchers from Google’s Threat Analysis Group (TAG) revealed that the Italian surveillance firm RCS Labs was helped by some Internet service providers (ISPs) in Italy and Kazakhstan to infect Android and iOS users with their spyware. Then the attackers asked the victims to enable the installation of apps from unknown sources.

Surveillance 141

Surveillance Mobile Spyware Telecommunications 141

Security Affairs

MARCH 20, 2025

The use of popular instant messaging apps on both mobile and desktop devices broadens the attack surface, creating uncontrolled information exchange channels that bypass security measures. DCRat first appeared in the threat landscape in 2018, but a year later it was redesigned and relaunched.

Computers and Electronics 120

Computers and Electronics Telecommunications Malware Surveillance 120

Security Affairs

MAY 13, 2019

Yoroi Cyber Security Annual Report 2018 – In 2018 cyber-security experts observed an increased number of cyber attacks, malware endure to be the most aggressive and pervasive threat. Download the Yoroi Cyber Security Report 2018. SecurityAffairs – Yoroi Cyber Security Annual Report, malware).

Malware 108

Malware Advertising DNS Surveillance 108

Security Affairs

MARCH 13, 2025

North Korea-linked threat actor ScarCruft (aka APT37 , Reaper, and Group123) is behind a previously undetected Android surveillance tool namedKoSpythat was used to target Korean and English-speaking users. ” KoSpy collects SMS, calls, location, files, audio, and screenshots via plugins.

Spyware 91

Spyware Surveillance Encryption Malware 91

Security Affairs

MARCH 2, 2024

Court ordered surveillance firm NSO Group to hand over the source code for its Pegasus spyware and other products to Meta. Judge ordered the surveillance firm to hand over the source code for its Pegasus spyware and other products to the social network giant. from April 29, 2018, to May 10, 2020).

Spyware 145

Spyware Surveillance Software Architecture 145

Security Affairs

NOVEMBER 11, 2022

Lookout researchers discovered two long-running surveillance campaigns targeting the ethnic minority Uyghurs. Researchers from mobile security firm Lookout uncovered two long-running surveillance campaigns targeting the Uyghurs minority. Bazar is a lesser known spelling of Bazaar.” List of installed packages.

Surveillance 98

Surveillance Spyware Malware Mobile 98

Security Affairs

JULY 19, 2021

Pegasus Project investigation into the leak of 50,000 phone numbers of potential surveillance targets revealed the abuse of NSO Group’s spyware. Pegasus Project is the name of a large-scale investigation into the leak of 50,000 phone numbers of potential surveillance targets that revealed the abuse of NSO Group’s spyware.

Spyware 139

Spyware Government Surveillance Media 139

The Last Watchdog

JANUARY 6, 2022

Yet, according to the study by the Ponemon Institute, the number of insider leaks has increased by 47 percent in 2020 compared to 2018. But they have more disadvantages than benefits if we talk about ensuring information security. Yes, they are cheap to apply. They can be dynamic. Identifying leakage.

Marketing 279

Marketing Software Surveillance Information Security 279

Security Affairs

NOVEMBER 8, 2021

Lajos Kosa, chair of the Parliament’s Defense and Law Enforcement Committee, confirmed that Hungary is one of the clients of the Israeli surveillance firm NSO Group and that it bought and used the controversial Pegasus spyware. According to Kosa, the use of surveillance software was authorized by a judge or the Minister of Justice.

Spyware 131

Spyware Surveillance Media Government 131

Security Affairs

NOVEMBER 18, 2024

The General Data Protection Regulation ( GDPR ), enacted in 2018, has set a new standard for data privacy across the European Union (EU). government surveillance. Amazon: €746 Million ($781 Million), 2021 In 2021, Amazon received a hefty fine for failing to secure proper consent for advertising cookies.

Data privacy 137

Data privacy Risk Surveillance Government 137

Security Affairs

OCTOBER 30, 2019

WhatsApp sued Israeli surveillance firm NSO Group, accusing it of using a flaw in its messaging service to conduct cyberespionage on journalists and activists. WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks against its users. The lawsuit filed by WhatsApp in U.S.

Surveillance 75

Surveillance Technology Spyware Mobile 75

Security Affairs

FEBRUARY 11, 2021

Researchers at mobile security firm Lookout have provided details about two recently discovered Android spyware families, dubbed Hornbill and SunBird, used by an APT group named Confucius. Since 2018, the hackers started targeting mobile users with an Android surveillance malware ChatSpy. ” concludes the report.

Spyware 144

Spyware Surveillance Malware Mobile 144

Security Affairs

MAY 30, 2024

Researchers spotted a macOS version of the LightSpy surveillance framework that has been active in the wild since at least January 2024. ThreatFabric observed threat actors using two publicly available exploits (CVE-2018-4233, CVE-2018-4404) to deliver macOS implants. The flaw resides in WebKit and impacts macOS version 10.13.3

Spyware 142

Spyware Malware Surveillance Mobile 142

Joseph Steinberg

OCTOBER 21, 2022

From the United Kingdom Home Office’s misleadingly named No Place to Hide anti-encryption campaign, to India’s Intermediary Guidelines and Digital Media Ethics Code , to Australia’s Assistance and Access Act of 2018 and its 2021.

Encryption 130

Encryption Government Artificial Intelligence Surveillance 130

Security Affairs

FEBRUARY 24, 2021

Vietnam-linked APT32 group targeted Vietnamese human rights defenders (HRDs) between February 2018 and November 2020. “This unlawful surveillance violates the right to privacy and stifles freedom of expression.” The threat actors used by spyware to take over the target systems, spy on the victims, and exfiltrate data.

Spyware 131

Spyware Government Surveillance Phishing 131

Security Affairs

MARCH 3, 2023

According to rumors, the Polish special services are using surveillance software to spy on government opponents. According to the Gazeta Wyborcza daily, the spyware was used to spy on the phone of Jacek Karnowski, mayor of the city of Sopot, in 2018-2019.

Spyware 98

Spyware Surveillance Hacking Government 98

Security Affairs

MAY 2, 2023

Threat actors are attempting to exploit a five-year-old authentication bypass issue, tracked as CVE-2018-9995 (CVSS score of 9.8), in TBK DVR devices. The CVE-2018-9995 flaw is due to an error when handling a maliciously crafted HTTP cookie. At this time, the vendor has yet to release security patches to address the flaw.

Authentication 98

Authentication Surveillance Retail Education 98

Security Affairs

JANUARY 14, 2021

Security experts from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian government institutions and private companies. Malware researchers from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian entities exclusively.

Malware 143

Malware Surveillance Phishing Government 143

Security Affairs

MARCH 31, 2020

Telegram was blocked permanently in early 2018 following local anti-government protests and civil unrest. Since 2018, many users continue the access it through proxies and VPNs, others use third-party unnofficial fork versions. It’s used by dissidents and government opponents because its conversations can’t have eavesdropped.

Advertising 130

Advertising Accountability Surveillance Government 130

Security Affairs

DECEMBER 16, 2020

The campaign has been active since at least 2013, but the Goontact malware samples were first observed by Lookout in November 2018. ” conclude the experts.

Spyware 144

Spyware Mobile Surveillance Malware 144

Security Affairs

FEBRUARY 25, 2020

In December 2019, The Guardian reported that the Conservative party started using the secure messaging service Signal for its internal communications with Tory MPs, as an alternative of the insecure WhatsApp app. 2015: Even if he revealed unlawful government surveillance, put him in jail!

Encryption 134

Encryption Advertising Surveillance Hacking 134

Security Affairs

JUNE 22, 2020

In October 2019, security experts at Amnesty International’s Security Lab have uncovered targeted attacks against Moroccan human rights defenders Maati Monjib and Abdessadak El Bouchattaoui that employed NSO Group surveillance tools. reads the analysis published by Amnesty International in October.

Spyware 144

Spyware Surveillance Mobile Advertising 144

Security Affairs

SEPTEMBER 2, 2019

Earlier in August, Poshmark , a social commerce marketplace where people in the United States can buy and sell new or used clothing, shoes, and accessories, disclosed a data breach that took place in May 2018. “In mid-2018, social commerce marketplace Poshmark suffered a data breach that exposed 36M user accounts.

Accountability 108

Accountability Data breaches Passwords Advertising 108

Security Affairs

MARCH 4, 2024

How does the European Consumer Organisation view Meta’s data processing practices in relation to surveillance-based business models? This is the biggest fine since the adoption of the General Data Protection Regulation (GDPR) by the European Union (EU) on May 25, 2018. billion for transferring user data to the US.

Data collection 139

Data collection Surveillance Hacking Information Security 139

Security Affairs

FEBRUARY 13, 2020

In November 2018, the Wall Street Journal reported that the US Government was urging its allies to exclude Huawei from critical infrastructure and 5G architectures. Huawei issued a statement on Wednesday denying any accusation, it “has never and will never covertly access telecom networks, nor do we have the capability to do so.”.

Manufacturing 145

Manufacturing Advertising Surveillance Architecture 145

Security Affairs

FEBRUARY 1, 2021

. “Three different malware families were spotted being distributed from tailored malicious updates to selected victims, with no sign of leveraging any financial gain, but rather surveillance-related capabilities.”

Malware 140

Malware Surveillance Mobile Hacking 140

Security Affairs

OCTOBER 18, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

VPN 112

VPN Advertising Surveillance Ransomware 112

Security Affairs

NOVEMBER 1, 2021

Both Remcos and NanoCore are used for information gathering, data exfiltration, surveillance, and control of the victims’ computers. . The group has been active at least since August 2018, it conducted multiple campaigns per month through October 2020.

Malware 124

Malware Government Surveillance Phishing 124

Security Affairs

FEBRUARY 12, 2020

Crypto was liquidated in 2018, but its products are still in use in more than a dozen countries. The involvement in the surveillance activity of the company was a p rofitable business that allowed Crypto AG to amass millions of dollars paid by the CIA and BND. ” reported the Associated Press.

Advertising 129

Advertising Government Media Encryption 129

Security Affairs

DECEMBER 30, 2019

Many governments worldwide persecute their internal oppositions charging them with criminal activities and use strict online surveillance to track them. The surveillance software developed by NSO Group was used by government organizations worldwide to spy on human rights groups , activists, journalists, lawyers, and dissidents.

Cybercrime 94

Cybercrime Surveillance Spyware Government 94

Security Affairs

JUNE 10, 2021

. “Sources also described several moments of friction between the two Dutch agencies when it came to deciding on how to handle the intrusion and subsequent clean-up, with the AIVD wanting to keep the hackers under surveillance while police officials wanted them removed from their systems due to the possibility of compromising sensitive cases.”

Government 136

Government Hacking Surveillance Ransomware 136

Security Affairs

FEBRUARY 16, 2019

According to the “The National Digital Economy Program” bill submitted to Parliament in 2018, Russian Internet service providers (ISPs) should ensure operations even if nation-state actors carry out cyber attacks to isolate Russia from the Internet. ” reported ZDNet.

Internet 111

Internet Internet DNS Cyber Attacks 111

Security Affairs

NOVEMBER 29, 2019

Compared to its predecessors, the sixth “Hi-Tech Crime Trends” report is the first to contain chapters devoted to the main industries attacked and covers the period from H2 2018 to H1 2019, as compared to the period from H2 2017 to H1 2018. As for 2019, it has become the year of covert military operations in cyberspace.

Banking 128

Banking Telecommunications Marketing Internet 128

Security Affairs

APRIL 2, 2022

CVE-2016-5674 targets NUUO NVRmini2, NVRsolo, Crystal Devices, and NETGEAR ReadyNAS Surveillance products. ” concludes the report. ” Follow me on Twitter: @securityaffairs and Facebook.

DDOS 98

DDOS Firmware Surveillance IoT 98

Security Affairs

APRIL 4, 2020

.” Media speculate that the attack described in the DART report is the one that hit the city of Allentown, Pennsylvania in February 2018. The incident also affected the surveillance camera network of the company along with the finance department.

Antivirus 144

Antivirus Malware Phishing Advertising 144

Security Affairs

JULY 11, 2019

According to the experts, the new versions have been active at least since 2018, one of the samples analyzed by Kaspersky was used last month in Myanmar, where local government is accused of violating human rights. ” reads the report published by Kaspersky. ” reads the report published by Kaspersky.

Spyware 111

Spyware Advertising Mobile Architecture 111