Security Affairs

NOVEMBER 17, 2019

TA505 Cybercrime targets system integrator companies. Microsoft Patch Tuesday updates fix CVE-2019-1429 flaw exploited in the wild. CVE-2019-3648 flaw in all McAfee AV allows DLL Hijacking. WhatsApp flaw CVE-2019-11931 could be exploited to install spyware. Mexican state-owned oil company Pemex hit by ransomware.

DDOS 51

DDOS Spyware Advertising Ransomware 51

Security Affairs

APRIL 21, 2019

Locked Shields 2019 – Chapeau, France wins Cyber Defence Exercise. CVE-2019-0803 Windows flaw exploited to deliver PowerShell Backdoor. Scranos – A Cross Platform, Rootkit-Enabled Spyware rapidly spreading. Operator of Codeshop Cybercrime Marketplace Sentenced to 90 months in prison. Code execution – Evernote.

Computers and Electronics 61

Computers and Electronics Spyware Data breaches Advertising 61

Security Affairs

OCTOBER 27, 2019

TA505 cybercrime group use SDBbot RAT in recent campaigns. Swedish Government grants police the use of spyware against violent crime suspects. CVE-2019-11043 exposes Web servers using nginx and PHP-FPM to hack. Fake UpdraftPlus WordPress Plugins used to backdoor sites. Robots at HIS Group are vulnerable to hack.

Spyware 41

Spyware Advertising Hacking DDOS 41

Krebs on Security

APRIL 2, 2019

31, 2019, Rezvesz said his company recently was the subject of an international search warrant executed jointly by the Royal Canadian Mounted Police (RCMP) and the Canadian Radio-television and Telecommunications Commission (CRTC). In an “official press release” posted to pastebin.com on Mar.

Advertising 221

Advertising Malware Marketing Software 221

BH Consulting

NOVEMBER 15, 2022

He argued that security works when it costs €100,000 for spyware to hack into a politician’s iPhone. Detective Inspector Gerard Doyle of the Garda Siochana National Cybercrime Bureau urged victims not to pay the ransom. “Creating exploits for modern operating systems today is hard. Most people aren’t worth that effort and money. “It

Social Engineering 59

Social Engineering Insurance CISO Ransomware 59

Identity IQ

MAY 7, 2021

It’s one of the fastest-growing cybersecurity threats today, growing a staggering 300% since 2019 and leading to consumer losses of $3.5 Spyware can be loaded onto your machine to log all your keystrokes. One of the primary reasons behind this massive rise in account takeover is the relative ease with which it can be done.

Accountability 105

Accountability Data breaches Passwords Social Engineering 105

SecureList

NOVEMBER 1, 2022

In 2019, SoleDragon was also deployed through Skype. In June, we identified a previously unknown Android spyware app that targets Persian-speaking individuals. The spyware itself collects various data from the victims’ devices, such as call logs or lists of contacts. í religion that are banned in Iran.

Malware 142

Malware Ransomware Spyware Encryption 142

Security Affairs

AUGUST 1, 2022

An Australian national has been charged for the creation and sale of the Imminent Monitor (IM) spyware, which was also used for criminal purposes. The 24-year-old Australian national Jacob Wayne John Keen has been charged for his alleged role in the development and sale of spyware known as Imminent Monitor (IM). Pierluigi Paganini.

Spyware 102

Spyware Malware Cybercrime Hacking 102

Malwarebytes

FEBRUARY 12, 2021

The scammers created those fake identities to redirect traffic away from the adult platforms onto pages showing bogus alerts claiming users were infected with pornographic spyware. Back in June 2019, we had identified an ad campaign targeting recipe keywords. com which belongs to a legitimate business. com (3) recipesonline365[.]com/?aclid=[removed]

Scams 87

Scams Advertising Spyware Mobile 87

Security Affairs

APRIL 5, 2019

The malware has evolved over time and has added functionality, in fact, apart from collecting banking credentials it is also able to collect keystrokes, cryptocurrencies, screenshots, webmail, integrating spyware features together with banking Trojans features. SecurityAffairs – Ursnif Trojan, cybercrime). Pierluigi Paganini.

Banking 84

Banking Malware Cryptocurrency Advertising 84

SecureList

AUGUST 30, 2023

Moreover, starting in 2019, we discovered additional implant families linked to KopiLuwak; and that TunnusSched and KopiLuwak are part of the same toolset. Don’t expect any howls GoldenJackal , an APT group that has been active since 2019, typically targets government and diplomatic entities in the Middle East and South Asia.

Malware 78

Malware Spyware Cryptocurrency Government 78

Security Affairs

MARCH 14, 2019

The malicious code was detected in early March 2019. SecurityAffairs – payment data, cybercrime ). Group-IB team has also reached out to local authorities in the UK and the US to conduct outreach. Group-IB’s Threat Intelligence team first discovered GMO on the FILA UK website. According to Alexa.com, the number of fila.co [.]uk

eCommerce 85

eCommerce Marketing Data breaches Advertising 85

SecureList

NOVEMBER 17, 2021

Last year, we foresaw the APT and cybercrime worlds becoming more porous on an operational level. The Israeli Defense Forces (IDF) have claimed that threat actors have been using catfishing to lure Israeli soldiers into installing spyware. Let’s start by looking at the predictions we made for 2021.

Mobile 135

Mobile Surveillance Ransomware Government 135

Security Affairs

MARCH 19, 2019

In January 2019, Group-IB specialists obtained information about previously unknown malware sample used in this attack, dubbed by Group-IB RATv3.ps Cybercriminals steal user accounts’ data using special spyware aimed at obtaining users’ authentication data. ps (RAT – remote administration tool).

Banking 78

Banking Government Passwords Marketing 78

Security Affairs

MAY 8, 2020

Group-IB, a Singapore-based cybersecurity company, observed the growth of the lifespan of phishing attacks in the second half of 2019. H2 2019 has proved the tendency of past several years: mail remains the main method of delivering ransomware, spyware, backdoors and other malware, being used by cyber crooks in 94 percent of cases.

Phishing 56

Phishing Spyware Banking Malware 56

Security Affairs

APRIL 9, 2020

Spyware turned out to be the most common malware class hiding in fraudulent COVID-19 emails, with AgentTesla topping the list of phishers’ favorite strains. Spyware: the most likely COVID-19 payload. Most COVID-19-related phishing emails analyzed had different spyware strains embedded as attachments. Source: CERT-GIB.

Phishing 104

Phishing Malware Spyware DDOS 104

SecureList

MAY 27, 2022

Late last year, we became aware of a UEFI firmware-level compromise through logs from our firmware scanner (integrated into Kaspersky products at the start of 2019). One of the things you can do to protect yourself from advanced mobile spyware is to reboot your device on a daily basis. MoonBounce: the dark side of UEFI firmware.

Phishing 110

Phishing Spyware Firmware Malware 110

Security Affairs

DECEMBER 5, 2021

Hundreds of vulnerabilities in common Wi-Fi routers affect millions of users German BSI agency warns of ransomware attacks over Christmas holidays Cuba ransomware gang hacked 49 US critical infrastructure organizations CISA warns of vulnerabilities in Hitachi Energy products NSO Group spyware used to compromise iPhones of 9 US State Dept officials (..)

Spyware 83

Spyware Ransomware Hacking VPN 83

SecureList

APRIL 27, 2021

During routine monitoring of detections for FinFisher spyware tools, we discovered traces that point to recent FinFly Web deployments. One of the suspected FinFly Web servers was active for more than a year between October 2019 and December 2020. This server was disabled a day after our discovery last December.

Malware 142

Malware Spyware Government Social Engineering 142

Security Affairs

MARCH 27, 2023

Lower.exe, a sample of “GCleaner” spyware, historically, this piece of malware was initially faking CCleaner to drop additional malware ( link ). Brg.exe, a common RacconStealer with its command and control server hosted by VDSina, a Russian cloud provider.

Malware 82

Malware Social Engineering Encryption Marketing 82

Security Affairs

JULY 7, 2019

ViceLeaker Android spyware targets users in the Middle East. Cyber Defense Magazine – July 2019 has arrived. Singapore Government will run its third bug bounty program. A cyberattack took offline websites of the Georgia agency. After 2 years under the radars, Ratsnif emerges in OceanLotus ops.

Scams 47

Scams Spyware DNS Advertising 47

SecureList

OCTOBER 26, 2021

We discovered another set of TTPs targeting aerospace and defense research establishments in India between 2019 and the end of June 2021, featuring two previously unknown backdoors: LGuarian and HTTP_NEWS. Historically, its Windows implant was represented by a single-stage spyware installer. Southeast Asia and Korean Peninsula.

Malware 143

Malware Government Surveillance Spyware 143

SecureList

NOVEMBER 10, 2021

This research is a continuation of our TV show and streaming threat-related reports ( 2020 and 2019 ) providing an overview of the latest trends and key events across the entertainment-related threat landscape. When discussing streaming-related threats, it is crucial to talk about malware and unwanted software.

Phishing 100

Phishing Accountability Malware Adware 100

Herjavec Group

AUGUST 26, 2021

We can learn a lot from the cybercrime of the past…the history of cybercrime is a glimpse into what we can expect in the future. In the past 18 months, we’ve experienced the beginning of an era that has seen cybersecurity and cybercrime at the center of it all. Dateline Cybercrime . Robert Herjavec.

Cybercrime 135

Cybercrime Computers and Electronics Banking Hacking 135