2019, Information Security and Surveillance

German authorities raid the offices of the FinFisher surveillance firm

Security Affairs

OCTOBER 14, 2020

Earlier this month, German authorities have raided the offices of FinFisher, the German surveillance software firm, accused of providing its software to oppressive regimes. The post German authorities raid the offices of the FinFisher surveillance firm appeared first on Security Affairs. Pierluigi Paganini.

Surveillance

Surveillance Spyware Advertising Software

U.S. Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp

Security Affairs

MARCH 2, 2024

Court ordered surveillance firm NSO Group to hand over the source code for its Pegasus spyware and other products to Meta. Judge ordered the surveillance firm to hand over the source code for its Pegasus spyware and other products to the social network giant. from April 29, 2018, to May 10, 2020).

Spyware

Spyware Surveillance Architecture Software

Israeli surveillance firm QuaDream emerges from the dark

Security Affairs

FEBRUARY 6, 2022

One of the Apple iOS zero-day flaws exploited by the NSO group was also used by another surveillance firm named QuaDream. One of the vulnerabilities in Apple iOS that was previously exploited by the spyware developed by the Israeli company NSO Group was also separately used by another surveillance firm named QuaDream.

Surveillance

Surveillance Spyware Government Hacking

EU officials were targeted with Israeli surveillance software

Security Affairs

APRIL 13, 2022

According to a report published by Reuters, an Israeli surveillance software was used to spy on senior officials in the European Commission. One of the officials targeted with the infamous spyware there is Didier Reynders, a senior Belgian statesman who has served as the European Justice Commissioner since 2019. Pierluigi Paganini.

Surveillance

Surveillance Software Spyware Hacking

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

Security Affairs

NOVEMBER 11, 2022

Lookout researchers discovered two long-running surveillance campaigns targeting the ethnic minority Uyghurs. Researchers from mobile security firm Lookout uncovered two long-running surveillance campaigns targeting the Uyghurs minority. List of installed packages. Call logs and geocoded location associated with the call. .

Surveillance

Surveillance Spyware Malware Mobile

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Security Affairs

JUNE 17, 2022

Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.

Spyware

Spyware Surveillance Telecommunications Mobile

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Security Affairs

JUNE 24, 2022

Researchers from Google’s Threat Analysis Group (TAG) revealed that the Italian surveillance firm RCS Labs was helped by some Internet service providers (ISPs) in Italy and Kazakhstan to infect Android and iOS users with their spyware. Then the attackers asked the victims to enable the installation of apps from unknown sources.

Surveillance

Surveillance Mobile Spyware Telecommunications

NSO CEO claims Facebook wanted NSO surveillance tool to spy on users

Security Affairs

APRIL 8, 2020

In October 2019, WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks against its users. In May, Facebook has patched a critical zero-day vulnerability in WhatsApp, tracked as CVE-2019-3568 , that has been exploited to remotely install spyware on phones by calling the targeted device.

Surveillance

Surveillance Spyware Advertising Government

CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance

Security Affairs

NOVEMBER 19, 2019

Experts found multiple flaws (CVE-2019-2234) in the Android camera apps provided by Google and Samsung that could allow attackers to spy on users. SecurityAffairs – Android, CVE-2019-2234). The post CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance appeared first on Security Affairs.

Surveillance

Surveillance Manufacturing Advertising IoT

In Search of… ISO 27001:2013, 27017:2015 & 27018:2019 Certification

Duo's Security Blog

FEBRUARY 1, 2021

We are proud to announce the Duo has achieved ISO 27001:2013, 27017:2015, and 27018:2019 certification! What is ISO 27001:2013, 27017:2015 and 27018:2019? An ISO 27000 series certification is valid for three years and requires an annual surveillance audit to ensure continued compliance for the lifespan of the certification.

Manufacturing

Manufacturing Surveillance CISO Information Security

In Search of… ISO 27001:2013, 27017:27017 & 27018:2019 Certification

Duo's Security Blog

FEBRUARY 1, 2021

We are proud to announce the Duo has achieved ISO 27001:2013, 27017:2015, and 27018:2019 certification! What is ISO 27001:2013, 27017:27017 and 27018:2019? An ISO 27000 series certification is valid for three years and requires an annual surveillance audit to ensure continued compliance for the lifespan of the certification.

Manufacturing

Manufacturing Surveillance Information Security

US Gov sanctioned Intellexa Consortium individuals and entities behind Predator spyware attacks

Security Affairs

MARCH 5, 2024

The surveillance software was also used to spy on U.S. Surveillance software was misused by foreign actors in attacks aimed at dissidents and journalists around the world. Predator spyware is known for its extensive data-stealing and surveillance capabilities. government officials, journalists, and policy experts.

Spyware

Spyware Surveillance Government Technology

Malicious app exploiting CVE-2019-2215 zero-day available in Google Play since March

Security Affairs

JANUARY 7, 2020

Security experts have found a malicious app in the Google Play that exploits the recently patched CVE-2019-2215 zero-day vulnerability. Earlier October, Google Project Zero researchers Maddie Stone publicly disclosed a zero-day vulnerability , tracked as CVE-2019-2215 , in Android. ” reads a blog post published by Stone.

Surveillance

Surveillance Advertising Marketing Encryption

In Search of… ISO 27001:2013, 27017:2015 & 27018:2019 Certification

Duo's Security Blog

FEBRUARY 1, 2021

We are proud to announce the Duo has achieved ISO 27001:2013, 27017:2015, and 27018:2019 certification! What is ISO 27001:2013, 27017:2015 and 27018:2019? An ISO 27000 series certification is valid for three years and requires an annual surveillance audit to ensure continued compliance for the lifespan of the certification.

Manufacturing

Manufacturing Surveillance CISO Information Security

NSO Group Pegasus spyware leverages new zero-click iPhone exploit in recent attacks

Security Affairs

APRIL 19, 2022

The experts speculate the HOMAGE exploit was used since the last months of 2019, and involved an iMessage zero-click component that launched a WebKit instance in the com.apple.mediastream.mstreamd process, following a com.apple.private.alloy.photostream lookup for a Pegasus email address. .

Spyware

Spyware Surveillance Government Software

Pegasus spyware used to spy on a Polish mayor

Security Affairs

MARCH 3, 2023

According to rumors, the Polish special services are using surveillance software to spy on government opponents. According to the Gazeta Wyborcza daily, the spyware was used to spy on the phone of Jacek Karnowski, mayor of the city of Sopot, in 2018-2019.

Spyware

Spyware Surveillance Hacking Government

Researcher released PoC exploit code for CVE-2019-2215 Android zero-day flaw

Security Affairs

OCTOBER 18, 2019

A researcher has published a proof-of-concept (PoC) exploit code for the CVE-2019-2215 zero-day flaw in Android recently addressed by Google. Earlier October, Google Project Zero researchers Maddie Stone publicly disclosed a zero-day vulnerability , tracked as CVE-2019-2215, in Android. SecurityAffairs – CVE-2019-2215, zero-day).

Advertising

Advertising Surveillance Security Defenses Marketing

Donot Team targets a Togo prominent activist with Indian-made spyware

Security Affairs

OCTOBER 11, 2021

The attacks on the Togolese activists started in December 2019 and lasted two months. “The Togolese activist, who wishes to remain anonymous for security reasons, has a history of working with civil society organizations and is an essential voice for human rights in the country. ” reads the post published by Amnesty.

Spyware

Spyware Surveillance Accountability Mobile

Researchers analyzed the PREDATOR spyware and its loader Alien

Security Affairs

MAY 29, 2023

Security researchers at Cisco Talos and the Citizen Lab have shared technical details about a commercial Android spyware named Predator that is sold by the surveillance firm Intellexa (formerly known as Cytrox). The attacks aimed at installing the surveillance spyware Predator, developed by the North Macedonian firm Cytrox.

Spyware

Spyware Surveillance Media Malware

Why Edward Snowden is urging users to stop using ExpressVPN?

Security Affairs

SEPTEMBER 19, 2021

The trio has worked as hackers-for-hire for the United Arab Emirates cybersecurity company DarkMatter between January 2016 and November 2019. ExpressVPN published an official response that confirmed the accusation of the DoJ but that pointed out that the experts took part to the Project Raven before he joined to the company in 2019.

Surveillance

Surveillance VPN Hacking Cybersecurity

Zero-day exploit used to hack iPhones of Al Jazeera employees

Security Affairs

DECEMBER 21, 2020

The attackers used an exploit chain named Kismet that was part of the arsenal of the controversial Pegasus spyware that is sold by the surveillance firm NSO Group. ” The KISMET exploit chain doesn’t work against iOS 14 and above because the new mobile iOS implements additional security protections.

Hacking

Hacking Surveillance Spyware Government

Unknown FinSpy Mac and Linux versions found in Egypt

Security Affairs

SEPTEMBER 27, 2020

Experts from Amnesty International uncovered a surveillance campaign that targeted Egyptian civil society organizations with a new version of FinSpy spyware. The mobile version of the surveillance software in the first stage of the infection leverages the exploits to get root access. ” reads the Amnesty’s report.

Spyware

Spyware Surveillance Advertising Mobile

Three formers NSA employees fined for providing hacker-for-hire services to UAE firm

Security Affairs

SEPTEMBER 15, 2021

The trio has worked as hackers-for-hire for the United Arab Emirates cybersecurity company DarkMatter between January 2016 and November 2019. ” DOJ also ordered the former intelligence employees to cooperate with the relevant department and FBI components; they are also condemned to a lifetime ban on future US security clearances.

Surveillance

Surveillance Hacking Government Cybersecurity

Stealth Soldier backdoor used is targeted espionage attacks in Libya

Security Affairs

JUNE 9, 2023

Stealth Soldier is surveillance software that allows operators to spy on the victims and exfiltrate collected data. The researchers noticed that the Stealth Soldier infrastructure has some overlaps with infrastructure the The Eye on the Nile , a campaign that targeted journalists and human rights activists in Egypt in 2019.

Surveillance

Surveillance Malware Social Engineering Engineering

Moroccan journalist targeted with network injection attacks using NSO Group ‘s spyware

Security Affairs

JUNE 22, 2020

In October 2019, security experts at Amnesty International’s Security Lab have uncovered targeted attacks against Moroccan human rights defenders Maati Monjib and Abdessadak El Bouchattaoui that employed NSO Group surveillance tools. ” reads the report published by Amnesty International.

Spyware

Spyware Surveillance Mobile Advertising

GUEST ESSAY: Going beyond watermarks to protect sensitive documents from illegal access

The Last Watchdog

JANUARY 6, 2022

As a result, The majority of businesses (55 percent) are using some sort of a tool to monitor for insider threats; including data leak prevention (DLP) software (54 percent), user behavior analytics (UBA) software (50 percent), and employee monitoring and surveillance (47 percent). Yes, they are cheap to apply. They can be dynamic.

Marketing

Marketing Software Surveillance Information Security

Swiss expert Till Kottmann indicted for conspiracy, wire fraud, and aggravated identity theft

Security Affairs

MARCH 21, 2021

Hackers also posted images captured from the hacked surveillance video on Twitter with an #OperationPanopticon hashtag, published images show that they have gained root shell access to the surveillance cameras used by Telsa and Cloudflare. ” reads the press release published by DoJ.

Identity Theft

Identity Theft Computers and Electronics Surveillance Hacking

Operation Spalax, an ongoing malware campaign targeting Colombian entities

Security Affairs

JANUARY 14, 2021

Security experts from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian government institutions and private companies. Malware researchers from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian entities exclusively. Pierluigi Paganini.

Malware

Malware Surveillance Phishing Government

Turkish Sea Turtle APT targets Dutch IT and Telecom firms

Security Affairs

JANUARY 7, 2024

Between 2017 and 2019, the APT group mainly used DNS hijacking in its campaigns. The group targets government entities, Kurdish (political) groups like PKK, telecommunication, ISPs, IT-service providers (including security companies), NGO, and Media & Entertainment sectors; Over the years, the group enhanced its evasion capabilities.

Media

Media Accountability Telecommunications Government

UN approves Russia-Cina sponsored resolution on new cybercrime convention

Security Affairs

DECEMBER 30, 2019

Many governments worldwide persecute their internal oppositions charging them with criminal activities and use strict online surveillance to track them. The surveillance software developed by NSO Group was used by government organizations worldwide to spy on human rights groups , activists, journalists, lawyers, and dissidents.

Cybercrime

Cybercrime Surveillance Spyware Government

Security Affairs newsletter Round 241

Security Affairs

NOVEMBER 24, 2019

The best news of the week with Security Affairs. Tianfu Cup 2019 Day 1 – Chinese experts hacked Chrome, Edge, Safari, Office365. Tianfu Cup 2019 – 11 teams earned a total of 545,000 for their Zero-Day Exploits. CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance.

Data breaches

Data breaches Wireless Banking Advertising

Second-ever UEFI rootkit used in North Korea-themed attacks

Security Affairs

OCTOBER 5, 2020

In 2015, the hacker who breached the systems of the Italian surveillance firm Hacking Team leaked a 400GB package containing hacking tools and exploits codes. Kaspersky researchers revealed to have found MosaicRegressor components at several dozen entities between 2017 and 2019.

Firmware

Firmware Spyware Surveillance Hacking

Experts Explain How to Bypass Recent Improvement of China’s Great Firewall

Security Affairs

JANUARY 31, 2021

Last year, the group published a detailed analysis on how the Chinese government has improved its surveillance system to detect and block the popular circumvention tools Shadowsocks and its variants. ” reads the paper published by the experts. Great Firewall Report experts revealed that recent versions of Shadowsocks (3.3.1

Firewall

Firewall Surveillance Internet Internet

macOS Zero-Day exploited in watering hole attacks on users in Hong Kong

Security Affairs

NOVEMBER 12, 2021

Evidence collected demonstrated that attackers exploited the CVE-2019-8506 flaw to execute malicious code in Safari. .” The iOS exploit chain used a framework based on Ironsquirrel to encrypt exploits delivered to the visitor’s browser. Google researchers pointed out that they were not able to retrieve the complete iOS chain.

Malware

Malware Media Surveillance Encryption

Massive DDos attack hit Telegram, company says most of junk traffic is from China

Security Affairs

JUNE 13, 2019

Telegram was used by protesters in Hong Kong to evade surveillance and coordinate their demonstrations against China that would allow extraditions from the country to the mainland. — Telegram Messenger (@telegram) June 12, 2019. — Pavel Durov (@durov) June 12, 2019. IP addresses coming mostly from China.

DDOS

DDOS Advertising Surveillance Encryption

Necro botnet now targets Visual Tools DVRs

Security Affairs

OCTOBER 12, 2021

Operators behind the FreakOut (aka Necro, N3Cr0m0rPh) Python botnet have added a PoC exploit for Visual Tools DVR, a professional digital video recorder used in surveillance video systems. CVE-2019-12725 – Zeroshell 3.9.0. The POC exploit code for this vulnerability is publicly available since July 2021. P4410-V2-1.28

DDOS

DDOS Surveillance Hacking Internet

Security Affairs newsletter Round 382

Security Affairs

SEPTEMBER 3, 2022

users China-linked APT40 used ScanBox Framework in a long-running espionage campaign Russian streaming platform Start discloses a data breach impacting 7.5M

Data breaches

Data breaches Malware Surveillance Ransomware

Security Affairs newsletter Round 246

Security Affairs

DECEMBER 29, 2019

CVE-2019-19781 Citrix flaw exposes 80,000 companies at risk. NVIDIA patches CVE-2019-5702 high-severity flaw in GeForce Experience. Thai Officials confirmed the hack of prison surveillance cameras and the video broadcast. Former contractor sentenced to 10 months in prison for hacking airline Jet2.

Cyber Attacks

Cyber Attacks Advertising Surveillance Ransomware

United States government files civil lawsuit against Edward Snowden

Security Affairs

SEPTEMBER 17, 2019

Edward Snowden’s book includes details of the author’s life, including the description of his activity at the US intelligence agencies while they were buiding the Prism surveillance system. This is the book the government does not want you to read: (link corrected) [link] — Edward Snowden (@Snowden) September 17, 2019.

Government

Government Surveillance Advertising Hacking

Microsoft’s case study: Emotet took down an entire network in just 8 days

Security Affairs

APRIL 4, 2020

The incident also affected the surveillance camera network of the company along with the finance department. Emotet re-appeared on the threat landscape in August 2019, with an active spam distribution campaign. “Emotet consumed the network’s bandwidth until using it for anything became practically impossible.

Antivirus

Antivirus Malware Phishing Advertising

Security Affairs newsletter Round 215 – News of the week

Security Affairs

MAY 26, 2019

Amnesty International filed a lawsuit against Israeli surveillance firm NSO. Linux kernel privilege escalation flaw CVE-2019-11815 affects RDS. PoC Exploits for CVE-2019-0708 wormable Windows flaw released online. billion accounts in Q1 2019. Chronicle experts spotted a Linux variant of the Winnti backdoor.

Advertising

Advertising Surveillance Ransomware Passwords

Emissary Panda APT group hit Government Organizations in the Middle East

Security Affairs

MAY 30, 2019

The group was involved in cyber espionage campaigns aimed at new generation weapons and in surveillance activities on dissidents and other civilian groups. In April 2019, the group targeted organizations of two different countries in the Middle East. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Government

Government Advertising Financial Services Surveillance

Crypto AG was spied for US, German intelligence agencies for decades

Security Affairs

FEBRUARY 12, 2020

. “Swiss Defense Ministry spokeswoman, Carolina Bohren, told The Associated Press that “following research carried out by the media” her office had notified the Cabinet about the Crypto case on November 5, 2019. 15, the decision was made to appoint a former supreme court judge to look into the reports and report back by the end of June.”

Advertising

Advertising Government Media Surveillance

Security Affairs newsletter Round 301

Security Affairs

FEBRUARY 14, 2021

COMB breach: 3.2B

Spyware

Spyware Phishing Data breaches Surveillance

German authorities raid the offices of the FinFisher surveillance firm

U.S. Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp

Trending Sources

Israeli surveillance firm QuaDream emerges from the dark

EU officials were targeted with Israeli surveillance software

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

NSO CEO claims Facebook wanted NSO surveillance tool to spy on users

CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance

In Search of… ISO 27001:2013, 27017:2015 & 27018:2019 Certification

In Search of… ISO 27001:2013, 27017:27017 & 27018:2019 Certification

US Gov sanctioned Intellexa Consortium individuals and entities behind Predator spyware attacks

Malicious app exploiting CVE-2019-2215 zero-day available in Google Play since March

In Search of… ISO 27001:2013, 27017:2015 & 27018:2019 Certification

NSO Group Pegasus spyware leverages new zero-click iPhone exploit in recent attacks

Pegasus spyware used to spy on a Polish mayor

Researcher released PoC exploit code for CVE-2019-2215 Android zero-day flaw

Donot Team targets a Togo prominent activist with Indian-made spyware

Researchers analyzed the PREDATOR spyware and its loader Alien

Why Edward Snowden is urging users to stop using ExpressVPN?

Zero-day exploit used to hack iPhones of Al Jazeera employees

Unknown FinSpy Mac and Linux versions found in Egypt

Three formers NSA employees fined for providing hacker-for-hire services to UAE firm

Stealth Soldier backdoor used is targeted espionage attacks in Libya

Moroccan journalist targeted with network injection attacks using NSO Group ‘s spyware

GUEST ESSAY: Going beyond watermarks to protect sensitive documents from illegal access

Swiss expert Till Kottmann indicted for conspiracy, wire fraud, and aggravated identity theft

Operation Spalax, an ongoing malware campaign targeting Colombian entities

Turkish Sea Turtle APT targets Dutch IT and Telecom firms

UN approves Russia-Cina sponsored resolution on new cybercrime convention

Security Affairs newsletter Round 241

Second-ever UEFI rootkit used in North Korea-themed attacks

Experts Explain How to Bypass Recent Improvement of China’s Great Firewall

macOS Zero-Day exploited in watering hole attacks on users in Hong Kong

Massive DDos attack hit Telegram, company says most of junk traffic is from China

Necro botnet now targets Visual Tools DVRs

Security Affairs newsletter Round 382

Security Affairs newsletter Round 246

United States government files civil lawsuit against Edward Snowden

Microsoft’s case study: Emotet took down an entire network in just 8 days

Security Affairs newsletter Round 215 – News of the week

Emissary Panda APT group hit Government Organizations in the Middle East

Crypto AG was spied for US, German intelligence agencies for decades

Security Affairs newsletter Round 301

Stay Connected