SecureList

NOVEMBER 14, 2022

We polled our experts from the GReAT team and have gathered a small number of key insights about what APT actors are likely to focus on in 2023. Verdict: very limited fulfillment of the prediction ❌ APT predictions for 2023. Here are the developments we think we could be seeing in 2023. What we predicted in 2022.

Firmware 129

Firmware Surveillance Mobile Telecommunications 129

Security Affairs

FEBRUARY 6, 2024

Google’s TAG revealed that Commercial spyware vendors (CSV) were behind most of the zero-day vulnerabilities discovered in 2023. Surveillance software is used to spy on high-risk users, including journalists, human rights defenders, dissidents and opposition party politicians. ” reads the report published by Google.

Spyware 133

Spyware Surveillance Government Software 133

SecureList

MARCH 13, 2024

The State of Stalkerware in 2023 (PDF) The annual Kaspersky State of Stalkerware report aims to contribute to awareness and a better understanding of how people around the world are impacted by digital stalking. Nevertheless, iPhone users fearing surveillance should always keep a close eye on their device.

Mobile 108

Mobile Passwords Surveillance Technology 108

Security Affairs

SEPTEMBER 27, 2023

— Operation Zero (@opzero_en) September 26, 2023 The Russian company pointed out that the end user for its exploits is a non-NATO country, it also added that decided to increase the payout due to high demand on the market. In the scope: — iOS RCE/LPE/SBX/full chain — From $200,000 up to $20,000,000 (twenty millions).

Mobile 140

Mobile Surveillance Marketing Hacking 140

Security Affairs

SEPTEMBER 23, 2023

In May 2023, a ransomware attack hit the IT systems at the City of Dallas , Texas. Between April 7, 2023, and May 4, 2023, Royal performed data exfiltration and ransomware delivery preparation activities. ” The group was able to steal data from the City and leaked approximately 1.169 TB at a time prior to May 03, 2023.

Ransomware 134

Ransomware Surveillance Healthcare Accountability 134

Security Affairs

SEPTEMBER 14, 2023

A joint investigation conducted by Access Now and the Citizen Lab revealed that the journalist, who is at odds with the Russian government, was infected with the surveillance software. The investigation started on June 22, 2023, after Timchenko received a notification from Apple that state-sponsored attackers may be targeting her iPhone.

Spyware 132

Spyware Surveillance Media Government 132

Malwarebytes

MARCH 7, 2024

Predator can turn infected smartphones into surveillance devices. Nelson said: “Today’s actions represent a tangible step forward in discouraging the misuse of commercial surveillance tools, which increasingly present a security risk to the United States and our citizens.”

Spyware 130

Spyware Surveillance Government Risk 130

Security Affairs

OCTOBER 4, 2023

Google Threat Analysis Group and Google Project Zero first reported that the CVE-2023-33106, CVE-2023-33107, CVE-2022-22071 and CVE-2023-33063 are actively exploited in targeted attacks. The details of the remaining CVEs will be shared in our December 2023 public bulletin.”

Firmware 126

Firmware Surveillance Authentication Manufacturing 126

Malwarebytes

OCTOBER 3, 2024

Like something out of Black Mirror, two students have demonstrated a way to use smart glasses and facial recognition technology to immediately reveal people’s names, phone numbers, and addresses. Also in 2022, a company called PimEyes was accused of “ surveillance and stalking on a scale previously unimaginable.”

Artificial Intelligence 141

Artificial Intelligence Engineering Surveillance Technology 141

Malwarebytes

DECEMBER 21, 2023

The regulator found so many flaws in the retailer’s surveillance program that it concluded Rite Aid had failed to implement reasonable procedures and prevent harm to consumers in its use of facial recognition technology in hundreds of stores. It failed to monitor or test the accuracy of the technology after deployment.

Surveillance 110

Surveillance Technology Retail Artificial Intelligence 110

Penetration Testing

APRIL 26, 2024

Hanwha Vision, a leader in surveillance technology, has swiftly responded to significant cybersecurity threats identified in several of its network video recorders (NVR) and digital video recorders (DVR).

Penetration Testing 117

Penetration Testing Surveillance Technology Cybersecurity 117

SecureWorld News

JUNE 12, 2025

Fog was first identified in May 2023, when it was seen exploiting stolen VPN credentials to gain access to enterprise networks. In the hands of threat actors, however, it becomes a covert surveillance tool, capturing screen activity and keystrokes, including credentials typed by unsuspecting users.

Software 65

Software Ransomware VPN Surveillance 65

CyberSecurity Insiders

JUNE 14, 2023

European Parliament has created a history by adopting the draft that mitigates the risks gener-ated using Artificial Intelligence (AI) technology. As the technologies are evolving, it is also raising the bar of entering the world of terror and extremism, in parallel.

Artificial Intelligence 117

Artificial Intelligence Surveillance Technology Risk 117

Security Boulevard

FEBRUARY 17, 2025

Surveillance Tech in the News This section covers surveillance technology and methods in the news. Due to this focus, items primarily affecting enterprises or large organizations may not be included, even if they are widespread or "popular" stories. Tips for finding old accounts.

Surveillance 52

Surveillance Data breaches VPN Malware 52

Malwarebytes

OCTOBER 11, 2023

It’s spying when governments do it through opaque, mass surveillance regimes, it’s spying when companies do it through shadowy data broker networks that braid together disparate streams of information, and it’s spying when private individuals do it through unseen behavior on personal devices. They are deeply concerning.

Surveillance 130

Surveillance Passwords Software Technology 130

Security Affairs

SEPTEMBER 24, 2023

0-days exploited by commercial surveillance vendor in Egypt PREDATOR IN THE WIRES OilRig’s Outer Space and Juicy Mix: Same ol’ rig, new drill pipes Cybersecurity Apple and Google Are Introducing New Ways to Defeat Cell Site Simulators, But Is it Enough?

Cyber Attacks 122

Cyber Attacks Firewall Data breaches Telecommunications 122

Malwarebytes

MARCH 26, 2024

Of those users that weren’t logged in when they watched those videos between January 1 and 8, 2023, the authorities asked for the IP addresses. The starting point of one of the investigations is an entity that uses the handle “elonmuskwhm” and is suspected of money laundering by selling Bitcoin for cash.

VPN 145

VPN Surveillance Mobile Accountability 145

BH Consulting

DECEMBER 11, 2023

Cloud technology use is growing , but are organisations’ taking precautions to secure these services? Cloud security was also a theme in Microsoft’s ‘Cybersecurity Trends in Ireland 2023’ report. Sounds like excessive surveillance? Sign up here The post Security Roundup December 2023 appeared first on BH Consulting.

Surveillance 52

Surveillance Cybersecurity DDOS Data breaches 52

Malwarebytes

JUNE 7, 2024

In April of 2023, Google Play launched a series of initiatives that gives users control over the way that separate, third-party apps stored data about them. But this was part of a settlement in a lawsuit accusing the search giant of illegal surveillance. Choose Your Timeline.

Accountability 137

Accountability Surveillance VPN Mobile 137

SecureWorld News

JANUARY 8, 2024

Microsoft has said it is committed to making technology more accessible and user-friendly. Leading experts in AI and technology have expressed their views on this groundbreaking development. John Reynolds, a technology journalist, adds: "This move by Microsoft is a game-changer. What are the experts saying?

Artificial Intelligence 100

Artificial Intelligence Surveillance Technology Risk 100

Security Affairs

FEBRUARY 19, 2023

Twitter will allow using the SMS-based two-factor authentication (2FA) only to its Blue subscribers GoDaddy discloses a new data breach Fortinet fixes critical vulnerabilities in FortiNAC and FortiWeb German airport websites hit by DDos attacks once again Cisco fixed critical RCE bug in ClamAV Open-Source Antivirus engine CISA adds Cacti, Office, Windows (..)

DDOS 98

DDOS Data breaches Ransomware Hacking 98

SecureWorld News

NOVEMBER 30, 2023

The flaw, tracked as CVE-2023-6345 , marks the sixth Chrome Zero-Day exploit in 2023 and showcases a growing trend in major browsers suffering Zero-Day attacks. Surveillance players have realized that targeting browsers provides extensive monitoring of victims while avoiding app store defenses.

Spyware 113

Spyware Surveillance Malware Risk 113

Thales Cloud Protection & Licensing

JANUARY 14, 2020

Today’s innovations and technologies provide tremendous opportunities for enterprises. Along with innovation and technology proliferation, new challenges that will shape business during 2020. In addition, malicious actors can and will adopt technologies such as AI and machine learning faster than security leaders can.

Data privacy 89

Data privacy IoT Data breaches Surveillance 89

SecureList

NOVEMBER 14, 2023

In this article, we will review the past year’s trends to see which of our 2023 predictions have come true, and try to predict what is to come in 2024. The US Cybersecurity and Infrastructure Security Agency (CISA) provided additional IoCs associated with exploitation of CVE-2023-2868. A review of last year’s predictions 1.

Hacking 141

Hacking Energy and Utilities Malware Media 141

SecureList

JUNE 3, 2024

In late December, in a presentation at the 37th Chaos Communication Congress (37C3), experts from our Global Research and Analysis Team (GReAT) described the attack chain in detail , including – for the first time – how the attackers exploited the CVE-2023-38606 hardware vulnerability. You can read the full analysis here.

Banking 117

Banking Malware Computers and Electronics Mobile 117

SecureWorld News

DECEMBER 11, 2023

In July of 2023, the city of Hayward, California, declared a state of emergency after a cyberattack had degraded their emergency services dispatching capability. Facial recognition technology could be useful in many ways, but we lack mechanical trust in it outside of using it to unlock your smartphone. Let's start with a quick story.

Technology 109

Technology Artificial Intelligence Cybercrime Government 109

Malwarebytes

NOVEMBER 9, 2023

In an earlier statement , Meta said it has strict policies and technology to prevent predators from finding or interacting with teenagers on its apps. Criticism of the bill mostly points out that it might potentially enable censorship and increased online surveillance.

Media 108

Media Surveillance Engineering Technology 108

Centraleyes

DECEMBER 21, 2023

Ubiquiti, a leading networking and video surveillance camera manufacturer, has successfully resolved a bug that inadvertently allowed users access to other customers’ accounts and private live video streams. This misconfiguration persisted for about nine hours on December 13, 2023.

Surveillance 52

Surveillance Accountability Manufacturing Technology 52

Security Affairs

JANUARY 2, 2023

Given the vast level of tracking and surveillance that technology companies can embed into their widely used products, it is only fair that consumers be informed of how important user data, including information about their every move, is gathered, tracked, and utilized by these companies. The IT giant will pay $9.5 million to D.C.

Consumer Protection 98

Consumer Protection Surveillance Data collection Accountability 98

SecureList

MARCH 28, 2024

This RAT allows the malicious actor to surveil and harvest sensitive data from a target’s computer. In early October 2023, after the ESET publication, we discovered a new Linux version of DinodasRAT. Conclusion In October 2023, ESET published an article about a campaign dubbed Operation Jacana targeting Windows users.

Encryption 142

Encryption Malware Surveillance Government 142

Malwarebytes

NOVEMBER 2, 2021

So instead of being logged into the giant surveillance monster while you were using its websites, you were logged into the giant surveillance monster all the time, unless you remembered to log out of the browser, which of course you didn’t, because people just don’t think about logging in and out of their browser.

Marketing 123

Marketing Surveillance Advertising Mobile 123

SecureWorld News

JUNE 7, 2023

The UN Cybercrime Treaty , to the extent it gets adopted, is expected to define global norms for lawful surveillance and legal processes available to investigate and prosecute cybercriminals," reports The Register in a special report. To say the cybersecurity community is skeptical would be an understatement.

Cybercrime 98

Cybercrime CSO Technology Surveillance 98

Chicago CyberSecurity Training

MAY 23, 2024

2024 : US says cyberattacks against water supplies are rising, and utilities need to do more to stop them 2024 : EPA Outlines Enforcement Measures to Help Prevent Cybersecurity Attacks and Protect the Nation’s Drinking Water 2023 : IRGC-Affiliated Cyber Actors Exploit PLCs in Multiple Sectors, Including U.S.

Social Engineering 52

Social Engineering Cyber threats Surveillance Passwords 52

Security Affairs

JANUARY 10, 2021

It is a great question, particularly when you consider that $167 Billion was spent on Cybersecurity in 2019 and this is predicted to increase to $248 Billion by 2023 [Source: Forbes ]. is an American company that develops software for businesses to help manage Networks, Systems, and Information Technology infrastructure and security.

Cyber Attacks 125

Cyber Attacks Government Surveillance Software 125

DoublePulsar

APRIL 20, 2023

So in this piece we shall dig into the details using open source intelligence, and prove Capita was penetrated by Black Basta ransomware group using Qakbot phishing to deliver hands on keyboard access for weeks — and question if the playbooks organisations are using to handle ransomware groups are fit for purpose in 2023.

Ransomware 135

Ransomware Government Data breaches Marketing 135

Security Affairs

APRIL 13, 2023

The top insider threat software products of 2023 Data Detection and Response (DDR) company Cyberhaven offers valuable insights into some of the top security tools designed with inside threats in mind. She has written for Bora , Venafi, Tripwire and many other sites.

Data privacy 98

Data privacy Risk Media Software 98

Pen Test

OCTOBER 12, 2023

Criminals may use hijacked drones for illegal surveillance, smuggling, or even as weapons. Detection and Prevention: Security professionals and organizations are developing technologies to detect and mitigate drone signal hijacking, including RF signal analysis and drone detection systems.

Encryption 52

Encryption Firmware Surveillance Technology 52