Security Affairs

MARCH 3, 2025

Amnesty International first found traces of this Cellebrite USB exploit used in a separate case in mid-2024.” ” In 2024, the Security Lab provided evidence of a Cellebrite zero-day exploit chain to industry partners, leading Google to identify three vulnerabilities. .” reads the advisory.

Hacking 72

Hacking Spyware Technology Surveillance 72

Schneier on Security

JULY 24, 2025

Your personal information is scattered across hundreds of locations: social media companies, IoT companies, government agencies, websites you have accounts on, and data brokers you’ve never heard of. Developers no longer need to build and maintain extensive data storage systems, surveillance infrastructure, or analytics pipelines.

Architecture 210

Architecture Healthcare Insurance Surveillance 210

Security Affairs

MARCH 19, 2025

The company confirmed that the issue was fixed in December 2024 without a client-side update, and no CVE-ID was assigned. The Meta-owned company linked the hacking campaign to Paragon, an Israeli commercial surveillance vendor acquired by AE Industrial Partners for $900 million in December 2024.

Spyware 96

Spyware Surveillance Hacking Media 96

Security Affairs

NOVEMBER 16, 2024

Court filing revealed that NSO Group used WhatsApp exploits after the instant messaging firm sued the surveillance company. NSO Group developed malware that relied on WhatsApp exploits to infect target individuals even after the Meta-owned instant messaging company sued the surveillance firm. from April 29, 2018, to May 10, 2020).

Spyware 122

Spyware Surveillance Malware Hacking 122

Security Affairs

JANUARY 19, 2025

CISA adds Aviatrix Controllers vulnerability to its Known Exploited Vulnerabilities catalog ESET detailed a flaw that could allow a bypass of the Secure Boot in UEFI systems Russia-linked APT Star Blizzard targets WhatsApp accounts Prominent US law firm Wolf Haldenstein disclosed a data breach Clop Ransomware exploits Cleo File Transfer flaw: dozens (..)

Spyware 74

Spyware DNS Data breaches Artificial Intelligence 74

Security Boulevard

MARCH 24, 2025

While MFA is primarily a security feature, its primary privacy benefit is adding another layer of security to prevent unauthorized access to information contained in particular important or sensitive accounts. Surveillance Tech in the News This section covers surveillance technology and methods in the news.

Surveillance 75

Surveillance Telecommunications Spyware Data breaches 75

SecureWorld News

JULY 2, 2025

Critics may argue this misses major commercial threats from AI used in surveillance, retail profiling, or hiring tools.) The National Conference of State Legislatures (NCSL) reports at least 45 states introduced AI bills in 2024, with 31 enacting laws or resolutions. Only the AG can enforce. Here are some of the leading states.

Government 111

Government Artificial Intelligence Risk Surveillance 111

Security Affairs

DECEMBER 7, 2024

” In June 2024, Parubets reported to First Department that during a 15-day administrative detention authorities confiscated his Android device. It can also read calendar entries, list installed applications, answer phone calls, retrieve account details, and record videos using the devices camera. ” continues the report.

Spyware 130

Spyware Passwords Surveillance Encryption 130

Zero Day

JUNE 22, 2025

Here's how to check if your accounts are at risk and what to do next.   IBM  estimates  that the average cost of a data breach in 2024 for companies was $4.9   Recycled credentials leaked online from company A could be used to access your account from company B, for example.

Passwords 101

Passwords Data breaches Password Management Identity Theft 101

Security Affairs

FEBRUARY 9, 2025

Here’s how data awareness can help HTTP Client Tools Exploitation for Account Takeover Attacks Dangerous hacker responsible for more than 40 cyberattacks on strategic organizations arrested Whos Behind the Seized Forums Cracked & Nulled?

Spyware 63

Spyware Cybercrime Scams Social Engineering 63

Krebs on Security

NOVEMBER 5, 2024

At the end of 2023, malicious hackers learned that many large companies had uploaded huge volumes of sensitive customer data to Snowflake accounts that were protected with little more than a username and password (no multi-factor authentication required). million customers. “Negotiate a deal in Telegram.”

Cybercrime 306

Cybercrime Mobile Telecommunications Hacking 306

eSecurity Planet

JUNE 25, 2025

It uses blockchain-level cryptography and decentralized peer-to-peer connections to power secure video calls and messaging: with no accounts, no servers, and no stored data. It requires no phone number, email, or account setup. Briar Briar is built for when traditional networks fail, or surveillance is everywhere.

Encryption 57

Encryption Data collection Backups Accountability 57

eSecurity Planet

JUNE 25, 2025

It uses blockchain-level cryptography and decentralized peer-to-peer connections to power secure video calls and messaging: with no accounts, no servers, and no stored data. It requires no phone number, email, or account setup. Briar Briar is built for when traditional networks fail, or surveillance is everywhere.

Encryption 52

Encryption Data collection Backups Accountability 52

Zero Day

JUNE 20, 2025

Here's how to check if your accounts are at risk and what to do next.   IBM  estimates  that the average cost of a data breach in 2024 for companies was $4.9   Recycled credentials leaked online from company A could be used to access your account from company B, for example.

Passwords 106

Passwords Data breaches Password Management Identity Theft 106

Krebs on Security

NOVEMBER 26, 2024

At the end of 2023, malicious hackers discovered that many companies had uploaded huge volumes of sensitive customer data to Snowflake accounts that were protected with nothing more than a username and password (no multi-factor authentication required). A surveillance photo of Connor Riley Moucka, a.k.a. “I’ll wait.

DDOS 340

DDOS Cybercrime Accountability Government 340

SecureWorld News

JANUARY 9, 2025

In the first half of 2024, ransomware victims paid an astonishing $459.8 The Change Healthcare cyberattack in 2024 will go down in history as the singularly most disruptive cyberattack against a national population and critical national infrastructure industry. Staynings' take: "Ransomware is now an extremely lucrative business.

Cybersecurity 109

Cybersecurity Manufacturing Surveillance Ransomware 109

SecureWorld News

MARCH 5, 2025

That headache is real, of course, but accountants and lawyers will step up to sort it out," said Mike Wilkes , Former CISO, MLS; Adjunct Professor, NYU. "Let's put aside for the moment any complexities to regulatory oversight and enforcement of compliance standards for companies operating in China, Mexico, and Canada. Currently valued at $2.8

Cyber Risk 127

Cyber Risk Risk Cyber Insurance Small Business 127

WIRED Threat Level

JULY 3, 2025

In one high-profile incident in March, a Lebanese professor at Brown University’s medical school was sent back to Lebanon after authorities searched her phone and alleged she was “sympathetic” to the former Hezbollah leader Hassan Nasrallah, who was assassinated in September 2024. All rights reserved.

Surveillance 120

Surveillance Retail Technology Accountability 120

Security Affairs

MARCH 2, 2025

Spreads via Impersonation of Official Email to Target Users in Taiwan Belgian prosecutor probes alleged Chinese hacking of intelligence service Exclusive: Hegseth orders Cyber Command to stand down on Russia planning Cybersecurity Trump 2.0

Cybercrime 63

Cybercrime Hacking Cryptocurrency Ransomware 63

Security Affairs

JANUARY 10, 2024

Threat actors hacked the X account of the US Securities and Exchange Commission (SEC) and used it to publish the fake news on the Bitcoin ETF approval. Hackers hijacked the X account of the US Securities and Exchange Commission (SEC) and used it to publish fake news on the Bitcoin ETF approval. ” Gensler wrote.

Accountability 133

Accountability Hacking Cryptocurrency Surveillance 133

Malwarebytes

JANUARY 10, 2024

We have seen several high-profile accounts that were taken over on X (formerly Twitter) only to be used for cryptocurrency related promotional activities, like expressing the approval of exchange-traded funds (ETFs). The @SECGov X account was compromised, and an unauthorized post was posted. You’re all set.

Accountability 112

Accountability Scams Hacking Cryptocurrency 112

Schneier on Security

MARCH 19, 2024

2: Surveillance Social media’s reliance on advertising as the primary way to monetize websites led to personalization, which led to ever-increasing surveillance. And those lies could be propelled by social accounts controlled by AI bots, which can share and launder the original misinformation at any scale.

Media 347

Media Advertising Surveillance Artificial Intelligence 347

SecureList

NOVEMBER 14, 2023

In this article, we will review the past year’s trends to see which of our 2023 predictions have come true, and try to predict what is to come in 2024. Using a malicious script, the attackers redirected their targets’ incoming email to an email address controlled by the attackers, gathering data from the compromised accounts.

Hacking 137

Hacking Energy and Utilities Malware Government 137

SecureList

JUNE 3, 2024

IT threat evolution Q1 2024 IT threat evolution Q1 2024. Mobile statistics IT threat evolution Q1 2024. This RAT allows an attacker to surveil and harvest sensitive data from a target computer. DinodasRAT is a multi-platform backdoor written in C++ that offers a range of capabilities.

Banking 111

Banking Malware Computers and Electronics Mobile 111

Security Affairs

FEBRUARY 11, 2024

Cybersecurity Announcement of a Visa Restriction Policy to Promote Accountability for the Misuse of Commercial Spyware Critical Security Issue Affecting TeamCity On-Premises (CVE-2024-23917) – Update to 2023.11.3

Spyware 130

Spyware Surveillance DDOS Identity Theft 130

CyberSecurity Insiders

AUGUST 25, 2021

Australian government has passed a new bill that allows the law enforcement agencies to spy on criminals and if necessary suspend or take over their online accounts on a permanent note.

Data privacy 127

Data privacy Surveillance Cyber Attacks Government 127

SecureList

MARCH 13, 2024

In most countries around the world, use of stalkerware is currently not prohibited, but installing a surveillance application on another person’s smartphone without their consent is illegal and punishable. Nevertheless, iPhone users fearing surveillance should always keep a close eye on their device.

Surveillance 105

Surveillance Mobile Passwords Technology 105

Malwarebytes

JUNE 7, 2024

In an email, Google told users that they will have until December 1, 2024 to save all travels to their mobile devices before the company starts deleting old data. Moving forward, Google will link the Location information to the devices you use, rather than to the user account(s). Choose Your Timeline.

Accountability 139

Accountability Surveillance VPN Mobile 139

eSecurity Planet

JUNE 21, 2024

Security alerts: Notifies you in real time of compromised accounts and passwords, allowing you to take rapid action to secure your accounts. Dashlane’s account recovery key protects your data if you forget your Master Password. Their password health checker and real-time dark web surveillance also improve overall security.

Password Management 97

Password Management Passwords Encryption Authentication 97

Security Affairs

MAY 22, 2024

The company designs and develops digital imaging products for use in mobile phones, laptops, netbooks and webcams, security and surveillance cameras, entertainment, automotive and medical imaging systems. On April 3, 2024, after completion of this comprehensive review, we determined that some of your personal information was involved.”

Data breaches 137

Data breaches Ransomware Manufacturing Encryption 137

BH Consulting

FEBRUARY 15, 2024

Creeping cyber risk grabbing global headlines The World Economic Forum’s latest Global Cybersecurity Outlook 2024 gives senior leaders a high-level overview of cybersecurity trends. Meanwhile on the consumer side of privacy, Meta will start allowing EU users to unlink their Facebook and Instagram accounts.

Passwords 52

Passwords Surveillance Risk Data breaches 52

Malwarebytes

FEBRUARY 28, 2024

In late January 2024, the ThreatDown Managed Detection and Response (MDR) team found and stopped a three-month long malware campaign against a Managed Service Provider (MSP) based in Europe. Almost immediately after onboarding the MSP in mid-January, the ThreatDown MDR team found extensive evidence of an ongoing malware campaign.

Malware 107

Malware Surveillance DNS Backups 107

Security Affairs

DECEMBER 10, 2023

Will Enable Mass Spying Reddit Says Leaked U.S.-U.K. billion personal records compromised by data breaches in past two years — underscoring need for end‑to‑end encryption Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter)

Data breaches 131

Data breaches Hacking Ransomware Surveillance 131

eSecurity Planet

MARCH 4, 2024

February 26, 2024 FCKeditor Used for SEO Poisoning on Government, University Sites Type of vulnerability: Malicious URL redirect. February 27, 2024 Ransomware Gangs Target Unpatched ScreenConnect Servers Type of vulnerability: Authentication bypass and path traversal. The fix: Apply Windows patches ASAP.

IoT 117

IoT Internet Internet Ransomware 117

Malwarebytes

JULY 12, 2024

TechCrunch reports that in May 2024, unknown attackers stole millions of customer support tickets, including personal information, emails to support, and attachments, including personal documents. Without getting consent from a child, these surveillance capabilities represent serious invasions of privacy.

Data breaches 124

Data breaches Mobile Surveillance Advertising 124

Security Affairs

DECEMBER 2, 2022

Naturally, threat actors follow the trend and exploit the technology for surveillance, payload delivery, kinetic operations, and even diversion. In China, the retail drone market reached $15 billion in 2021, with projections to exceed $22 billion by 2024. that require registration with local or federal authorities.

Cybersecurity 144

Cybersecurity Wireless Penetration Testing Computers and Electronics 144

Security Boulevard

JANUARY 27, 2025

Surveillance Tech in the News This section covers surveillance technology and methods in the news. Vulnerabilities 7-Zip fixes bug that bypasses Windows MoTW security warnings, patch now Bleeping Computer This vulnerability is tracked as CVE-2024-38213. This was fixed in a 30 NOV 2024 update to &-zip.

Surveillance 52

Surveillance Data breaches Backups Malware 52