SecureList

NOVEMBER 1, 2022

In most cases, the targets appear to be diplomatic and government organizations in Europe. In June, we identified a previously unknown Android spyware app that targets Persian-speaking individuals. The spyware itself collects various data from the victims’ devices, such as call logs or lists of contacts. Final thoughts.

Malware 139

Malware Ransomware Spyware Encryption 139

SecureList

FEBRUARY 9, 2022

The subject of investments gained significant relevance in 2021, with banks and other organizations actively promoting investment and brokerage accounts. Hurry up and lose your account: phishing in the corporate sector. How to make an unprofitable investment with no return. Phishers used various ploys related to COVID-19.

Phishing 65

Phishing Scams Accountability Banking 65

eSecurity Planet

FEBRUARY 16, 2021

Additional features of botnets include spam, ad and click fraud, and spyware. Cybersecurity vendors like Panda Security suggest the best way to defend against crimeware is using a combination of antivirus, anti-spyware, firewalls, and threat detection technology. Phishing and Social Engineering. Jump ahead: Adware.

Malware 105

Malware Adware Spyware Antivirus 105

Heimadal Security

APRIL 8, 2022

Hamas-linked cybercrime organization dubbed ‘APT-C-23’ was noticed catfishing Israeli officials working in defense, law, enforcement, and government institutions, resulting in the deployment of new malware. Experts at security […].

Hacking 78

Hacking Social Engineering Spyware Cybercrime 78

SecureList

MAY 27, 2022

The attackers are mainly interested in collecting data on user accounts, IP addresses and session information; and they steal configuration files from programs that work directly with cryptocurrency and may contain account credentials. Subsequently, DDoS attacks hit some government websites. Other malware.

Phishing 103

Phishing Spyware Firmware Malware 103

SecureList

AUGUST 5, 2021

In Q2 2021, corporate accounts continued to be one of the most tempting targets for cybercriminals. A fake notification about a Microsoft Teams meeting or a request to view an important document traditionally takes the victim to a phishing login page asking for corporate account credentials. Quarterly highlights. The corporate sector.

Phishing 116

Phishing Banking Scams Computers and Electronics 116

SecureList

JULY 27, 2023

Following this, we released the first of a series of additional reports describing the final payload in the infection chain: a highly sophisticated spyware implant that we dubbed “TriangleDB” Operating in memory, this implant periodically communicates with the C2 (command and control) infrastructure to receive commands.

Malware 84

Malware Government Phishing Social Engineering 84

SecureList

NOVEMBER 18, 2022

The attacks, which took place earlier this year, affected industrial plants, design bureaus and research institutes, government agencies, ministries and departments. The group delivers its malware using social engineering. The Trojan, once installed, steals account passwords, credit card details, session cookies and more.

Malware 100

Malware Computers and Electronics Adware Cryptocurrency 100

ForAllSecure

SEPTEMBER 21, 2021

Some of those who bought the spyware were allegedly able to see live locations of the devices, view the targets emails, photos, web browsing history, text messages, video calls, etc. I am a coordinator, the Coalition Against Spyware. So here's the thing, SpyPhone is not an isolated incident.

Technology 52

Technology Software Surveillance Media 52

SecureList

OCTOBER 26, 2021

In June, more than six months after DarkHalo had gone dark, we observed the DNS hijacking of multiple government zones of a CIS member state that allowed the attacker to redirect traffic from government mail servers to computers under their control – probably achieved by obtaining credentials to the control panel of the victims’ registrar.

Malware 140

Malware Government Surveillance Spyware 140

SecureList

MARCH 7, 2024

To get access to the content (or contest), phishing sites prompted the victim to sign in to one of their gaming accounts. If the victim entered their credentials on the phishing form, the account was hijacked. The information could later be used to steal both funds from victims’ accounts and their identities.

Phishing 95

Phishing Scams Cryptocurrency Accountability 95

Herjavec Group

AUGUST 26, 2021

They hack into their teacher’s account and leave messages making fun of him. Air Force research facility, discover a password “sniffer” has been installed onto their network, compromising more than 100 user accounts. government websites in 1998 and is sentenced to 18 months in prison in 2001.

Cybercrime 135

Cybercrime Computers and Electronics Banking Hacking 135

SecureList

NOVEMBER 14, 2023

The rise of destructive attacks In December of last year, shortly after we released our predictions for 2023, Russian government agencies were reported to have been targeted by a data wiper called CryWiper. This politician became the target of a previously undiscovered “zero-day” attack aimed at infecting his phone with spyware.

Hacking 102

Hacking Energy and Utilities Media Malware 102