Security Affairs

FEBRUARY 10, 2025

However, the circumstance that the Citizen Lab researchers discovered the attack suggests that the threat actor may have used a zero-day exploit to deliver commercial spyware in highly targeted attacks. Such kinds of attacks often rely on zero-day exploits to target journalists, dissidents, and opposition politicians with spyware.

Spyware 79

Spyware Media Hacking Accountability 79

Security Affairs

APRIL 17, 2023

The Israeli surveillance firm QuaDream is allegedly shutting down its operations after Citizen Lab and Microsoft uncovered their spyware. Last week Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. and 14.4.2,

Surveillance 98

Surveillance Spyware Education Media 98

Security Affairs

APRIL 12, 2023

At least five members of civil society worldwide have been targeted with spyware and exploits developed by surveillance firm QuaDream. Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. and 14.4.2,

Spyware 98

Spyware Surveillance Government Malware 98

SecureWorld News

JULY 18, 2022

The controversial Pegasus spyware continues to stay in the news cycle, as a new report from the Citizen Lab details how the technology was used to target pro-democracy activists in Thailand. Understandably, this led to mass protests and social media campaigns like #WhyDoWeNeedAKing and #FreeYouth. Pegasus spyware in Thailand.

Spyware 98

Spyware Surveillance Government Hacking 98

Security Affairs

JUNE 16, 2023

An updated version of the Android remote access trojan GravityRAT can steal WhatsApp backup files and can delete files ESET researchers discovered an updated version of Android GravityRAT spyware that steals WhatsApp backup files and can delete files. The malware is distributed as the messaging apps BingeChat and Chatico.

Backups 98

Backups Spyware Malware Accountability 98

SecureList

JANUARY 18, 2023

The threat landscape is constantly updated through new malware and spyware, advanced phishing methods, and new social engineering techniques. The media routinely report incidents and leaks of data that end up publicly accessible on the dark web. Kaspersky detects an average of 400,000 malicious files every day.

Media 140

Media Social Engineering Ransomware Hacking 140

Threatpost

MARCH 21, 2022

The trojanized Craftsart Cartoon Photo Tools app is available in the official Android app store, but it's actually spyware capable of stealing any and all information from victims' social-media accounts.

Accountability 84

Accountability Spyware Media Malware 84

Security Affairs

APRIL 1, 2023

CISA has added nine flaws to its Known Exploited Vulnerabilities catalog, including bugs exploited by commercial spyware on mobile devices. The exploits were used to install commercial spyware and malicious apps on targets’ devices. The experts pointed out that both campaigns were limited and highly targeted.

Spyware 98

Spyware Surveillance Mobile Education 98

Security Affairs

NOVEMBER 11, 2022

The threat actors behind the campaigns used two Android spyware to spy on the victims and steal sensitive information. The Android spyware was able to collect a broad range of information, including: Location (latitude and longitude). List of installed packages. Call logs and geocoded location associated with the call. Take pictures.

Surveillance 98

Surveillance Spyware Malware Mobile 98

Security Affairs

MARCH 3, 2025

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format This can lead to out of bounds writes since frames of this type were not taken into account when calculating the size of the frames buffer in uvc_parse_streaming. reads the advisory.

Hacking 70

Hacking Spyware Technology Surveillance 70

SecureList

DECEMBER 27, 2024

Percentage of ICS computers on which malicious objects from various sources were blocked Moreover, the percentage of ICS computers on which threats from email clients, removable media and network folders were blocked in the third quarter was thelowestin the observation period. pp to 3.91% when compared to the previous quarter.

Malware 104

Malware Spyware Internet Internet 104

Security Affairs

NOVEMBER 2, 2022

Threat actors are using previously undocumented Android spyware, dubbed SandStrike, to spy on a Persian-speaking religion minority. In Q3 2022, Kaspersky researchers uncovered a previously undocumented Android spyware, dubbed SandStrike, employed in an espionage campaign targeting the Persian-speaking religion minority, Bahá?í.

Spyware 120

Spyware Malware VPN Accountability 120

Security Affairs

FEBRUARY 9, 2025

Here’s how data awareness can help HTTP Client Tools Exploitation for Account Takeover Attacks Dangerous hacker responsible for more than 40 cyberattacks on strategic organizations arrested Whos Behind the Seized Forums Cracked & Nulled? What are the risks?

Spyware 62

Spyware Cybercrime Scams Social Engineering 62

SecureList

JUNE 23, 2025

In January 2025, we uncovered the SparkCat spyware campaign , which was aimed at gaining access to victims’ crypto wallets. Now, we’ve once again come across a new type of spyware that has managed to infiltrate the official app stores. The threat actor distributed apps containing a malicious SDK/framework. Host: 23.249.28.88:7777

Spyware 94

Spyware Malware Cryptocurrency Scams 94

eSecurity Planet

NOVEMBER 12, 2024

I recommend McAfee if you’re looking for features like social media privacy, personal data monitoring, and scans of old internet accounts. Social Privacy Manager: McAfee helps you quickly adjust your privacy settings on social media based on your frequency of use. McAfee also doesn’t offer spyware detection.

Antivirus 62

Antivirus Software Identity Theft Spyware 62

SecureWorld News

NOVEMBER 21, 2023

In a groundbreaking investigative report, the European Investigative Collaborations (EIC) media network, with technical assistance from Amnesty International's Security Lab, has exposed the shocking extent of the global surveillance crisis and the glaring inadequacies of EU regulation in curbing it. More commentary from Col.

Surveillance 124

Surveillance Spyware Technology Media 124

Heimadal Security

APRIL 8, 2022

The operation employs high-level social engineering tactics, including setting up bogus social media accounts and maintaining a long-term relationship with the targets prior to the spyware delivery. Experts at security […].

Hacking 97

Hacking Social Engineering Spyware Cybercrime 97

Security Affairs

APRIL 9, 2020

Spyware turned out to be the most common malware class hiding in fraudulent COVID-19 emails, with AgentTesla topping the list of phishers’ favorite strains. Spyware: the most likely COVID-19 payload. Most COVID-19-related phishing emails analyzed had different spyware strains embedded as attachments. Source: CERT-GIB.

Phishing 143

Phishing Malware Spyware DDOS 143

eSecurity Planet

FEBRUARY 17, 2025

McAfee benefits organizations wanting features like social media privacy, personal data monitoring, and scans of old internet accounts. Social Privacy Manager: It helps you quickly adjust your privacy settings on social media based on your frequency of use. McAfee also doesnt offer spyware detection, but Defender does.

Antivirus 67

Antivirus Identity Theft VPN Spyware 67

Malwarebytes

FEBRUARY 21, 2024

The iOS version of the RAT also claims to authorize and support all iOS device versions without jailbreaking, with features ranging from hardware information, GPS data, contacts, media files, and real-time audio records as an extension. Targeted automatic penetration testing scenario framework.

Penetration Testing 144

Penetration Testing Spyware Media Government 144

Security Affairs

APRIL 8, 2020

In May, Facebook has patched a critical zero-day vulnerability in WhatsApp, tracked as CVE-2019-3568 , that has been exploited to remotely install spyware on phones by calling the targeted device. ” reported Motherboard, the media outlet that disclosed the story. ” Who will win? Facebook or NSO Group?

Surveillance 136

Surveillance Spyware Government Advertising 136

CyberSecurity Insiders

JULY 11, 2022

Reacting to the news on the government spyware like NSO Group Pegasus and Android affecting Hermit malware, the Mobile Giant of Korea said that it offers a firm commitment to safeguarding the personal and sensitive information of its users.

Cyber Attacks 113

Cyber Attacks Spyware Mobile Insurance 113

Security Affairs

MAY 1, 2023

Researchers at the Lookout Threat Lab have discovered a new Android surveillance spyware, dubbed BouldSpy, that was used by the Law Enforcement Command of the Islamic Republic of Iran (FARAJA). The researchers are tracking the spyware since March 2020, starting in 2023, multiple security experts [ 1 , 2 ] started monitoring its activity.

Surveillance 98

Surveillance Malware Spyware Accountability 98

Hacker's King

OCTOBER 3, 2024

Introduction Social media platforms like WhatsApp, Instagram, and Facebook are now essential for communication and business, making them prime targets for cybercriminals. You may like to read more about Social Media Botnets – Hackers leveraging bots for large-scale attacks What Are Zero-Day Exploits? million users.

Media 52

Media Spyware Accountability Marketing 52

Security Affairs

JULY 24, 2022

ransom and sued its insurance firm for refusing to cover this payment Crooks stole $375k from Premint NFT, it is one of the biggest NFT hacks ever Google is going to remove App Permissions List from the Play Store Security Affairs newsletter Round 374 by Pierluigi Paganini APT groups target journalists and media organizations since 2021.

Spyware 109

Spyware Surveillance Insurance Malware 109

SiteLock

AUGUST 27, 2021

Data security is a problem for anyone who has an online account, whether it be for health services, banking, or social media. It’s up to each of us to do our part to safeguard our own privacy and data integrity by properly vetting these IoT devices before we purchase them. What Can You Do to Protect Your Networked Devices?

IoT 98

IoT Spyware VPN Passwords 98

Hacker's King

MAY 24, 2025

Phishing is now done through text messages (smishing), social media (social engineering), and even voice phone calls (vishing). Accounts with easily guessable passwords fall victim to this and suffer unimaginable damage. Different types of malware include viruses, worms, spyware, ransomware, and trojans.

Cyber Attacks 59

Cyber Attacks Passwords Education Phishing 59

Security Affairs

JUNE 4, 2023

Xplain hack impacted the Swiss cantonal police and Fedpol Zyxel published guidance for protecting devices from ongoing attacks Kimsuky APT poses as journalists and broadcast writers in its attacks New Linux Ransomware BlackSuit is similar to Royal ransomware CISA adds Progress MOVEit Transfer zero-day to its Known Exploited Vulnerabilities catalog (..)

Spyware 98

Spyware Hacking Malware Social Engineering 98

Hot for Security

JUNE 14, 2021

Most security threats faced by regular users arrive via the Internet, whether it’s a malicious app or a rigged website , a scam delivered through the user’s social media channels, or a phishing scheme carried out via email or SMS. A vulnerability in WhatsApp allegedly allows threat actors to install spyware onto iPhones.

Mobile 132

Mobile Malware Spyware Media 132

Security Affairs

JULY 21, 2019

A flaw could have allowed hackers to take over any Instagram account in 10 minutes. Media File Jacking allows manipulating media files users receive via Android WhatsApp and Telegram. Sprint revealed that hackers compromised some customer accounts via Samsung site. NCSC report warns of DNS Hijacking Attacks.

Small Business 90

Small Business Media Spyware DNS 90

CyberSecurity Insiders

MARCH 16, 2023

Embedding malicious links in social media, emails, apps and SMS is making hackers target tech savvy individuals, thus taking this crime industry to a multi-billion-dollar business. Mainly such attacks are often launched by taking poor device security and software vulnerabilities into consideration.

Cybercrime 94

Cybercrime Social Engineering Mobile Spyware 94

Security Affairs

MARCH 22, 2021

European ICS engineering organizations were mainly targeted by phishing campaigns attempting to deliver spyware and cryptominers. Experts reported that the majority of computers in the ICS engineering sector are represented by desktop systems, but laptops remain more exposed to attacks via the internet, removable media devices, and email.

Engineering 143

Engineering VPN Accountability Software 143

SecureWorld News

JULY 10, 2023

The Google Play Store, a widely-trusted source for Android applications, has recently become a battleground for a concerning wave of spyware with ties to China. Pradeo, the mobile security company that discovered these malicious apps, has released a report discussing the spyware lurking on the Google Play Store. million users.

Spyware 75

Spyware Cyber threats Mobile Data collection 75

Security Affairs

FEBRUARY 17, 2020

Israeli Force (IDF) announced it has thwarted an attempt by the Hamas militant group to hack soldiers’ phones by posing as attractive women on social media. The military has identified at least six social media accounts that were used by attackers to trick the victims into installing malicious apps.

Social Engineering 102

Social Engineering Media Spyware Advertising 102

Security Affairs

APRIL 18, 2023

A new report from Citizen Lab states that the Israeli surveillance firm NSO Group used at least three zero-click zero-day exploits to deliver its Pegasus spyware. “These indicator overlaps allow us to attribute the 2022 zero-click chains to NSO Group’s Pegasus spyware with high confidence. ” reads the report. and 14.4.2,

Spyware 98

Spyware Surveillance Education Risk 98

SecureList

DECEMBER 9, 2024

Media sources reported that explosives had been concealed within the devices. While AI chatbot accounts are already being traded on the dark web as a result of malware activity targeting individuals, an AI provider storage breach affecting clients at the corporate level could result in the compromise of even more sensitive data.

Internet 111

Internet Internet Risk Social Engineering 111

SecureList

NOVEMBER 2, 2023

Furthermore, the module transmits information about the victim’s contacts and accounts every five minutes. According to our findings, the spyware has been active since mid-August 2023. com hxxps://whats-media[.]com At the time of writing, all versions published in the channels since then contained malware. app hxxps://www.3ssem[.]com

Malware 145

Malware Spyware Mobile VPN 145