Accountability, Passwords, Spyware and Surveillance

Security Affairs newsletter Round 377

Security Affairs

AUGUST 7, 2022

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% of its users due to the exposure of salted password hashes Twitter confirms zero-day used to access data of 5.4 Pierluigi Paganini. SecurityAffairs – hacking, newsletter).

Spyware

Spyware Manufacturing Small Business Surveillance

Android Spyware Monokle, developed by Russian defense contractor, used in targeted attacks

Security Affairs

JULY 25, 2019

Researchers at Lookout discovered a new mobile spyware dubbed Monokle that was developed by a Russian defense contractor. Experts at Lookout discovered a new Android mobile spyware in the wild, dubbed Monokle, that was developed by a Russian defense contractor named Special Technology Centre Ltd. ( Pierluigi Paganini.

Spyware

Spyware Surveillance Mobile Advertising

Top Methods Use By Hackers to Bypass Two-Factor Authentication

Hacker's King

MAY 20, 2023

By combining something you know(like a password) with something you have(such as a verification code), 2FA adds an extra layer of protection to your online accounts. Hackers might target weak session tokens or hijack active sessions to gain unauthorized access to an account. This can potentially bypass the 2FA process.

Authentication

Authentication Social Engineering Spyware Engineering

Understanding and Recognizing Tech Abuse

SecureWorld News

AUGUST 16, 2023

It encompasses various forms of cybercrime and online harm, including cyberstalking, tracking, hacking accounts and intimate image abuse. A common example of this is surveillance. Still, it might not be seen that way due to the normalization of surveillance and the narrative that 'surveillance is love'.

Surveillance

Surveillance Technology Accountability Spyware

The Zero Click, Zero Day iMessage Attack Against Journalists

SecureWorld News

DECEMBER 23, 2020

Pegasus spyware is a phone surveillance solution that enables customers to remotely exploit and monitor devices. The company sells its surveillance technology to governments around the world. And watchdog groups say its products are often found to be used in surveillance abuses. Spyware attacks becoming harder to detect.

Spyware

Spyware Surveillance Hacking Media

Security Affairs newsletter Round 418 by Pierluigi Paganini – International edition

Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches

Data breaches Malware Mobile Spyware

The State of Stalkerware in 2023–2024

SecureList

MARCH 13, 2024

In most countries around the world, use of stalkerware is currently not prohibited, but installing a surveillance application on another person’s smartphone without their consent is illegal and punishable. Nevertheless, iPhone users fearing surveillance should always keep a close eye on their device.

Mobile

Mobile Passwords Surveillance Technology

Pegasus spyware has been here for years. We must stop ignoring it

Malwarebytes

JULY 22, 2021

Pegasus is spyware, and spyware is not made to respect privacy. According to NSO Group, its main spyware program is a beneficial tool for investigating and preventing terrorist attacks and maintaining the safety of the public. And between 2016 and 2018, more than 1,000 IP addresses were found to be associated with it.

Spyware

Spyware Surveillance Mobile Government

Inside Apple: How Apple’s attitude impacts security

Malwarebytes

OCTOBER 14, 2021

From a technical perspective, spyware—defined as software running on the device that surveils and tracks you—is not much of a thing, because of Apple’s restrictions on what apps can do, plus the fact that you can’t hide an app on iOS. iCloud email can be read, as well as notes, reminders, files on iCloud Drive, and more.

Spyware

Spyware Backups Passwords Authentication

Advanced threat predictions for 2022

SecureList

NOVEMBER 17, 2021

The Israeli Defense Forces (IDF) have claimed that threat actors have been using catfishing to lure Israeli soldiers into installing spyware. This year, the use of surveillance software developed by private vendors has come under the spotlight, as discussed above. And now, we turn our attention to the future.

Mobile

Mobile Surveillance Ransomware Government

The state of stalkerware in 2022

SecureList

MARCH 8, 2023

Taking into account the developments in digital stalking software over the past few years, the data suggests there is a trend towards stabilization. Other types of monitoring or spyware apps that fall outside of the Coalition’s definition are not included in the report statistics.

Mobile

Mobile Software Cybersecurity Accountability

The Hacker Mind Podcast: Surviving Stalkerware

ForAllSecure

SEPTEMBER 21, 2021

The Federal Trade Commission in the United States, banned an app called SpyPhone, and its CEO Scott Zuckerman, from operating in the surveillance industry. Some of those who bought the spyware were allegedly able to see live locations of the devices, view the targets emails, photos, web browsing history, text messages, video calls, etc.

Technology

Technology Software Surveillance Media

What is Malware? Definition, Purpose & Common Protections

eSecurity Planet

OCTOBER 21, 2022

From ransomware attacks locking businesses out of their data until they pay potentially millions of dollars to spyware tracking users’ every move through their infected device, the effects of malware can be devastating. Types of spyware are often classified based on what information they’re gathering. Need More Intel on Rootkits?

Malware

Malware Adware Spyware Antivirus

Security Affairs newsletter Round 223 – News of the week

Security Affairs

JULY 21, 2019

A flaw could have allowed hackers to take over any Instagram account in 10 minutes. Sprint revealed that hackers compromised some customer accounts via Samsung site. Experts spotted a rare Linux Desktop spyware dubbed EvilGnome. Israel surveillance firm NSO group can mine data from major social media. Pierluigi Paganini.

Small Business

Small Business Media Spyware DNS

Cyber Security Informer

Security Affairs newsletter Round 377

Android Spyware Monokle, developed by Russian defense contractor, used in targeted attacks

Trending Sources

Top Methods Use By Hackers to Bypass Two-Factor Authentication

Understanding and Recognizing Tech Abuse

The Zero Click, Zero Day iMessage Attack Against Journalists

Security Affairs newsletter Round 418 by Pierluigi Paganini – International edition

The State of Stalkerware in 2023–2024

Pegasus spyware has been here for years. We must stop ignoring it

Inside Apple: How Apple’s attitude impacts security

Advanced threat predictions for 2022

The state of stalkerware in 2022

The Hacker Mind Podcast: Surviving Stalkerware

What is Malware? Definition, Purpose & Common Protections

Security Affairs newsletter Round 223 – News of the week

Stay Connected