Krebs on Security

SEPTEMBER 4, 2018

Less than a week ago, security researcher Nitish Shah directed KrebsOnSecurity to an open database on the Web that allowed anyone to query up-to-the-minute mSpy records for both customer transactions at mSpy’s site and for mobile phone data collected by mSpy’s software. The database required no authentication.

Spyware 182

Spyware Mobile Advertising Software 182

Malwarebytes

FEBRUARY 13, 2024

In 2022, tech publication TechCrunch discovered that TheTruthSpy and other spyware apps share a common Insecure Direct Object Reference (IDOR) vulnerability, CVE-2022-0732. The publications described the bug as “extremely easy to exploit, and grants unfettered remote access to all of the data collected from a victim’s Android device.”

Spyware 125

Spyware Data collection Malware Hacking 125

Security Affairs

SEPTEMBER 18, 2020

Every third email, meanwhile, contained spyware , which is used by threat actors to steal payment data or other sensitive info to then put it on sale in the darknet or blackmail its owner. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, ransomware).

Phishing 106

Phishing Ransomware Spyware Banking 106

Malwarebytes

FEBRUARY 6, 2023

Data collected by the Internet Storm Center dug into “Survival Time History”, which is “calculated as the average time between reports for an average target IP address. The pop up blocker in particular was a big help with the proliferation of adware and spyware plugging into advertising networks.

Internet 69

Internet Internet Adware Spyware 69

Security Affairs

MARCH 14, 2019

The domain name used for the sniffer’s codes storage and as a gate for stolen data collection was registered on May 7, 2018. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – payment data, cybercrime ).

eCommerce 89

eCommerce Marketing Data breaches Advertising 89

Malwarebytes

JANUARY 28, 2021

The complaints themselves related to third-party advertising partners. Additional Personal Data we receive about you, including: Third-Party Tracking Technologies. Where this all goes wrong for Grindr, is that NDPA object to how consent was gained for the various advertising partners. That doesn’t sound good.

Advertising 56

Advertising Data privacy Adware Spyware 56

SecureList

FEBRUARY 16, 2023

As a result, the person gets an automated reply from an official address of a legitimate organization, containing unsolicited advertisements or a scam link. For example, spammers actively advertised services of a company transporting people to Russia. Most scam messages offer a compensation or prize to the recipient.

Phishing 90

Phishing Scams Accountability Energy and Utilities 90