Advertising, Malware and Spyware - Cyber Security Informer

Multiple WhatsApp mods spotted containing the CanesSpy Spyware

Security Affairs

NOVEMBER 3, 2023

Kaspersky researchers are warning of multiple WhatsApp mods that embed a spyware module dubbed CanesSpy. Kaspersky researchers discovered multiple WhatsApp mods that embed a spyware module dubbed CanesSpy. The bad news is that, in some cases, threat actors spread malware-laced mods to infect as many devices as possible.

Spyware

Spyware Malware Mobile Advertising

Updated Android spyware GravityRAT steals WhatsApp Backups

Security Affairs

JUNE 16, 2023

An updated version of the Android remote access trojan GravityRAT can steal WhatsApp backup files and can delete files ESET researchers discovered an updated version of Android GravityRAT spyware that steals WhatsApp backup files and can delete files. The malware is distributed as the messaging apps BingeChat and Chatico.

Backups

Backups Spyware Malware Accountability

Android apps with spyware installed 421 million times from Google Play

Bleeping Computer

MAY 30, 2023

A new Android malware distributed as an advertisement SDK has been discovered in multiple apps, many previously on Google Play and collectively downloaded over 400 million times. [.]

Spyware

Spyware Advertising Malware Mobile

Sextortion campaign uses Goontact spyware to target Android and iOS users

Security Affairs

DECEMBER 16, 2020

Security experts spotted a new malware strain, named Goontact, that allows its operators to spy on both Android and iOS users. Security researchers from Lookout have discovered new spyware, dubbed Goontcat, that could target both Android and iOS users. The spyware is likely used as part of a sextortion campaign.

Spyware

Spyware Mobile Surveillance Malware

Apps with over 420 Million downloads from Google Play unveil the discovery of SpinOk spyware

Security Affairs

JUNE 1, 2023

Researchers discovered spyware, dubbed SpinOk, hidden in 101 Android apps with over 400 million downloads in Google Play. Upon executing the module, the malware-laced SDK connects to the C2 sending back a large amount of system information about the infected device. Info sent to the C2 includes data from sensors (e.g.

Spyware

Spyware Advertising Malware Marketing

XCSSET Mac spyware spreads via Xcode Projects

Security Affairs

AUGUST 15, 2020

A new Mac malware, tracked as XCSSET, spreads through Xcode projects and exploits two zero-day vulnerabilities, experts warn. XCSSET is a new Mac malware that spreads through Xcode projects and exploits two zero-day vulnerabilities to steal sensitive information from target systems and launch ransomware attacks.

Spyware

Spyware Malware Advertising Cryptocurrency

Mollitiam Industries is the Newest Cyberweapons Arms Manufacturer

Schneier on Security

JUNE 23, 2021

Its spyware is also said to be equipped with a keylogger, which means every keystroke made on an infected device — including passwords, search queries and messages sent via encrypted messaging apps — can be tracked and monitored.

Manufacturing

Manufacturing Spyware Surveillance Marketing

Moroccan journalist targeted with network injection attacks using NSO Group ‘s spyware

Security Affairs

JUNE 22, 2020

Researchers at Amnesty International collected evidence that a Moroccan journalist was targeted with network injection attacks using NSO Group ‘s spyware. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Spyware

Spyware Surveillance Mobile Advertising

XLoader, a $49 spyware that could target both Windows and macOS devices

Security Affairs

JULY 21, 2021

Check Point Research (CPR) experts have spotted a cheap malware, dubbed XLoader variant, which was upgraded to target both Windows and macOS PCs. XLoader is a very cheap malware strain that is based on the popular Formbook Windows malware. On this day, XLoader was advertised for sale in one of the underground groups.”

Spyware

Spyware Malware Cybercrime Advertising

Experts found Joker Spyware in 24 apps in the Google Play store

Security Affairs

SEPTEMBER 8, 2019

Security experts at Google have removed from Google Play 24 apps because they were infected with a new spyware tracked as “the Joker.” ” Google has removed from Google Play 24 apps because they were infected with a new spyware tracked as “the Joker.” continues the expert. ” states the analysis.

Spyware

Spyware Advertising Malware Cryptocurrency

Orcus RAT Author Charged in Malware Scheme

Krebs on Security

NOVEMBER 13, 2019

In July 2016, KrebsOnSecurity published a story identifying a Toronto man as the author of the Orcus RAT , a software product that’s been marketed on underground forums and used in countless malware attacks since its creation in 2015. This week, Canadian authorities criminally charged him with orchestrating an international malware scheme.

Malware

Malware Advertising Marketing System Administration

Android “System Update” malware steals photos, videos, GPS location

Malwarebytes

APRIL 1, 2021

A newly discovered piece of Android malware shares the same capabilities found within many modern stalkerware-type apps—it can swipe images and video, rifle through online searches, record phone calls and video, and peer into GPS location data—but the infrastructure behind the malware obscures its developer’s primary motivations.

Malware

Malware Spyware Advertising Surveillance

'Blatantly Obvious': Spyware Offered to Cyberattackers via PyPI Python Repository

Dark Reading

APRIL 11, 2023

Malware-as-a-service hackers from Spain decided to use a public code repository to openly advertise their wares.

Spyware

Spyware Advertising Malware

Credential-stealing malware disguises itself as Telegram, targets social media users

Malwarebytes

APRIL 11, 2022

A credential-stealing Windows-based malware, Spyware.FFDroider , is after social media credentials and cookies, according to researchers at ThreatLabz. The spyware is offered on download sites pretending to be installers for freeware and cracked versions of paid software. The version analyzed by the researchers was packed with Aspack.

Media

Media Malware Spyware Accountability

What is Malware?

Identity IQ

APRIL 29, 2021

What is Malware? . Malware is an umbrella term used to describe any malicious software designed to harm, exploit, or extract sensitive data from a system, device, or network. Why do Cybercriminals Use Malware? How does Malware Spread? Types of Malware. Warning Signs Cour computer Is Infected by Malware.

Malware

Malware Adware Spyware Advertising

Mandrake, a high sophisticated Android spyware used in targeted attacks

Security Affairs

MAY 18, 2020

Security experts discovered a highly sophisticated Android spyware platform, dubbed Mandrake, that remained undetected for four years. Researchers from Bitdefender discovered a high-sophisticated Android spyware platform dubbed Mandrake, it was involved in highly targeted attacks against specific devices. ” continues the report.

Spyware

Spyware Malware Advertising Banking

GravityRAT malware also targets Android and macOS

Security Affairs

OCTOBER 19, 2020

Researchers spotted new variants of the Windows GravityRAT spyware that now can also infect Android and macOS devices. Researchers from Kaspersky Lab have spotted new variants of the GravityRAT malware that now can be also used to infect Android and macOS devices. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware

Malware Computers and Electronics Spyware Advertising

Earth Empusa targets minority group with Android ActionSpy spyware

Security Affairs

JUNE 15, 2020

The Earth Empusa threat group is distributing new Android spyware, dubbed ActionSpy, through watering hole attacks to targets Turkic minority group. ActionSpy, which may have been around since 2017, is an Android spyware that allows the attacker to collect information from the compromised devices,” reads the report published by Trend Micro.

Spyware

Spyware Advertising Encryption Phishing

Joker malware still able to bypass Google Play Store checks

Security Affairs

FEBRUARY 22, 2020

The infamous Joker malware has found a way to bypass the security checks to be published in the official Play Store, new clicker was found by experts. The spyware is able to steal SMS messages, contact lists, and device information and to sign victims up for premium service subscriptions. wpaper com. vailsmsplus.

Malware

Malware Spyware Advertising Mobile

New FinFisher spyware used to spy on iOS and Android users in 20 countries

Security Affairs

JULY 11, 2019

Malware researchers from Kaspersky have discovered new and improved versions of the infamous FinFisher spyware used to infect both Android and iOS devices. Experts at Kaspersky have discovered a new improved variant of the FinFisher spyware used to spy on both iOS and Android users in 20 countries. Pierluigi Paganini.

Spyware

Spyware Mobile Advertising Architecture

Regin spyware involved in attack against the Russian tech giant Yandex

Security Affairs

JUNE 28, 2019

Allegedly Western nation-state actors breached the systems of Russian tech giant Yandex in 2018, the attack involved a new variant of the Regin malware. According to the Reuters, Western state-sponsored hackers breached the systems of the Russian tech giant Yandex in 2018, the attack involved a new variant of the Regin malware.

Spyware

Spyware Malware Advertising Authentication

Exodus, a government malware that infected innocent victims

Security Affairs

MARCH 30, 2019

Security researchers have found a new government spyware, tracked as Exodus, that was distributed through the Google Play Store. The malware was tracked as Exodus, after the name of the command and control servers the malicious apps connected to.

Government

Government Malware Spyware Surveillance

New Shlayer Mac malware spreads via poisoned search engine results

Security Affairs

JUNE 21, 2020

Shlayer Mac malware is back, the Mac threat is now spreading through new black SEO operations. Researchers spotted a new version of the Shlayer Mac malware that is spreading via poisoned Google search results. The malware can be used to download other malicious payloads, including malware or adware. up to 10.14.3.

Engineering

Engineering Malware Adware Antivirus

Google removed 1.7K+ Joker Malware infected apps from its Play Store

Security Affairs

JANUARY 12, 2020

Google revealed it successfully removed more than 1,700 apps from the Play Store over the past three years that had been infected with the Joker malware. Google provided technical details of its activity against the Joker malware (aka Bread) operation during the last few years.

Malware

Malware Spyware Advertising Mobile

Experts spotted a rare Linux Desktop spyware dubbed EvilGnome

Security Affairs

JULY 18, 2019

Intezer spotted a new piece of Linux malware dubbed EvilGnome because it disguises as a Gnome extension. The researchers attribute the spyware to the Russia-linked and Gamaredon Group. The attack starts with spear-phishing emails containing weaponized attachments, the malware is distributed via Russian hosting providers.

Spyware

Spyware Malware Advertising Cyber Attacks

App tainted with Ahmyst Open-source spyware appeared on Google Play Store twice

Security Affairs

AUGUST 22, 2019

The popular malware researcher Lukas Stefanko from ESET discovered that a malicious spyware, built on the AhMyth open-source espionage tool, was uploaded on Google Play twice over two weeks, bypassing Google security checks. “ ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Spyware

Spyware Advertising Malware Mobile

New TA886 group targets companies with custom Screenshotter malware

Security Affairs

FEBRUARY 10, 2023

The TA886 hacking group targets organizations in the United States and Germany with new spyware tracked as Screenshotter. A recently discovered threat actor, tracked as TA886 by security firm Proofpoint, is targeting organizations in the United States and Germany with new malware dubbed Screenshotter.

Malware

Malware Phishing Spyware Cybercrime

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 25, 2024

Apple created post-quantum cryptographic protocol PQ3 for iMessage Russian hacker is set to face trial for the hack of a local power grid Microsoft released red teaming tool PyRIT for Generative AI CISA orders federal agencies to fix ConnectWise ScreenConnect bug in a week FTC charged Avast with selling users’ browsing data to advertising companies (..)

Spyware

Spyware Cyber Insurance Hacking Advertising

New Coronavirus-themed malspam campaign delivers FormBook Malware

Security Affairs

MARCH 8, 2020

Experts uncovered a new Coronavirus (COVID-19 ) -themed campaign that is distributing a malware downloader that delivers the FormBook information-stealing Trojan. Experts at MalwareHunterTeam uncovered a new malspam campaign exploiting the fear in the Coronavirus (COVID-19) to deliver malware. states the analysis published by FireEye.

Malware

Malware Scams Social Engineering Phishing

Android Spyware Monokle, developed by Russian defense contractor, used in targeted attacks

Security Affairs

JULY 25, 2019

Researchers at Lookout discovered a new mobile spyware dubbed Monokle that was developed by a Russian defense contractor. Experts at Lookout discovered a new Android mobile spyware in the wild, dubbed Monokle, that was developed by a Russian defense contractor named Special Technology Centre Ltd. ( Pierluigi Paganini.

Spyware

Spyware Surveillance Mobile Advertising

North Korea-Linked APT Group Kimsuky spotted using new malware

Security Affairs

NOVEMBER 2, 2020

North Korea-linked APT group Kimsuky was recently spotted using a new piece of malware in attacks on government agencies and human rights activists. The new malware appears to have been developed recently, but threat actors might have used Backdating, or timestomping to thwart analysis attempts (anti-forensics).

Malware

Malware Spyware Advertising Government

Top 10 Malware Strains of 2021

SecureWorld News

AUGUST 8, 2022

Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Cyber Security Centre (ACSC) released a joint Cybersecurity Advisory (CSA) providing details on the top malware strains of 2021. The top malware strains in 2021 included remote access Trojans (RATs), banking Trojans, information stealers, and ransomware.

Malware

Malware Banking Penetration Testing Healthcare

Joker malware apps bypassed Google’s Play Store security checks

Security Affairs

JULY 9, 2020

Check Point research discovered that the Joker (aka Bread) Android malware once again has bypassed protections implemented by Google for its Play Store. “Check Point’s researchers recently discovered a new variant of the Joker Dropper and Premium Dialer spyware in Google Play. . Pierluigi Paganini.

Malware

Malware Spyware Mobile Advertising

Mobile Malware: Threats and Solutions

eSecurity Planet

AUGUST 11, 2021

As users have increasingly moved from desktop operating systems to mobile devices as their primary form of computing, cyber attackers have taken notice and malware has followed. Mobile malware statistics. More than 3 million of those attacks represented new types of malware. Types of mobile malware. ransomware?

Mobile

Mobile Malware Adware Banking

New Android BlackRock malware targets hundreds of apps

Security Affairs

JULY 16, 2020

Researchers spotted a new Android banking trojan dubbed BlackRock malware that steals credentials and credit card data from hundreds of apps. The BlackRock malware borrows the code from the Xerxes banking malware, which is a strain of the popular LokiBot Android trojan.

Malware

Malware Banking Mobile Spyware

Mobile malware evolution 2020

SecureList

MARCH 1, 2021

The word “covid” in various combinations was typically used in the names of packages hiding spyware and banking Trojans, adware or Trojan droppers. The mobile malware Trojan-Ransom.AndroidOS.Agent.aq Last year was notable for both malware and adware, the two very close in terms of capabilities.

Mobile

Mobile Malware Adware Banking

Information Stealing Malware on the Rise, Uptycs Study Shows

SecureWorld News

JULY 27, 2023

A new study from Uptycs has uncovered an increase in the distribution of information stealing malware. Newly discovered stealer families include modules that specifically steal logs from MFA applications, like the Rhadamanthys malware. Examining the dark web reveals that infostealer malware has become increasingly widespread.

Malware

Malware Social Engineering Passwords Spyware

Google updates policies to ban any ads for surveillance solutions and services

Security Affairs

JULY 12, 2020

The move aims at fighting the advertising of any form of surveillance. “In August 2020, the Google Ads Enabling Dishonest Behavior policy will be updated to clarify restrictions on advertising for spyware and surveillance technology.”reads Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Surveillance

Surveillance Spyware Advertising Marketing

Agent Tesla includes new password-stealing capabilities from browsers and VPNs

Security Affairs

AUGUST 12, 2020

Agent Tesla is a spyware that is used to spy on the victims by collecting keystrokes, system clipboard, screenshots, and credentials from the infected system. To do this, the spyware creates different threads and timer functions in the main function. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. .

Passwords

Passwords Spyware VPN Malware

Scranos – A Cross Platform, Rootkit-Enabled Spyware rapidly spreading

Security Affairs

APRIL 16, 2019

Scranos is a powerful cross-platform rootkit-enabled spyware discovered while investigating malware posing as legitimate software like video players, drivers and even anti-virus products. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – scranos malware, malware).

Spyware

Spyware Adware Malware Accountability

Evil Telegram campaign: Trojanized Telegram apps found on Google Play

Security Affairs

SEPTEMBER 10, 2023

Researchers from Kaspersky discovered several Telegram mods on the Google Play Store that contained spyware, the campaign was tracked as Evil Telegram. The vendor advertised the applications are the fastest apps that use a distributed network of data processing centers around the world. . ” concludes the analysis.

Spyware

Spyware Advertising Encryption Hacking

Understanding the Different Types and How to Detect Them

CyberSecurity Insiders

APRIL 20, 2023

Spyware is a type of malicious software designed to gather data from a computer system without the user’s knowledge or consent. In this article, we’ll explore the different types of spyware and how you can detect them on your computer. To detect keyloggers on your computer, you can use an anti-spyware program.

Adware

Adware Spyware Antivirus Passwords

Q&A: Here’s why Android users must remain vigilant about malicious apps, more so than ever

The Last Watchdog

MAY 8, 2019

And earlier this year, three popular “ selfie beauty apps ”– Pro Selfie Beauty Camera, Selfie Beauty Camera Pro and Pretty Beauty Camera 2019 – accessible in Google Play Store were revealed to actually be tools to spread adware and spyware. Adware are unwanted ads that redirect you to sketchy webpages, and spyware collects your data.

Adware

Adware Spyware Mobile Banking

Unknown FinSpy Mac and Linux versions found in Egypt

Security Affairs

SEPTEMBER 27, 2020

Experts from Amnesty International uncovered a surveillance campaign that targeted Egyptian civil society organizations with a new version of FinSpy spyware. The binaries are obfuscated and do some checks to detect if the spyware is running in a Virtual Machine. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Spyware

Spyware Surveillance Mobile Advertising

Multiple WhatsApp mods spotted containing the CanesSpy Spyware

Updated Android spyware GravityRAT steals WhatsApp Backups

Trending Sources

Android apps with spyware installed 421 million times from Google Play

Sextortion campaign uses Goontact spyware to target Android and iOS users

Apps with over 420 Million downloads from Google Play unveil the discovery of SpinOk spyware

XCSSET Mac spyware spreads via Xcode Projects

Mollitiam Industries is the Newest Cyberweapons Arms Manufacturer

Moroccan journalist targeted with network injection attacks using NSO Group ‘s spyware

XLoader, a $49 spyware that could target both Windows and macOS devices

Experts found Joker Spyware in 24 apps in the Google Play store

Orcus RAT Author Charged in Malware Scheme

Android “System Update” malware steals photos, videos, GPS location

'Blatantly Obvious': Spyware Offered to Cyberattackers via PyPI Python Repository

Credential-stealing malware disguises itself as Telegram, targets social media users

What is Malware?

Mandrake, a high sophisticated Android spyware used in targeted attacks

GravityRAT malware also targets Android and macOS

Earth Empusa targets minority group with Android ActionSpy spyware

Joker malware still able to bypass Google Play Store checks

New FinFisher spyware used to spy on iOS and Android users in 20 countries

Regin spyware involved in attack against the Russian tech giant Yandex

Exodus, a government malware that infected innocent victims

New Shlayer Mac malware spreads via poisoned search engine results

Google removed 1.7K+ Joker Malware infected apps from its Play Store

Experts spotted a rare Linux Desktop spyware dubbed EvilGnome

App tainted with Ahmyst Open-source spyware appeared on Google Play Store twice

New TA886 group targets companies with custom Screenshotter malware

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

New Coronavirus-themed malspam campaign delivers FormBook Malware

Android Spyware Monokle, developed by Russian defense contractor, used in targeted attacks

North Korea-Linked APT Group Kimsuky spotted using new malware

Top 10 Malware Strains of 2021

Joker malware apps bypassed Google’s Play Store security checks

Mobile Malware: Threats and Solutions

New Android BlackRock malware targets hundreds of apps

Mobile malware evolution 2020

Information Stealing Malware on the Rise, Uptycs Study Shows

Google updates policies to ban any ads for surveillance solutions and services

Agent Tesla includes new password-stealing capabilities from browsers and VPNs

Scranos – A Cross Platform, Rootkit-Enabled Spyware rapidly spreading

Evil Telegram campaign: Trojanized Telegram apps found on Google Play

Understanding the Different Types and How to Detect Them

Q&A: Here’s why Android users must remain vigilant about malicious apps, more so than ever

Unknown FinSpy Mac and Linux versions found in Egypt

Stay Connected