Authentication, Spyware and Surveillance

Experts found a macOS version of the sophisticated LightSpy spyware

Security Affairs

MAY 30, 2024

Researchers spotted a macOS version of the LightSpy surveillance framework that has been active in the wild since at least January 2024. Researchers from ThreatFabric discovered a macOS version of the LightSpy spyware that has been active in the wild since at least January 2024.

Spyware

Spyware Malware Surveillance Mobile

Victim records deleted after spyware vendor compromised

Malwarebytes

AUGUST 30, 2023

Anonymous hackers have breached the servers of spyware app “WebDetetive ” , accessing the user database. Spyware apps are installed on a potential victim’s phone without permission and lurk invisibly, collecting data and sending it back to the app operator. Use an antivirus on your phone.

Spyware

Spyware Mobile Antivirus Software

Adobe, Apple, Google & Microsoft Patch 0-Day Bugs

Krebs on Security

SEPTEMBER 12, 2023

7, researchers at Citizen Lab warned they were seeing active exploitation of a “zero-click,” zero-day flaw to install spyware on iOS devices without any interaction from the victim. Citizen Lab says the bug it discovered was being exploited to install spyware made by the Israeli cyber surveillance company NSO Group.

Spyware

Spyware Software Surveillance Authentication

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Top Methods Use By Hackers to Bypass Two-Factor Authentication

Hacker's King

MAY 20, 2023

Two-factor authentication (2FA) has become an essential security measure in the digital age. By impersonating the authenticated user, they can bypass the 2FA process altogether. Call forwarding, Botnets, Spyware: Securing Devices and Networks More sophisticated methods of bypassing 2FA involve compromising the user’s device.

Authentication

Authentication Social Engineering Spyware Engineering

A week in security (June 26 - July 2)

Malwarebytes

JULY 2, 2023

Last week on Malwarebytes Labs: A proxyjacking campaign is looking for vulnerable SSH servers New technique can defeat voice authentication "after only six tries" "Free" Evil Dead Rise movie scam lurks in Amazon listings Spyware app LetMeSpy hacked, tracked user data posted online Online safety tips for LGBTQIA+ communities Top contenders in Endpoint (..)

Spyware

Spyware Surveillance IoT Scams

Security Affairs newsletter Round 377

Security Affairs

AUGUST 7, 2022

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5%

Spyware

Spyware Manufacturing Small Business Surveillance

Second-ever UEFI rootkit used in North Korea-themed attacks

Security Affairs

OCTOBER 5, 2020

The experts were investigating several suspicious UEFI firmware images when discovered four components, some of which were borrowing the source code a Hacking Team spyware. In 2015, the hacker who breached the systems of the Italian surveillance firm Hacking Team leaked a 400GB package containing hacking tools and exploits codes.

Firmware

Firmware Spyware Surveillance Hacking

Security Affairs newsletter Round 435 by Pierluigi Paganini – International edition

Security Affairs

SEPTEMBER 3, 2023

LockBit ransomware gang hit the Commission des services electriques de Montréal (CSEM) Social engineering attacks target Okta customers to achieve a highly privileged role Talos wars of customizations of the open-source info stealer SapphireStealer UNRAVELING EternalBlue: inside the WannaCry’s enabler Researchers released a free decryptor for the Key (..)

Social Engineering

Social Engineering Spyware Data breaches Surveillance

Understanding and Recognizing Tech Abuse

SecureWorld News

AUGUST 16, 2023

A common example of this is surveillance. We normalize the use of surveilling and tracking young people through "parentware" or spyware (software which allows someone to see what someone else is doing on their device) and apps which enable the tracking of someone's location. Use good passwords.

Surveillance

Surveillance Technology Accountability Spyware

Security Affairs newsletter Round 370 by Pierluigi Paganini

Security Affairs

JUNE 20, 2022

US DoJ announced to have shut down the Russian RSOCKS Botnet MaliBot Android Banking Trojan targets Spain and Italy Chinese DriftingCloud APT exploited Sophos Firewall Zero-Day before it was fixed Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company A Microsoft 365 feature can ransom files on SharePoint and OneDriveCould (..)

Spyware

Spyware DNS Surveillance Ransomware

Security Affairs newsletter Round 418 by Pierluigi Paganini – International edition

Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches

Data breaches Malware Mobile Spyware

Inside Apple: How Apple’s attitude impacts security

Malwarebytes

OCTOBER 14, 2021

From a technical perspective, spyware—defined as software running on the device that surveils and tracks you—is not much of a thing, because of Apple’s restrictions on what apps can do, plus the fact that you can’t hide an app on iOS. Photos synced up to iCloud can be viewed. You might say, “But wait!

Spyware

Spyware Backups Passwords Authentication

Advanced threat predictions for 2023

SecureList

NOVEMBER 14, 2022

The cyber-offense ecosystem still appears to be shaken by the sudden demise of NSO Group; at the same time, these activities indicate to us that we’ve only seen the tip of the iceberg when it comes to commercial-grade mobile surveillance tooling. We believe that research into mail software vulnerabilities is only getting started.

Firmware

Firmware Surveillance Mobile Telecommunications

Research: nearly all of your messaging apps are secure

Security Affairs

DECEMBER 22, 2020

This includes Israeli spyware that could install surveillance software on a target’s phone by simply calling them through WhatsApp. And that’s simply the nature of software – all programs have bugs, some more serious than others. One famous example is WhatsApp, which has had numerous vulnerabilities throughout the years.

Encryption

Encryption Spyware Surveillance Software

Cyber Security Informer

Experts found a macOS version of the sophisticated LightSpy spyware

Victim records deleted after spyware vendor compromised

Webinars

Trending Sources

Adobe, Apple, Google & Microsoft Patch 0-Day Bugs

Webinars

Top Methods Use By Hackers to Bypass Two-Factor Authentication

A week in security (June 26 - July 2)

Security Affairs newsletter Round 377

Second-ever UEFI rootkit used in North Korea-themed attacks

Security Affairs newsletter Round 435 by Pierluigi Paganini – International edition

Understanding and Recognizing Tech Abuse

Security Affairs newsletter Round 370 by Pierluigi Paganini

Security Affairs newsletter Round 418 by Pierluigi Paganini – International edition

Inside Apple: How Apple’s attitude impacts security

Advanced threat predictions for 2023

Research: nearly all of your messaging apps are secure

Stay Connected