Heimadal Security

APRIL 19, 2022

Citizen Lab’s digital threat experts have identified a new zero-click iMessage attack that may be used to install NSO […]. The post A Zero-Click Vulnerability Is Exploited by NSO Spyware appeared first on Heimdal Security Blog. What Happened?

Spyware 118

Spyware Government Malware Cybersecurity 118

Malwarebytes

SEPTEMBER 27, 2023

Recent events have demonstrated very clearly just how persistent and wide-spread the Pegasus spyware is. The vulnerabilities were discovered as zero-days by CitizenLab, while checking the device of an individual employed by a Washington DC-based civil society organization with international offices.

Spyware 132

Spyware Surveillance Mobile Software 132

Security Affairs

APRIL 19, 2022

Researchers reported that threat actors leveraged a new zero-click iMessage exploit to install NSO Group Pegasus on iPhones belonging to Catalans. The previously undocumented zero-click iMessage exploit HOMAGE works in attacks against iOS versions before 13.2. and before iOS 13.5.1.”

Spyware 92

Spyware Surveillance Government Software 92

Security Affairs

APRIL 23, 2023

Abandoned Eval PHP WordPress plugin abused to backdoor websites CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog At least 2 critical infrastructure orgs breached by North Korea-linked hackers behind 3CX attack American Bar Association (ABA) suffered a data breach,1.4

Spyware 72

Spyware Ransomware Malware Data breaches 72

Security Boulevard

SEPTEMBER 30, 2021

A look at the nature and effects of legal, advanced spyware on application security. Pegasus is an advanced spyware that exploits vulnerable mobile apps to gain a foothold on iPhone and Android devices. Pegasus is the creation of the NSO Group , an Israeli firm that licenses it to governments to perform surveillance.

Spyware 52

Spyware Government Surveillance Mobile 52

Security Affairs

MAY 23, 2022

Google’s Threat Analysis Group (TAG) uncovered campaigns targeting Android users with five zero-day vulnerabilities. Google’s Threat Analysis Group (TAG) researchers discovered three campaigns, between August and October 2021, targeting Android users with five zero-day vulnerabilities.

Spyware 133

Spyware Surveillance Government Banking 133

Google Security

JULY 27, 2023

Maddie Stone, Security Researcher, Threat Analysis Group (TAG) This is Google’s fourth annual year-in-review of 0-days exploited in-the-wild [ 2021 , 2020 , 2019 ] and builds off of the mid-year 2022 review. Attackers didn’t need 0-day exploits and instead were able to use n-days that functioned as 0-days. Bug collisions are high.

Spyware 92

Spyware Manufacturing Internet Internet 92