Malwarebytes

MAY 24, 2022

The Google Threat Analysis Group (TAG) has revealed that of the nine zero-day vulnerabilities affecting Chrome, Android, Apple and Microsoft that it reported in 2021, five were in use by a single commercial surveillance company. Patches for the five vulnerabilities TAG mentions in its blog are available. Government spyware.

Spyware 134

Spyware Surveillance Government Marketing 134

Security Affairs

APRIL 1, 2023

CISA has added nine flaws to its Known Exploited Vulnerabilities catalog, including bugs exploited by commercial spyware on mobile devices. The exploits were used to install commercial spyware and malicious apps on targets’ devices. The experts pointed out that both campaigns were limited and highly targeted.

Spyware 98

Spyware Surveillance Mobile Education 98

Security Affairs

APRIL 13, 2022

According to a report published by Reuters, an Israeli surveillance software was used to spy on senior officials in the European Commission. One of the officials targeted with the infamous spyware there is Didier Reynders, a senior Belgian statesman who has served as the European Justice Commissioner since 2019. Pierluigi Paganini.

Surveillance 105

Surveillance Software Spyware Hacking 105

Security Affairs

MAY 22, 2024

A researcher discovered a consumer-grade spyware app on the check-in systems of at least three Wyndham hotels across the US. The security researcher Eric Daigle discovered a commercial spyware app, called pcTattletale, on the check-in systems of at least three Wyndham hotels across the US, TechCrunch first reported.

Spyware 139

Spyware Surveillance Software Hacking 139

Heimadal Security

JULY 19, 2021

No less than 180 journalists around the world have been targeted by clients of the cyber-surveillance company NSO Group. The post Pegasus Spyware Targets Phones of Journalists, Activists, and Politicians appeared first on Heimdal Security Blog. What Happened?

Spyware 105

Spyware Surveillance Software Cybersecurity 105

Security Affairs

APRIL 19, 2022

Researchers from Citizen Lab have published a report detailing the use of a new zero-click iMessage exploit, dubbed HOMAGE, to install the NSO Group Pegasus spyware on iPhones belonging to Catalan politicians, journalists, academics, and activists. To nominate, please visit:? Follow me on Twitter: @securityaffairs and Facebook.

Spyware 110

Spyware Surveillance Government Software 110

Heimadal Security

OCTOBER 11, 2021

In a report published last week, Amnesty International revealed the connection between an Indian cybersecurity firm and an Android spyware program that was meant to target a well-known Togolese human rights defender.

Spyware 105

Spyware Surveillance Cybersecurity 105

Security Affairs

MAY 1, 2023

Researchers at the Lookout Threat Lab have discovered a new Android surveillance spyware, dubbed BouldSpy, that was used by the Law Enforcement Command of the Islamic Republic of Iran (FARAJA). However, much of the victim data points to its broader usage, which indicates targeted surveillance efforts towards minorities within Iran.”

Surveillance 98

Surveillance Malware Spyware Accountability 98

Heimadal Security

SEPTEMBER 29, 2021

The FinFisher surveillance solution was developed by the Gamma Group but it also comes with malware-like capabilities often found in spyware strains. The post Windows Boot Manager Hijacked by FinFisher Malware appeared first on Heimdal Security Blog. Researchers Investigated […].

Malware 138

Malware Spyware Surveillance Government 138

Security Affairs

MARCH 29, 2023

Google’s Threat Analysis Group (TAG) discovered several exploit chains targeting Android, iOS, and Chrome to install commercial spyware. The exploit chains were used to install commercial spyware and malicious apps on targets’ devices. This was recently highlighted by blog posts from Project Zero and Github Security Lab.”

Spyware 98

Spyware Surveillance Firmware Internet 98

Security Affairs

OCTOBER 30, 2019

WhatsApp sued Israeli surveillance firm NSO Group, accusing it of using a flaw in its messaging service to conduct cyberespionage on journalists and activists. WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks against its users. reads the description provided by Facebook.

Surveillance 75

Surveillance Technology Spyware Mobile 75

Security Affairs

OCTOBER 5, 2020

The experts were investigating several suspicious UEFI firmware images when discovered four components, some of which were borrowing the source code a Hacking Team spyware. In 2015, the hacker who breached the systems of the Italian surveillance firm Hacking Team leaked a 400GB package containing hacking tools and exploits codes.

Firmware 145

Firmware Spyware Surveillance Hacking 145

Security Affairs

APRIL 18, 2023

Citizen Lab reported that Israeli surveillance firm NSO Group used at least three iOS zero-click exploits in 2022. A new report from Citizen Lab states that the Israeli surveillance firm NSO Group used at least three zero-click zero-day exploits to deliver its Pegasus spyware. ” reads the report. and 14.4.2,

Surveillance 98

Surveillance Spyware Education Risk 98

CyberSecurity Insiders

MAY 19, 2021

This blog was written by an independent guest blogger. People are increasingly becoming aware of the threats posed by hackers who infiltrate devices using viruses, spyware and malware. In this article, we will talk about this malicious software, which allows a remote user to surveil all activities on another user’s device.

Spyware 98

Spyware Surveillance Cybercrime Software 98

Malwarebytes

APRIL 1, 2021

It does not have a catchy name, but because of its capabilities and its method for going unnoticed, we are calling it Android/Trojan.Spy.FakeSysUpdate, or in this blog, “FakeSysUpdate” for short. Whether for malicious information gathering or for non-consensual surveillance of a romantic partner, these invasions of privacy are flat-out wrong.

Malware 145

Malware Spyware Advertising Surveillance 145

Heimadal Security

DECEMBER 20, 2021

Meta published a report on the 16th of December, named “Threat Report on the Surveillance-for-Hire Industry”, where it announced that it banned six alleged entities and a Chinese law enforcement supplier that provided services on surveillance-for-hire targeting 50 K people.

Surveillance 97

Surveillance Threat Reports Spyware Cybersecurity 97

Security Affairs

JUNE 20, 2022

sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog”). Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. To nominate, please visit:?. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Spyware 108

Spyware DNS Surveillance Ransomware 108

Security Affairs

NOVEMBER 20, 2018

Security researchers at F-Secure have recently uncovered a small spam campaign aimed at delivering spyware to Mac users that use Exodus wallet. “From the website, the developer described their software as a cloud-based surveillance and remote spy tool. ” states the blog post published by F-Secure. update.zip.” .

Cryptocurrency 105

Cryptocurrency Spyware Surveillance Advertising 105

Security Affairs

APRIL 23, 2023

Abandoned Eval PHP WordPress plugin abused to backdoor websites CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog At least 2 critical infrastructure orgs breached by North Korea-linked hackers behind 3CX attack American Bar Association (ABA) suffered a data breach,1.4

Spyware 98

Spyware Ransomware Malware Data breaches 98

Security Affairs

JUNE 26, 2022

SecurityAffairs awarded as Best European Personal Cybersecurity Blog 2022 Crooks are using RIG Exploit Kit to push Dridex instead of Raccoon stealer Flagstar Bank discloses a data breach that impacted 1.5

Small Business 98

Small Business Spyware Data breaches Surveillance 98

SecureList

NOVEMBER 30, 2021

Based on forensic analysis of numerous mobile devices, Amnesty International’s Security Lab found that the software was repeatedly used in an abusive manner for surveillance. We confirmed that several infrastructures on the blog overlapped with our previously published reporting about Lazarus group’s ThreatNeedle cluster.

Malware 138

Malware Mobile Spyware Surveillance 138

Hackology

NOVEMBER 11, 2023

The emergence of Kamran spyware, targeting users of a regional news website, has raised concerns among cybersecurity experts. Distributed through a possible watering-hole attack on the Hunza News website , the spyware prompts users to grant permissions, allowing access to sensitive data.

Spyware 45

Spyware Malware Risk Mobile 45

Security Affairs

SEPTEMBER 28, 2019

The scary part of the story is that a private surveillance firm was aware of the zero-day flaw since at least two years and is actively exploiting the SimJacker vulnerability to spy on mobile users in several countries. ” reads a blog post published by the researcher.

Hacking 111

Hacking Risk Mobile Advertising 111

SecureList

APRIL 27, 2021

During routine monitoring of detections for FinFisher spyware tools, we discovered traces that point to recent FinFly Web deployments. In November and December 2020, two public blog posts were published about this campaign. Domestic Kitten is a threat group mainly known for its mobile backdoors.

Malware 145

Malware Government Spyware Social Engineering 145

Malwarebytes

OCTOBER 14, 2021

Screenshot of David Tokarev’s blog, disclosing three 0-day vulnerabilities. From a technical perspective, spyware—defined as software running on the device that surveils and tracks you—is not much of a thing, because of Apple’s restrictions on what apps can do, plus the fact that you can’t hide an app on iOS.

Spyware 124

Spyware Backups Passwords Authentication 124

SecureList

NOVEMBER 14, 2022

Last June, Google’s TAG team released a blog post documenting attacks on Italian and Kazakh users that they attribute to RCS Lab, an Italian offensive software vendor. In 2022, the GReAT team tracked several threat actors leveraging SilentBreak’s toolset as well as a commercial Android spyware we named MagicKarakurt.

Firmware 127

Firmware Surveillance Mobile Telecommunications 127

Security Boulevard

SEPTEMBER 30, 2021

A look at the nature and effects of legal, advanced spyware on application security. Pegasus is an advanced spyware that exploits vulnerable mobile apps to gain a foothold on iPhone and Android devices. Pegasus is the creation of the NSO Group , an Israeli firm that licenses it to governments to perform surveillance.

Spyware 52

Spyware Government Surveillance Mobile 52

Malwarebytes

SEPTEMBER 27, 2023

Recent events have demonstrated very clearly just how persistent and wide-spread the Pegasus spyware is. The exploit chain based on these vulnerabilities was capable of compromising devices without any interaction from the victim and were reportedly used by the NSO Group to deliver its infamous Pegasus spyware.

Spyware 143

Spyware Surveillance Mobile Software 143

SecureList

OCTOBER 26, 2021

This campaign was also covered by researchers at Zscaler in a blog post. We published a blog post at that time detailing the technical details of ShadowPad and its supply-chain attack campaign after its initial discovery, when it was deployed by an APT group known as Barium or APT41.

Malware 145

Malware Government Surveillance Spyware 145

Security Affairs

APRIL 2, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter) The post Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Spyware 98

Spyware Surveillance Artificial Intelligence Data breaches 98

Heimadal Security

MARCH 28, 2023

At least 50 US government officials are either suspected or confirmed to have been targeted by invasive commercial spyware designed to hack mobile phones, extract data, and track the movements of the victims. Government Restricts the Use of Spyware, White House Says appeared first on Heimdal Security Blog.

Spyware 91

Spyware Government Surveillance Mobile 91