Malwarebytes

MAY 24, 2022

The Google Threat Analysis Group (TAG) has revealed that of the nine zero-day vulnerabilities affecting Chrome, Android, Apple and Microsoft that it reported in 2021, five were in use by a single commercial surveillance company. Patches for the five vulnerabilities TAG mentions in its blog are available. Government spyware.

Spyware 132

Spyware Surveillance Government Marketing 132

Security Affairs

MAY 1, 2023

Researchers at the Lookout Threat Lab have discovered a new Android surveillance spyware, dubbed BouldSpy, that was used by the Law Enforcement Command of the Islamic Republic of Iran (FARAJA). However, much of the victim data points to its broader usage, which indicates targeted surveillance efforts towards minorities within Iran.”

Surveillance 73

Surveillance Malware Spyware Education 73

Heimadal Security

JULY 19, 2021

No less than 180 journalists around the world have been targeted by clients of the cyber-surveillance company NSO Group. The post Pegasus Spyware Targets Phones of Journalists, Activists, and Politicians appeared first on Heimdal Security Blog. What Happened?

Spyware 105

Spyware Surveillance Software Cybersecurity 105

Security Affairs

APRIL 13, 2022

According to a report published by Reuters, an Israeli surveillance software was used to spy on senior officials in the European Commission. One of the officials targeted with the infamous spyware there is Didier Reynders, a senior Belgian statesman who has served as the European Justice Commissioner since 2019. Pierluigi Paganini.

Surveillance 87

Surveillance Software Spyware Hacking 87

Heimadal Security

MARCH 28, 2023

At least 50 US government officials are either suspected or confirmed to have been targeted by invasive commercial spyware designed to hack mobile phones, extract data, and track the movements of the victims. Government Restricts the Use of Spyware, White House Says appeared first on Heimdal Security Blog.

Spyware 66

Spyware Government Surveillance Mobile 66

Heimadal Security

OCTOBER 11, 2021

In a report published last week, Amnesty International revealed the connection between an Indian cybersecurity firm and an Android spyware program that was meant to target a well-known Togolese human rights defender.

Spyware 91

Spyware Surveillance Cybersecurity 91

Security Affairs

OCTOBER 14, 2020

Earlier this month, German authorities have raided the offices of FinFisher, the German surveillance software firm, accused of providing its software to oppressive regimes. The company denied accusations and sued the German blog and requested the removal of the article on the case. Pierluigi Paganini.

Surveillance 106

Surveillance Spyware Software Advertising 106

Security Affairs

APRIL 19, 2022

Researchers from Citizen Lab have published a report detailing the use of a new zero-click iMessage exploit, dubbed HOMAGE, to install the NSO Group Pegasus spyware on iPhones belonging to Catalan politicians, journalists, academics, and activists. To nominate, please visit:? Follow me on Twitter: @securityaffairs and Facebook.

Spyware 87

Spyware Surveillance Government Software 87

Security Affairs

MARCH 29, 2023

Google’s Threat Analysis Group (TAG) discovered several exploit chains targeting Android, iOS, and Chrome to install commercial spyware. The exploit chains were used to install commercial spyware and malicious apps on targets’ devices. This was recently highlighted by blog posts from Project Zero and Github Security Lab.”

Spyware 81

Spyware Surveillance Firmware Internet 81

Hackology

NOVEMBER 11, 2023

The emergence of Kamran spyware, targeting users of a regional news website, has raised concerns among cybersecurity experts. Distributed through a possible watering-hole attack on the Hunza News website , the spyware prompts users to grant permissions, allowing access to sensitive data.

Spyware 45

Spyware Malware Risk Mobile 45

Heimadal Security

SEPTEMBER 29, 2021

The FinFisher surveillance solution was developed by the Gamma Group but it also comes with malware-like capabilities often found in spyware strains. The post Windows Boot Manager Hijacked by FinFisher Malware appeared first on Heimdal Security Blog. Researchers Investigated […].

Malware 121

Malware Spyware Surveillance Government 121

Security Affairs

APRIL 18, 2023

Citizen Lab reported that Israeli surveillance firm NSO Group used at least three iOS zero-click exploits in 2022. A new report from Citizen Lab states that the Israeli surveillance firm NSO Group used at least three zero-click zero-day exploits to deliver its Pegasus spyware. ” reads the report. and 14.4.2,

Spyware 81

Spyware Surveillance Education Risk 81

Security Affairs

OCTOBER 30, 2019

WhatsApp sued Israeli surveillance firm NSO Group, accusing it of using a flaw in its messaging service to conduct cyberespionage on journalists and activists. WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks against its users. reads the description provided by Facebook.

Surveillance 49

Surveillance Technology Spyware Mobile 49

Security Affairs

APRIL 2, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter) The post Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Spyware 80

Spyware Surveillance Artificial Intelligence Data breaches 80

CyberSecurity Insiders

MAY 19, 2021

This blog was written by an independent guest blogger. People are increasingly becoming aware of the threats posed by hackers who infiltrate devices using viruses, spyware and malware. In this article, we will talk about this malicious software, which allows a remote user to surveil all activities on another user’s device.

Spyware 98

Spyware Surveillance Cybercrime Software 98

Security Affairs

OCTOBER 5, 2020

The experts were investigating several suspicious UEFI firmware images when discovered four components, some of which were borrowing the source code a Hacking Team spyware. In 2015, the hacker who breached the systems of the Italian surveillance firm Hacking Team leaked a 400GB package containing hacking tools and exploits codes.

Firmware 122

Firmware Spyware Surveillance Hacking 122

Heimadal Security

DECEMBER 20, 2021

Meta published a report on the 16th of December, named “Threat Report on the Surveillance-for-Hire Industry”, where it announced that it banned six alleged entities and a Chinese law enforcement supplier that provided services on surveillance-for-hire targeting 50 K people.

Surveillance 81

Surveillance Threat Reports Spyware Cybersecurity 81

Security Affairs

APRIL 23, 2023

Abandoned Eval PHP WordPress plugin abused to backdoor websites CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog At least 2 critical infrastructure orgs breached by North Korea-linked hackers behind 3CX attack American Bar Association (ABA) suffered a data breach,1.4

Spyware 68

Spyware Ransomware Malware Data breaches 68

Security Affairs

JUNE 26, 2022

SecurityAffairs awarded as Best European Personal Cybersecurity Blog 2022 Crooks are using RIG Exploit Kit to push Dridex instead of Raccoon stealer Flagstar Bank discloses a data breach that impacted 1.5

Small Business 74

Small Business Spyware Data breaches Surveillance 74

Security Affairs

JUNE 20, 2022

sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog”). Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. To nominate, please visit:?. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Spyware 66

Spyware DNS Surveillance Ransomware 66

Malwarebytes

APRIL 1, 2021

It does not have a catchy name, but because of its capabilities and its method for going unnoticed, we are calling it Android/Trojan.Spy.FakeSysUpdate, or in this blog, “FakeSysUpdate” for short. Whether for malicious information gathering or for non-consensual surveillance of a romantic partner, these invasions of privacy are flat-out wrong.

Malware 145

Malware Spyware Advertising Surveillance 145

Security Boulevard

SEPTEMBER 30, 2021

A look at the nature and effects of legal, advanced spyware on application security. Pegasus is an advanced spyware that exploits vulnerable mobile apps to gain a foothold on iPhone and Android devices. Pegasus is the creation of the NSO Group , an Israeli firm that licenses it to governments to perform surveillance.

Spyware 52

Spyware Government Surveillance Mobile 52

SecureList

NOVEMBER 30, 2021

Based on forensic analysis of numerous mobile devices, Amnesty International’s Security Lab found that the software was repeatedly used in an abusive manner for surveillance. We confirmed that several infrastructures on the blog overlapped with our previously published reporting about Lazarus group’s ThreatNeedle cluster.

Malware 107

Malware Mobile Spyware Surveillance 107

Security Affairs

NOVEMBER 20, 2018

Security researchers at F-Secure have recently uncovered a small spam campaign aimed at delivering spyware to Mac users that use Exodus wallet. “From the website, the developer described their software as a cloud-based surveillance and remote spy tool. ” states the blog post published by F-Secure. update.zip.” .

Cryptocurrency 66

Cryptocurrency Spyware Advertising Surveillance 66

SecureList

OCTOBER 26, 2021

This campaign was also covered by researchers at Zscaler in a blog post. We published a blog post at that time detailing the technical details of ShadowPad and its supply-chain attack campaign after its initial discovery, when it was deployed by an APT group known as Barium or APT41.

Malware 142

Malware Government Surveillance Spyware 142

SecureList

NOVEMBER 14, 2022

Last June, Google’s TAG team released a blog post documenting attacks on Italian and Kazakh users that they attribute to RCS Lab, an Italian offensive software vendor. In 2022, the GReAT team tracked several threat actors leveraging SilentBreak’s toolset as well as a commercial Android spyware we named MagicKarakurt.

Firmware 110

Firmware Surveillance Mobile Telecommunications 110

Malwarebytes

OCTOBER 14, 2021

Screenshot of David Tokarev’s blog, disclosing three 0-day vulnerabilities. From a technical perspective, spyware—defined as software running on the device that surveils and tracks you—is not much of a thing, because of Apple’s restrictions on what apps can do, plus the fact that you can’t hide an app on iOS.

Spyware 107

Spyware Backups Passwords Authentication 107

SecureList

APRIL 27, 2021

During routine monitoring of detections for FinFisher spyware tools, we discovered traces that point to recent FinFly Web deployments. In November and December 2020, two public blog posts were published about this campaign. Domestic Kitten is a threat group mainly known for its mobile backdoors.

Malware 141

Malware Spyware Government Social Engineering 141

Security Affairs

SEPTEMBER 28, 2019

The scary part of the story is that a private surveillance firm was aware of the zero-day flaw since at least two years and is actively exploiting the SimJacker vulnerability to spy on mobile users in several countries. ” reads a blog post published by the researcher.

Hacking 86

Hacking Mobile Risk Advertising 86