Krebs on Security

SEPTEMBER 4, 2018

Less than a week ago, security researcher Nitish Shah directed KrebsOnSecurity to an open database on the Web that allowed anyone to query up-to-the-minute mSpy records for both customer transactions at mSpy’s site and for mobile phone data collected by mSpy’s software. The database required no authentication.

Spyware 193

Spyware Mobile Advertising Software 193

Security Affairs

MARCH 14, 2019

The domain name used for the sniffer’s codes storage and as a gate for stolen data collection was registered on May 7, 2018. Recent data breaches at British Airways and Ticketmaster proved this point. We dubbed this JS Sniffer family GMO because the malware uses gmo[.]li

eCommerce 85

eCommerce Marketing Data breaches Advertising 85

Malwarebytes

JANUARY 28, 2021

There’s plenty of rules and requirements for things such as data breaches or poor personal data notifications. Crucially, should you get your data protection wrong somewhere along the way, big fines may follow. Data privacy, and privacy policies, are an “uncool” story for many.

Advertising 60

Advertising Data privacy Adware Spyware 60

SecureList

NOVEMBER 14, 2023

This politician became the target of a previously undiscovered “zero-day” attack aimed at infecting his phone with spyware. This may include automatic data collection from the victim’s online presence, such as social media posts, media comments, or authored columns: any content associated with the victim’s identity.

Hacking 110

Hacking Energy and Utilities Media Malware 110