Data collection, Malware and Spyware - Cyber Security Informer

Data collection

Malware

Spyware

TheTruthSpy stalkerware, still insecure, still leaking data

Malwarebytes

FEBRUARY 13, 2024

In 2022, tech publication TechCrunch discovered that TheTruthSpy and other spyware apps share a common Insecure Direct Object Reference (IDOR) vulnerability, CVE-2022-0732. The publications described the bug as “extremely easy to exploit, and grants unfettered remote access to all of the data collected from a victim’s Android device.”

Spyware

Spyware Data collection Malware Hacking

Baidu Android apps removed from Play Store because caught collecting user details

Security Affairs

NOVEMBER 24, 2020

The two apps were discovered by Palo Alto Networks, which identify them, along with other apps leaking data, using a machine learning (ML)-based spyware detection system. The data collection code was found in the Baidu Push SDK, used to show real-time notifications inside both apps.

Data collection

Data collection Mobile Spyware Surveillance

Join 29,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Trending Sources

Ransomware en masse on the wane: top threats inside web-phishing in H1 2020

Security Affairs

SEPTEMBER 18, 2020

Ransomware , the headliner of the previous half-year, walked off stage: only 1 percent of emails analyzed by Group-IB’s Computer Emergency Response Team (CERT-GIB) contained this kind of malware. Ransomware operators have focused on targeted attacks,choosing large victims with a higher payment capacity.

Phishing

Phishing Ransomware Spyware Banking

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

On the 20th Safer Internet Day, what was security like back in 2004?

Malwarebytes

FEBRUARY 6, 2023

Data collected by the Internet Storm Center dug into “Survival Time History”, which is “calculated as the average time between reports for an average target IP address. The pop up blocker in particular was a big help with the proliferation of adware and spyware plugging into advertising networks.

Internet

Internet Internet Adware Spyware

Payment data of thousands of customers of UK and US online stores could have been compromised

Security Affairs

MARCH 14, 2019

We dubbed this JS Sniffer family GMO because the malware uses gmo[.]li 1 The screenshot shows a one-line code (line # 771) that downloads a JS Sniffer designed to steal customers’ data once a user lands on a checkout page. JS Sniffers is a type of malware that remains poorly researched. li host.”.

eCommerce

eCommerce Marketing Data breaches Advertising

Spam and phishing in 2022

SecureList

FEBRUARY 16, 2023

Both can be used to steal user data, collect information about the corporate network, and spread additional malware, such as ransomware. Noon spyware (4.89%) moved up to second place, and Badun Trojans (4.61%) spreading as archived electronic documents moved down to third place.

Phishing

Phishing Scams Accountability Energy and Utilities

The State of Stalkerware in 2023–2024

SecureList

MARCH 13, 2024

Not unlike malware, stalkerware apps are much less frequent on iPhones than on Android devices due to the proprietary and closed nature of iOS. To calculate the statistics, data from the consumer line of Kaspersky’s mobile security solutions was reviewed according to the Coalition Against Stalkerware detection criteria.

Mobile

Mobile Passwords Surveillance Technology

APT trends report Q2 2023

SecureList

JULY 27, 2023

The most remarkable findings Early in June, we issued an early warning of a long-standing campaign that we track under the name Operation Triangulation , involving a previously unknown iOS malware platform distributed via zero-click iMessage exploits. Kaspersky employees were also affected by this threat.

Malware

Malware Government Phishing Social Engineering

FinSpy: unseen findings

SecureList

SEPTEMBER 28, 2021

Kaspersky has been tracking deployments of this spyware since 2011. The Pre-Validator ensures that the victim machine is not used for malware analysis. Each shellcode collects specific system information (e.g. It is important to highlight that the shellcodes only collect the data, all the checks are performed server-side.

Encryption

Encryption Malware Spyware Architecture

Security Affairs newsletter Round 223 – News of the week

Security Affairs

JULY 21, 2019

Experts spotted a rare Linux Desktop spyware dubbed EvilGnome. Israel surveillance firm NSO group can mine data from major social media. Poland and Lithuania fear that data collected via FaceApp could be misused. Scraping the TOR for rare contents. The Problem With the Small Business Cybersecurity Assistance Act.

Small Business

Small Business Media Spyware DNS

Advanced threat predictions for 2024

SecureList

NOVEMBER 14, 2023

The rise of destructive attacks In December of last year, shortly after we released our predictions for 2023, Russian government agencies were reported to have been targeted by a data wiper called CryWiper. The malware posed as ransomware, demanding money from the victims for “decrypting” their data.

Hacking

Hacking Energy and Utilities Media Malware

TheTruthSpy stalkerware, still insecure, still leaking data

Baidu Android apps removed from Play Store because caught collecting user details

Webinars

Trending Sources

Ransomware en masse on the wane: top threats inside web-phishing in H1 2020

Webinars

On the 20th Safer Internet Day, what was security like back in 2004?

Payment data of thousands of customers of UK and US online stores could have been compromised

Spam and phishing in 2022

The State of Stalkerware in 2023–2024

APT trends report Q2 2023

FinSpy: unseen findings

Security Affairs newsletter Round 223 – News of the week

Advanced threat predictions for 2024

Stay Connected