Security Affairs

NOVEMBER 1, 2024

New LightSpy spyware targets iPhones supporting destructive features that can block compromised devices from booting up. In May 2024, ThreatFabric researchers discovered a macOS version of LightSpy spyware that has been active in the wild since at least January 2024. The updated iOS version (7.9.0) The updated iOS version (7.9.0)

Spyware 98

Spyware Media Hacking Malware 98

Security Affairs

JULY 7, 2025

Since March 2025, fake contract emails have been spreading Batavia spyware in targeted attacks on Russian organizations. Since March 2025, a targeted phishing campaign against Russian organizations has used fake contract-themed emails to spread the Batavia spyware, a new malware designed to steal internal documents.

Spyware 92

Spyware Malware Phishing Encryption 92

Security Affairs

JULY 7, 2025

Since March 2025, fake contract emails have been spreading Batavia spyware in targeted attacks on Russian organizations. Since March 2025, a targeted phishing campaign against Russian organizations has used fake contract-themed emails to spread the Batavia spyware, a new malware designed to steal internal documents.

Spyware 74

Spyware Malware Phishing Encryption 74

Security Affairs

MARCH 13, 2025

North Korea-linked APT group ScarCruft used a new Android spyware dubbed KoSpy to target Korean and English-speaking users. Kaspersky first documented the operations of the group in 2016. Lookout researchers attributed the spyware to the ScarCruft group with medium confidence.

Spyware 78

Spyware Surveillance Encryption Malware 78

Security Affairs

APRIL 23, 2025

A new Android spyware was discovered in a fake Alpine Quest app, reportedly used by Russian soldiers for war zone planning. Doctor Web researchers uncovered a new spyware, tracked as Android.Spy.1292.origin, Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,Android spyware)

Spyware 82

Spyware Software Malware Hacking 82

Security Affairs

MARCH 3, 2025

Amnesty International documented the incident. The forensics analysis conducted by Amnesty found that the Serbian police used the Cellbrite’s exploit to unlock Vedran’s Samsung Galaxy A32 and install an unknown Android application likely linked with NoviSpy spyware. added Donncha Cearbhaill.

Hacking 67

Hacking Spyware Technology Surveillance 67

Security Affairs

DECEMBER 12, 2024

The researchers analyzed multiple samples of the malware and gained access to internal documents obtained from open directories on attacker infrastructure. These documents suggest the existence of an iOS conversion of the spyware that has yet to be uncovered.

Surveillance 64

Surveillance Mobile Spyware Malware 64

eSecurity Planet

NOVEMBER 12, 2024

Aside from antivirus, Norton offers ransomware and hacking protection, privacy monitoring, and a VPN. Norton doesn’t have spyware protection; I recommend looking at business antivirus products if that’s a priority for you. McAfee also doesn’t offer spyware detection. 5 Pricing: 3.7/5 5 Core features: 3.5/5

Antivirus 62

Antivirus Software Identity Theft Spyware 62

Security Affairs

JULY 5, 2025

Iran retaliates with missile barrages How Geopolitical Tensions Are Shaping Cyber Warfare Cybersecurity Facebook is asking to use Meta AI on photos in your camera roll you haven’t yet shared Ahold Delhaize Data Breach Impacts 2.2

Data breaches 60

Data breaches Spyware Cybercrime Malware 60

Security Affairs

APRIL 20, 2025

infrastructure International Press Newsletter Cybercrime Pixel-Perfect Trap: The Surge of SVG-Borne Phishing Attacks Threat actors misuse Node.js

Data breaches 60

Data breaches Malware Phishing Hacking 60

Security Affairs

NOVEMBER 24, 2024

A cyberattack on gambling giant IGT disrupted portions of its IT systems China-linked APT Gelsemium uses a new Linux backdoor dubbed WolfsBane Microsoft seized 240 sites used by the ONNX phishing service U.S.

Cybercrime 71

Cybercrime Hacking Artificial Intelligence Ransomware 71

eSecurity Planet

FEBRUARY 17, 2025

It tries to provide features like anti-ransomware, anti-spyware, and parental controls, but that still keeps it behind. McAfee also doesnt offer spyware detection, but Defender does. Despite Defenders excellent documentation and training videos, it still falls short. Microsoft Defender doesn’t offer advanced features.

Antivirus 67

Antivirus Identity Theft VPN Spyware 67

Krebs on Security

JUNE 30, 2025

According to The Journal, Wiles told associates her cellphone contacts were hacked, giving the impersonator access to the private phone numbers of some of the country’s most influential people. On May 29, The Wall Street Journal reported that federal authorities were investigating a clandestine effort to impersonate Ms.

Mobile 257

Mobile Spyware InfoSec Phishing 257

Security Affairs

MARCH 16, 2025

Attacks on Middle Eastern countries Ballista New IoT Botnet Targeting Thousands of TP-Link Archer Routers Microsoft patches Windows Kernel zero-day exploited since 2023 Trump Cryptocurrency Delivers ConnectWise RAT EMERGING THREATS LockBit 4.0

Malware 71

Malware Spyware IoT Firewall 71

Security Affairs

APRIL 27, 2025

million patients Crooks exploit the death of Pope Francis WhatsApp introduces Advanced Chat Privacy to protect sensitive communications Android spyware hidden in mapping software targets Russian soldiers Crypto mining campaign targets Docker environments with new evasion technique The popular xrpl.js

Data breaches 64

Data breaches Spyware Malware Phishing 64

Security Affairs

APRIL 13, 2025

CISA adds Linux Kernel flaws to its Known Exploited Vulnerabilities catalog AkiraBot: AI-Powered spam bot evades CAPTCHA to target 80,000+ websites An APT group exploited ESET flaw to execute malware Oracle confirms the hack of two obsolete servers hacked.

Data breaches 60

Data breaches Cybercrime Hacking Ransomware 60

Security Affairs

MAY 11, 2025

billion in data privacy settlement Negotiations with the Akira ransomware group: an ill-advised approach Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking, newsletter )

Spyware 62

Spyware DDOS Malware Ransomware 62

Schneier on Security

MARCH 21, 2023

The New York Times is reporting that a US citizen’s phone was hacked by the Predator spyware. The simultaneous tapping of the target’s phone by the national intelligence service and the way she was hacked indicate that the spy service and whoever implanted the spyware, known as Predator, were working hand in hand.

Spyware 255

Spyware Hacking Government Technology 255

Krebs on Security

SEPTEMBER 4, 2018

In May 2015, KrebsOnSecurity broke the news that mSpy had been hacked and its customer data posted to the Dark Web. Documents obtained from Companies House , an official register of corporations in the U.K., Court documents (PDF) obtained from the U.S. Neither men could be reached for comment. In September 2014, U.S.

Spyware 250

Spyware Mobile Advertising Software 250

Security Affairs

FEBRUARY 24, 2021

The threat actors used by spyware to take over the target systems, spy on the victims, and exfiltrate data. ” The attack chain begins with spear-phishing messages that include a link to an alleged important document to download. The link points to files containing spyware that could infect both Mac OS or Windows systems.

Spyware 128

Spyware Surveillance Government Phishing 128

Security Affairs

OCTOBER 25, 2021

Threat actors infected the iPhone of New York Times journalist Ben Hubbard with NSO Group’s Pegasus spyware between June 2018 to June 2021. The iPhone of New York Times journalist Ben Hubbard was repeatedly infected with NSO Group’s Pegasus spyware. SecurityAffairs – hacking, NSO Group). Pierluigi Paganini.

Spyware 122

Spyware Hacking Backups Accountability 122

Security Affairs

JUNE 22, 2020

Researchers at Amnesty International collected evidence that a Moroccan journalist was targeted with network injection attacks using NSO Group ‘s spyware. The post Moroccan journalist targeted with network injection attacks using NSO Group ‘s spyware appeared first on Security Affairs. Pierluigi Paganini.

Spyware 144

Spyware Surveillance Mobile Advertising 144

Security Affairs

APRIL 25, 2020

Facebook advocates have challenged a plea from spyware maker NSO Group to dismiss the legal dispute over the hacking accusations, arguing it has immunity from prosecution. according to court documents shared by ZdNet, Facebook linked at least 720 attacks against WhatsApp users to one single IP address. Pierluigi Paganini.

Spyware 133

Spyware Surveillance Advertising Government 133

Security Affairs

MAY 23, 2022

The attacks aimed at installing the surveillance spyware Predator, developed by the North Macedonian firm Cytrox. ” In December a report published by CitizenLab, when its researchers detailed the use of the Predator Spyware against exiled politician Ayman Nour and the host of a popular news program. To nominate, please visit:?

Spyware 144

Spyware Surveillance Government Banking 144

Security Affairs

FEBRUARY 11, 2021

Lookout researchers provided details about two Android spyware families employed by an APT group tracked as Confucius. Researchers at mobile security firm Lookout have provided details about two recently discovered Android spyware families, dubbed Hornbill and SunBird, used by an APT group named Confucius. ” concludes the report.

Spyware 143

Spyware Surveillance Malware Mobile 143

Security Affairs

FEBRUARY 26, 2024

Recently the leak of a collection of files apparently stolen from the Chinese government hacking contractor, I-Soon, exposed Chinese hacking capabilities. Recently someone has leaked on GitHub [ 1 , 2 ] a collection of files apparently stolen from the Chinese hacking firm, I-Soon.

Hacking 133

Hacking Government Spyware Marketing 133

Security Affairs

APRIL 16, 2024

Researchers warn of a renewed cyber espionage campaign targeting users in South Asia with the Apple iOS spyware LightSpy Blackberry researchers discovered a renewed cyber espionage campaign targeting South Asia with an Apple iOS spyware called LightSpy. This report also includes a list of IoCs for this threat.

Spyware 132

Spyware Malware Mobile Encryption 132

Security Affairs

AUGUST 15, 2020

The malware also allows attackers to capture screenshots and exfiltrate stolen documents to the attackers’ server. SecurityAffairs – hacking, XCSSET). The post XCSSET Mac spyware spreads via Xcode Projects appeared first on Security Affairs. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Spyware 143

Spyware Malware Advertising Cryptocurrency 143

Security Affairs

NOVEMBER 26, 2021

A threat actor, tracked as APT C-23, is using new powerful Android spyware in attacks aimed at targets in the Middle East. The APT C-23 cyberespionage group (also known as GnatSpy, FrozenCell, or VAMP) continues to target entities in the Middle East with enhanced Android spyware masqueraded as seemingly harmless app updates (i.e.

Spyware 119

Spyware Social Engineering Surveillance Malware 119

Security Affairs

MAY 30, 2024

Researchers from ThreatFabric discovered a macOS version of the LightSpy spyware that has been active in the wild since at least January 2024. LightSpy is a modular spyware that has resurfaced after several months of inactivity, the new version supports a modular framework with extensive spying capabilities.

Spyware 136

Spyware Malware Surveillance Mobile 136

Security Affairs

AUGUST 24, 2021

Citizen Lab uncovered a new zero-click iMessage exploit that was used to deploy the NSO Group’s Pegasus spyware on devices belonging to Bahraini activists. Researchers from Citizen Lab spotted a zero-click iMessage exploit that was used to deploy NSO Group’s Pegasus spyware on Bahraini activists’ devices.

Spyware 98

Spyware Surveillance Hacking Government 98

Security Affairs

MAY 14, 2019

Facebook fixed a critical zero-day flaw in WhatsApp that has been exploited to remotely install spyware on phones by calling the targeted device. Facebook has recently patched a critical zero-day vulnerability in WhatsApp, tracked as CVE-2019-3568 , that has been exploited to remotely install spyware on phones by calling the targeted device.

Spyware 111

Spyware Surveillance Mobile Government 111

Security Affairs

JUNE 17, 2022

Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country. According to Lookout, the Hermit spyware was likely developed by Italian surveillance vendor RCS Lab S.p.A ” reads the analysis published by Lookout.

Spyware 105

Spyware Surveillance Telecommunications Mobile 105

Security Affairs

JULY 19, 2022

Researchers spotted previously undocumented spyware, dubbed CloudMensis, that targets the Apple macOS systems. The malware was designed to spy on the target systems, exfiltrate documents, acquire keystrokes, and screen captures. Experts have yet to determine how the victims are initially compromised by this spyware.

Spyware 98

Spyware Malware Authentication Architecture 98

Security Affairs

OCTOBER 11, 2021

A Togolese human rights advocate was hit by mobile spyware that has been allegedly developed by an Indian firm called Innefu Labs. Experts believe the attackers used a spyware developed by an Indian company called Innefu Labs. In the past, the Donot Team spyware was found in attacks outside of South Asia. Pierluigi Paganini.

Spyware 102

Spyware Surveillance Accountability Marketing 102

CSO Magazine

FEBRUARY 24, 2022

Department of Justice (DOJ) released information surrounding the guilty plea of Mexican businessman Carlos Guerrero and his conspiracy to sell and use hacking tools that were manufactured by companies in Italy, Israel, and elsewhere.

Spyware 128

Spyware CISO Wireless Manufacturing 128

Security Affairs

SEPTEMBER 27, 2020

Experts from Amnesty International uncovered a surveillance campaign that targeted Egyptian civil society organizations with a new version of FinSpy spyware. Amnesty International has not documented human rights violations by NilePhish directly linked to FinFisher products.” SecurityAffairs – hacking, FinSpy).

Spyware 144

Spyware Surveillance Advertising Mobile 144