Security Affairs

OCTOBER 11, 2021

A Togolese human rights advocate was hit by mobile spyware that has been allegedly developed by an Indian firm called Innefu Labs. Experts believe the attackers used a spyware developed by an Indian company called Innefu Labs. In the past, the Donot Team spyware was found in attacks outside of South Asia.

Spyware 84

Spyware Surveillance Accountability Mobile 84

Security Affairs

MARCH 27, 2021

Researchers spotted a sophisticated Android spyware that implements exfiltration capabilities and surveillance features, including recording audio and phone calls. Experts from security firm Zimperium have spotted a new sophisticated Android spyware that masquerades itself as a System Update application. Pierluigi Paganini.

Spyware 105

Spyware Malware Surveillance Mobile 105

Hackology

NOVEMBER 11, 2023

The emergence of Kamran spyware, targeting users of a regional news website, has raised concerns among cybersecurity experts. Distributed through a possible watering-hole attack on the Hunza News website , the spyware prompts users to grant permissions, allowing access to sensitive data.

Spyware 45

Spyware Malware Risk Mobile 45

Security Affairs

NOVEMBER 26, 2021

A threat actor, tracked as APT C-23, is using new powerful Android spyware in attacks aimed at targets in the Middle East. The APT C-23 cyberespionage group (also known as GnatSpy, FrozenCell, or VAMP) continues to target entities in the Middle East with enhanced Android spyware masqueraded as seemingly harmless app updates (i.e.

Spyware 95

Spyware Social Engineering Surveillance Engineering 95

Security Affairs

FEBRUARY 24, 2021

The threat actors used by spyware to take over the target systems, spy on the victims, and exfiltrate data. “This unlawful surveillance violates the right to privacy and stifles freedom of expression.” The link points to files containing spyware that could infect both Mac OS or Windows systems. Pierluigi Paganini.

Spyware 91

Spyware Surveillance Government Phishing 91

SecureWorld News

OCTOBER 21, 2022

A new version of the Android malware "FurBall" has been discovered to be used by the threat actor(s) known as Domestic Kitten in a campaign targeting Iranian citizens in a mobile surveillance operation. Researchers believe the purpose of this could be to set up a larger spearphishing attack conducted via text messages.

Malware 83

Malware Spyware Government Surveillance 83

Security Affairs

SEPTEMBER 27, 2020

Experts from Amnesty International uncovered a surveillance campaign that targeted Egyptian civil society organizations with a new version of FinSpy spyware. The binaries are obfuscated and do some checks to detect if the spyware is running in a Virtual Machine. ” reads the Amnesty’s report.

Spyware 140

Spyware Surveillance Mobile Advertising 140

SecureWorld News

AUGUST 8, 2022

Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Cyber Security Centre (ACSC) released a joint Cybersecurity Advisory (CSA) providing details on the top malware strains of 2021. The top malware strains in 2021 included remote access Trojans (RATs), banking Trojans, information stealers, and ransomware.

Malware 89

Malware Banking Healthcare Penetration Testing 89

Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches 94

Data breaches Malware Mobile Spyware 94

Security Affairs

SEPTEMBER 9, 2018

CheckPoint uncovered an extensive surveillance operation conducted by Iranian APT actor and tracked as Domestic Kitten aimed at specific groups of individuals. ” This means that the Domestic Kitten surveillance operation had collateral victims whose details were leaked from contact lists or conversations with the targets.

Surveillance 50

Surveillance Mobile Advertising Spyware 50

Security Affairs

APRIL 16, 2023

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

Data breaches 74

Data breaches Spyware Retail Surveillance 74

Hacker's King

MAY 20, 2023

Call forwarding, Botnets, Spyware: Securing Devices and Networks More sophisticated methods of bypassing 2FA involve compromising the user’s device. Additionally, using botnets or spyware can allow hackers to access the user’s device, monitor activities, and extract sensitive information, including 2FA codes.

Authentication 52

Authentication Social Engineering Spyware Engineering 52

Security Affairs

APRIL 17, 2020

Syrian-linked APT group SEA recently used COVID-19-themed lures as part of a long-running surveillance campaign, security researchers warn. Notably, the C2 servers of SilverH awk , an Android malware family previously reported on by Lookout researchers, were located on IP addresses belonging to STE.” The experts conclude.”It

Surveillance 94

Surveillance Telecommunications Mobile Advertising 94

Security Affairs

SEPTEMBER 24, 2023

0-days exploited by commercial surveillance vendor in Egypt PREDATOR IN THE WIRES OilRig’s Outer Space and Juicy Mix: Same ol’ rig, new drill pipes Cybersecurity Apple and Google Are Introducing New Ways to Defeat Cell Site Simulators, But Is it Enough?

Cyber Attacks 85

Cyber Attacks Firewall Data breaches Telecommunications 85

Security Affairs

NOVEMBER 24, 2020

The two apps were discovered by Palo Alto Networks, which identify them, along with other apps leaking data, using a machine learning (ML)-based spyware detection system. The two apps had a total of more than 6 million downloads at the time of their discovery.

Data collection 109

Data collection Mobile Spyware Surveillance 109

Schneier on Security

DECEMBER 24, 2019

ToTok, introduced only months ago, was downloaded millions of times from the Apple and Google app stores by users throughout the Middle East, Europe, Asia, Africa and North America.

Government 220

Government Spyware Surveillance Malware 220

SecureList

MARCH 13, 2024

In most countries around the world, use of stalkerware is currently not prohibited, but installing a surveillance application on another person’s smartphone without their consent is illegal and punishable. Stalkerware capabilities vary depending on the application, and whether they have been paid for or downloaded for free.

Mobile 83

Mobile Passwords Surveillance Technology 83

eSecurity Planet

OCTOBER 21, 2022

Anyone who has used a computer for any significant length of time has probably at least heard of malware. Malware has been present in the digital space since the 1980s, with early prank malware like the Morris Worm or the (c)Brain. However, malware is not quite as amusing in a modern context. How Does Malware Work?

Malware 75

Malware Adware Spyware Antivirus 75

SecureList

MARCH 8, 2023

Stalkerware can be downloaded and easily installed by anyone with an Internet connection and physical access to a smartphone. Other types of monitoring or spyware apps that fall outside of the Coalition’s definition are not included in the report statistics.

Mobile 99

Mobile Software Cybersecurity Accountability 99

SecureList

NOVEMBER 30, 2021

Based on forensic analysis of numerous mobile devices, Amnesty International’s Security Lab found that the software was repeatedly used in an abusive manner for surveillance. Based on our observations, this is further complicated by the deployment of non-persistent malware, which leaves almost no traces after reboot.

Malware 107

Malware Mobile Spyware Surveillance 107

Security Affairs

JANUARY 21, 2022

“The purpose of the implant is to facilitate the deployment of user-mode malware that stages execution of further payloads downloaded from the internet;” reads the analysis published by Kaspersky. A UEFI bootkit implanted in the firmware could not be detected by AVs and any defense solution running on the OS level.

Firmware 131

Firmware Malware Spyware Surveillance 131

SecureList

SEPTEMBER 28, 2021

FinSpy, also known as FinFisher or Wingbird , is an infamous surveillance toolset. Kaspersky has been tracking deployments of this spyware since 2011. While the nature of this anomaly remained unknown, we began detecting some suspicious installers of legitimate applications, backdoored with a relatively small obfuscated downloader.

Encryption 143

Encryption Malware Spyware Architecture 143

The Security Ledger

MAY 14, 2019

An Israeli firm has exploited a flaw in the popular messaging mobile app WhatsApp to plant spyware on iPhones and Android. » Related Stories Report: Bad Bots sent One in Five Web Requests in 2018 Drive-By Malware Uses Google Sites for Drive by Download Attacks Mysterious Trisis Malware Strikes Again.

Spyware 40

Spyware Mobile Malware Software 40

eSecurity Planet

OCTOBER 21, 2022

From facial recognition to surveillance cameras to time trackers or just having a couple guys standing over employees’ shoulders, there are a multitude of ways to make sure employees are staying on-task and being productive. Businesses have long wondered if employees are staying focused and doing their jobs.

Computers and Electronics 127

Computers and Electronics Surveillance Software Artificial Intelligence 127

SecureList

APRIL 27, 2021

In our initial report on Sunburst , we examined the method used by the malware to communicate with its C2 (command-and-control) server and the protocol used to upgrade victims for further exploitation. This campaign made use of a previously unknown malware family we dubbed FourteenHi.

Malware 141

Malware Spyware Government Social Engineering 141

Security Affairs

JULY 7, 2019

ViceLeaker Android spyware targets users in the Middle East. China installs a surveillance app on tourists phones while crossing in the Xinjiang. Updates for Samsung, the scam app with 10M+ downloads. Cryptomining Campaign involves Golang malware to target Linux servers. Cyber Defense Magazine – July 2019 has arrived.

Scams 48

Scams Spyware DNS Advertising 48

SecureList

OCTOBER 26, 2021

Following this, they were tricked into downloading previously unknown malware. The backdoor, dubbed Tomiris, bears a number of similarities to the second-stage malware, Sunshuttle (aka GoldMax), used by DarkHalo last year. Some of the changes introduced in the renewed activity include relying on Microsoft Word templates (.dotm)

Malware 142

Malware Government Surveillance Spyware 142

SecureWorld News

JUNE 27, 2022

The commercial spyware industry is alive and thriving, according to a report released last week by Google's Threat Analysis Group (TAG). The report specifically details an Italian vendor, RCS Labs, and its "Hermit" surveillance malware (aka spyware) used on mobile phones. RELATED: Spyware Pariah: NSO Group Placed on U.S.

Spyware 73

Spyware Surveillance Mobile Government 73