Security Affairs

NOVEMBER 10, 2021

South Korean users have been targeted with a new sophisticated Android spyware, tracked as PhoneSpy, as part of an ongoing campaign. Researchers from Zimperium zLabs uncovered an ongoing campaign aimed at infecting the mobile phones of South Korean users with new sophisticated android spyware dubbed PhoneSpy. Zimperium concludes.

Spyware 137

Spyware Mobile Social Engineering Surveillance 137

Malwarebytes

AUGUST 30, 2023

Anonymous hackers have breached the servers of spyware app “WebDetetive ” , accessing the user database. Spyware apps are installed on a potential victim’s phone without permission and lurk invisibly, collecting data and sending it back to the app operator. Use an antivirus on your phone.

Spyware 97

Spyware Mobile Antivirus Software 97

SecureWorld News

JUNE 27, 2022

The commercial spyware industry is alive and thriving, according to a report released last week by Google's Threat Analysis Group (TAG). The report specifically details an Italian vendor, RCS Labs, and its "Hermit" surveillance malware (aka spyware) used on mobile phones. RELATED: Spyware Pariah: NSO Group Placed on U.S.

Spyware 65

Spyware Surveillance Mobile Government 65

Security Affairs

OCTOBER 11, 2021

A Togolese human rights advocate was hit by mobile spyware that has been allegedly developed by an Indian firm called Innefu Labs. Experts believe the attackers used a spyware developed by an Indian company called Innefu Labs. In the past, the Donot Team spyware was found in attacks outside of South Asia.

Spyware 81

Spyware Surveillance Accountability Mobile 81

Hackology

NOVEMBER 11, 2023

The emergence of Kamran spyware, targeting users of a regional news website, has raised concerns among cybersecurity experts. Distributed through a possible watering-hole attack on the Hunza News website , the spyware prompts users to grant permissions, allowing access to sensitive data.

Spyware 45

Spyware Malware Risk Mobile 45

Security Affairs

FEBRUARY 11, 2021

Lookout researchers provided details about two Android spyware families employed by an APT group tracked as Confucius. Researchers at mobile security firm Lookout have provided details about two recently discovered Android spyware families, dubbed Hornbill and SunBird, used by an APT group named Confucius. ” concludes the report.

Spyware 109

Spyware Surveillance Malware Mobile 109

Security Affairs

MARCH 27, 2021

Researchers spotted a sophisticated Android spyware that implements exfiltration capabilities and surveillance features, including recording audio and phone calls. Experts from security firm Zimperium have spotted a new sophisticated Android spyware that masquerades itself as a System Update application. Pierluigi Paganini.

Spyware 102

Spyware Malware Surveillance Mobile 102

Security Affairs

NOVEMBER 26, 2021

A threat actor, tracked as APT C-23, is using new powerful Android spyware in attacks aimed at targets in the Middle East. The APT C-23 cyberespionage group (also known as GnatSpy, FrozenCell, or VAMP) continues to target entities in the Middle East with enhanced Android spyware masqueraded as seemingly harmless app updates (i.e.

Spyware 92

Spyware Social Engineering Surveillance Engineering 92

Security Affairs

FEBRUARY 24, 2021

The threat actors used by spyware to take over the target systems, spy on the victims, and exfiltrate data. “This unlawful surveillance violates the right to privacy and stifles freedom of expression.” The link points to files containing spyware that could infect both Mac OS or Windows systems. Pierluigi Paganini.

Spyware 89

Spyware Surveillance Government Phishing 89

Security Affairs

APRIL 8, 2020

In October 2019, WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks against its users. In May, Facebook has patched a critical zero-day vulnerability in WhatsApp, tracked as CVE-2019-3568 , that has been exploited to remotely install spyware on phones by calling the targeted device.

Surveillance 100

Surveillance Spyware Advertising Government 100

Security Affairs

SEPTEMBER 27, 2020

Experts from Amnesty International uncovered a surveillance campaign that targeted Egyptian civil society organizations with a new version of FinSpy spyware. The binaries are obfuscated and do some checks to detect if the spyware is running in a Virtual Machine. ” reads the Amnesty’s report.

Spyware 138

Spyware Surveillance Mobile Advertising 138

Malwarebytes

JANUARY 11, 2023

On Monday, the US Supreme Court denied the NSO Group's petition for a writ of certiorari , a request to the high court to review its case, signaling that Meta's WhatsApp can go ahead with its case against the Israeli-based company behind the Pegasus spyware. Keep threats off your devices by downloading Malwarebytes today.

Spyware 91

Spyware Surveillance Government Internet 91

Security Affairs

SEPTEMBER 27, 2023

The issue made the headline under another CVEs because it was actively exploited to deploy surveillance spyware, and it was tracked separately as CVE-2023-41064 and CVE-2023-4863. Rezilion researchers reported that the scope of this vulnerability is much wider than initially assumed. ” reads the analysis published by Rezilion.

Spyware 118

Spyware Surveillance Software Hacking 118

Security Affairs

SEPTEMBER 9, 2018

CheckPoint uncovered an extensive surveillance operation conducted by Iranian APT actor and tracked as Domestic Kitten aimed at specific groups of individuals. ” This means that the Domestic Kitten surveillance operation had collateral victims whose details were leaked from contact lists or conversations with the targets.

Surveillance 49

Surveillance Mobile Advertising Spyware 49

Malwarebytes

JANUARY 29, 2024

For decades, governments and companies have surveilled the conversations, movements, and behavior of the public. DAVID RUIZ : We know that mass surveillance has this “Collect it all” mentality—of the NSA, obviously, but also from companies that gather clicks and shares and locations and app downloads and all of that.

Surveillance 77

Surveillance Government Advertising Spyware 77

SecureWorld News

OCTOBER 21, 2022

A new version of the Android malware "FurBall" has been discovered to be used by the threat actor(s) known as Domestic Kitten in a campaign targeting Iranian citizens in a mobile surveillance operation. Though it has the Google Play logo, the app is not available in the Google Play store and downloads directly from Domestic Kitten's server.

Malware 74

Malware Spyware Government Surveillance 74

Malwarebytes

AUGUST 26, 2021

Researchers from Citizen Lab, an academic research and development lab based in the University of Toronto in Canada, has recently discovered that an exploit affecting iMessage is being used to target Bahraini activists with the Pegasus spyware. We saw the FORCEDENTRY exploit successfully deployed against iOS versions 14.4

Spyware 99

Spyware Surveillance Social Engineering Government 99

SecureWorld News

DECEMBER 23, 2020

Pegasus spyware is a phone surveillance solution that enables customers to remotely exploit and monitor devices. The company sells its surveillance technology to governments around the world. And watchdog groups say its products are often found to be used in surveillance abuses. Spyware attacks becoming harder to detect.

Spyware 52

Spyware Surveillance Hacking Media 52

Security Affairs

APRIL 16, 2023

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

Data breaches 71

Data breaches Spyware Retail Surveillance 71

Hacker's King

MAY 20, 2023

Call forwarding, Botnets, Spyware: Securing Devices and Networks More sophisticated methods of bypassing 2FA involve compromising the user’s device. Additionally, using botnets or spyware can allow hackers to access the user’s device, monitor activities, and extract sensitive information, including 2FA codes.

Authentication 52

Authentication Social Engineering Spyware Engineering 52

Security Affairs

NOVEMBER 24, 2020

The two apps were discovered by Palo Alto Networks, which identify them, along with other apps leaking data, using a machine learning (ML)-based spyware detection system. The two apps had a total of more than 6 million downloads at the time of their discovery.

Data collection 108

Data collection Mobile Spyware Surveillance 108

eSecurity Planet

OCTOBER 21, 2022

From ransomware attacks locking businesses out of their data until they pay potentially millions of dollars to spyware tracking users’ every move through their infected device, the effects of malware can be devastating. This information can range from what websites you visit to your download history to your bank PIN.

Malware 75

Malware Adware Spyware Antivirus 75

Security Affairs

APRIL 17, 2020

Syrian-linked APT group SEA recently used COVID-19-themed lures as part of a long-running surveillance campaign, security researchers warn. AndoServer samples are purely surveillance software used to spy on the victims, while SLRat is as an Android remote admin tool. ” reads the analysis published by the Lookout.

Surveillance 92

Surveillance Telecommunications Mobile Advertising 92

Security Affairs

JANUARY 21, 2022

“The purpose of the implant is to facilitate the deployment of user-mode malware that stages execution of further payloads downloaded from the internet;” reads the analysis published by Kaspersky. A UEFI bootkit implanted in the firmware could not be detected by AVs and any defense solution running on the OS level.

Firmware 128

Firmware Malware Spyware Surveillance 128

Security Affairs

SEPTEMBER 24, 2023

0-days exploited by commercial surveillance vendor in Egypt PREDATOR IN THE WIRES OilRig’s Outer Space and Juicy Mix: Same ol’ rig, new drill pipes Cybersecurity Apple and Google Are Introducing New Ways to Defeat Cell Site Simulators, But Is it Enough?

Cyber Attacks 82

Cyber Attacks Firewall Data breaches Telecommunications 82

Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches 93

Data breaches Malware Mobile Spyware 93

Malwarebytes

APRIL 17, 2024

There are new relationships in which the rules around privacy and sharing are still being agreed upon, old relationships in which power imbalances are deeply entrenched, and, of course, abusive relationships in which non-consensual tracking and surveillance are used as levers of control. The man murdered his two children.

Risk 121

Risk Spyware Surveillance Cybersecurity 121

Schneier on Security

DECEMBER 24, 2019

ToTok, introduced only months ago, was downloaded millions of times from the Apple and Google app stores by users throughout the Middle East, Europe, Asia, Africa and North America.

Government 218

Government Spyware Surveillance Malware 218

SecureList

NOVEMBER 30, 2021

Based on forensic analysis of numerous mobile devices, Amnesty International’s Security Lab found that the software was repeatedly used in an abusive manner for surveillance. As part of the infection chain, Lazarus used a downloader named Racket, which they signed using a stolen certificate.

Malware 100

Malware Mobile Spyware Surveillance 100

The Security Ledger

MAY 14, 2019

An Israeli firm has exploited a flaw in the popular messaging mobile app WhatsApp to plant spyware on iPhones and Android. » Related Stories Report: Bad Bots sent One in Five Web Requests in 2018 Drive-By Malware Uses Google Sites for Drive by Download Attacks Mysterious Trisis Malware Strikes Again.

Spyware 40

Spyware Mobile Malware Software 40

SecureWorld News

AUGUST 8, 2022

Cybercriminals often use malware to gain access to a computer or mobile device to deploy viruses, worms, Trojans, ransomware, spyware, and rootkits. MOUSEISLAND MOUSEISLAND is usually found within the embedded macros of a Microsoft Word document and can download other payloads. Qakbot can also be used to form botnets.

Malware 80

Malware Banking Penetration Testing Healthcare 80

Security Affairs

JULY 7, 2019

ViceLeaker Android spyware targets users in the Middle East. China installs a surveillance app on tourists phones while crossing in the Xinjiang. Updates for Samsung, the scam app with 10M+ downloads. Israeli blamed Russia for jamming at Israeli Ben Gurion airport. New variant of Dridex banking Trojan implements polymorphism.

Scams 47

Scams Spyware DNS Advertising 47

SecureList

OCTOBER 26, 2021

Following this, they were tricked into downloading previously unknown malware. On June 3, Check Point published a report about an ongoing surveillance operation targeting a Southeast Asian government, and attributed the malicious activities to a Chinese-speaking threat actor named SharpPanda. The C2 domain code.microsoft[.]com

Malware 140

Malware Government Surveillance Spyware 140

eSecurity Planet

OCTOBER 21, 2022

From facial recognition to surveillance cameras to time trackers or just having a couple guys standing over employees’ shoulders, there are a multitude of ways to make sure employees are staying on-task and being productive. Businesses have long wondered if employees are staying focused and doing their jobs.

Computers and Electronics 125

Computers and Electronics Surveillance Software Artificial Intelligence 125

SecureList

MARCH 13, 2024

In most countries around the world, use of stalkerware is currently not prohibited, but installing a surveillance application on another person’s smartphone without their consent is illegal and punishable. Stalkerware capabilities vary depending on the application, and whether they have been paid for or downloaded for free.

Mobile 78

Mobile Passwords Surveillance Technology 78

SecureList

SEPTEMBER 28, 2021

FinSpy, also known as FinFisher or Wingbird , is an infamous surveillance toolset. Kaspersky has been tracking deployments of this spyware since 2011. While the nature of this anomaly remained unknown, we began detecting some suspicious installers of legitimate applications, backdoored with a relatively small obfuscated downloader.

Encryption 141

Encryption Malware Spyware Architecture 141

SecureList

APRIL 27, 2021

During routine monitoring of detections for FinFisher spyware tools, we discovered traces that point to recent FinFly Web deployments. Initial reconnaissance is performed by the actor and communication with the implant is handed off to a second-stage C2 for additional downloads.

Malware 138

Malware Spyware Government Social Engineering 138