SecureList

JUNE 21, 2023

Over the years, there have been multiple cases when iOS devices were infected with targeted spyware such as Pegasus, Predator, Reign and others. Due to this granularity, discovering one exploit in the chain often does not result in retrieving the rest of the chain and obtaining the final spyware payload.

Spyware 134

Spyware Encryption Passwords Backups 134

Security Affairs

MARCH 27, 2021

Researchers spotted a sophisticated Android spyware that implements exfiltration capabilities and surveillance features, including recording audio and phone calls. Experts from security firm Zimperium have spotted a new sophisticated Android spyware that masquerades itself as a System Update application. ” concludes the report.

Spyware 103

Spyware Malware Surveillance Mobile 103

Dark Reading

SEPTEMBER 8, 2023

Legitimate-seeming Telegram "mods" available in the official Google Play store for the encrypted messaging app signal the rise of a new enterprise threat.

Spyware 128

Spyware Mobile Encryption 128

Malwarebytes

APRIL 11, 2024

Mercenary spyware is used by governments to target people like journalists, political activists, and similar targets, and involves the use of sophisticated tools like Pegasus. Pegasus is one of the world’s most advanced and invasive spyware tools, known to utilize zero-day vulnerabilities against mobile devices.

Spyware 115

Spyware Government Mobile Password Management 115

Heimadal Security

NOVEMBER 15, 2021

GravityRAT, a Remote Access Trojan, is being spread in the wild once more, this time disguised as SoSafe Chat, an end-to-end encrypted chat application. GravityRAT is a spyware-type of malware that enables threat actors to steal data from compromised machines. The trojan has […].

Encryption 84

Encryption Spyware Malware Cybersecurity 84

Security Affairs

NOVEMBER 24, 2021

federal court for illegally targeting its customers with the surveillance spyware Pegasus. The complaint provides new information on how NSO Group infected victims’ devices with its Pegasus spyware. Apple has sued NSO Group and its parent company Q Cyber Technologies in a U.S. ” reads the announcement published by Apple.

Spyware 85

Spyware Surveillance Software Hacking 85

Krebs on Security

SEPTEMBER 4, 2018

Before it was taken offline sometime in the past 12 hours, the database contained millions of records, including the username, password and private encryption key of each mSpy customer who logged in to the mSpy site or purchased an mSpy license over the past six months. In September 2014, U.S. In September 2014, U.S.

Spyware 186

Spyware Mobile Advertising Software 186

Security Affairs

OCTOBER 29, 2021

The Hive ransomware operators have developed a new variant of their malware that can encrypt Linux and FreeBSD. ESET researchers discovered a new Hive ransomware variant that was specifically developed to encrypt Linux and FreeBSD. The Hive ransomware adds the.hive extension to the filename of encrypted files. .

Encryption 106

Encryption Ransomware Spyware Malware 106

Schneier on Security

JUNE 23, 2021

Its spyware is also said to be equipped with a keylogger, which means every keystroke made on an infected device — including passwords, search queries and messages sent via encrypted messaging apps — can be tracked and monitored.

Manufacturing 260

Manufacturing Spyware Surveillance Marketing 260

Security Affairs

JUNE 15, 2020

The Earth Empusa threat group is distributing new Android spyware, dubbed ActionSpy, through watering hole attacks to targets Turkic minority group. ActionSpy, which may have been around since 2017, is an Android spyware that allows the attacker to collect information from the compromised devices,” reads the report published by Trend Micro.

Spyware 66

Spyware Advertising Encryption Phishing 66

Security Boulevard

FEBRUARY 11, 2021

Hornbill and SunBird have sophisticated capabilities to exfiltrate SMS message content, encrypted messaging app content, geolocation, contact information, call logs, as well. The post Lookout Threat Researchers Discover State-Sponsored Android Spyware Connected to Confucius APT appeared first on Security Boulevard.

Spyware 69

Spyware Encryption 69

Thales Cloud Protection & Licensing

NOVEMBER 24, 2020

Mitigating Ransomware Attacks – Decoupling Encryption Keys From Encrypted Data. Once the hackers gain an inside entry in an organisation’s IT systems, they deploy a file-encrypting malware known as ransomware. While front line defense mechanisms like firewalls, anti-theft, anti-spyware, etc. Wed, 11/25/2020 - 05:55.

Encryption 62

Encryption Ransomware Backups System Administration 62

Security Affairs

AUGUST 15, 2020

The malware also implements ransomware behavior, it is able to encrypt files and display a ransom note. The post XCSSET Mac spyware spreads via Xcode Projects appeared first on Security Affairs. The malware also allows attackers to capture screenshots and exfiltrate stolen documents to the attackers’ server. Pierluigi Paganini.

Spyware 121

Spyware Malware Advertising Cryptocurrency 121

Security Affairs

SEPTEMBER 8, 2019

Security experts at Google have removed from Google Play 24 apps because they were infected with a new spyware tracked as “the Joker.” ” Google has removed from Google Play 24 apps because they were infected with a new spyware tracked as “the Joker.” ” states the analysis. The C&C URL 6.

Spyware 93

Spyware Advertising Malware Cryptocurrency 93

ZoneAlarm

SEPTEMBER 12, 2023

These mods, eerily similar to the original and laden with spyware capabilities, pose a substantial threat to individual and business users alike. Telegram, an encrypted messaging application, allows and encourages the development … The post The Hidden Dangers of Telegram Mods on Google Play appeared first on ZoneAlarm Security Blog.

Spyware 74

Spyware Encryption Data privacy Malware 74

Security Affairs

SEPTEMBER 10, 2023

Researchers from Kaspersky discovered several Telegram mods on the Google Play Store that contained spyware, the campaign was tracked as Evil Telegram. The collected information is then encrypted and cached into a temporary file named tgsync.s3. The app sends this temporary file to the command server at certain intervals.”

Spyware 122

Spyware Advertising Encryption Hacking 122

Security Affairs

SEPTEMBER 27, 2020

Experts from Amnesty International uncovered a surveillance campaign that targeted Egyptian civil society organizations with a new version of FinSpy spyware. The binaries are obfuscated and do some checks to detect if the spyware is running in a Virtual Machine. ” reads the Amnesty’s report.

Spyware 138

Spyware Surveillance Mobile Advertising 138

SecureWorld News

NOVEMBER 21, 2023

The report, titled " Predator Files: Caught in the Net ," delves into the operations of the "Intellexa alliance," a complex network of interconnected companies that develop and market powerful spyware used to monitor and manipulate individuals worldwide. Cytrox is now part of Intellexa."

Surveillance 106

Surveillance Spyware Media Technology 106

Security Affairs

JULY 18, 2019

The researchers attribute the spyware to the Russia-linked and Gamaredon Group. die3” to encrypt or decrypt data to and from the C&C. The post Experts spotted a rare Linux Desktop spyware dubbed EvilGnome appeared first on Security Affairs. ” reads the analysis published by Intezer. Pierluigi Paganini.

Spyware 84

Spyware Malware Advertising Cyber Attacks 84

Security Affairs

MARCH 11, 2019

In July, the experts discovered a new sophisticated version of the AZORult Spyware that was involved in a large email campaign on July 18. ” One of the variants analyzed by BleepingComputer encrypts data and appends the.promorad extension to encrypted files, then it creates ransom notes named _readme.txt as shown below.

Encryption 84

Encryption Ransomware Cryptocurrency Passwords 84

Security Affairs

SEPTEMBER 4, 2018

The company that sells the parental control spyware app Family Orbit has been hacked, pictures of hundreds of monitored children were left online. The company that sells the parental control spyware app Family Orbit has been hacked, the pictures of hundreds of monitored children were left online only protected by a password.

Spyware 50

Spyware Hacking Data breaches Passwords 50

Security Affairs

JUNE 4, 2023

Xplain hack impacted the Swiss cantonal police and Fedpol Zyxel published guidance for protecting devices from ongoing attacks Kimsuky APT poses as journalists and broadcast writers in its attacks New Linux Ransomware BlackSuit is similar to Royal ransomware CISA adds Progress MOVEit Transfer zero-day to its Known Exploited Vulnerabilities catalog (..)

Spyware 85

Spyware Hacking Malware Social Engineering 85

Security Affairs

OCTOBER 16, 2023

Encrypted messaging app Signal denied claims of an alleged zero-day flaw in its platform after a responsible investigation. The popular encrypted messaging app Signal denied claims of an alleged zero-day vulnerability in its platform. “PSA: we have seen the vague viral reports alleging a Signal 0-day vulnerability.

Spyware 103

Spyware Surveillance Encryption Mobile 103

Security Affairs

APRIL 16, 2019

Scranos is a powerful cross-platform rootkit-enabled spyware discovered while investigating malware posing as legitimate software like video players, drivers and even anti-virus products. Browsing History Stealer Payload — This payload collects Chrome’s browsing history and sends it to the C&C in an encrypted form.

Spyware 69

Spyware Adware Malware Accountability 69

SiteLock

AUGUST 27, 2021

A VPN provides a secure internet connection, ensuring your browsing data is encrypted for maximum privacy and security. VPNs are the baseline cybersecurity tool to safeguard internet-enabled devices and a home network. Many companies are re-thinking BYOD policies in recent years in order to protect their business networks.

IoT 98

IoT Spyware VPN Passwords 98

eSecurity Planet

OCTOBER 18, 2022

However, even with the best planning, organizations can find a few users, machines, or systems that were overlooked or whose backup may be corrupted or encrypted. How Does Ransomware Encryption Work? Ransomware encryption works like any other encryption. The file extensions of the encrypted files will also provide a clue.

Ransomware 135

Ransomware Encryption Insurance Backups 135

CyberSecurity Insiders

NOVEMBER 24, 2021

Encryption of audio and video- Most apps like ZOOM that are used to hold video conferences offer audio and video conferences with end-to-end encryption video conferencing. So, here are some video conferencing security best practices-. For instance, a 2FA received on a mobile phone through an SMS delivered through wireless connection.

Risk 137

Risk Identity Theft Authentication Wireless 137

Malwarebytes

JULY 11, 2022

TikTok is “unacceptable security risk” and should be removed from app stores, says FCC Google to delete location data of trips to abortion clinics IconBurst software supply chain attack offers malicious versions of NPM packages Discord Shame channel goes phishing Verified Twitter accounts phished via hate speech warnings Apple Lockdown (..)

Cyber Insurance 76

Cyber Insurance Insurance Spyware Healthcare 76

CyberSecurity Insiders

APRIL 17, 2023

According to the analysis of MalwareHunterTeam, the encryption was found on a ZIP file on the database of VirusTotal, which offers cloud-based security services. What if the app is being circulated to spread malware, spyware, or espionage-related tools? And that’s true!

Ransomware 101

Ransomware Spyware Encryption Internet 101

Security Affairs

AUGUST 27, 2021

In order to facilitate file encryption, the ransomware look for processes associated with backups, anti-virus/anti-spyware, and file copying and terminates them. The Hive ransomware adds the.hive extension to the filename of encrypted files. The malware deletes the Hive executable and the hive.bat script. key.hive or *.key.*.

Ransomware 97

Ransomware Encryption Spyware Backups 97

SecureList

SEPTEMBER 8, 2023

The collected information is then encrypted and cached into a temporary file named tgsync.s3. Encryption of exfiltrated data The app’s malicious functionality does not end at stealing messages. The app sends this temporary file to the command server at certain intervals.

Encryption 109

Encryption Spyware Accountability Malware 109

Malwarebytes

AUGUST 26, 2021

Researchers from Citizen Lab, an academic research and development lab based in the University of Toronto in Canada, has recently discovered that an exploit affecting iMessage is being used to target Bahraini activists with the Pegasus spyware.

Spyware 97

Spyware Surveillance Social Engineering Government 97

SecureWorld News

MARCH 28, 2023

Phil Stokes of SentinelOne wrote in a recent blog post: "Perhaps prized above all data on a user's Mac is the user's keychain, an encrypted database used to store passwords, authentication tokens, and encryption keys.

Passwords 86

Passwords Encryption Malware Spyware 86

Security Affairs

DECEMBER 3, 2022

Google fixed the ninth actively exploited Chrome zeroday this year A new Linux flaw can be chained with other two bugs to gain full root privileges Attack of drones: airborne cybersecurity nightmare Cuba Ransomware received over $60M in Ransom payments as of August 2022 Android Keyboard Apps with 2 Million downloads can remotely hack your device New (..)

Spyware 92

Spyware Data breaches VPN Hacking 92

CyberSecurity Insiders

NOVEMBER 1, 2021

Small businesses have far less sophisticated and encrypted communications, making it possible to easily compromise their systems. . Use passcodes and anti-spyware programs. Malicious hackers prey on organizations worldwide and in different sectors, but smaller companies have it worse. Develop a mobile device protection strategy.

Small Business 134

Small Business Cybersecurity Wireless Spyware 134

Malwarebytes

FEBRUARY 16, 2021

April’s global shutdown was accompanied by a staggering rise in the use of stalkerware, a short-hand term for the type of mobile monitoring and spyware apps that are sometimes deployed by abusive partners. In short, in 2020, cyberthreats evolved. New adversaries crawled out of the woodwork, too.

Malware 123

Malware Scams Spyware Healthcare 123

eSecurity Planet

JUNE 16, 2022

Cyber criminals may damage, destroy, steal, encrypt, expose, or leak data as well as cause harm to a system. Encrypted threats spiked 167%, ransomware increased 105%, and 5.4 In May, cybersecurity researchers revealed that ransomware attacks are increasing their aggressive approach by destroying data instead of encrypting it.

Backups 141

Backups Ransomware Firewall Malware 141