Firmware, Media and Spyware - Cyber Security Informer

Samsung zero-day flaw actively exploited in the wild

Security Affairs

OCTOBER 22, 2024

The fact that Google TAG discovered the flaw suggests that commercial spyware vendors may have used the exploit to target Samsung devices. Google researchers reported that the vulnerability explained that the issue resides in a driver that provides hardware acceleration for media functions like JPEG decoding and image scaling.

Firmware

Firmware Mobile Spyware Media

Privacy Roundup: Week 11 of Year 2025

Security Boulevard

MARCH 17, 2025

The 200+ Sites an ICE Surveillance Contractor is Monitoring 404media A contractor for ICE (and other US government agencies) has built a tool that facilitates pulling a target's publicly available data from various sources - which include social media networks, apps, and services.

Surveillance

Surveillance Data breaches Spyware Malware

3 Percent ($30B) of U.S. Military Funding Dedicated to Cybersecurity

SecureWorld News

JANUARY 9, 2025

Protecting military mobile devices Standards and policies will be implemented to secure Department of Defense mobile devices from foreign spyware. Agencies must report any compromises involving foreign spyware over the past two years. "We're finally repaying those businesses so they can maintain essential connectivity."

Cybersecurity

Cybersecurity Manufacturing Surveillance Ransomware

Security Affairs newsletter Round 503 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 22, 2024

CISA adds Microsoft Windows Kernel-Mode Driver and Adobe ColdFusion flaws to its Known Exploited Vulnerabilities catalog ConnectOnCall data breach impacted over 900,000 individuals Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware Multiple flaws in Volkswagen Group’s infotainment unit allow for vehicle compromise (..)

Data breaches

Data breaches Cybercrime Spyware Firmware

IT threat evolution Q1 2022

SecureList

MAY 27, 2022

MoonBounce: the dark side of UEFI firmware. Late last year, we became aware of a UEFI firmware-level compromise through logs from our firmware scanner (integrated into Kaspersky products at the start of 2019). One of the things you can do to protect yourself from advanced mobile spyware is to reboot your device on a daily basis.

Phishing

Phishing Spyware Firmware Malware

Spyware in the IoT – the Biggest Privacy Threat This Year

SiteLock

AUGUST 27, 2021

Data security is a problem for anyone who has an online account, whether it be for health services, banking, or social media. Most manufacturers of IoT enabled devices update their firmware frequently. What Can You Do to Protect Your Networked Devices? The growing list of IoT network threats should put all of us on our guard.

IoT

IoT Spyware VPN Passwords

APT annual review 2021

SecureList

NOVEMBER 30, 2021

Possibly the biggest story of 2021, an investigation by the Guardian and 16 other media organizations, published in July, suggested that over 30,000 human rights activists, journalists and lawyers across the world may have been targeted using Pegasus. Firmware vulnerabilities.

Malware

Malware Mobile Spyware Surveillance

ESET Product Review

eSecurity Planet

FEBRUARY 26, 2021

The Unified Extensible Firmware Interface (UEFI) scanner is a valuable tool for protecting firmware. Capabilities for scanning firmware are not common in antimalware solutions, setting ESET ahead of the competition in this vertical. This tool can block suspicious emails that may contain spyware, ransomware and phishing websites.

Antivirus

Antivirus Firmware Encryption Spyware

ESET Product Review

eSecurity Planet

FEBRUARY 26, 2021

The Unified Extensible Firmware Interface (UEFI) scanner is a valuable tool for protecting firmware. Capabilities for scanning firmware are not common in antimalware solutions, setting ESET ahead of the competition in this vertical. This tool can block suspicious emails that may contain spyware, ransomware and phishing websites.

Antivirus

Antivirus Firmware Encryption Spyware

Privacy Roundup: Week 6 of Year 2025

Security Boulevard

FEBRUARY 10, 2025

Spyware maker Paragon terminates contract with Italian government: media reports TechCrunch This campaign was included in Week 5 of the Privacy Roundup , where Meta disrupted a campaign on WhatsApp targeting approximately 100 users with Paragon Spyware. this is certainly a news item worth paying attention to.

Spyware

Spyware Surveillance Government Data breaches

Advanced threat predictions for 2024

SecureList

NOVEMBER 14, 2023

In May, Ars Technica reported that BootGuard private keys had been stolen following a ransomware attack on Micro-Star International (MSI) in March this year (firmware on PCs with Intel chips and BootGuard enabled will only run if it is digitally signed using the appropriate keys).

Hacking

Hacking Malware Energy and Utilities Government

Cyber Threats to the FIFA World Cup Qatar 2022

Digital Shadows

NOVEMBER 10, 2022

Threat actors can develop fake mobile apps to install adware, steal PII and financial data, extract cookies and credentials, and download further payloads (such as spyware) from a remote-controlled domain. During our research we collected dozens of social media pages impersonating assets belonging to the Qatar 2022 World Cup.

Cyber threats

Cyber threats Media Social Engineering DDOS

Our capabilities. A story about what we can achieve

Pen Test Partners

MAY 26, 2025

Our investigation revealed spyware with call-forwarding and banking credential capture, likely installed via custom firmware on the device. Phone, Malware, Action Prize winner Setup In a case eerily reminiscent of a prize scam, a second victim reported receiving a phone won through a social media competition.

Banking

Banking VPN Ransomware Scams

Network Protection: How to Secure a Network

eSecurity Planet

MARCH 22, 2023

The smallest organizations can perform this through a visual inspection and a review of the media access control (MAC) addresses connected to the network. Endpoint Security: Antivirus , anti-spyware , endpoint detection and response (EDR), and other controls should be deployed to secure the endpoint against compromise.

Firewall

Firewall Network Security Penetration Testing Encryption

Types of Malware & Best Malware Protection Practices

eSecurity Planet

FEBRUARY 16, 2021

Additional features of botnets include spam, ad and click fraud, and spyware. Cybersecurity vendors like Panda Security suggest the best way to defend against crimeware is using a combination of antivirus, anti-spyware, firewalls, and threat detection technology. Firmware rootkit. Jump ahead: Adware. Bots and botnets.

Malware

Malware Adware Spyware Antivirus

APT trends report Q3 2021

SecureList

OCTOBER 26, 2021

The samples we analyzed mimicked various applications such as private messaging, VPN, and media services. Historically, its Windows implant was represented by a single-stage spyware installer. This is done via links to malicious landing pages or direct messages via some instant messaging platform such as WhatsApp.

Malware

Malware Government Surveillance Spyware

Cyber Security Informer

Samsung zero-day flaw actively exploited in the wild

Privacy Roundup: Week 11 of Year 2025

Trending Sources

3 Percent ($30B) of U.S. Military Funding Dedicated to Cybersecurity

Security Affairs newsletter Round 503 by Pierluigi Paganini – INTERNATIONAL EDITION

IT threat evolution Q1 2022

Spyware in the IoT – the Biggest Privacy Threat This Year

APT annual review 2021

ESET Product Review

ESET Product Review

Privacy Roundup: Week 6 of Year 2025

Advanced threat predictions for 2024

Cyber Threats to the FIFA World Cup Qatar 2022

Our capabilities. A story about what we can achieve

Network Protection: How to Secure a Network

Types of Malware & Best Malware Protection Practices

APT trends report Q3 2021

Stay Connected