'Stealth Soldier' Attacks Target Libyan Government Entities With Surveillance Malware
Dark Reading
JUNE 12, 2023
Surveillance malware targets Libyan government entities, with possible links to a 2019 Egypt attack campaign.
This site uses cookies to improve your experience. By viewing our content, you are accepting the use of cookies. To help us insure we adhere to various privacy regulations, please select your country/region of residence. If you do not select a country we will assume you are from the United States. View our privacy policy and terms of use.
Dark Reading
JUNE 12, 2023
Surveillance malware targets Libyan government entities, with possible links to a 2019 Egypt attack campaign.
Security Affairs
AUGUST 6, 2022
Greek intelligence admitted it had spied on a journalist, while citizens ask the government to reveal the use of surveillance malware. The head of the Greek intelligence told a parliamentary committee that they had spied on a journalist with surveillance malware , Reuters reported citing two sources present.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Penetration Testing
NOVEMBER 20, 2023
A novel cyberattack on Ukrainian government institutions was executed using Remcos, a remote access tool painfully familiar in research circles.
Security Affairs
SEPTEMBER 3, 2020
Google has removed an app from the Play Store that was used by the Belarusian government to spy on anti-government protesters. Google has removed the app NEXTA LIVE ( com.moonfair.wlkm ) from the official Play Store because it was used by the Belarusian government to spy on anti-government protesters. site (89.223.89[.]47).”
Security Affairs
FEBRUARY 6, 2022
One of the Apple iOS zero-day flaws exploited by the NSO group was also used by another surveillance firm named QuaDream. One of the vulnerabilities in Apple iOS that was previously exploited by the spyware developed by the Israeli company NSO Group was also separately used by another surveillance firm named QuaDream.
The Hacker News
MAY 25, 2022
An unknown advanced persistent threat (APT) group has been linked to a series of spear-phishing attacks targeting Russian government entities since the onset of the Russo-Ukrainian war in late February 2022. The campaigns [.]
Security Affairs
DECEMBER 30, 2019
The United Arab Emirates denied reports that the popular mobile app ToTok was used as part of a government massive surveillance program. According to a report recently published by the New York Times , the popular app ToTok was used by the UAE government as a surveillance tool. SecurityAffairs – ToTok, surveillance).
Schneier on Security
SEPTEMBER 13, 2018
Some of us -- myself included -- have proposed lawful government hacking as an alternative to backdoors. A new report from the Center of Internet and Society looks at the security risks of allowing government hacking. From the report's conclusion: Government hacking is often lauded as a solution to the "going dark" problem.
Security Affairs
APRIL 17, 2023
The Israeli surveillance firm QuaDream is allegedly shutting down its operations after Citizen Lab and Microsoft uncovered their spyware. Last week Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. and 14.4.2,
Security Affairs
NOVEMBER 11, 2022
Lookout researchers discovered two long-running surveillance campaigns targeting the ethnic minority Uyghurs. Researchers from mobile security firm Lookout uncovered two long-running surveillance campaigns targeting the Uyghurs minority. Bazar is a lesser known spelling of Bazaar.” ” reads the report published by Lookout.
Security Affairs
MARCH 30, 2019
Security researchers have found a new government spyware, tracked as Exodus, that was distributed through the Google Play Store. The malware was tracked as Exodus, after the name of the command and control servers the malicious apps connected to. Google said that less than 1,000 people were infected with malware , all Italian users.
Security Affairs
JULY 19, 2021
Pegasus Project investigation into the leak of 50,000 phone numbers of potential surveillance targets revealed the abuse of NSO Group’s spyware. Pegasus Project is the name of a large-scale investigation into the leak of 50,000 phone numbers of potential surveillance targets that revealed the abuse of NSO Group’s spyware.
Heimadal Security
SEPTEMBER 29, 2021
The FinFisher surveillance solution was developed by the Gamma Group but it also comes with malware-like capabilities often found in spyware strains. The post Windows Boot Manager Hijacked by FinFisher Malware appeared first on Heimdal Security Blog. Researchers Investigated […].
Security Affairs
APRIL 13, 2022
According to a report published by Reuters, an Israeli surveillance software was used to spy on senior officials in the European Commission. ” “It was the first time Apple had sent a mass alert to users that they were in government hackers’ crosshairs.” ” reported the Reuters. Pierluigi Paganini.
CyberSecurity Insiders
MAY 2, 2022
Spanish Government has released a press statement confirming Pegasus malware on the smart phones of Spanish Prime Minister (PM), Pedro Sanchez and the region’s Defense Minister, Margarita Robles. The United States banned NSO Group, that developed Pegasus surveillance software, last year.
Security Affairs
JUNE 17, 2022
Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.
Security Affairs
MARCH 2, 2024
Court ordered surveillance firm NSO Group to hand over the source code for its Pegasus spyware and other products to Meta. Judge ordered the surveillance firm to hand over the source code for its Pegasus spyware and other products to the social network giant. from April 29, 2018, to May 10, 2020).
Security Affairs
OCTOBER 14, 2020
Earlier this month, German authorities have raided the offices of FinFisher, the German surveillance software firm, accused of providing its software to oppressive regimes. The post German authorities raid the offices of the FinFisher surveillance firm appeared first on Security Affairs. Pierluigi Paganini.
Security Affairs
MARCH 5, 2024
government sanctioned two individuals and five entities linked to the development and distribution of the Predator spyware used to target Americans. The surveillance software was also used to spy on U.S. government officials, journalists, and policy experts. government officials, journalists, and policy experts. .
Security Affairs
JUNE 24, 2022
Researchers from Google’s Threat Analysis Group (TAG) revealed that the Italian surveillance firm RCS Labs was helped by some Internet service providers (ISPs) in Italy and Kazakhstan to infect Android and iOS users with their spyware. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.
Security Affairs
FEBRUARY 6, 2024
The latest report published by Google Threat Analysis Group (TAG), titled “ Buying Spying, an in-depth report with our insights into Commercial Surveillance Vendors (CSVs )”, warns of the rise of commercial spyware vendors and the risks to free speech, the free press, and the open internet. ” concludes Google.
CyberSecurity Insiders
AUGUST 26, 2021
As the Pegasus malware nuisance is slowly found politically gripping the entire world, companies offering security solutions to mobile users are getting busy in finding out a solution that helps protect against the infection repercussions caused by the Pegasus Malware.
Security Affairs
SEPTEMBER 4, 2022
The author of the remote access trojan (RAT) CodeRAT has leaked the source code of its malware on GitHub. The development team behind the remote access trojan (RAT) CodeRAT has leaked the source code of its malware on GitHub after the. Experts believe that the malware is a surveillance software used by the Iranian government.
Security Affairs
JANUARY 14, 2021
Security experts from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian government institutions and private companies. Malware researchers from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian entities exclusively. Pierluigi Paganini.
SecureWorld News
OCTOBER 21, 2022
A new version of the Android malware "FurBall" has been discovered to be used by the threat actor(s) known as Domestic Kitten in a campaign targeting Iranian citizens in a mobile surveillance operation. This led the United States government, along with Australia, Canada, and the U.K.,
Security Affairs
DECEMBER 24, 2019
According to a report published by the New York Times, the popular app ToTok was used by the UAE government as a surveillance tool. The report said US intelligence officials and a security researcher determined the app was being used by the UAE government for detailed surveillance. SecurityAffairs – ToTok, surveillence).
Security Affairs
APRIL 9, 2019
In the last weeks, a new Android surveillance malware dubbed Exodus made the headlines, now expert found the iOS version of the government spyware. Security experts at LookOut have discovered an iOS version of the dreaded surveillance Android app Exodus that was initially found on the official Google Play Store.
Threatpost
JULY 16, 2021
Candiru, aka Sourgum, allegedly sells the DevilsTongue surveillance malware to governments around the world.
Security Affairs
JULY 3, 2019
Chinese border guards are secretly installing a surveillance app on smartphones of tourists and people crossings in the Xinjiang region who are entering from Kyrgyzstan. The surveillance software allows operators to spy on victims, accessing emails, text messages, contacts, calendar entries, call records. ” continues the NYT.
Schneier on Security
SEPTEMBER 3, 2019
China is being blamed for a massive surveillance operation that targeted Uyghur Muslims. Earlier this year, Google's Project Zero found a series of websites that have been using zero-day vulnerabilities to indiscriminately install malware on iPhones that would visit the site. The vulnerabilities were patched in iOS 12.1.4,
Security Affairs
MAY 21, 2020
The Chafer APT group has distributed data stealer malware since at least mid-2014, it was focused on surveillance operations and the tracking of individuals. Anyway we cannot underestimate that these hacking groups are extending their range of action targeting government and organizations worldwide. Pierluigi Paganini.
Security Affairs
SEPTEMBER 14, 2023
A joint investigation conducted by Access Now and the Citizen Lab revealed that the journalist, who is at odds with the Russian government, was infected with the surveillance software. However, there is no public evidence that the Russian government is a client of the Israeli surveillance firm NSO Group.
Security Affairs
JULY 20, 2023
government. Both malware relies on modules that are downloaded after the apps are installed to exfiltrate data from the infected devices. These commands include instructing the malware to upload log files, photos stored on the device, and acquire device location using the Baidu Location library.”
Security Affairs
FEBRUARY 10, 2022
Spyware are powerful weapons in the arsenal of governments and cybercrime gangs. These tools are even more sophisticated and are able to evade detection by using so-called zero-day exploits allowing attackers to bypass the defense of government organizations and businesses. Is the Pegasus spyware as a game-changer?
Security Affairs
MARCH 3, 2023
According to rumors, the Polish special services are using surveillance software to spy on government opponents. The PiS government admitted having used the spyware, but pointed out the Pegasus was never used against political opponents. The politicians who inspired and commissioned these activities belong in prison.”
Security Affairs
JULY 14, 2021
The vulnerabilities were exploited in three different campaigns analyzed by the researchers, it is interesting to note that three out of four exploits were developed by the same surveillance firm, The fourth exploit ( CVE-2021-1879 ) was likely developed by a Russia-linked APT group. ” reads the post published by Google.
Security Affairs
SEPTEMBER 3, 2023
ransomware builder used by multiple threat actors Cisco fixes 3 high-severity DoS flaws in NX-OS and FXOS software Cybercrime Unpacking the MOVEit Breach: Statistics and Analysis Cl0p Ups The Ante With Massive MOVEit Transfer Supply-Chain Exploit FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown U.S.
Security Affairs
JUNE 20, 2020
Malicious Chrome browser extensions were employed in a surveillance campaign on a large scale, millions of users potentially impacted. According to Awake Security, the extensions were downloaded 33 million times and they were part of a massive surveillance campaign that was aided by the internet domain registrar CommuniGal Communication Ltd.
CyberSecurity Insiders
AUGUST 7, 2022
Research carried out by Reversing Labs suggests that a new ransomware is invading government related Linux Systems in South Korea and the malware is mainly targeting industries and pharmaceutical companies. Like all other ransomware variants, Gwisin is also indulging in double extortion tactics.
CyberSecurity Insiders
JUNE 23, 2022
A freshly released update from Lookout also confirms the use of a surveillance tool on several communication devices of dignitaries from across the world. Cybersecurity Insiders have learned that the tool name is Hermit and was also been profusely found on android phones used by government officials in Kazakhstan.
Security Affairs
AUGUST 7, 2022
Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% Pierluigi Paganini.
Security Affairs
SEPTEMBER 9, 2018
CheckPoint uncovered an extensive surveillance operation conducted by Iranian APT actor and tracked as Domestic Kitten aimed at specific groups of individuals. ” This means that the Domestic Kitten surveillance operation had collateral victims whose details were leaked from contact lists or conversations with the targets.
Security Affairs
NOVEMBER 1, 2021
Experts uncovered a new threat actor, tracked as Balikbayan Foxes, that is impersonating the Philippine government to spread malware. . Both Remcos and NanoCore are used for information gathering, data exfiltration, surveillance, and control of the victims’ computers. . ” reads the analysis published by the experts.
Security Affairs
NOVEMBER 30, 2022
Google’s Threat Analysis Group (TAG) linked three exploitation frameworks to a Spanish surveillance spyware vendor named Variston. TAG’s research suggests that the above issues were utilized as zero-days in the wild by the surveillance vendor. ” TAG concludes.
Expert insights. Personalized for you.
We have resent the email to
Are you sure you want to cancel your subscriptions?
Let's personalize your content