Schneier on Security

SEPTEMBER 13, 2018

Some of us -- myself included -- have proposed lawful government hacking as an alternative to backdoors. A new report from the Center of Internet and Society looks at the security risks of allowing government hacking. From the report's conclusion: Government hacking is often lauded as a solution to the "going dark" problem.

Government 163

Government Hacking Risk Surveillance 163

Security Affairs

APRIL 17, 2023

The Israeli surveillance firm QuaDream is allegedly shutting down its operations after Citizen Lab and Microsoft uncovered their spyware. Last week Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. and 14.4.2,

Surveillance 83

Surveillance Spyware Education Media 83

Security Affairs

NOVEMBER 11, 2022

Lookout researchers discovered two long-running surveillance campaigns targeting the ethnic minority Uyghurs. Researchers from mobile security firm Lookout uncovered two long-running surveillance campaigns targeting the Uyghurs minority. Bazar is a lesser known spelling of Bazaar.” ” reads the report published by Lookout.

Surveillance 90

Surveillance Spyware Malware Mobile 90

Security Affairs

MARCH 30, 2019

Security researchers have found a new government spyware, tracked as Exodus, that was distributed through the Google Play Store. The malware was tracked as Exodus, after the name of the command and control servers the malicious apps connected to. Google said that less than 1,000 people were infected with malware , all Italian users.

Government 88

Government Malware Spyware Surveillance 88

Security Affairs

JULY 19, 2021

Pegasus Project investigation into the leak of 50,000 phone numbers of potential surveillance targets revealed the abuse of NSO Group’s spyware. Pegasus Project is the name of a large-scale investigation into the leak of 50,000 phone numbers of potential surveillance targets that revealed the abuse of NSO Group’s spyware.

Spyware 113

Spyware Government Surveillance Media 113

Heimadal Security

SEPTEMBER 29, 2021

The FinFisher surveillance solution was developed by the Gamma Group but it also comes with malware-like capabilities often found in spyware strains. The post Windows Boot Manager Hijacked by FinFisher Malware appeared first on Heimdal Security Blog. Researchers Investigated […].

Malware 121

Malware Spyware Surveillance Government 121

Security Affairs

APRIL 13, 2022

According to a report published by Reuters, an Israeli surveillance software was used to spy on senior officials in the European Commission. ” “It was the first time Apple had sent a mass alert to users that they were in government hackers’ crosshairs.” ” reported the Reuters. Pierluigi Paganini.

Surveillance 92

Surveillance Software Spyware Hacking 92

CyberSecurity Insiders

MAY 2, 2022

Spanish Government has released a press statement confirming Pegasus malware on the smart phones of Spanish Prime Minister (PM), Pedro Sanchez and the region’s Defense Minister, Margarita Robles. The United States banned NSO Group, that developed Pegasus surveillance software, last year.

Malware 107

Malware Surveillance Software Government 107

Security Affairs

JUNE 17, 2022

Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.

Spyware 77

Spyware Surveillance Telecommunications Mobile 77

Security Affairs

MARCH 2, 2024

Court ordered surveillance firm NSO Group to hand over the source code for its Pegasus spyware and other products to Meta. Judge ordered the surveillance firm to hand over the source code for its Pegasus spyware and other products to the social network giant. from April 29, 2018, to May 10, 2020).

Spyware 121

Spyware Surveillance Architecture Software 121

Security Affairs

OCTOBER 14, 2020

Earlier this month, German authorities have raided the offices of FinFisher, the German surveillance software firm, accused of providing its software to oppressive regimes. The post German authorities raid the offices of the FinFisher surveillance firm appeared first on Security Affairs. Pierluigi Paganini.

Surveillance 110

Surveillance Spyware Software Advertising 110

Security Affairs

MARCH 5, 2024

government sanctioned two individuals and five entities linked to the development and distribution of the Predator spyware used to target Americans. The surveillance software was also used to spy on U.S. government officials, journalists, and policy experts. government officials, journalists, and policy experts. .

Spyware 99

Spyware Surveillance Government Technology 99

Security Affairs

JUNE 24, 2022

Researchers from Google’s Threat Analysis Group (TAG) revealed that the Italian surveillance firm RCS Labs was helped by some Internet service providers (ISPs) in Italy and Kazakhstan to infect Android and iOS users with their spyware. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Surveillance 110

Surveillance Mobile Spyware Telecommunications 110

Security Affairs

FEBRUARY 6, 2024

The latest report published by Google Threat Analysis Group (TAG), titled “ Buying Spying, an in-depth report with our insights into Commercial Surveillance Vendors (CSVs )”, warns of the rise of commercial spyware vendors and the risks to free speech, the free press, and the open internet. ” concludes Google.

Spyware 103

Spyware Surveillance Government Software 103

CyberSecurity Insiders

AUGUST 26, 2021

As the Pegasus malware nuisance is slowly found politically gripping the entire world, companies offering security solutions to mobile users are getting busy in finding out a solution that helps protect against the infection repercussions caused by the Pegasus Malware.

Mobile 142

Mobile Malware Surveillance Software 142

Security Affairs

SEPTEMBER 4, 2022

The author of the remote access trojan (RAT) CodeRAT has leaked the source code of its malware on GitHub. The development team behind the remote access trojan (RAT) CodeRAT has leaked the source code of its malware on GitHub after the. Experts believe that the malware is a surveillance software used by the Iranian government.

Malware 98

Malware Surveillance Government Hacking 98

Security Affairs

JANUARY 14, 2021

Security experts from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian government institutions and private companies. Malware researchers from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian entities exclusively. Pierluigi Paganini.

Malware 107

Malware Surveillance Phishing Government 107

SecureWorld News

OCTOBER 21, 2022

A new version of the Android malware "FurBall" has been discovered to be used by the threat actor(s) known as Domestic Kitten in a campaign targeting Iranian citizens in a mobile surveillance operation. This led the United States government, along with Australia, Canada, and the U.K.,

Malware 82

Malware Spyware Government Surveillance 82

Security Affairs

DECEMBER 24, 2019

According to a report published by the New York Times, the popular app ToTok was used by the UAE government as a surveillance tool. The report said US intelligence officials and a security researcher determined the app was being used by the UAE government for detailed surveillance. SecurityAffairs – ToTok, surveillence).

Government 61

Government Surveillance Advertising Mobile 61

Security Affairs

APRIL 9, 2019

In the last weeks, a new Android surveillance malware dubbed Exodus made the headlines, now expert found the iOS version of the government spyware. Security experts at LookOut have discovered an iOS version of the dreaded surveillance Android app Exodus that was initially found on the official Google Play Store.

Surveillance 68

Surveillance Spyware Phishing Malware 68

Threatpost

JULY 16, 2021

Candiru, aka Sourgum, allegedly sells the DevilsTongue surveillance malware to governments around the world.

Spyware 100

Spyware Surveillance Government Malware 100

Security Affairs

JULY 3, 2019

Chinese border guards are secretly installing a surveillance app on smartphones of tourists and people crossings in the Xinjiang region who are entering from Kyrgyzstan. The surveillance software allows operators to spy on victims, accessing emails, text messages, contacts, calendar entries, call records. ” continues the NYT.

Surveillance 64

Surveillance Spyware Advertising Government 64

Schneier on Security

SEPTEMBER 3, 2019

China is being blamed for a massive surveillance operation that targeted Uyghur Muslims. Earlier this year, Google's Project Zero found a series of websites that have been using zero-day vulnerabilities to indiscriminately install malware on iPhones that would visit the site. The vulnerabilities were patched in iOS 12.1.4,

Hacking 235

Hacking Surveillance Malware Government 235

Security Affairs

MAY 21, 2020

The Chafer APT group has distributed data stealer malware since at least mid-2014, it was focused on surveillance operations and the tracking of individuals. Anyway we cannot underestimate that these hacking groups are extending their range of action targeting government and organizations worldwide. Pierluigi Paganini.

Government 114

Government Social Engineering Telecommunications Hacking 114

Security Affairs

SEPTEMBER 14, 2023

A joint investigation conducted by Access Now and the Citizen Lab revealed that the journalist, who is at odds with the Russian government, was infected with the surveillance software. However, there is no public evidence that the Russian government is a client of the Israeli surveillance firm NSO Group.

Spyware 90

Spyware Surveillance Media Government 90

Security Affairs

JULY 20, 2023

government. Both malware relies on modules that are downloaded after the apps are installed to exfiltrate data from the infected devices. These commands include instructing the malware to upload log files, photos stored on the device, and acquire device location using the Baidu Location library.”

Spyware 81

Spyware Surveillance Mobile Malware 81

Security Affairs

FEBRUARY 10, 2022

Spyware are powerful weapons in the arsenal of governments and cybercrime gangs. These tools are even more sophisticated and are able to evade detection by using so-called zero-day exploits allowing attackers to bypass the defense of government organizations and businesses. Is the Pegasus spyware as a game-changer?

Spyware 89

Spyware Hacking Ransomware Surveillance 89

Security Affairs

MARCH 3, 2023

According to rumors, the Polish special services are using surveillance software to spy on government opponents. The PiS government admitted having used the spyware, but pointed out the Pegasus was never used against political opponents. The politicians who inspired and commissioned these activities belong in prison.”

Spyware 89

Spyware Surveillance Hacking Government 89

Security Affairs

JULY 14, 2021

The vulnerabilities were exploited in three different campaigns analyzed by the researchers, it is interesting to note that three out of four exploits were developed by the same surveillance firm, The fourth exploit ( CVE-2021-1879 ) was likely developed by a Russia-linked APT group. ” reads the post published by Google.

Surveillance 143

Surveillance Government Internet Internet 143

Security Affairs

SEPTEMBER 3, 2023

ransomware builder used by multiple threat actors Cisco fixes 3 high-severity DoS flaws in NX-OS and FXOS software Cybercrime Unpacking the MOVEit Breach: Statistics and Analysis Cl0p Ups The Ante With Massive MOVEit Transfer Supply-Chain Exploit FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown U.S.

Social Engineering 104

Social Engineering Spyware Data breaches Surveillance 104

Security Affairs

JUNE 20, 2020

Malicious Chrome browser extensions were employed in a surveillance campaign on a large scale, millions of users potentially impacted. According to Awake Security, the extensions were downloaded 33 million times and they were part of a massive surveillance campaign that was aided by the internet domain registrar CommuniGal Communication Ltd.

Surveillance 114

Surveillance Internet Internet Advertising 114

CyberSecurity Insiders

AUGUST 7, 2022

Research carried out by Reversing Labs suggests that a new ransomware is invading government related Linux Systems in South Korea and the malware is mainly targeting industries and pharmaceutical companies. Like all other ransomware variants, Gwisin is also indulging in double extortion tactics.

Ransomware 118

Ransomware Surveillance Encryption Cryptocurrency 118

CyberSecurity Insiders

JUNE 23, 2022

A freshly released update from Lookout also confirms the use of a surveillance tool on several communication devices of dignitaries from across the world. Cybersecurity Insiders have learned that the tool name is Hermit and was also been profusely found on android phones used by government officials in Kazakhstan.

Spyware 96

Spyware Mobile Government Surveillance 96

Security Affairs

AUGUST 7, 2022

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% Pierluigi Paganini.

Spyware 121

Spyware Manufacturing Small Business Surveillance 121

Security Affairs

SEPTEMBER 9, 2018

CheckPoint uncovered an extensive surveillance operation conducted by Iranian APT actor and tracked as Domestic Kitten aimed at specific groups of individuals. ” This means that the Domestic Kitten surveillance operation had collateral victims whose details were leaked from contact lists or conversations with the targets.

Surveillance 49

Surveillance Mobile Advertising Spyware 49

Security Affairs

NOVEMBER 1, 2021

Experts uncovered a new threat actor, tracked as Balikbayan Foxes, that is impersonating the Philippine government to spread malware. . Both Remcos and NanoCore are used for information gathering, data exfiltration, surveillance, and control of the victims’ computers. . ” reads the analysis published by the experts.

Malware 92

Malware Government Surveillance Phishing 92

Security Affairs

NOVEMBER 30, 2022

Google’s Threat Analysis Group (TAG) linked three exploitation frameworks to a Spanish surveillance spyware vendor named Variston. TAG’s research suggests that the above issues were utilized as zero-days in the wild by the surveillance vendor. ” TAG concludes.

Spyware 100

Spyware Surveillance Risk Internet 100