SecureWorld News

DECEMBER 23, 2020

Pegasus spyware is a phone surveillance solution that enables customers to remotely exploit and monitor devices. The company sells its surveillance technology to governments around the world. The spyware also accessed the LocationSupport.framework and CoreLocation.framework, which can be used to track the user’s location.

Spyware 52

Spyware Surveillance Hacking Media 52

Security Affairs

JUNE 21, 2020

Maze ransomware gang hacked M&A firm Threadstone Advisors LLP Ransomware attack disrupts operations at Australian beverage company Lion Tech firms suspend use of ‘biased facial recognition technology Accessories giant Claires is the victim of a Magecart attack, credit card data exposed Black Kingdom ransomware operators exploit Pulse VPN flaws (..)

DDOS 94

DDOS Spyware Mobile Advertising 94

Security Affairs

NOVEMBER 14, 2021

Hundreds of thousands of fake warnings of cyberattacks sent from a hacked FBI email server GravityRAT returns disguised as an end-to-end encrypted chat app Intel and AMD address high severity vulnerabilities in products and drivers New evolving Abcbot DDoS botnet targets Linux systems Retail giant Costco discloses data breach, payment card data exposed (..)

Spyware 53

Spyware Data breaches Ransomware Retail 53

SecureList

NOVEMBER 23, 2021

For instance, we see a new trend emerging in the criminal ecosystem of spyware-based authentication data theft, with each individual attack being directed at a very small number of targets (from single digits to several dozen). Update firewalls and SSL VPN gateways in good time.

Spyware 110

Spyware Phishing Cybercrime Energy and Utilities 110

Security Boulevard

MAY 3, 2021

The UK Security Service MI5 said 10,000 staff from every UK government department and from important UK industries have been lured by fake LinkedIn profiles. The United States should lead by example and execute a sustained, aggressive, whole of government, intelligence-driven anti-ransomware campaign, coordinated by the White House.

Ransomware 124

Ransomware Passwords Scams Government 124

Security Affairs

NOVEMBER 17, 2019

Tracking Iran-linked APT33 group via its own VPN networks. New TA2101 threat actor poses as government agencies to distribute malware. WhatsApp flaw CVE-2019-11931 could be exploited to install spyware. Flaws in Qualcomm chips allows stealing private from devices. DDoS-for-Hire Services operator sentenced to 13 months in prison.

DDOS 50

DDOS Spyware Advertising Ransomware 50

Security Affairs

OCTOBER 27, 2019

Autoclerk travel reservations platform data leak also impacts US Government and military. NordVPN, TorGuard, and VikingVPN VPN providers disclose security breaches. Swedish Government grants police the use of spyware against violent crime suspects. Winnti APT group uses skip-2.0 malware to control Microsoft SQL Servers.

Spyware 41

Spyware Advertising Hacking DDOS 41

eSecurity Planet

MARCH 27, 2023

.” The three activity sets included a campaign against the Philippine government between March and May 2022; a campaign against telecommunications and business service providers in South Asia in April 2022; and a campaign against organizations in Belarus and Russia in May 2022.

Firewall 103

Firewall Internet Internet Telecommunications 103

Hacker Combat

APRIL 21, 2021

For the past few months, the restrictions imposed by governments to combat pandemic concerns have encouraged employees to practice the “work from home” scheme. Perimeter 81 is designed to streamline cloud and application access, secure network, and provides an SDP service to address the VPN replacement use case.

Cybersecurity 70

Cybersecurity Digital transformation Adware Spyware 70

SecureList

NOVEMBER 17, 2021

In 2020, we predicted that governments would adopt a “name and shame” strategy to draw attention to the activities of hostile APT groups, a trend that has evolved even more in the last year. The Israeli Defense Forces (IDF) have claimed that threat actors have been using catfishing to lure Israeli soldiers into installing spyware.

Mobile 135

Mobile Surveillance Ransomware Government 135

SecureList

OCTOBER 26, 2021

In June, more than six months after DarkHalo had gone dark, we observed the DNS hijacking of multiple government zones of a CIS member state that allowed the attacker to redirect traffic from government mail servers to computers under their control – probably achieved by obtaining credentials to the control panel of the victims’ registrar.

Malware 143

Malware Government Surveillance Spyware 143

eSecurity Planet

MAY 2, 2024

Sophos: Noted that 43% of all 2023 malware signature updates are for stealers, spyware, and keyloggers often used to steal credentials from devices. 60% of all mobile and browser zero-days are exploited by spyware vendors. 20% increase accesses of specific organizations advertised. 60% of all breaches come from the USA.

Cybersecurity 119

Cybersecurity DDOS Penetration Testing Passwords 119

SecureList

APRIL 27, 2021

This resulted in the deployment of a custom backdoor, named Sunburst, on the networks of more than 18,000 SolarWinds customers, including many large corporations and government bodies, in North America, Europe, the Middle East and Asia. One of those Fobushell samples was identical to another we previously identified on a Zebrocy C2 server.

Malware 142

Malware Spyware Government Social Engineering 142

SecureList

NOVEMBER 1, 2022

In most cases, the targets appear to be diplomatic and government organizations in Europe. In June, we identified a previously unknown Android spyware app that targets Persian-speaking individuals. It provides victims with a VPN connection that can be used to browse these resources. í religion that are banned in Iran.

Malware 142

Malware Ransomware Spyware Encryption 142

SecureList

NOVEMBER 14, 2022

In 2022, the GReAT team tracked several threat actors leveraging SilentBreak’s toolset as well as a commercial Android spyware we named MagicKarakurt. Okta was breached through one of its service providers, Sitel, itself compromised via the insecure VPN gateway of a recently acquired company.

Firmware 111

Firmware Surveillance Mobile Telecommunications 111