Security Affairs

FEBRUARY 8, 2021

Iran-linked APT group Domestic Kitten, also tracked as APT-C-50, has been conducting widespread surveillance targeting over 1,000 individuals. Both groups have conducted long-running cyber-attacks and intrusive surveillance campaigns, which target both individuals’ mobile devices and personal computers.”

Surveillance 100

Surveillance Mobile Malware Cyber Attacks 100

Security Affairs

APRIL 13, 2022

According to a report published by Reuters, an Israeli surveillance software was used to spy on senior officials in the European Commission. 26 email reviewed by Reuters, a senior tech staffer sent a message to colleagues with background about Israeli hacking tools and a request to be on the lookout for additional warnings from Apple.”

Surveillance 93

Surveillance Software Spyware Hacking 93

Security Affairs

OCTOBER 14, 2020

Earlier this month, German authorities have raided the offices of FinFisher, the German surveillance software firm, accused of providing its software to oppressive regimes. FinSpy can spy on most popular desktop and mobile operating systems, including Android, iOS, Windows, macOS, and Linux. SecurityAffairs – hacking, K-Electric).

Surveillance 112

Surveillance Spyware Software Advertising 112

Security Affairs

JUNE 17, 2022

Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.

Spyware 79

Spyware Surveillance Telecommunications Mobile 79

Security Affairs

APRIL 1, 2023

CISA has added nine flaws to its Known Exploited Vulnerabilities catalog, including bugs exploited by commercial spyware on mobile devices. Cybersecurity and Infrastructure Security Agency (CISA) has added nine new vulnerabilities to its Known Exploited Vulnerabilities Catalog.

Spyware 81

Spyware Surveillance Mobile Education 81

Security Affairs

APRIL 14, 2021

WhatsApp addressed two security vulnerabilities in its app for Android that could have been exploited to remotely hack the victim’s device. or greater on the Android platform, as previous versions are vulnerable to the aforementioned bugs and may allow for remote user surveillance. SecurityAffairs – hacking, WhatsApp).

Mobile 103

Mobile Hacking Encryption Surveillance 103

Security Affairs

JANUARY 17, 2024

The method allow to discover stealthy and poweful surveillance software like NSO Group ‘s Pegasus , Intellexa ‘s Predator , QuaDream ‘s Reign. The researchers focused on an unexpected system log, Shutdown.log, which is present in any mobile iOS device. ” continues the report. ” continues the report.

Spyware 125

Spyware Mobile Malware Surveillance 125

Security Affairs

DECEMBER 21, 2020

Tens of Al Jazeera employees were targeted in a cyber espionage campaign leveraging a zero-click iOS zero-day vulnerability to hack their iPhones. Researchers from Citizen Lab reported that at least 36 Al Jazeera employees were targeted in a cyber espionage campaign leveraging a zero-click iOS zero-day vulnerability to hack their iPhones.

Hacking 131

Hacking Surveillance Spyware Government 131

Security Affairs

SEPTEMBER 3, 2023

Hacks QakBot, Quietly Removes Botnet Infections Under Siege: Rapid7-Observed Exploitation of Cisco ASA SSL VPNs Why is.US Being Used to Phish So Many of Us?

Social Engineering 107

Social Engineering Spyware Data breaches Surveillance 107

Security Affairs

JULY 20, 2023

The nation-state actors are turning their focus to mobile devices because these devices are high-value targets for cyber espionage operations. APT41 historically attempted to exploit web-facing applications and infiltrate traditional endpoint devices, but the two spyware demonstrates the interest of the group in targeting mobile platforms.

Spyware 83

Spyware Surveillance Mobile Malware 83

Security Affairs

SEPTEMBER 3, 2020

According to an anonymous Belarusian security researcher the app was designed for surveillance purposes, it collects info on the device owner and geolocation data, then periodically sends the data back to a remote server. SecurityAffairs – hacking, Belarusian government). ,” reads the message published by Nexta on Telegram.

Surveillance 98

Surveillance Government Advertising Malware 98

Security Affairs

NOVEMBER 10, 2021

Researchers from Zimperium zLabs uncovered an ongoing campaign aimed at infecting the mobile phones of South Korean users with new sophisticated android spyware dubbed PhoneSpy. The malware already hit more than a thousand South Korean victims. The malware also allows an attacker to remotely control the infected mobile devices.

Spyware 140

Spyware Mobile Social Engineering Surveillance 140

Threatpost

SEPTEMBER 21, 2020

A new Android malware strain has been uncovered, part of the Rampant Kitten threat group's widespread surveillance campaign that targets Telegram credentials and more.

Malware 120

Malware Passwords Surveillance Authentication 120

Security Affairs

DECEMBER 30, 2019

The United Arab Emirates denied reports that the popular mobile app ToTok was used as part of a government massive surveillance program. According to a report recently published by the New York Times , the popular app ToTok was used by the UAE government as a surveillance tool. SecurityAffairs – ToTok, surveillance).

Surveillance 62

Surveillance Government Telecommunications Advertising 62

Security Affairs

FEBRUARY 11, 2021

Researchers at mobile security firm Lookout have provided details about two recently discovered Android spyware families, dubbed Hornbill and SunBird, used by an APT group named Confucius. Since 2018, the hackers started targeting mobile users with an Android surveillance malware ChatSpy. ” concludes the report.

Spyware 112

Spyware Surveillance Malware Mobile 112

Security Affairs

APRIL 9, 2019

In the last weeks, a new Android surveillance malware dubbed Exodus made the headlines, now expert found the iOS version of the government spyware. Security experts at LookOut have discovered an iOS version of the dreaded surveillance Android app Exodus that was initially found on the official Google Play Store.

Surveillance 70

Surveillance Spyware Phishing Malware 70

Security Affairs

MARCH 30, 2019

The malware was tracked as Exodus, after the name of the command and control servers the malicious apps connected to. The malware was undetected for months, and unfortunately, this isn’t the first time that malicious codes are hosted on the Google Play store without being detected. ” continues the report.

Government 89

Government Malware Spyware Surveillance 89

SecureWorld News

AUGUST 8, 2022

Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Cyber Security Centre (ACSC) released a joint Cybersecurity Advisory (CSA) providing details on the top malware strains of 2021. The top malware strains in 2021 included remote access Trojans (RATs), banking Trojans, information stealers, and ransomware.

Malware 87

Malware Banking Healthcare Penetration Testing 87

Security Affairs

APRIL 17, 2020

Syrian-linked APT group SEA recently used COVID-19-themed lures as part of a long-running surveillance campaign, security researchers warn. “STE has a history of hosting infrastructure for the Syrian Electronic Army (SEA), a Syrian state-sponsored hacking group. SecurityAffairs – SEA, hacking). The experts conclude.”It

Surveillance 93

Surveillance Telecommunications Mobile Advertising 93

Security Affairs

SEPTEMBER 18, 2020

Security researchers discovered Android malware capable of bypassing 2FA that was developed by an Iran-linked group dubbed Rampant Kitten. Security researchers from Check Point discovered an Android malware, developed by an Iran-linked group dubbed Rampant Kitten, that is able to bypass 2FA. SecurityAffairs – hacking, Rampant Kitten).

Malware 104

Malware Phishing Accountability Advertising 104

Security Affairs

MAY 29, 2023

Security researchers at Cisco Talos and the Citizen Lab have shared technical details about a commercial Android spyware named Predator that is sold by the surveillance firm Intellexa (formerly known as Cytrox). The attacks aimed at installing the surveillance spyware Predator, developed by the North Macedonian firm Cytrox.

Spyware 91

Spyware Surveillance Media Malware 91

Security Affairs

SEPTEMBER 12, 2019

Cybersecurity researchers at AdaptiveMobile Security disclosed a critical vulnerability in SIM cards dubbed SimJacker that could be exploited by remote attackers to compromise targeted mobile phones and spy on victims just by sending an SMS. “ Simjacker represents a clear danger to the mobile operators and subscribers.

Hacking 107

Hacking Mobile Spyware Manufacturing 107

Security Affairs

SEPTEMBER 27, 2020

Experts from Amnesty International uncovered a surveillance campaign that targeted Egyptian civil society organizations with a new version of FinSpy spyware. FinSpy can spy on most popular desktop and mobile operating systems, including Android, iOS, Windows, macOS, and Linux. SecurityAffairs – hacking, FinSpy).

Spyware 139

Spyware Surveillance Mobile Advertising 139

Security Affairs

AUGUST 24, 2021

The iPhones of nine activists, including members of the Bahrain Center for Human Rights , Waad , Al Wefaq , were infected with Pegasus spyware as part of a surveillance operation likely orchestrated by a threat actor tracked as LULU and attributed with high confidence to the government of Bahrain. as a zero-day.” Pierluigi Paganini.

Spyware 98

Spyware Surveillance Hacking Mobile 98

Security Affairs

OCTOBER 4, 2019

Researchers at Check Point discovered that Egypt ‘ government has been spying citizens in a sophisticated surveillance program. Researchers at Check Point discovered that the Egyptian government has been spying on activists and opponents as part of a sophisticated surveillance program. SecurityAffairs – Egypt, surveillance).

Mobile 83

Mobile Surveillance Government Advertising 83

Security Affairs

DECEMBER 16, 2020

Security experts spotted a new malware strain, named Goontact, that allows its operators to spy on both Android and iOS users. The malware allows operators to retrieve phone identifiers and steal contacts, SMS messages, photos, and even location data. SecurityAffairs – hacking, Goontact). ” continues the report.

Spyware 113

Spyware Mobile Surveillance Malware 113

Security Affairs

JULY 19, 2021

Pegasus Project investigation into the leak of 50,000 phone numbers of potential surveillance targets revealed the abuse of NSO Group’s spyware. Pegasus Project is the name of a large-scale investigation into the leak of 50,000 phone numbers of potential surveillance targets that revealed the abuse of NSO Group’s spyware.

Spyware 115

Spyware Government Surveillance Media 115

Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches 94

Data breaches Malware Mobile Spyware 94

Security Affairs

JULY 3, 2019

Chinese border guards are secretly installing a surveillance app on smartphones of tourists and people crossings in the Xinjiang region who are entering from Kyrgyzstan. The surveillance software allows operators to spy on victims, accessing emails, text messages, contacts, calendar entries, call records. Pierluigi Paganini.

Surveillance 65

Surveillance Spyware Advertising Government 65

Security Affairs

SEPTEMBER 28, 2019

Researchers are warning of a new variant of recently disclosed SimJacker attack, dubbed WIBattack , that could expose millions of mobile phones to remote hacking. WIBattack is a new variant of the recently discovered Simjacker attack method that could expose millions of mobile phones to remote hacking.

Hacking 90

Hacking Mobile Risk Advertising 90

Security Affairs

SEPTEMBER 9, 2018

CheckPoint uncovered an extensive surveillance operation conducted by Iranian APT actor and tracked as Domestic Kitten aimed at specific groups of individuals. ” This means that the Domestic Kitten surveillance operation had collateral victims whose details were leaked from contact lists or conversations with the targets. .

Surveillance 50

Surveillance Mobile Advertising Spyware 50

Security Affairs

JULY 15, 2023

Government agencies SonicWall urges organizations to fix critical flaws in GMS/Analytics products Citrix fixed a critical flaw in Secure Access Client for Ubuntu Cl0p hacker operating from Russia-Ukraine war front line – exclusive Fortinet fixed a critical flaw in FortiOS and FortiProxy Microsoft mitigated an attack by Chinese threat actor Storm-0558 (..)

Spyware 91

Spyware Hacking Data breaches Mobile 91

Security Affairs

OCTOBER 11, 2021

A Togolese human rights advocate was hit by mobile spyware that has been allegedly developed by an Indian firm called Innefu Labs. The company denied any involvement in the surveillance campaign attributed to the Donot Team APT. SecurityAffairs – hacking, Donot Team APT). photos, files), and spy on WhatsApp communications.

Spyware 84

Spyware Surveillance Accountability Mobile 84

Security Affairs

APRIL 17, 2022

SecurityAffairs – hacking, newsletter). To nominate, please visit:? Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. The post Security Affairs newsletter Round 361 by Pierluigi Paganini appeared first on Security Affairs.

Wireless 77

Wireless Data breaches Hacking Surveillance 77

Security Affairs

AUGUST 29, 2021

SecurityAffairs – hacking, newsletter). SecurityAffairs – hacking, newsletter). Be sure it is up to date! LPE zero-day flaw in Razer Synapse allows attackers to take over Windows PCs Memorial Health System forced to cancel surgeries after ransomware attack Google discloses unpatched Microsoft WFP Default Rules AppContainer Bypass EoP.

Spyware 103

Spyware Data breaches Surveillance Hacking 103

Security Affairs

MARCH 27, 2021

Researchers spotted a sophisticated Android spyware that implements exfiltration capabilities and surveillance features, including recording audio and phone calls. “The “System Update” app was identified by zLabs researchers who noticed an Android application being detected by the z9 malware engine powering zIPS on-device detection. .

Spyware 105

Spyware Malware Surveillance Mobile 105

Security Affairs

JUNE 26, 2022

SecurityAffairs – hacking, newsletter). SecurityAffairs awarded as Best European Personal Cybersecurity Blog 2022 Crooks are using RIG Exploit Kit to push Dridex instead of Raccoon stealer Flagstar Bank discloses a data breach that impacted 1.5 Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Small Business 80

Small Business Spyware Data breaches Surveillance 80