Hacking, Malware and Surveillance - Cyber Security Informer

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports

Security Affairs

AUGUST 6, 2022

Greek intelligence admitted it had spied on a journalist, while citizens ask the government to reveal the use of surveillance malware. The head of the Greek intelligence told a parliamentary committee that they had spied on a journalist with surveillance malware , Reuters reported citing two sources present.

Surveillance

Surveillance Malware Spyware Government

Iranian govt uses BouldSpy Android malware for internal surveillance operations

Security Affairs

MAY 1, 2023

Iranian authorities have been spotted using the BouldSpy Android malware to spy on minorities and traffickers. Researchers at the Lookout Threat Lab have discovered a new Android surveillance spyware, dubbed BouldSpy, that was used by the Law Enforcement Command of the Islamic Republic of Iran (FARAJA). continues the report.

Surveillance

Surveillance Malware Spyware Education

Massive iPhone Hack Targets Uyghurs

Schneier on Security

SEPTEMBER 3, 2019

China is being blamed for a massive surveillance operation that targeted Uyghur Muslims. Earlier this year, Google's Project Zero found a series of websites that have been using zero-day vulnerabilities to indiscriminately install malware on iPhones that would visit the site. The vulnerabilities were patched in iOS 12.1.4,

Hacking

Hacking Surveillance Malware Government

Surveillance firm’s leaked docs show the purchase of an $8M iOS RCE zero-day exploit?

Security Affairs

AUGUST 28, 2022

Leaked documents show the surveillance firm Intellexa offering exploits for iOS and Android devices for $8 Million. Intellexa is an Israeli surveillance firm founded by Israeli entrepreneur Tal Dilian, it offers surveillance and hacking solution to law enforcement and intelligence agencies. Pierluigi Paganini.

Surveillance

Surveillance Spyware Mobile Hacking

Israeli surveillance firm QuaDream emerges from the dark

Security Affairs

FEBRUARY 6, 2022

One of the Apple iOS zero-day flaws exploited by the NSO group was also used by another surveillance firm named QuaDream. One of the vulnerabilities in Apple iOS that was previously exploited by the spyware developed by the Israeli company NSO Group was also separately used by another surveillance firm named QuaDream.

Surveillance

Surveillance Spyware Government Hacking

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

Security Affairs

NOVEMBER 11, 2022

Lookout researchers discovered two long-running surveillance campaigns targeting the ethnic minority Uyghurs. Researchers from mobile security firm Lookout uncovered two long-running surveillance campaigns targeting the Uyghurs minority. Bazar is a lesser known spelling of Bazaar.” ” reads the report published by Lookout.

Surveillance

Surveillance Spyware Malware Mobile

White hat hackers gained access more than 150,000 surveillance cameras

Security Affairs

MARCH 10, 2021

A group of hackers claimed to have compromised more than 150,000 surveillance cameras at banks, jails, schools, and prominent companies like Tesla and Equinox. Hackers also posted images captured from the hacked surveillance video on Twitter with an #OperationPanopticon hashtag. SecurityAffairs – hacking, surveillance cameras).

Surveillance

Surveillance Hacking Banking Firmware

Israeli surveillance firm QuaDream is shutting down amidst spyware accusations

Security Affairs

APRIL 17, 2023

The Israeli surveillance firm QuaDream is allegedly shutting down its operations after Citizen Lab and Microsoft uncovered their spyware. Last week Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. and 14.4.2,

Surveillance

Surveillance Spyware Education Media

U.S. Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp

Security Affairs

MARCH 2, 2024

Court ordered surveillance firm NSO Group to hand over the source code for its Pegasus spyware and other products to Meta. Judge ordered the surveillance firm to hand over the source code for its Pegasus spyware and other products to the social network giant. from April 29, 2018, to May 10, 2020).

Spyware

Spyware Surveillance Architecture Software

EU officials were targeted with Israeli surveillance software

Security Affairs

APRIL 13, 2022

According to a report published by Reuters, an Israeli surveillance software was used to spy on senior officials in the European Commission. 26 email reviewed by Reuters, a senior tech staffer sent a message to colleagues with background about Israeli hacking tools and a request to be on the lookout for additional warnings from Apple.”

Surveillance

Surveillance Software Spyware Hacking

On Executive Order 12333

Schneier on Security

SEPTEMBER 28, 2020

Although electronic surveillance programs authorized by EO 12333 generally target foreign intelligence from foreign targets, its permissive targeting standards allow for the substantial collection of Americans’ communications containing little to no foreign intelligence value.

Surveillance

Surveillance Telecommunications Internet Internet

German authorities raid the offices of the FinFisher surveillance firm

Security Affairs

OCTOBER 14, 2020

Earlier this month, German authorities have raided the offices of FinFisher, the German surveillance software firm, accused of providing its software to oppressive regimes. SecurityAffairs – hacking, K-Electric). The post German authorities raid the offices of the FinFisher surveillance firm appeared first on Security Affairs.

Surveillance

Surveillance Spyware Software Advertising

Google updates policies to ban any ads for surveillance solutions and services

Security Affairs

JULY 12, 2020

Google announced that starting from August it will update its policies to reject ads proposed by organizations offering surveillance software. The move aims at fighting the advertising of any form of surveillance. SecurityAffairs – hacking, ads). access their messages, phone calls, or tracking their position).

Surveillance

Surveillance Spyware Advertising Marketing

RemcosRAT Malware Is Targeting African Banks

Heimadal Security

APRIL 14, 2022

This RAT can be used for a variety of reasons, including surveillance and penetration testing, and has even been employed in hacking campaigns in […]. The post RemcosRAT Malware Is Targeting African Banks appeared first on Heimdal Security Blog.

Banking

Banking Penetration Testing Malware Surveillance

Domestic Kitten has been conducting surveillance targeting over 1,000 individuals

Security Affairs

FEBRUARY 8, 2021

Iran-linked APT group Domestic Kitten, also tracked as APT-C-50, has been conducting widespread surveillance targeting over 1,000 individuals. Both groups have conducted long-running cyber-attacks and intrusive surveillance campaigns, which target both individuals’ mobile devices and personal computers.”

Surveillance

Surveillance Mobile Malware Cyber Attacks

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Security Affairs

JUNE 17, 2022

Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.

Spyware

Spyware Surveillance Telecommunications Mobile

Security Risks of Government Hacking

Schneier on Security

SEPTEMBER 13, 2018

Some of us -- myself included -- have proposed lawful government hacking as an alternative to backdoors. A new report from the Center of Internet and Society looks at the security risks of allowing government hacking. From the report's conclusion: Government hacking is often lauded as a solution to the "going dark" problem.

Government

Government Hacking Risk Surveillance

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Security Affairs

JUNE 24, 2022

Researchers from Google’s Threat Analysis Group (TAG) revealed that the Italian surveillance firm RCS Labs was helped by some Internet service providers (ISPs) in Italy and Kazakhstan to infect Android and iOS users with their spyware. SecurityAffairs – hacking, RCS Labs). Follow me on Twitter: @securityaffairs and Facebook.

Surveillance

Surveillance Mobile Spyware Telecommunications

New malware infects business routers for data theft, surveillance

Bleeping Computer

MARCH 6, 2023

An ongoing hacking campaign called 'Hiatus' targets DrayTek Vigor router models 2960 and 3900 to steal data from victims and build a covert proxy network. [.]

Surveillance

Surveillance Malware Hacking

How is information stored in cloud secure from hacks

CyberSecurity Insiders

MAY 14, 2023

So, how is information stored in the cloud secured from hacks? Antivirus software scans files for known viruses and malware. Data centers have security guards, surveillance cameras, and other measures to prevent unauthorized access. One way to secure information in the cloud is through encryption.

Hacking

Hacking Antivirus Firewall Encryption

ShadowPad malware on Industrial Control Systems of Asia

CyberSecurity Insiders

JUNE 28, 2022

The anti-malware firm is linking the attackers to a Chinese group of Threat Actors and confirmed that the threat actors have interests in targeting SMBs from Asian countries as often such companies do not have enough resources to tackle such attacks.

Malware

Malware Telecommunications Surveillance Cyber threats

CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 1, 2023

Five of the issues added by CISA to its catalog are part of the exploits used by surveillance vendors to target mobile devices with their commercial spyware: CVE-2021-30900 – Apple iOS, iPadOS, and macOS Out-of-Bounds Write Vulnerability.

Spyware

Spyware Surveillance Mobile Education

Libya-based hackers using coronavirus pandemic to spread mobile surveillance malware

Tech Republic Security

MARCH 18, 2020

The drastic spread of coronavirus across the world has not stopped cybercriminals from exploiting fear to hack into devices.

Surveillance

Surveillance Mobile Malware Hacking

Spyware, ransomware and Nation-state hacking: Q&A from a recent interview

Security Affairs

FEBRUARY 10, 2022

I transcribed a recent interview, here some questions and answers about nation-state hacking, spyware, and cyber warfare. Pegasus is probably the most popular surveillance software on the market, it has been developed by the Israeli NSO Group. The surveillance business is growing in the dark and is becoming very dangerous.

Spyware

Spyware Hacking Ransomware Surveillance

Kaspersky discovers long time Malware based espionage campaign

CyberSecurity Insiders

JUNE 17, 2021

And information is out that the campaign could have started by a hacking group dubbed Ferocious Kitten that has been active since 2015 and was conducting spying through a highly sophisticated malware named MarkiRAT. . Why the malware spreading hackers are targeting only Persian-speaking people is yet to be revealed to the public.

Malware

Malware Surveillance Antivirus Software

Is the Belarusian government behind the surveillance Android app banned by Google?

Security Affairs

SEPTEMBER 3, 2020

According to an anonymous Belarusian security researcher the app was designed for surveillance purposes, it collects info on the device owner and geolocation data, then periodically sends the data back to a remote server. SecurityAffairs – hacking, Belarusian government). ,” reads the message published by Nexta on Telegram.

Surveillance

Surveillance Government Advertising Malware

Android Malware Bypasses 2FA And Targets Telegram, Gmail Passwords

Threatpost

SEPTEMBER 21, 2020

A new Android malware strain has been uncovered, part of the Rampant Kitten threat group's widespread surveillance campaign that targets Telegram credentials and more.

Malware

Malware Passwords Surveillance Authentication

Zero-day exploit used to hack iPhones of Al Jazeera employees

Security Affairs

DECEMBER 21, 2020

Tens of Al Jazeera employees were targeted in a cyber espionage campaign leveraging a zero-click iOS zero-day vulnerability to hack their iPhones. Researchers from Citizen Lab reported that at least 36 Al Jazeera employees were targeted in a cyber espionage campaign leveraging a zero-click iOS zero-day vulnerability to hack their iPhones.

Hacking

Hacking Surveillance Spyware Government

Commercial spyware vendors are behind most zero-day exploits discovered by Google TAG

Security Affairs

FEBRUARY 6, 2024

The latest report published by Google Threat Analysis Group (TAG), titled “ Buying Spying, an in-depth report with our insights into Commercial Surveillance Vendors (CSVs )”, warns of the rise of commercial spyware vendors and the risks to free speech, the free press, and the open internet. ” concludes Google. .

Spyware

Spyware Surveillance Government Software

Alleged Iranian threat actors leak the code of their CodeRAT malware

Security Affairs

SEPTEMBER 4, 2022

The author of the remote access trojan (RAT) CodeRAT has leaked the source code of its malware on GitHub. The development team behind the remote access trojan (RAT) CodeRAT has leaked the source code of its malware on GitHub after the. Experts believe that the malware is a surveillance software used by the Iranian government.

Malware

Malware Surveillance Government Hacking

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Krebs on Security

OCTOBER 28, 2020

In August, Gunnebo said it had successfully thwarted a ransomware attack, but this week it emerged that the intruders stole and published online tens of thousands of sensitive documents — including schematics of client bank vaults and surveillance systems. He declined to comment on the particulars of the extortion incident.

Hacking

Hacking Ransomware Banking Accountability

UAE government denies using ToTok for mass surveillance

Security Affairs

DECEMBER 30, 2019

The United Arab Emirates denied reports that the popular mobile app ToTok was used as part of a government massive surveillance program. According to a report recently published by the New York Times , the popular app ToTok was used by the UAE government as a surveillance tool. SecurityAffairs – ToTok, surveillance).

Surveillance

Surveillance Government Telecommunications Advertising

Android mobile devices from top vendors in China have pre-installed malware

Security Affairs

FEBRUARY 9, 2023

Researchers reported that the top-of-the-line Android mobile devices sold in China are shipped with malware. The experts pointed out that also users that leave the country are exposed to surveillance, through the pre-installed software. The researchers also compared the preinstalled system apps on the Chinese (CN) and Global (e.g.,

Mobile

Mobile Malware Surveillance Spyware

Security Affairs newsletter Round 435 by Pierluigi Paganini – International edition

Security Affairs

SEPTEMBER 3, 2023

Hacks QakBot, Quietly Removes Botnet Infections Under Siege: Rapid7-Observed Exploitation of Cisco ASA SSL VPNs Why is.US Being Used to Phish So Many of Us?

Social Engineering

Social Engineering Spyware Data breaches Surveillance

Operation Spalax, an ongoing malware campaign targeting Colombian entities

Security Affairs

JANUARY 14, 2021

Security experts from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian government institutions and private companies. Malware researchers from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian entities exclusively. Pierluigi Paganini.

Malware

Malware Surveillance Phishing Government

Facebook blocks Chinese state hackers targeting Uyghur activists

Bleeping Computer

MARCH 24, 2021

Facebook took down accounts used by a Chinese-sponsored hacking group to deploy surveillance malware on devices used by Uyghurs activists, journalists, and dissidents living outside China. [.].

Surveillance

Surveillance Accountability Malware Hacking

Exodus, a government malware that infected innocent victims

Security Affairs

MARCH 30, 2019

The malware was tracked as Exodus, after the name of the command and control servers the malicious apps connected to. The malware was undetected for months, and unfortunately, this isn’t the first time that malicious codes are hosted on the Google Play store without being detected. ” continues the report.

Government

Government Malware Spyware Surveillance

US Gov sanctioned Intellexa Consortium individuals and entities behind Predator spyware attacks

Security Affairs

MARCH 5, 2024

The surveillance software was also used to spy on U.S. Surveillance software was misused by foreign actors in attacks aimed at dissidents and journalists around the world. Predator spyware is known for its extensive data-stealing and surveillance capabilities. government officials, journalists, and policy experts.

Spyware

Spyware Surveillance Government Technology

A chink in the armor of China-based hacking group Nickel

Malwarebytes

DECEMBER 7, 2021

Microsoft has taken control of 42 web domains that a hacking group was using to try to breach its targets. Sadly, any setback to the Chinese hacking group or others will likely be temporary as the hackers will find and build new infrastructure to use in forthcoming attacks. An overview of Chinese hacking groups and their aliases.

Hacking

Hacking Malware Surveillance Data collection

Russian National pleads guilty to conspiracy to plant malware on Tesla systems

Security Affairs

MARCH 19, 2021

The Russian national who attempted to convince a Tesla employee to plant malware on Tesla systems has pleaded guilty. Justice Department announced on Thursday that the Russian national Egor Igorevich Kriuchkov (27), who attempted to convince a Tesla employee to install malware on the company’s computers, has pleaded guilty.

Malware

Malware Surveillance Hacking Technology

Microsoft disrupts China-based hacking group Nickel

Malwarebytes

DECEMBER 7, 2021

Microsoft has taken control of 42 web domains that a hacking group was using to try to breach its targets. Sadly, any setback to the Chinese hacking group or others will likely be temporary as the hackers will find and build new infrastructure to use in forthcoming attacks. An overview of Chinese hacking groups and their aliases.

Hacking

Hacking Malware Surveillance Data collection

Experts spotted the iOS version of the Exodus surveillance app

Security Affairs

APRIL 9, 2019

In the last weeks, a new Android surveillance malware dubbed Exodus made the headlines, now expert found the iOS version of the government spyware. Security experts at LookOut have discovered an iOS version of the dreaded surveillance Android app Exodus that was initially found on the official Google Play Store. to eSurv S.R.L.

Surveillance

Surveillance Spyware Phishing Malware

Top 10 Malware Strains of 2021

SecureWorld News

AUGUST 8, 2022

Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Cyber Security Centre (ACSC) released a joint Cybersecurity Advisory (CSA) providing details on the top malware strains of 2021. The top malware strains in 2021 included remote access Trojans (RATs), banking Trojans, information stealers, and ransomware.

Malware

Malware Banking Penetration Testing Healthcare

Austria investigates DSIRF firm for allegedly developing Subzero spyware

Security Affairs

AUGUST 2, 2022

At the end of July, Microsoft Threat Intelligence Center (MSTIC) and the Microsoft Security Response Center (MSRC) researchers linked a threat group known as Knotweed to an Austrian surveillance firm named DSIRF, known for using multiple Windows and Adobe zero-day exploits. SecurityAffairs – hacking, DSIRF). Pierluigi Paganini.

Spyware

Spyware Surveillance Banking Hacking

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports

Iranian govt uses BouldSpy Android malware for internal surveillance operations

Trending Sources

Massive iPhone Hack Targets Uyghurs

Surveillance firm’s leaked docs show the purchase of an $8M iOS RCE zero-day exploit?

Israeli surveillance firm QuaDream emerges from the dark

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

White hat hackers gained access more than 150,000 surveillance cameras

Israeli surveillance firm QuaDream is shutting down amidst spyware accusations

U.S. Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp

EU officials were targeted with Israeli surveillance software

On Executive Order 12333

German authorities raid the offices of the FinFisher surveillance firm

Google updates policies to ban any ads for surveillance solutions and services

RemcosRAT Malware Is Targeting African Banks

Domestic Kitten has been conducting surveillance targeting over 1,000 individuals

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Security Risks of Government Hacking

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

New malware infects business routers for data theft, surveillance

How is information stored in cloud secure from hacks

ShadowPad malware on Industrial Control Systems of Asia

CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog

Libya-based hackers using coronavirus pandemic to spread mobile surveillance malware

Spyware, ransomware and Nation-state hacking: Q&A from a recent interview

Kaspersky discovers long time Malware based espionage campaign

Is the Belarusian government behind the surveillance Android app banned by Google?

Android Malware Bypasses 2FA And Targets Telegram, Gmail Passwords

Zero-day exploit used to hack iPhones of Al Jazeera employees

Commercial spyware vendors are behind most zero-day exploits discovered by Google TAG

Alleged Iranian threat actors leak the code of their CodeRAT malware

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

UAE government denies using ToTok for mass surveillance

Android mobile devices from top vendors in China have pre-installed malware

Security Affairs newsletter Round 435 by Pierluigi Paganini – International edition

Operation Spalax, an ongoing malware campaign targeting Colombian entities

Facebook blocks Chinese state hackers targeting Uyghur activists

Exodus, a government malware that infected innocent victims

US Gov sanctioned Intellexa Consortium individuals and entities behind Predator spyware attacks

A chink in the armor of China-based hacking group Nickel

Russian National pleads guilty to conspiracy to plant malware on Tesla systems

Microsoft disrupts China-based hacking group Nickel

Experts spotted the iOS version of the Exodus surveillance app

Top 10 Malware Strains of 2021

Austria investigates DSIRF firm for allegedly developing Subzero spyware

Stay Connected