Hacking, Spyware and Surveillance - Cyber Security Informer

WhatsApp disrupted a hacking campaign targeting journalists with Paragon spyware

Security Affairs

FEBRUARY 2, 2025

Meta announced the disruption of a malware campaign via WhatsApp that targeted journalists with the Paragon spyware. Meta announced that discovered and dismantled a malware campaign via WhatsApp that targeted journalists and civil society members with the Paragon spyware (aka Graphite). In 2024, its U.S.

Spyware

Spyware Hacking Surveillance Malware

Mexican Drug Cartels with High-Tech Spyware

Schneier on Security

DECEMBER 17, 2020

Lots of details in the article. The cyberweapons arms business is immoral in many ways. This is just one of them.

Spyware

Spyware Surveillance Government Hacking

U.S. Court rules against NSO Group in WhatsApp spyware Lawsuit

Security Affairs

DECEMBER 23, 2024

court ruled in favor of WhatsApp against NSO Group, holding the spyware vendor liable for exploiting a flaw to deliver Pegasus spyware. court over exploiting a vulnerability to deliver Pegasus spyware. WhatsApp won a legal case against NSO Group in a U.S. ” reads the court document. ” The U.S.

Spyware

Spyware Surveillance Software Hacking

Poland probes Pegasus spyware abuse under the PiS government

Security Affairs

DECEMBER 3, 2024

Poland probes Pegasus spyware abuse under the PiS government; ex-security chief Piotr Pogonowski arrested to testify before parliament. Poland’s government has been investigating the alleged misuse of Pegasus spyware by the previous administration and arrested the former head of Poland’s internal security service Piotr Pogonowski.

Spyware

Spyware Government Surveillance Hacking

Meta Scores $168M Legal Victory Over NSO Group for Spyware Abuse

SecureWorld News

MAY 13, 2025

million judgment against NSO Group, the Israeli company behind the Pegasus spyware. company has successfully held a commercial spyware vendor accountable in a court of law, Reuters reports. Spyware at scale: inside the surveillance-as-a-service business model The trial unearthed a rare look into NSO's operations.

Spyware

Spyware Surveillance CISO Government

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

Security Affairs

DECEMBER 16, 2024

Researchers warn of previously undetected surveillance spyware, named NoviSpy, that was found infecting a Serbian journalist’s phone. Then he requested help from Amnesty Internationals Security Lab fearing to be the target of surveillance software like other journalists in Serbia.

Spyware

Spyware Surveillance Technology Mobile

WhatsApp hack: Meta wins payout over NSO Group spyware

Malwarebytes

MAY 8, 2025

Meta has won almost $170m in damages from Israel-based NSO Group, maker of the Pegasus spyware. According to the original complaint against NSO Group, filed in October 2019, the spyware vendor used WhatsApp servers to send malware to around 1400 mobile phones.

Spyware

Spyware Hacking Surveillance Government

The Internet Enabled Mass Surveillance. AI Will Enable Mass Spying.

Schneier on Security

DECEMBER 5, 2023

Spying and surveillance are different but related things. If I hired that same private detective to put you under surveillance, I would get a different report: where you went, whom you talked to, what you purchased, what you did. Before the internet, putting someone under surveillance was expensive and time-consuming.

Surveillance

Surveillance Internet Internet Government

Paragon: Yet Another Cyberweapons Arms Manufacturer

Schneier on Security

AUGUST 3, 2021

Forbes has the story : Paragon’s product will also likely get spyware critics and surveillance experts alike rubbernecking: It claims to give police the power to remotely break into encrypted instant messaging communications, whether that’s WhatsApp, Signal, Facebook Messenger or Gmail, the industry sources said.

Manufacturing

Manufacturing Spyware Surveillance Encryption

WhatsApp fixed zero-day flaw used to deploy Paragon Graphite spyware

Security Affairs

MARCH 19, 2025

WhatsApp fixed a zero-click, zero-day vulnerability used to install Paragon’s Graphite spyware on the devices of targeted individuals. WhatsApp has addressed a zero-click, zero-day vulnerability exploited to install Paragon’s Graphite spyware on the devices of targeted individuals.

Spyware

Spyware Hacking Surveillance Media

New LightSpy spyware variant comes with enhanced data collection features targeting social media platforms

Security Affairs

FEBRUARY 26, 2025

Researchers found an updated LightSpy spyware with enhanced data collection features targeting social media platforms like Facebook and Instagram. have found an updated version of the LightSpy spyware that supports an expanded set of data collection features to target social media platforms like Facebook and Instagram. ” Hunt.io

Data collection

Data collection Spyware Media Surveillance

North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy

Security Affairs

MARCH 13, 2025

North Korea-linked APT group ScarCruft used a new Android spyware dubbed KoSpy to target Korean and English-speaking users. North Korea-linked threat actor ScarCruft (aka APT37 , Reaper, and Group123) is behind a previously undetected Android surveillance tool namedKoSpythat was used to target Korean and English-speaking users.

Spyware

Spyware Surveillance Encryption Malware

China officially condemns Pegasus spyware surveillance and accuses US

CyberSecurity Insiders

JULY 22, 2021

Chine Foreign Ministry has issued a public statement condemning the distribution and usage of Pegasus Spyware surveillance software by various countries. It has also accused United States & NATO for circulating misinformation that the Chinese intelligence was funding hacking groups to launch cyber attacks on the west.

Surveillance

Surveillance Spyware Software Government

Experts discovered surveillance tool EagleMsgSpy used by Chinese law enforcement

Security Affairs

DECEMBER 12, 2024

Chinese law enforcement uses the mobile surveillance tool EagleMsgSpy to gather data from Android devices, as detailed by Lookout. Researchers at the Lookout Threat Lab discovered a surveillance tool, dubbed EagleMsgSpy, used by Chinese law enforcement to spy on mobile devices. ” reads the report published by Lookout.

Surveillance

Surveillance Mobile Spyware Malware

WhatsApp fixed a spoofing flaw that could enable Remote Code Execution

Security Affairs

APRIL 8, 2025

In March 2025, WhatsApp addressed a zero-click, zero-day vulnerability exploited to install Paragons Graphite spyware on the devices of targeted individuals. WhatsApp blocked a spyware campaign by Paragon targeting journalists and civil society members after reports of the Citizen Lab group from the University of Toronto.

Spyware

Spyware Media Surveillance Hacking

iPhones running latest iOS hacked to deploy NSO Group spyware

Bleeping Computer

JULY 19, 2021

Human rights non-governmental organization Amnesty International and non-profit project Forbidden Stories revealed in a recent report that they found spyware made by Israeli surveillance firm NSO Group deployed on iPhones running Apple's latest iOS release, hacked using zero-day zero-click iMessage exploits. [.].

Spyware

Spyware Hacking Surveillance

Apple fixed the first actively exploited zero-day of 2025

Security Affairs

JANUARY 27, 2025

Usually, such kinds of vulnerabilities are exploited by nation-state actors or commercial surveillance spyware vendors in targeted attacks. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,newsletter)

Spyware

Spyware Surveillance Media Hacking

The Pall Mall Pact and why it matters

Malwarebytes

APRIL 11, 2025

The US State Department reportedly plans to sign an international agreement designed to govern the use of commercial spyware known as the Pall Mall Pact. The goal of the Pall Mall Pact is to regulate Commercial Cyber Intrusion Capabilities (CCICs), or what we usually refer to as spyware and surveillance tools.

Spyware

Spyware Surveillance Government VPN

AI and Mass Spying

Schneier on Security

DECEMBER 5, 2023

Spying and surveillance are different but related things. If I hired that same private detective to put you under surveillance, I would get a different report: where you went, whom you talked to, what you purchased, what you did. Before the internet, putting someone under surveillance was expensive and time-consuming.

Surveillance

Surveillance Government Advertising Marketing

U.S. Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp

Security Affairs

MARCH 2, 2024

Court ordered surveillance firm NSO Group to hand over the source code for its Pegasus spyware and other products to Meta. Meta won the litigation against the Israeli spyware vendor NSO Group , a U.S. from April 29, 2018, to May 10, 2020). from April 29, 2018, to May 10, 2020).

Spyware

Spyware Surveillance Software Architecture

US State Dept employees’ phones hacked using NSO spyware

Bleeping Computer

DECEMBER 3, 2021

Apple has warned US Department of State employees that their iPhones have been hacked by unknown attackers using an iOS exploit dubbed ForcedEntry to deploy Pegasus spyware developed by Israeli surveillance firm NSO Group. [.].

Spyware

Spyware Hacking Surveillance

NSO Group spyware used to compromise iPhones of 9 US State Dept officials

Security Affairs

DECEMBER 3, 2021

Apple warns that the mobile devices of at least nine US Department of State employees were compromised with NSO Group ‘s Pegasus spyware. The iPhones of at least nine US state department officials were compromised with the NSO Group’s spyware Pegasus. “Apple Inc iPhones of at least nine U.S. .

Spyware

Spyware Surveillance Hacking Software

Google updates policies to ban any ads for surveillance solutions and services

Security Affairs

JULY 12, 2020

Google announced that starting from August it will update its policies to reject ads proposed by organizations offering surveillance software. The move aims at fighting the advertising of any form of surveillance. SecurityAffairs – hacking, ads). access their messages, phone calls, or tracking their position).

Surveillance

Surveillance Spyware Advertising Marketing

Pegasus Project – how governments use Pegasus spyware against journalists

Security Affairs

JULY 19, 2021

Pegasus Project investigation into the leak of 50,000 phone numbers of potential surveillance targets revealed the abuse of NSO Group’s spyware. Pegasus Project is the name of a large-scale investigation into the leak of 50,000 phone numbers of potential surveillance targets that revealed the abuse of NSO Group’s spyware.

Spyware

Spyware Government Surveillance Media

European Data Protection Supervisor call for bans on surveillance spyware like Pegasus

Security Affairs

FEBRUARY 17, 2022

The European Data Protection Supervisor authority called for a ban on the development and the use of Pegasus-like commercial spyware. The European Data Protection Supervisor (EDPS) authority this week called for a ban on the development and the use of surveillance software like the Pegasus spyware in the EU. Pierluigi Paganini.

Surveillance

Surveillance Spyware Software Government

Apple dismisses lawsuit against surveillance firm NSO Group due to risk of threat intelligence exposure

Security Affairs

SEPTEMBER 16, 2024

Apple drops its lawsuit against commercial spyware vendor NSO Group, due to the risk of “threat intelligence” information exposure. Apple is seeking to drop its lawsuit against Israeli spyware company NSO Group , citing the risk of “threat intelligence” information exposure. ” reads the court filing.

Surveillance

Surveillance Spyware Risk Hacking

Israeli surveillance firm QuaDream is shutting down amidst spyware accusations

Security Affairs

APRIL 17, 2023

The Israeli surveillance firm QuaDream is allegedly shutting down its operations after Citizen Lab and Microsoft uncovered their spyware. Last week Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream.

Surveillance

Surveillance Spyware Education Media

QuaDream surveillance firm’s spyware targeted iPhones with zero-click exploit

Security Affairs

APRIL 12, 2023

At least five members of civil society worldwide have been targeted with spyware and exploits developed by surveillance firm QuaDream. Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. and 14.4.2,

Spyware

Spyware Surveillance Malware Government

Six Governments Likely Use Israeli Paragon Spyware to Hack IM Apps and Harvest Data

The Hacker News

MARCH 20, 2025

The governments of Australia, Canada, Cyprus, Denmark, Israel, and Singapore are likely customers of spyware developed by Israeli company Paragon Solutions, according to a new report from The Citizen Lab.

Spyware

Spyware Government Surveillance Hacking

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Security Affairs

JUNE 17, 2022

Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.

Spyware

Spyware Surveillance Telecommunications Mobile

Cytrox’s Predator spyware used zero-day exploits in 3 campaigns

Security Affairs

MAY 23, 2022

We assess the exploits were packaged by a single commercial surveillance company, Cytrox, and sold to different govt-backed actors. The attacks aimed at installing the surveillance spyware Predator, developed by the North Macedonian firm Cytrox. SecurityAffairs – hacking, Predator). ” continues the report.

Spyware

Spyware Surveillance Government Banking

US NCSC and DoS share best practices against surveillance tools

Security Affairs

JANUARY 9, 2022

The US NCSC and the Department of State published joint guidance on defending against attacks using commercial surveillance tools. In the last years, we have reported several cases of companies selling commercial surveillance tools to governments and other entities that have used them for malicious purposes. Pierluigi Paganini.

Surveillance

Surveillance Mobile Spyware Malware

Israeli Firm Helped Governments Target Journalists, Activists with 0-Days and Spyware

The Hacker News

JULY 16, 2021

Two of the zero-day Windows flaws patched by Microsoft as part of its Patch Tuesday update earlier this week were weaponized by an Israel-based company called Candiru in a series of "precision attacks" to hack more than 100 journalists, academics, activists, and political dissidents globally.

Spyware

Spyware Government Surveillance Hacking

German authorities raid the offices of the FinFisher surveillance firm

Security Affairs

OCTOBER 14, 2020

Earlier this month, German authorities have raided the offices of FinFisher, the German surveillance software firm, accused of providing its software to oppressive regimes. SecurityAffairs – hacking, K-Electric). The post German authorities raid the offices of the FinFisher surveillance firm appeared first on Security Affairs.

Surveillance

Surveillance Spyware Advertising Software

Facebook vs NSO Group lawsuit: 1,400+ users were targeted with Pegasus spyware

Security Affairs

APRIL 25, 2020

The legal dispute between Facebook and NSO group continues even after the Israeli surveillance firm filed a motion to dismiss the case earlier this month. Facebook advocates have challenged a plea from spyware maker NSO Group to dismiss the legal dispute over the hacking accusations, arguing it has immunity from prosecution.

Spyware

Spyware Surveillance Advertising Mobile

Hungarian official confirms Hungary used NSO Group Pegasus spyware

Security Affairs

NOVEMBER 8, 2021

A Hungarian government official confirmed that his government has bought and used the controversial NSO Group’s Pegasus spyware. According to Kosa, the use of surveillance software was authorized by a judge or the Minister of Justice. SecurityAffairs – hacking, surveillance. ” This week, the U.S.

Spyware

Spyware Surveillance Media Government

Surveillance firm’s leaked docs show the purchase of an $8M iOS RCE zero-day exploit?

Security Affairs

AUGUST 28, 2022

Leaked documents show the surveillance firm Intellexa offering exploits for iOS and Android devices for $8 Million. Intellexa is an Israeli surveillance firm founded by Israeli entrepreneur Tal Dilian, it offers surveillance and hacking solution to law enforcement and intelligence agencies. Pierluigi Paganini.

Surveillance

Surveillance Spyware Mobile Hacking

Mollitiam Industries is the Newest Cyberweapons Arms Manufacturer

Schneier on Security

JUNE 23, 2021

Its spyware is also said to be equipped with a keylogger, which means every keystroke made on an infected device — including passwords, search queries and messages sent via encrypted messaging apps — can be tracked and monitored.

Manufacturing

Manufacturing Spyware Surveillance Marketing

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports

Security Affairs

AUGUST 6, 2022

Greek intelligence admitted it had spied on a journalist, while citizens ask the government to reveal the use of surveillance malware. The head of the Greek intelligence told a parliamentary committee that they had spied on a journalist with surveillance malware , Reuters reported citing two sources present. ” reported Reuters.

Surveillance

Surveillance Malware Spyware Government

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Security Affairs

JUNE 24, 2022

Google’s Threat Analysis Group (TAG) revealed that the Italian spyware vendor RCS Labs was supported by ISPs to spy on users. TAG researchers tracked more than 30 vendors selling exploits or surveillance capabilities to nation-state actors. SecurityAffairs – hacking, RCS Labs). Pierluigi Paganini.

Surveillance

Surveillance Mobile Spyware Telecommunications

Sophisticated Android spyware PhoneSpy infected thousands of Korean phones

Security Affairs

NOVEMBER 10, 2021

South Korean users have been targeted with a new sophisticated Android spyware, tracked as PhoneSpy, as part of an ongoing campaign. Researchers from Zimperium zLabs uncovered an ongoing campaign aimed at infecting the mobile phones of South Korean users with new sophisticated android spyware dubbed PhoneSpy. Zimperium concludes.

Spyware

Spyware Mobile Social Engineering Malware

The iPhone of a Russian journalist was infected with the Pegasus spyware

Security Affairs

SEPTEMBER 14, 2023

The iPhone of a prominent Russian journalist, who is at odds with Moscow, was infected with NSO Group’s Pegasus spyware. The iPhone of the Russian journalist Galina Timchenko was compromised with NSO Group’s Pegasus spyware. The threat actors used a zero-click exploit, likely the PWNYOURHOME. ” reported Citizen Lab.

Spyware

Spyware Surveillance Media Government

Experts spotted two Android spyware used by Indian APT Confucius

Security Affairs

FEBRUARY 11, 2021

Lookout researchers provided details about two Android spyware families employed by an APT group tracked as Confucius. Researchers at mobile security firm Lookout have provided details about two recently discovered Android spyware families, dubbed Hornbill and SunBird, used by an APT group named Confucius. ” concludes the report.

Spyware

Spyware Surveillance Malware Mobile

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

Security Affairs

NOVEMBER 11, 2022

Lookout researchers discovered two long-running surveillance campaigns targeting the ethnic minority Uyghurs. Researchers from mobile security firm Lookout uncovered two long-running surveillance campaigns targeting the Uyghurs minority. List of installed packages. Call logs and geocoded location associated with the call.

Surveillance

Surveillance Spyware Malware Mobile

WhatsApp disrupted a hacking campaign targeting journalists with Paragon spyware

Mexican Drug Cartels with High-Tech Spyware

Trending Sources

U.S. Court rules against NSO Group in WhatsApp spyware Lawsuit

Poland probes Pegasus spyware abuse under the PiS government

Meta Scores $168M Legal Victory Over NSO Group for Spyware Abuse

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

WhatsApp hack: Meta wins payout over NSO Group spyware

The Internet Enabled Mass Surveillance. AI Will Enable Mass Spying.

Paragon: Yet Another Cyberweapons Arms Manufacturer

WhatsApp fixed zero-day flaw used to deploy Paragon Graphite spyware

New LightSpy spyware variant comes with enhanced data collection features targeting social media platforms

North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy

China officially condemns Pegasus spyware surveillance and accuses US

Experts discovered surveillance tool EagleMsgSpy used by Chinese law enforcement

WhatsApp fixed a spoofing flaw that could enable Remote Code Execution

iPhones running latest iOS hacked to deploy NSO Group spyware

Apple fixed the first actively exploited zero-day of 2025

The Pall Mall Pact and why it matters

AI and Mass Spying

U.S. Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp

US State Dept employees’ phones hacked using NSO spyware

NSO Group spyware used to compromise iPhones of 9 US State Dept officials

Google updates policies to ban any ads for surveillance solutions and services

Pegasus Project – how governments use Pegasus spyware against journalists

European Data Protection Supervisor call for bans on surveillance spyware like Pegasus

Apple dismisses lawsuit against surveillance firm NSO Group due to risk of threat intelligence exposure

Israeli surveillance firm QuaDream is shutting down amidst spyware accusations

QuaDream surveillance firm’s spyware targeted iPhones with zero-click exploit

Six Governments Likely Use Israeli Paragon Spyware to Hack IM Apps and Harvest Data

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Cytrox’s Predator spyware used zero-day exploits in 3 campaigns

US NCSC and DoS share best practices against surveillance tools

Israeli Firm Helped Governments Target Journalists, Activists with 0-Days and Spyware

German authorities raid the offices of the FinFisher surveillance firm

Facebook vs NSO Group lawsuit: 1,400+ users were targeted with Pegasus spyware

Hungarian official confirms Hungary used NSO Group Pegasus spyware

Surveillance firm’s leaked docs show the purchase of an $8M iOS RCE zero-day exploit?

Mollitiam Industries is the Newest Cyberweapons Arms Manufacturer

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Sophisticated Android spyware PhoneSpy infected thousands of Korean phones

The iPhone of a Russian journalist was infected with the Pegasus spyware

Experts spotted two Android spyware used by Indian APT Confucius

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

Stay Connected