Security Affairs

APRIL 16, 2024

Researchers warn of a renewed cyber espionage campaign targeting users in South Asia with the Apple iOS spyware LightSpy Blackberry researchers discovered a renewed cyber espionage campaign targeting South Asia with an Apple iOS spyware called LightSpy. 217:52202, which also hosts an administrator panel accessible on port 3458.

Spyware 93

Spyware Mobile Malware Encryption 93

The Hacker News

FEBRUARY 19, 2024

The spyware targeted iOS, Android, and Windows devices. Their various malware included Meta Platforms said it took a series of steps to curtail malicious activity from eight different firms based in Italy, Spain, and the United Arab Emirates (U.A.E.) operating in the surveillance-for-hire industry.

Spyware 132

Spyware Surveillance Threat Reports Malware 132

Security Boulevard

JANUARY 17, 2024

Researchers with cybersecurity firm Kaspersky are detailing a lightweight method for detecting the presence of spyware, including The NSO Group’s notorious Pegasus software, in Apple iOS devices. The post Kaspersky Details Method for Detecting Spyware in iOS appeared first on Security Boulevard.

Spyware 119

Spyware Cybersecurity Software Data privacy 119

Tech Republic Security

DECEMBER 22, 2023

ESET's latest report highlights the abuse of the ChatGPT name, the rise of the Lumma Stealer malware and the Android SpinOk SDK spyware.

Threat Reports 176

Threat Reports Spyware Malware Artificial Intelligence 176

Security Boulevard

MAY 30, 2023

Intellexa mercenary spyware chains five unpatched bugs—plus ‘Alien’ technology The post ‘Predator’ — Nasty Android Spyware Revealed appeared first on Security Boulevard.

Spyware 122

Spyware Technology Social Engineering Security Awareness 122

Security Affairs

JANUARY 17, 2024

Researchers devised a “lightweight method,” called iShutdown, to determine whether Apple iOS devices have been infected with spyware. Cybersecurity researchers from Kaspersky have identified a “lightweight method,” called iShutdown, to identify the presence of spyware on Apple iOS devices.

Spyware 114

Spyware Mobile Malware Surveillance 114

Schneier on Security

APRIL 11, 2019

Kaspersky has released details about a sophisticated nation-state spyware it calls TajMahal: The TajMahal framework's 80 modules, Shulmin says, comprise not only the typical keylogging and screengrabbing features of spyware, but also never-before-seen and obscure tricks. No speculation on who wrote and controls it. More details.

Spyware 219

Spyware Malware 219

Security Affairs

MARCH 5, 2024

government sanctioned two individuals and five entities linked to the development and distribution of the Predator spyware used to target Americans. The Department of the Treasury warns that the proliferation of commercial spyware poses growing risks to the United States. The surveillance software was also used to spy on U.S.

Spyware 91

Spyware Surveillance Government Technology 91

The Hacker News

OCTOBER 4, 2023

New findings have identified connections between an Android spyware called DragonEgg and another sophisticated modular iOS surveillanceware tool named LightSpy. DragonEgg, alongside WyrmSpy (aka AndroidControl), was first disclosed by Lookout in July 2023 as a strain of malware capable of gathering sensitive data from Android devices.

Spyware 113

Spyware Malware 113

The Hacker News

OCTOBER 31, 2023

The threat actor known as Arid Viper (aka APT-C-23, Desert Falcon, or TAG-63) has been attributed as behind an Android spyware campaign targeting Arabic-speaking users with a counterfeit dating app designed to harvest data from infected handsets.

Spyware 113

Spyware Malware 113

Security Affairs

NOVEMBER 3, 2023

Kaspersky researchers are warning of multiple WhatsApp mods that embed a spyware module dubbed CanesSpy. Kaspersky researchers discovered multiple WhatsApp mods that embed a spyware module dubbed CanesSpy. The bad news is that, in some cases, threat actors spread malware-laced mods to infect as many devices as possible.

Spyware 96

Spyware Malware Mobile Advertising 96

Heimadal Security

JULY 16, 2021

A new report by Microsoft and Citizen Lab has tracked DevilsTongue spyware, a threat that targets zero-day vulnerabilities in Windows systems. Threat actors seem to belong to an Israeli-based spyware company by its name Candiru or Sourgum. What Is a Spyware?

Spyware 119

Spyware Malware Data breaches Cybersecurity 119

Adam Levin

JANUARY 25, 2019

Trojan horse-based malware attacks and spyware rose sharply in 2018 as ransomware-based attacks declined, according to a new report published by Malwarebytes. The post Trojans and Spyware Are Making a Comeback appeared first on Adam Levin.

Spyware 212

Spyware Ransomware Banking Malware 212

Penetration Testing

NOVEMBER 10, 2023

Researchers at ESET have discovered a new type of mobile spyware called Kamran, targeting Urdu-speaking residents of the Gilgit-Baltistan region.

Spyware 67

Spyware Penetration Testing Mobile Malware 67

Security Affairs

APRIL 11, 2024

Apple is warning iPhone users in over 90 countries of targeted mercenary spyware attacks, Reuters agency reported. Apple is alerting iPhone users in 92 countries about mercenary spyware attacks, reported Reuters. Reuters only mentioned India as one of the countries where users were targeted by the attacks.

Spyware 80

Spyware Mobile Government Hacking 80

Security Boulevard

SEPTEMBER 25, 2023

The post More iOS Zero Days, More Mercenary Spyware — This Time: Cytrox Predator appeared first on Security Boulevard. Apple Scrambled to Fix 3 More CVEs: Egyptian opposition presidential candidate Ahmed Eltantawy targeted “by the government.

Spyware 127

Spyware Government Social Engineering Data privacy 127

Security Affairs

NOVEMBER 10, 2021

South Korean users have been targeted with a new sophisticated Android spyware, tracked as PhoneSpy, as part of an ongoing campaign. Researchers from Zimperium zLabs uncovered an ongoing campaign aimed at infecting the mobile phones of South Korean users with new sophisticated android spyware dubbed PhoneSpy. Zimperium concludes.

Spyware 134

Spyware Mobile Social Engineering Surveillance 134

Security Affairs

MAY 29, 2023

Cisco Talos and the Citizen Lab researchers have published a technical analysis of the powerful Android spyware Predator. Security researchers at Cisco Talos and the Citizen Lab have shared technical details about a commercial Android spyware named Predator that is sold by the surveillance firm Intellexa (formerly known as Cytrox).

Spyware 88

Spyware Surveillance Media Mobile 88

Penetration Testing

NOVEMBER 29, 2023

In an era increasingly defined by digital surveillance, a recent incident in Serbia has thrown a stark light on the use of invasive spyware to suppress civil society. Access Now, SHARE Foundation, the Citizen... The post Serbian Spyware Scandal: Civil Society Under Siege appeared first on Penetration Testing.

Spyware 77

Spyware Penetration Testing Surveillance Malware 77

Schneier on Security

MAY 5, 2020

Interesting story of malware hidden in Google Apps. That's when Russian security firm Dr. Web found a sample of spyware in Google's app store that impersonated a downloader of graphic design software but in fact had the capability to steal contacts, call logs, and text messages from Android phones.

Malware 287

Malware Spyware Phishing Government 287

Malwarebytes

JULY 7, 2022

This new feature is designed to provide a safer environment on iOS for people at high risk of what Apple refers to as “mercenary spyware.” ” This includes people like journalists and human rights advocates, who are often targeted by oppressive regimes using malware like NSO Groups’ Pegasus spyware.

Spyware 142

Spyware Malware Software Risk 142

Security Affairs

FEBRUARY 6, 2024

Google’s TAG revealed that Commercial spyware vendors (CSV) were behind most of the zero-day vulnerabilities discovered in 2023. ” The report includes the names of CSVs of any size and information about their commercial spyware. Google hopes this report will serve as a call to action.

Spyware 95

Spyware Surveillance Government Software 95

Dark Reading

JULY 21, 2022

The CloudMensis spyware, which can lift reams of sensitive information from Apple machines, is the first Mac malware observed to exclusively rely on cloud storage for C2 activities.

Spyware 129

Spyware Malware 129

Security Affairs

JULY 20, 2023

China-linked group APT41 was spotted using two previously undocumented Android spyware called WyrmSpy and DragonEgg China-linked APT group APT41 has been observed using two previously undocumented Android spyware called WyrmSpy and DragonEgg. Upon installing the two spyware, they request extensive device permissions.

Spyware 79

Spyware Surveillance Mobile Malware 79

Security Boulevard

JUNE 28, 2023

The post Ironic: LetMeSpy Spyware Hackers Were Hacked (by Hackers) appeared first on Security Boulevard. Content warning: Abuse, stalking, controlling behavior, Schadenfreude, irony, doxxing.

Spyware 112

Spyware Hacking Social Engineering Data breaches 112

CSO Magazine

MARCH 27, 2023

In a significant signal to spyware vendors, the Biden administration issued an executive order (EO) prohibiting federal government agencies from using commercial spyware "that poses significant counterintelligence or security risks to the United States Government."

Spyware 106

Spyware Marketing Mobile Government 106

Penetration Testing

NOVEMBER 29, 2023

The latest player in this game is sophisticated spyware, employing a series of ingenious obfuscation techniques to bypass static analysis, as revealed in a... The post How Spyware Evades Detection through Advanced Obfuscation appeared first on Penetration Testing.

Spyware 76

Spyware Penetration Testing Cybersecurity Malware 76

SecureList

MARCH 20, 2024

Introduction Malware for mobile devices is something we come across very often. million malware, adware, and riskware attacks on mobile devices. Last month, we wrote a total of four private crimeware reports on Android malware, three of which are summarized below. In 2023 , our technologies blocked 33.8 and sends it to the C2.

Malware 86

Malware Mobile Firmware Spyware 86

Security Boulevard

JULY 29, 2022

The post Solved: Subzero Spyware Secret — Austrian Firm Fingered appeared first on Security Boulevard. DSIRF GmbH codenamed ‘Knotweed’ by Microsoft and RiskIQ.

Spyware 144

Spyware Social Engineering Engineering Security Awareness 144

Security Boulevard

JUNE 22, 2022

It could be via virus malware, phishing, social engineering, fileless malware, etc. So, we’re here to talk about one such common tactic: Spyware. What is spyware and how does it work? The post What is Spyware and How to Protect Against it? The post What is Spyware and How to Protect Against it?

Spyware 97

Spyware Social Engineering Engineering Phishing 97

Heimadal Security

OCTOBER 6, 2022

RatMilad, a new Android malware that masquerades as a VPN and phone number spoofing app, has been observed to target a Middle Eastern enterprise mobile device. The post A New Android Spyware Called RatMilad Is Targeting Enterprise Devices appeared first on Heimdal Security Blog.

Spyware 105

Spyware Mobile VPN Malware 105

The Hacker News

MAY 2, 2023

The malware, dubbed BouldSpy, has been attributed with moderate confidence to the Law Enforcement Command of the Islamic Republic of Iran (FARAJA). The spyware A new Android surveillanceware possibly used by the Iranian government has been used to spy on over 300 individuals belonging to minority groups.

Spyware 105

Spyware Government Malware 105

Security Affairs

JULY 19, 2022

Researchers spotted previously undocumented spyware, dubbed CloudMensis, that targets the Apple macOS systems. The malware was designed to spy on the target systems, exfiltrate documents, acquire keystrokes, and screen captures. Experts have yet to determine how the victims are initially compromised by this spyware.

Spyware 91

Spyware Malware Authentication Architecture 91

Malwarebytes

APRIL 28, 2021

Using a proven method of text messages about missed deliveries, an old player on the Android malware stage has returned for an encore. This time it seems to be very active, especially in the UK where Android users are being targeted by text messages containing a link to a particularly nasty piece of spyware called Flubot.

Spyware 138

Spyware Banking Malware Passwords 138

Security Boulevard

JULY 19, 2023

Adds ‘Mercenary Spyware’ Firms to Ban List appeared first on Security Boulevard. European cousins Intellexa and Cytrox essentially banned by Commerce Dept. Predator/ALIEN not welcome in U.S. The post Biden Admin.

Spyware 98

Spyware Social Engineering Security Awareness Engineering 98

Malwarebytes

SEPTEMBER 29, 2022

It's no surprise then to see criminals continuing to abuse Zoom's popularity, in the hope of netting interested parties and, potentially, luring current users into downloading and installing malware. Malware @Zoom downloads ? This spyware was then injected into MSBuild.exe , a platform used to build applications. Stay safe!

Spyware 92

Spyware Malware Software Banking 92

Security Affairs

SEPTEMBER 7, 2023

Citizen Lab reported that the actively exploited zero-days fixed by Apple are being used in Pegasus spyware attacks Researchers at Citizen Lab reported that the actively exploited zero-day flaws (CVE-2023-41064 and CVE-2023-41061) fixed by Apple are being used to infect devices with NSO Group ’s Pegasus spyware.

Spyware 102

Spyware Accountability Hacking Mobile 102