SecureList

JUNE 16, 2021

It is interesting to note that an active Keepass (password manager) process gets killed before starting the keylogger. This is likely intended to force the user to restart the program and enter a master password that is then stolen via the keylogger. argument: path to file to upload. – List files and repositories. com/hr.apk.

Surveillance 133

Surveillance Malware Password Management Passwords 133

Identity IQ

JANUARY 20, 2023

The objective of shoulder surfing is to steal sensitive information such as passwords, credit card numbers, or personal identification numbers (PINs) that can later be used to access the victim’s accounts. So, you enter your username and password and carry on. Avoid Reusing Passwords. Utilize a Secure Password Manager.

Identity Theft 81

Identity Theft Passwords Banking Accountability 81

SecureList

NOVEMBER 17, 2021

When we wrote this prediction, we were mainly thinking about a continuation of all the malicious activities targeting VPN appliances. We nevertheless observed some threat actors, such as APT10, who were exploiting these vulnerabilities to hijack VPN sessions. Mobile devices exposed to wide attacks. More supply chain attacks.

Mobile 130

Mobile Surveillance Ransomware Government 130

SecureWorld News

DECEMBER 23, 2020

Pegasus spyware is a phone surveillance solution that enables customers to remotely exploit and monitor devices. The company sells its surveillance technology to governments around the world. And watchdog groups say its products are often found to be used in surveillance abuses.

Spyware 52

Spyware Surveillance Hacking Media 52

Security Affairs

SEPTEMBER 1, 2019

Bad Packets warns of over 14,500 Pulse secure VPN endpoints vulnerable to CVE-2019-11510. A new variant of Trickbot banking Trojan targets Verizon, T-Mobile, and Sprint users. Expert found Russias SORM surveillance equipment leaking user data. Foxit Software discloses a data breach that exposed user passwords.

eCommerce 49

eCommerce Data breaches Malware Advertising 49

Krebs on Security

FEBRUARY 18, 2019

government — along with a number of leading security companies — recently warned about a series of highly complex and widespread attacks that allowed suspected Iranian hackers to siphon huge volumes of email passwords and other sensitive data from multiple governments and private companies. ” IMPROVEMENTS.

DNS 267

DNS Internet Internet Government 267

SecureList

NOVEMBER 29, 2021

The victim was infected by PowerShell malware and we discovered evidence that the actor had already stolen data from the victim and had been surveilling this victim for several months. It contains a password-protected RAR archive with the password shown in the email body. The RAR file contains a malicious Word document.

Surveillance 117

Surveillance Malware Phishing Encryption 117