Malwarebytes

APRIL 30, 2021

Anyone who can convince your ISP to give up that information, either by buying it, issuing a subpoena or by social engineering, can learn your address. As awareness of corporate surveillance and criminal hacking has grown, so have concerns about personal privacy. By using a VPN, your packets are taking a detour.

VPN 64

VPN Internet Internet Social Engineering 64

SecureList

NOVEMBER 17, 2021

When we wrote this prediction, we were mainly thinking about a continuation of all the malicious activities targeting VPN appliances. We nevertheless observed some threat actors, such as APT10, who were exploiting these vulnerabilities to hijack VPN sessions. But this prediction also came true another way.

Mobile 133

Mobile Surveillance Ransomware Government 133

Identity IQ

FEBRUARY 8, 2024

With a mix of infiltration, social engineering, and many hours of investigative work, authorities were able to discover Ulbricht’s identity. Surveillance and monitoring initiatives that enable authorities to track and identify individuals on the dark web. Consider using a VPN to maintain greater anonymity.

Identity Theft 98

Identity Theft Cryptocurrency Government Engineering 98

Security Boulevard

JANUARY 28, 2022

It should be worth pointing out that on the vast majority of occasions the majority of IM-based encryption protocols are perfectly suited to respond and actually protect against a large portion of modern eavesdropping and surveillance campaigns. Possible physical security and network-based attack scenarios: - physical device compromise .

Encryption 105

Encryption Cybercrime Social Engineering Mobile 105

Krebs on Security

MARCH 29, 2022

In a blog post about their recent hack, Microsoft said LAPSUS$ succeeded against its targets through a combination of low-tech attacks, mostly involving old-fashioned social engineering — such as bribing employees at or contractors for the target organization. I am not legally responsible if you mishandle this.

Accountability 275

Accountability Government Hacking Social Engineering 275

SecureList

OCTOBER 17, 2023

This strategic shift signals its intent to intensify its surveillance capabilities and expand its range of targets. These variants go beyond Ligolo’s standard functionality and attempt to emulate VPN solutions from Cisco and Palo Alto. We have also seen a campaign from a newly discovered threat actor, BadRory.

Government 108

Government Malware VPN Manufacturing 108

SecureList

APRIL 27, 2021

The attackers used vulnerabilities in an SSL-VPN product to deploy a multi-layered loader we dubbed Ecipekac (aka DESLoader, SigLoader and HEAVYHAND). The group’s operations were exposed in 2018, showing that it was conducting surveillance attacks against individuals in the Middle East. Final thoughts.

Malware 141

Malware Spyware Government Social Engineering 141