SecureList

NOVEMBER 28, 2024

Epeius is a commercial spyware tool developed by an Italian company that claims to provide intelligence solutions to law enforcement agencies and governments. Tropic Trooper (aka KeyBoy and Pirate Panda) is an APT group operating since 2011. Unlike previous campaigns, we did not observe the Golang SFX droppers this time.

Malware 118

Malware Government Software Spyware 118

Herjavec Group

AUGUST 26, 2021

2008 — Heartland Payment Systems — 134 million credit cards are exposed through SQL injection to install spyware on Heartland’s data systems. 2011 — Sony Pictures — A hack of Sony’s data storage exposes the records of over 100 million customers using their PlayStation’s online services. Dozens of individuals are charged. .

Cybercrime 135

Cybercrime Computers and Electronics Banking Hacking 135

Security Affairs

SEPTEMBER 2, 2018

Stopping a big botnet targeting USA, Canada and Italy. · What Happens to Whistleblowers After They Blow the Whistle?

Banking 58

Banking Spyware Data breaches Advertising 58

eSecurity Planet

OCTOBER 21, 2022

While the article was written in 2011, the lion’s share of information on the topic of employee monitoring still belongs to businesses. Employee monitoring software can look very similar to spyware, a type of malware used by hackers to track user activity and steal their data. First, be transparent with your use of employee monitoring.

Computers and Electronics 127

Computers and Electronics Surveillance Software Manufacturing 127

Security Affairs

MAY 8, 2020

H2 2019 has proved the tendency of past several years: mail remains the main method of delivering ransomware, spyware, backdoors and other malware, being used by cyber crooks in 94 percent of cases. They, in turn, let spyware and backdoors move ahead and become the second most popular malware with a 35-percent share.

Phishing 86

Phishing Spyware Banking Malware 86

Webroot

MAY 12, 2021

“What Bitcoin was to 2011, NFTs are to 2021.”. If the market for their sale isn’t a bubble, it’s possible that the high-profile art heists of the future may be carried out by hackers rather than the suave con men of Hollywood films, and their tools will be phishing attacks and spyware rather than fancy handheld gadgets.

Cryptocurrency 101

Cryptocurrency Marketing Phishing Authentication 101

SecureList

APRIL 27, 2021

During routine monitoring of detections for FinFisher spyware tools, we discovered traces that point to recent FinFly Web deployments. We have discovered new evidence showing that Domestic Kitten has been using PE executables to target victims using Windows since at least 2013, with some evidence that it goes back to 2011.

Malware 145

Malware Government Spyware Social Engineering 145

SecureList

SEPTEMBER 26, 2022

NullMixer is a dropper that includes more than just specific malware families; it drops a wide variety of malicious binaries to infect the machine with, such as backdoors, bankers, downloaders, spyware and many others. NullMixer execution chain. The real infection occurs when the user extracts the ‘win-setup-i864.exe’ SmokeLoader.

Malware 145

Malware Cryptocurrency Passwords Software 145

Security Affairs

MARCH 27, 2023

Lower.exe, a sample of “GCleaner” spyware, historically, this piece of malware was initially faking CCleaner to drop additional malware ( link ). He is a former member of the ANeSeC CTF team, one of the firsts Italian cyber wargame teams born back in 2011.

Malware 98

Malware Social Engineering Encryption Marketing 98

SecureList

MARCH 1, 2021

The word “covid” in various combinations was typically used in the names of packages hiding spyware and banking Trojans, adware or Trojan droppers. This is a typical example of the kind of old-school text-message scams that were popular in 2011 and 2012. Pandemic theme in mobile threats. apk and coviddetect.apk.

Mobile 145

Mobile Malware Adware Banking 145

Krebs on Security

JULY 16, 2019

Here’s a snippet from one of Yalishanda’s advertisements to a cybercrime forum in 2011, when he was running a bulletproof service under the domain real-hosting[.]biz: It is allowed to host: ordinary sites, doorway pages, satellites, codecs, adware, tds, warez, pharma, spyware, exploits, zeus, IRC, etc.

Cybercrime 215

Cybercrime Phishing Banking Malware 215

SecureList

SEPTEMBER 28, 2021

Kaspersky has been tracking deployments of this spyware since 2011. FinSpy, also known as FinFisher or Wingbird , is an infamous surveillance toolset. Historically, its Windows implant was distributed through a single-stage installer. This version was detected and researched several times up to 2018.

Encryption 145

Encryption Malware Spyware Architecture 145

Malwarebytes

APRIL 11, 2023

The term was first used by Brian Krebs in 2011 after a proof of concept was conducted at DEF CON by Wall of Sheep. There are many categories of malware that cybercriminals could install through juice jacking, including adware, cryptominers, ransomware, spyware, or Trojans.

Mobile 98

Mobile Malware Banking Spyware 98