Security Affairs

MARCH 13, 2025

North Korea-linked APT group ScarCruft used a new Android spyware dubbed KoSpy to target Korean and English-speaking users. Lookout researchers attributed the spyware to the ScarCruft group with medium confidence. The spyware uses a unique IT for each victim that is calculated through a hardware fingerprint.

Spyware 77

Spyware Surveillance Encryption Malware 77

Security Affairs

SEPTEMBER 24, 2023

Stealth Falcon is a nation-state actor active since at least 2012, the group targeted political activists and journalists in the Middle East in past campaigns. In 2016, researchers from the non-profit organization CitizenLab published a report that describes a campaign of targeted spyware attacks carried out by the Stealth Falcon.

Spyware 142

Spyware Malware Architecture Encryption 142

Security Affairs

AUGUST 23, 2019

Asruex first appeared in the threat landscape 2015, researchers linked it to the spyware used by the DarkHotel APT group. CVE-2012-0158 is a critical remote code execution (RCE) vulnerability that affected Microsoft Office. . ” reads the report published by Trend Micro. . ” reads the report published by Trend Micro.

Malware 110

Malware Advertising Spyware Encryption 110

Security Affairs

SEPTEMBER 9, 2019

Stealth Falcon is a nation-state actor active since at least 2012, the group targeted political activists and journalists in the Middle East in past campaigns. In 2016, researchers from non-profit organization CitizenLab published a report that describes a campaign of targeted spyware attacks carried by the Stealth Falcon.

Malware 105

Malware Advertising System Administration Spyware 105

SecureList

NOVEMBER 1, 2022

KeyPlug is a modular backdoor with the capability of communicating to its server via several network communication protocols set in its XOR-encrypted embedded configuration block. In June, we identified a previously unknown Android spyware app that targets Persian-speaking individuals. í religion that are banned in Iran.

Malware 145

Malware Ransomware Spyware Encryption 145

Security Boulevard

AUGUST 6, 2024

It’s also been used in numerous high-profile incidents, such as the 2012 attack on Miss Teen USA. Conduct Specific Attacks : Attackers can download specialized malware to conduct specific attacks, such as ransomware to encrypt files and demand a ransom, spyware to monitor user activities, or wipers to destroy data.

DNS 69

DNS Malware Social Engineering Engineering 69

SecureList

MARCH 1, 2021

The word “covid” in various combinations was typically used in the names of packages hiding spyware and banking Trojans, adware or Trojan droppers. This is a typical example of the kind of old-school text-message scams that were popular in 2011 and 2012. Pandemic theme in mobile threats. apk and coviddetect.apk.

Mobile 145

Mobile Malware Adware Banking 145