2012, Hacking and Spyware - Cyber Security Informer

North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy

Security Affairs

MARCH 13, 2025

North Korea-linked APT group ScarCruft used a new Android spyware dubbed KoSpy to target Korean and English-speaking users. Lookout researchers attributed the spyware to the ScarCruft group with medium confidence. The spyware uses a unique IT for each victim that is calculated through a hardware fingerprint.

Spyware

Spyware Surveillance Encryption Malware

APT32 state hackers target human rights defenders with spyware

Security Affairs

FEBRUARY 24, 2021

The threat actors used by spyware to take over the target systems, spy on the victims, and exfiltrate data. The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. SecurityAffairs – hacking, APT32). Pierluigi Paganini.

Spyware

Spyware Government Surveillance Phishing

NetWire Remote Access Trojan Maker Arrested

Schneier on Security

MARCH 14, 2023

From Brian Krebs : A Croatian national has been arrested for allegedly operating NetWire, a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. The arrest coincided with a seizure of the NetWire sales website by the U.S. Federal Bureau of Investigation (FBI).

Cybercrime

Cybercrime Marketing Passwords Spyware

Deadglyph, a very sophisticated and unknown backdoor targets the Middle East

Security Affairs

SEPTEMBER 24, 2023

Stealth Falcon is a nation-state actor active since at least 2012, the group targeted political activists and journalists in the Middle East in past campaigns. In 2016, researchers from the non-profit organization CitizenLab published a report that describes a campaign of targeted spyware attacks carried out by the Stealth Falcon.

Malware

Malware Spyware Architecture Encryption

Snowden speaks about the role of surveillance firm NSO Group in Khashoggi murder

Security Affairs

NOVEMBER 9, 2018

In July, Citizen Lab collected evidence of attacks against 175 targets worldwide carried on with the NSO spyware. YEAR(S) IN WHICH SPYWARE INFECTION WAS ATTEMPTED. In August, an Amnesty International report confirmed that its experts identified a second human rights activist, in Saudi Arabia, who was targeted with the powerful spyware.

Surveillance

Surveillance Spyware Software Advertising

A new variant of Asruex Trojan exploits very old Office, Adobe flaws

Security Affairs

AUGUST 23, 2019

Asruex first appeared in the threat landscape 2015, researchers linked it to the spyware used by the DarkHotel APT group. CVE-2012-0158 is a critical remote code execution (RCE) vulnerability that affected Microsoft Office. . ” reads the report published by Trend Micro. . ” reads the report published by Trend Micro.

Malware

Malware Advertising Spyware Encryption

Stealth Falcon’s undocumented backdoor uses Windows BITS to exfiltrate data

Security Affairs

SEPTEMBER 9, 2019

Stealth Falcon is a nation-state actor active since at least 2012, the group targeted political activists and journalists in the Middle East in past campaigns. In 2016, researchers from non-profit organization CitizenLab published a report that describes a campaign of targeted spyware attacks carried by the Stealth Falcon.

Malware

Malware Advertising System Administration Spyware

Amnesty International employee targeted with NSO group surveillance malware

Security Affairs

AUGUST 1, 2018

. “In June 2018, an Amnesty International staff member received a malicious WhatsApp message with Saudi Arabia-related bait content and carrying links Amnesty International believes are used to distribute and deploy sophisticated mobile spyware. Year(s) in which spyware infection was attempted. Country Nexus. Saudi Arabia.

Surveillance

Surveillance Malware Spyware Mobile

Security Affairs newsletter Round 235

Security Affairs

OCTOBER 13, 2019

Developer hacked back Muhstik ransomware crew and released keys. Amnesty claims that 2 Morocco rights advocates were targeted by NSO Group spyware. Ops, popular iTerm2 macOS Terminal App is affected by a critical RCE since 2012. Data from Sephora and StreetEasy data breaches added to HIBP.

VPN

VPN Data breaches Advertising Spyware

China-linked APT41 group targets telecommunications companies with new backdoor

Security Affairs

OCTOBER 31, 2019

” The APT41 has been active since at least 2012, it was involved in both state-sponsored espionage campaigns and financially-motivated attacks since 2014. The spyware uses the “ libpcap library to listen to all traffic and parses network protocols starting with Ethernet and IP layers.

Telecommunications

Telecommunications Malware Advertising Mobile

NSO mobile Pegasus Spyware used in operations in 45 countries

Security Affairs

SEPTEMBER 18, 2018

A new report published by Citizen Lab revealed that the NSO Pegasus spyware was used against targets across 45 countries worldwide. A new investigation of the Citizen Lab revealed that the powerful Pegasus mobile spyware was used against targets across 45 countries around the world over the last two years. COUNTRY NEXUS.

Spyware

Spyware Mobile Surveillance DNS

How to Track Your Kids (and Other People's Kids) With the TicTocTrack Watch

Troy Hunt

APRIL 15, 2019

Not to mention the various spyware apps often installed on kids' phones to track them which then subsequently leak their data all over the internet. Certainly not the current gen XS, does that resolution put it back in about the iPhone 5 era from 2012? mSpy leaked data. SpyFone leaked data. Mobiispy leaked data.

Spyware

Spyware Passwords Manufacturing Marketing

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Herjavec Group

AUGUST 26, 2021

1834 — French Telegraph System — A pair of thieves hack the French Telegraph System and steal financial market information, effectively conducting the world’s first cyberattack. 1870 — Switchboard Hack — A teenager hired as a switchboard operator is able to disconnect and redirect calls and use the line for personal usage. .

Cybercrime

Cybercrime Computers and Electronics Banking Hacking

Advanced threat predictions for 2023

SecureList

NOVEMBER 14, 2022

Looking back at past leaks of private companies providing such services, such as in the case of Hacking Team, we learned that many states all over the world were buying these capabilities, whether to complement their in-house technologies or as a stand-alone solution they couldn’t develop. Hack-and-leak is the new black (and bleak).

Firmware

Firmware Surveillance Mobile Telecommunications

Cyber Security Informer

North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy

APT32 state hackers target human rights defenders with spyware

Trending Sources

NetWire Remote Access Trojan Maker Arrested

Deadglyph, a very sophisticated and unknown backdoor targets the Middle East

Snowden speaks about the role of surveillance firm NSO Group in Khashoggi murder

A new variant of Asruex Trojan exploits very old Office, Adobe flaws

Stealth Falcon’s undocumented backdoor uses Windows BITS to exfiltrate data

Amnesty International employee targeted with NSO group surveillance malware

Security Affairs newsletter Round 235

China-linked APT41 group targets telecommunications companies with new backdoor

NSO mobile Pegasus Spyware used in operations in 45 countries

How to Track Your Kids (and Other People's Kids) With the TicTocTrack Watch

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Advanced threat predictions for 2023

Stay Connected