2014, Malware and Surveillance - Cyber Security Informer

Google updates policies to ban any ads for surveillance solutions and services

Security Affairs

JULY 12, 2020

Google announced that starting from August it will update its policies to reject ads proposed by organizations offering surveillance software. The move aims at fighting the advertising of any form of surveillance. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Surveillance

Surveillance Spyware Advertising Marketing

Privacy Roundup: Week 3 of Year 2025

Security Boulevard

JANUARY 20, 2025

Inside the Black Box of Predictive Travel Surveillance Wired Covers the use of powerful surveillance technology in predicting who might be a "threat." Vulnerabilities and Malware Primarily includes severe and exploited vulnerabilities in devices or software used by end users (ex: a major router firmware flaw).

Surveillance

Surveillance Malware Data breaches Scams

Is the Belarusian government behind the surveillance Android app banned by Google?

Security Affairs

SEPTEMBER 3, 2020

According to an anonymous Belarusian security researcher the app was designed for surveillance purposes, it collects info on the device owner and geolocation data, then periodically sends the data back to a remote server. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. site (89.223.89[.]47).”

Surveillance

Surveillance Government Advertising Malware

German authorities raid the offices of the FinFisher surveillance firm

Security Affairs

OCTOBER 14, 2020

Earlier this month, German authorities have raided the offices of FinFisher, the German surveillance software firm, accused of providing its software to oppressive regimes. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Surveillance

Surveillance Spyware Advertising Software

Experts spotted the iOS version of the Exodus surveillance app

Security Affairs

APRIL 9, 2019

In the last weeks, a new Android surveillance malware dubbed Exodus made the headlines, now expert found the iOS version of the government spyware. Security experts at LookOut have discovered an iOS version of the dreaded surveillance Android app Exodus that was initially found on the official Google Play Store. to eSurv S.R.L.

Surveillance

Surveillance Spyware Phishing Malware

Amnesty International filed a lawsuit against Israeli surveillance firm NSO

Security Affairs

MAY 20, 2019

Amnesty International filed a lawsuit against Israeli surveillance firm NSO and fears its staff may be targeted by the company with its Pegasus spyware. The name NSO Group made the headlines last week after the disclosure of the WhatsApp flaw exploited by the company to remotely install its surveillance software.

Surveillance

Surveillance Spyware Software Government

Swiss rail vehicle manufacturer Stadler hit by a malware-based attack

Security Affairs

MAY 10, 2020

Attackers confirmed that attackers compromised the IT network of the company and deployed some of its machines with malware that was used to exfiltrate data from the infected devices. “Stadler internal surveillance services found out that the company’s IT network has been attacked by malware which has most likely led to a data leak.

Manufacturing

Manufacturing Malware Data breaches Backups

Exodus, a government malware that infected innocent victims

Security Affairs

MARCH 30, 2019

The malware was tracked as Exodus, after the name of the command and control servers the malicious apps connected to. The malware was undetected for months, and unfortunately, this isn’t the first time that malicious codes are hosted on the Google Play store without being detected. ” continues the report.

Government

Government Malware Spyware Surveillance

UAE government denies using ToTok for mass surveillance

Security Affairs

DECEMBER 30, 2019

The United Arab Emirates denied reports that the popular mobile app ToTok was used as part of a government massive surveillance program. According to a report recently published by the New York Times , the popular app ToTok was used by the UAE government as a surveillance tool. SecurityAffairs – ToTok, surveillance).

Surveillance

Surveillance Government Telecommunications Advertising

Russian national indicted for attempting to recruit Tesla employee to install malware

Security Affairs

SEPTEMBER 7, 2020

US authorities have indicted a Russian national for conspiring to recruit a Tesla employee to install malware onto the company’s infrastructure. Russian national Egor Igorevich Kriuchkov (27) has been indicted in the United States for conspiring to recruit a Tesla employee to install malware onto the company’s network.

Malware

Malware Advertising Surveillance Hacking

Amnesty International employee targeted with NSO group surveillance malware

Security Affairs

AUGUST 1, 2018

An employee at Amnesty International has been targeted with Israeli surveillance malware, the news was revealed by the human rights group. Amnesty International revealed that one of its employees was targeted with a surveillance malware developed by an Israeli firm. com , pine-sales[.]com com , and ecommerce-ads[.]org.”

Surveillance

Surveillance Malware Spyware Mobile

Hundreds of malicious Chrome browser extensions used to spy on you!

Security Affairs

JUNE 20, 2020

Malicious Chrome browser extensions were employed in a surveillance campaign on a large scale, millions of users potentially impacted. According to Awake Security, the extensions were downloaded 33 million times and they were part of a massive surveillance campaign that was aided by the internet domain registrar CommuniGal Communication Ltd.

Surveillance

Surveillance Internet Internet Advertising

China installs a surveillance app on tourists’ phones while crossing in the Xinjiang

Security Affairs

JULY 3, 2019

Chinese border guards are secretly installing a surveillance app on smartphones of tourists and people crossings in the Xinjiang region who are entering from Kyrgyzstan. The surveillance software allows operators to spy on victims, accessing emails, text messages, contacts, calendar entries, call records. Pierluigi Paganini.

Surveillance

Surveillance Spyware Advertising Government

Experts discovered the first mobile malware families linked to Russia’s Gamaredon

Security Affairs

DECEMBER 12, 2024

Lookout researchers linked the BoneSpy and PlainGnome Android surveillance families to the Russian APT group Gamaredon (a.k.a. These are the first known mobile malware families linked to the Russian APT. Gamaredon has been launching cyber-espionage campaigns on Ukraine since at least 2014. PlainGnome uses a two-stage deployment.

Mobile

Mobile Malware Surveillance Social Engineering

Syria-linked APT group SEA targets Android users with COVID19 lures

Security Affairs

APRIL 17, 2020

Syrian-linked APT group SEA recently used COVID-19-themed lures as part of a long-running surveillance campaign, security researchers warn. Notably, the C2 servers of SilverH awk , an Android malware family previously reported on by Lookout researchers, were located on IP addresses belonging to STE.” The experts conclude.”It

Surveillance

Surveillance Telecommunications Mobile Advertising

Rampant Kitten ‘s arsenal includes Android malware that bypasses 2FA

Security Affairs

SEPTEMBER 18, 2020

Security researchers discovered Android malware capable of bypassing 2FA that was developed by an Iran-linked group dubbed Rampant Kitten. Security researchers from Check Point discovered an Android malware, developed by an Iran-linked group dubbed Rampant Kitten, that is able to bypass 2FA. Pierluigi Paganini.

Malware

Malware Phishing Accountability Advertising

WhatsApp sued Israeli surveillance firm NSO Group and its parent Q Cyber Technologies

Security Affairs

OCTOBER 30, 2019

WhatsApp sued Israeli surveillance firm NSO Group, accusing it of using a flaw in its messaging service to conduct cyberespionage on journalists and activists. WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks against its users. ” reads the lawsuit. Pierluigi Paganini.

Surveillance

Surveillance Technology Spyware Mobile

Commercial spyware vendors are behind most zero-day exploits discovered by Google TAG

Security Affairs

FEBRUARY 6, 2024

The latest report published by Google Threat Analysis Group (TAG), titled “ Buying Spying, an in-depth report with our insights into Commercial Surveillance Vendors (CSVs )”, warns of the rise of commercial spyware vendors and the risks to free speech, the free press, and the open internet. ” concludes Google.

Spyware

Spyware Surveillance Government Software

Domestic Kitten – An Iranian surveillance operation under the radar since 2016

Security Affairs

SEPTEMBER 9, 2018

CheckPoint uncovered an extensive surveillance operation conducted by Iranian APT actor and tracked as Domestic Kitten aimed at specific groups of individuals. ” This means that the Domestic Kitten surveillance operation had collateral victims whose details were leaked from contact lists or conversations with the targets.

Surveillance

Surveillance Mobile Advertising Spyware

Second-ever UEFI rootkit used in North Korea-themed attacks

Security Affairs

OCTOBER 5, 2020

A China-linked threat actor used UEFI malware based on code from Hacking Team in attacks aimed at organizations with an interest in North Korea. Researchers from Kaspersky have spotted a UEFI malware that was involved in attacks on organizations with an interest in North Korea. Pierluigi Paganini. SecurityAffairs – hacking, UEFI).

Firmware

Firmware Spyware Surveillance Hacking

Unknown FinSpy Mac and Linux versions found in Egypt

Security Affairs

SEPTEMBER 27, 2020

Experts from Amnesty International uncovered a surveillance campaign that targeted Egyptian civil society organizations with a new version of FinSpy spyware. The mobile version of the surveillance software in the first stage of the infection leverages the exploits to get root access. ” reads the Amnesty’s report.

Spyware

Spyware Surveillance Advertising Mobile

Facebook vs NSO Group lawsuit: 1,400+ users were targeted with Pegasus spyware

Security Affairs

APRIL 25, 2020

The legal dispute between Facebook and NSO group continues even after the Israeli surveillance firm filed a motion to dismiss the case earlier this month. The surveillance implant used by the NSO group used an exploit for a vulnerability, tracked as CVE-2019-3568 , in the WhatsApp VoIP feature. Pierluigi Paganini.

Spyware

Spyware Surveillance Advertising Mobile

Russia-linked BlackEnergy backed new cyber attacks on Ukraine’s state bodies

Security Affairs

OCTOBER 15, 2018

The BlackEnergy malware is a threat improved to target SCADA systems, some variants include the KillDisk component developed to wipe the disks and make systems inoperable. According to the SBU, BlackEnergy hackers used new samples of malware in a recent series of attack. ” states the ukrinform.net. Pierluigi Paganini.

Cyber Attacks

Cyber Attacks Surveillance Telecommunications Advertising

Top Zeus Botnet Suspect “Tank” Arrested in Geneva

Krebs on Security

NOVEMBER 15, 2022

Penchukov was named in a 2014 indictment by the U.S. The JabberZeus crew’s name is derived from the malware they used, which was configured to send them a Jabber instant message each time a new victim entered a one-time password code into a phishing page mimicking their bank. Tank, a.k.a.

Banking

Banking Small Business Accountability Malware

Security Affairs newsletter Round 241

Security Affairs

NOVEMBER 24, 2019

CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance. Payment solutions giant Edenred announces malware infection. Russian author of NeverQuest banking malware gets 4 Years in U.S. Catch Hospitality Group discloses PoS malware infection at its restaurants. Personal and social information of 1.2B

Data breaches

Data breaches Wireless Banking Advertising

Microsoft’s case study: Emotet took down an entire network in just 8 days

Security Affairs

APRIL 4, 2020

The attack described by Microsoft begun with a phishing message that was opened by an internal employee, the malware infected its systems and made lateral movements infected other systems in the same network. The incident also affected the surveillance camera network of the company along with the finance department.

Antivirus

Antivirus Malware Phishing Advertising

Botnet operators target multiple zero-day flaws in LILIN DVRs

Security Affairs

MARCH 23, 2020

Experts observed multiple botnets exploiting zero-day vulnerabilities in DVRs for surveillance systems manufactured by Taiwan-based LILIN. Botnet operators are exploiting several zero-day vulnerabilities in digital video recorders (DVRs) for surveillance systems manufactured by Taiwan-based LILIN-. Pierluigi Paganini.

Firmware

Firmware Surveillance Manufacturing Advertising

NYT report states that ToTok app is a government spy tool.

Security Affairs

DECEMBER 24, 2019

According to a report published by the New York Times, the popular app ToTok was used by the UAE government as a surveillance tool. The report said US intelligence officials and a security researcher determined the app was being used by the UAE government for detailed surveillance. SecurityAffairs – ToTok, surveillence).

Government

Government Surveillance Advertising Mobile

Moroccan journalist targeted with network injection attacks using NSO Group ‘s spyware

Security Affairs

JUNE 22, 2020

In October 2019, security experts at Amnesty International’s Security Lab have uncovered targeted attacks against Moroccan human rights defenders Maati Monjib and Abdessadak El Bouchattaoui that employed NSO Group surveillance tools. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Spyware

Spyware Surveillance Mobile Advertising

Reading the Yoroi Cyber Security Annual Report 2018

Security Affairs

MAY 13, 2019

Yoroi Cyber Security Annual Report 2018 – In 2018 cyber-security experts observed an increased number of cyber attacks, malware endure to be the most aggressive and pervasive threat. Section 1 describes the evolution of the malware in the threat landscape in the past twelve months. Download the Yoroi Cyber Security Report 2018.

Malware

Malware Advertising DNS Surveillance

Transparent Tribe APT hit 1000+ victims in 27 countries in the last 12 months

Security Affairs

AUGUST 23, 2020

If these conditions are met, it will start to monitor removable media, and for each of these, the malware will try to infect the device and steal files of interest.”. The legitimate directories’ attribute is set to “hidden” while the actual directories are being replaced with a copy of the malware using the same directory name.

Malware

Malware Media Advertising Surveillance

Security Affairs - Untitled Article

Security Affairs

MARCH 5, 2019

The Chafer APT group has distributed data stealer malware since at least mid-2014, it was focused on surveillance operations and the tracking of individuals. com domain and delivered the new malware from IP address 185.177.59 [. ] Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware

Malware Advertising Government Surveillance

Android Spyware Monokle, developed by Russian defense contractor, used in targeted attacks

Security Affairs

JULY 25, 2019

“Lookout has discovered a highly targeted mobile malware threat that uses a new and sophisticated set of custom Android surveillanceware tools called Monokle that has possible connections to Russian threat actors.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Spyware

Spyware Surveillance Mobile Advertising

Security Affairs newsletter Round 259

Security Affairs

APRIL 12, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Hacking

Hacking Advertising Surveillance Phishing

Egypt regularly spies on opponents and activists with mobile apps

Security Affairs

OCTOBER 4, 2019

Researchers at Check Point discovered that Egypt ‘ government has been spying citizens in a sophisticated surveillance program. Researchers at Check Point discovered that the Egyptian government has been spying on activists and opponents as part of a sophisticated surveillance program. SecurityAffairs – Egypt, surveillance).

Mobile

Mobile Surveillance Government Advertising

Experts attribute WyrmSpy and DragonEgg spyware to the Chinese APT41 group

Security Affairs

JULY 20, 2023

Lookout also discovered a link between the C2 infrastructure hard-coded into the malware’s source code and Chengdu 404. The experts noticed the use of an IP address that was part of the hacking infrastructure used by APT41 between May 2014 and August 2020. Most recent samples of DraginEgg are dated April 2023.

Spyware

Spyware Surveillance Mobile Malware

Bouncing Golf cyberespionage campaign targets Android users in Middle East

Security Affairs

JUNE 19, 2019

Threat actors are using a piece of malware detected as GolfSpy, that implements multiple features and can hijack the victim’s device. Attackers distributed the malware in tainted legitimate applications that are hosted on websites advertised on social media. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Mobile

Mobile Malware Advertising Encryption

Iran-linked Chafer APT group targets governments in Kuwait and Saudi Arabia

Security Affairs

MAY 21, 2020

The Chafer APT group has distributed data stealer malware since at least mid-2014, it was focused on surveillance operations and the tracking of individuals. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Government

Government Social Engineering Hacking Advertising

The Belgacom hack was the work of the UK GCHQ intelligence agency

Security Affairs

OCTOBER 28, 2018

Back to September 2013, Belgacom (now Proximus), the largest telecommunications company in Belgium and primarily state-owned, announced its IT infrastructure had suffered a malware-based attack. The investigation revealed that the malware-based attack was powered by GCHQ and code-named Operation Socialist. ” wrote The Intercept.

Hacking

Hacking Spyware Telecommunications Malware

Iran-linked APT42 is behind over 30 espionage attacks

Security Affairs

SEPTEMBER 11, 2022

The campaigns have been conducted since 2015 and are aimed at conducting information collection and surveillance operations against individuals and organizations of strategic interest to Teheran. ” The surveillance operations conducted by the APT group involved the distribution of Android malware such as VINETHORN and PINEFLOWER.

Surveillance

Surveillance Social Engineering Phishing Government

Security Affairs newsletter Round 225 and Important Update

Security Affairs

AUGUST 4, 2019

Sonicwall warns of a spike in the number of attacks involving encrypted malware and IoT malware. Malware researchers analyzed an intriguing Java ATM Malware. million fine for selling flawed surveillance technology to the US Gov. SystemBC, a new proxy malware is being distributed via Fallout and RIG EK.

Data breaches

Data breaches eCommerce Hacking Malware

Amnesty claims that 2 Morocco rights advocates were targeted by NSO Group spyware

Security Affairs

OCTOBER 10, 2019

NSO Group ‘s surveillance spyware made the headlines again, this time the malware was used to spy on 2 rights activists in Morocco according Amnesty International. The organization calls on the Israeli ministry of defence to ban the export of the Pegasus surveillance software developed by NSO Group. Pierluigi Paganini.

Spyware

Spyware Surveillance Advertising Malware

Yana Peel, chief executive of London’s Galleries, resigned after discovery of her links with NSO group

Security Affairs

JUNE 18, 2019

The head of London’s Serpentine Galleries resigned on Tuesday following a Guardian report about her links to the Israeli surveillance firm NSO Group. Pegasus is a perfect tool for surveillance, it is able to steal any kind of data from smartphones and use them to spy on the surrounding environment through their camera and microphone.

Surveillance

Surveillance Spyware Software Advertising

Checkra1n, a working iPhone Jailbreak, was released

Security Affairs

NOVEMBER 16, 2019

Axi0mX’s jailbreak code is marked as a “beta” release, but experts warned of the concrete possibility that expert coders or intelligence agencies will integrate it into hacking tools and malware. For example, a few months ago it was reported that Chinese border guards put secret surveillance app on tourists’ phones,” explained Hebeisen. .

Surveillance

Surveillance Advertising Risk Media

Google updates policies to ban any ads for surveillance solutions and services

Privacy Roundup: Week 3 of Year 2025

Trending Sources

Is the Belarusian government behind the surveillance Android app banned by Google?

German authorities raid the offices of the FinFisher surveillance firm

Experts spotted the iOS version of the Exodus surveillance app

Amnesty International filed a lawsuit against Israeli surveillance firm NSO

Swiss rail vehicle manufacturer Stadler hit by a malware-based attack

Exodus, a government malware that infected innocent victims

UAE government denies using ToTok for mass surveillance

Russian national indicted for attempting to recruit Tesla employee to install malware

Amnesty International employee targeted with NSO group surveillance malware

Hundreds of malicious Chrome browser extensions used to spy on you!

China installs a surveillance app on tourists’ phones while crossing in the Xinjiang

Experts discovered the first mobile malware families linked to Russia’s Gamaredon

Syria-linked APT group SEA targets Android users with COVID19 lures

Rampant Kitten ‘s arsenal includes Android malware that bypasses 2FA

WhatsApp sued Israeli surveillance firm NSO Group and its parent Q Cyber Technologies

Commercial spyware vendors are behind most zero-day exploits discovered by Google TAG

Domestic Kitten – An Iranian surveillance operation under the radar since 2016

Second-ever UEFI rootkit used in North Korea-themed attacks

Unknown FinSpy Mac and Linux versions found in Egypt

Facebook vs NSO Group lawsuit: 1,400+ users were targeted with Pegasus spyware

Russia-linked BlackEnergy backed new cyber attacks on Ukraine’s state bodies

Top Zeus Botnet Suspect “Tank” Arrested in Geneva

Security Affairs newsletter Round 241

Microsoft’s case study: Emotet took down an entire network in just 8 days

Botnet operators target multiple zero-day flaws in LILIN DVRs

NYT report states that ToTok app is a government spy tool.

Moroccan journalist targeted with network injection attacks using NSO Group ‘s spyware

Reading the Yoroi Cyber Security Annual Report 2018

Transparent Tribe APT hit 1000+ victims in 27 countries in the last 12 months

Security Affairs - Untitled Article

Android Spyware Monokle, developed by Russian defense contractor, used in targeted attacks

Security Affairs newsletter Round 259

Egypt regularly spies on opponents and activists with mobile apps

Experts attribute WyrmSpy and DragonEgg spyware to the Chinese APT41 group

Bouncing Golf cyberespionage campaign targets Android users in Middle East

Iran-linked Chafer APT group targets governments in Kuwait and Saudi Arabia

The Belgacom hack was the work of the UK GCHQ intelligence agency

Iran-linked APT42 is behind over 30 espionage attacks

Security Affairs newsletter Round 225 and Important Update

Amnesty claims that 2 Morocco rights advocates were targeted by NSO Group spyware

Yana Peel, chief executive of London’s Galleries, resigned after discovery of her links with NSO group

Checkra1n, a working iPhone Jailbreak, was released

Stay Connected