Security Affairs

MAY 30, 2024

Researchers from ThreatFabric discovered a macOS version of the LightSpy spyware that has been active in the wild since at least January 2024. ThreatFabric observed threat actors using two publicly available exploits (CVE-2018-4233, CVE-2018-4404) to deliver macOS implants. and iOS versions before 11.4.

Spyware 136

Spyware Malware Surveillance Mobile 136

Security Affairs

JULY 19, 2021

Pegasus Project investigation into the leak of 50,000 phone numbers of potential surveillance targets revealed the abuse of NSO Group’s spyware. Pegasus Project is the name of a large-scale investigation into the leak of 50,000 phone numbers of potential surveillance targets that revealed the abuse of NSO Group’s spyware.

Spyware 131

Spyware Government Surveillance Media 131

Security Affairs

FEBRUARY 24, 2021

Vietnam-linked APT32 group targeted Vietnamese human rights defenders (HRDs) between February 2018 and November 2020. The threat actors used by spyware to take over the target systems, spy on the victims, and exfiltrate data. The link points to files containing spyware that could infect both Mac OS or Windows systems.

Spyware 129

Spyware Government Surveillance Phishing 129

Security Affairs

DECEMBER 16, 2020

Security experts spotted a new malware strain, named Goontact, that allows its operators to spy on both Android and iOS users. Security researchers from Lookout have discovered new spyware, dubbed Goontcat, that could target both Android and iOS users. The spyware is likely used as part of a sextortion campaign.

Spyware 143

Spyware Mobile Surveillance Malware 143

Security Affairs

OCTOBER 25, 2021

Threat actors infected the iPhone of New York Times journalist Ben Hubbard with NSO Group’s Pegasus spyware between June 2018 to June 2021. The iPhone of New York Times journalist Ben Hubbard was repeatedly infected with NSO Group’s Pegasus spyware. The device was compromised two times, in July 2020 and June 2021.

Spyware 122

Spyware Hacking Backups Accountability 122

Security Affairs

JUNE 22, 2020

Researchers at Amnesty International collected evidence that a Moroccan journalist was targeted with network injection attacks using NSO Group ‘s spyware. The links used in these attacks are similar to the ones detected by in June 2018 by Amnesty International in operations against an Amnesty staff member and a Saudi HRD.

Spyware 144

Spyware Surveillance Mobile Advertising 144

Security Affairs

FEBRUARY 11, 2021

Lookout researchers provided details about two Android spyware families employed by an APT group tracked as Confucius. Researchers at mobile security firm Lookout have provided details about two recently discovered Android spyware families, dubbed Hornbill and SunBird, used by an APT group named Confucius. Pierluigi Paganini.

Spyware 143

Spyware Surveillance Malware Mobile 143

Security Affairs

NOVEMBER 8, 2021

A Hungarian government official confirmed that his government has bought and used the controversial NSO Group’s Pegasus spyware. In July, a large-scale investigation, dubbed Pegasus Project , into the leak of 50,000 phone numbers of potential surveillance targets revealed the abuse of NSO Group’s spyware. Pierluigi Paganini.

Spyware 117

Spyware Surveillance Media Government 117

Security Affairs

JULY 30, 2024

A new version of the Mandrake Android spyware has been found in five apps on Google Play, which have been downloaded over 32,000 times since 2022. Researchers from Kaspersky discovered a new version of the Mandrake Android spyware in five app on Google Play, totaling over 32,000 downloads between 2022 and 2024.

Spyware 126

Spyware Malware Mobile Marketing 126

Security Affairs

JUNE 28, 2019

Allegedly Western nation-state actors breached the systems of Russian tech giant Yandex in 2018, the attack involved a new variant of the Regin malware. According to the Reuters, Western state-sponsored hackers breached the systems of the Russian tech giant Yandex in 2018, the attack involved a new variant of the Regin malware.

Spyware 108

Spyware Malware Advertising Authentication 108

Security Affairs

JULY 11, 2019

Malware researchers from Kaspersky have discovered new and improved versions of the infamous FinFisher spyware used to infect both Android and iOS devices. Experts at Kaspersky have discovered a new improved variant of the FinFisher spyware used to spy on both iOS and Android users in 20 countries. Pierluigi Paganini.

Spyware 111

Spyware Advertising Mobile Architecture 111

Security Affairs

MARCH 3, 2023

The phone of an opposition-linked Polish mayor was infected with the powerful Pegasus spyware, local media reported. Reuters reported that the phone of an opposition-linked Polish mayor was infected with the Pegasus spyware. According to rumors, the Polish special services are using surveillance software to spy on government opponents.

Spyware 98

Spyware Surveillance Hacking Government 98

Security Affairs

NOVEMBER 11, 2022

Researchers from mobile security firm Lookout uncovered two long-running surveillance campaigns targeting the Uyghurs minority. The threat actors behind the campaigns used two Android spyware to spy on the victims and steal sensitive information. Bazar is a lesser known spelling of Bazaar.” List of installed packages.

Surveillance 98

Surveillance Spyware Malware Mobile 98

Security Affairs

APRIL 8, 2019

Bahrain, 08.04.2019 – Group-IB, an international company that specializes in preventing cyberattacks , and NGN International, a global system integrator, analyzed cybersecurity landscape in Gulf countries in 2018. According to Group-IB’s annual Hi-Tech Crime Trends 2018 report, on average, from June 2017 to August 2018, the details of 1.8

Artificial Intelligence 96

Artificial Intelligence Government Banking Advertising 96

Security Affairs

JUNE 24, 2022

Google’s Threat Analysis Group (TAG) revealed that the Italian spyware vendor RCS Labs was supported by ISPs to spy on users. The iOS app analyzed by the researchers contained the following exploits: CVE-2018-4344 internally referred to and publicly known as LightSpeed. Follow me on Twitter: @securityaffairs and Facebook.

Surveillance 135

Surveillance Mobile Spyware Telecommunications 135

Security Affairs

AUGUST 12, 2020

Agent Tesla is a spyware that is used to spy on the victims by collecting keystrokes, system clipboard, screenshots, and credentials from the infected system. To do this, the spyware creates different threads and timer functions in the main function.

Passwords 144

Passwords Spyware VPN Malware 144

Security Affairs

OCTOBER 19, 2020

Researchers spotted new variants of the Windows GravityRAT spyware that now can also infect Android and macOS devices. The researchers reported that the malware was employed in approximately 100 successful attacks between 2015 and 2018. The list of targets includes employees at defense, police, and other departments and organizations.

Malware 137

Malware Computers and Electronics Spyware Advertising 137

Security Affairs

SEPTEMBER 24, 2024

Israeli cyber units have developed sophisticated spyware and hacking tools that allow their intelligence to track both Lebanese citizens and visitors.

Hacking 133

Hacking Spyware Mobile Media 133

Security Affairs

APRIL 22, 2024

The list also includes criminals, suspected terrorists, intelligence operatives and a European spyware firm. Compromised data vary by individuals and organizations, it includes names, passport numbers, Social Security numbers, online crypto account identifiers and bank account numbers, and more. LSEG acquired Refinitiv is 2021.

Risk 138

Risk Spyware Hacking Accountability 138

Security Affairs

JULY 10, 2020

Evilnum threat actor was first spotted in 2018 while using the homonym malware. The JS script would also act as a dropper for additional payloads, including a C# spyware, Golden Chickens components, and Python-based applications. Threat actors used a dedicated C2 server for each component that is installed via manual commands.

eCommerce 134

eCommerce Advertising Malware Spyware 134

The Last Watchdog

JANUARY 28, 2019

Worldwide spending on information security products and services rose to $114 billion in 2018, up from $102 billion in 2017, an increase of 12.4 Google and Apple have invested a lot into securing their respective app stores. Apps from other sources can carry malware or spyware.

Passwords 196

Passwords Password Management Internet Internet 196

Security Affairs

OCTOBER 30, 2019

In May, Facebook has patched a critical zero-day vulnerability in WhatsApp, tracked as CVE-2019-3568 , that has been exploited to remotely install spyware on phones by calling the targeted device. Today @WhatsApp is taking a stand against the dangerous use of spyware. This abuse must be stopped.

Surveillance 75

Surveillance Technology Spyware Mobile 75

Security Affairs

MARCH 21, 2022

The group was first spotted by ESET in 2018, when the experts detected a sophisticated piece of spyware, tracked as InvisiMole , used in targeted attacks in Russia and Ukraine in the previous five years.

Spyware 98

Spyware DNS Phishing Government 98

Security Affairs

JULY 18, 2019

The new campaign started in the second half of 2018, attackers used once again tainted version of popular software like WinRAR to compromise victims’ systems. Based on compilation times, infrastructure, and public distribution of samples – we assess the campaign operated from the second half of 2018 into today (July 2019).”

Malware 89

Malware Software Advertising Spyware 89

Security Affairs

DECEMBER 30, 2019

Security experts have detected and analyzed some of the tools in its arsenals, such as the popular Pegasus spyware (for iOS) and Chrysaor (for Android). In September 2018, a report published by Citizen Lab revealed that the NSO Pegasus spyware was used against targets across 45 countries worldwide.

Cybercrime 94

Cybercrime Surveillance Spyware Government 94

Security Affairs

JUNE 18, 2020

Security researchers at ESET recently uncovered a campaign carried out by the InvisiMole group that has been targeting a small number of high-profile organizations in the military sector and diplomatic missions in Eastern Europe.

DNS 122

DNS Advertising Spyware Software 122

Security Affairs

MAY 19, 2019

Reading the Yoroi Cyber Security Annual Report 2018. WhatsApp zero-day exploited in targeted attacks to deliver NSO spyware. SAP Security Patch Day for May 2019 fixes many missing authorization checks. Over 10k+ GPS trackers could be abused to spy on individuals in the UK. Malware Training Sets: FollowUP.

Advertising 88

Advertising Spyware Data breaches Hacking 88

Security Affairs

JULY 13, 2019

UK ICO fines British Airways £183 Million under GDPR over 2018 security breach. New FinFisher spyware used to spy on iOS and Android users in 20 countries. Hackers are poisoning the PGP SKS keyserver network poisoned. Spotting RATs: Delphi wrapper makes the analysis harder. A new Astaroth Trojan Campaign uncovered by Microsoft.

Data breaches 77

Data breaches Spyware Advertising Government 77

Security Affairs

JULY 7, 2019

ViceLeaker Android spyware targets users in the Middle East. Magento fixed security flaws that allow complete site takeover. Sodin Ransomware includes exploit for Windows CVE-2018-8453 bug. Israeli blamed Russia for jamming at Israeli Ben Gurion airport. New variant of Dridex banking Trojan implements polymorphism.

Scams 70

Scams Advertising Spyware DNS 70

Security Affairs

MAY 8, 2020

In H2 2019, as part of its work to detect and prevents threats distributing online, Group-IB’s Computer Emergency Response Team (CERT-GIB) blocked a total of 8, 506 phishing web resources, while in H2 2018, the figure stood at 2,567.This Malware delivery: what’s on the menu?

Phishing 87

Phishing Spyware Banking Malware 87

BH Consulting

SEPTEMBER 24, 2024

NIS2 in the nick of time The Irish Government has published the Heads of Bill for the NIS2 Directive (the Network and Information Security Directive EU 2022/2555, to give its full name). The National Cyber Security Bill 2024 is the legislative vehicle for transposing NIS2 into Irish law.

Energy and Utilities 69

Energy and Utilities Penetration Testing Banking Spyware 69

Security Affairs

JULY 1, 2019

Experts at Kaspersky have uncovered a spyware campaign dubbed ViceLeaker that spreads in the Middle East to spy on Android users. . Kaspersky spotted a spyware campaign, tracked as ViceLeaker, that spreads in the Middle East to steal device and communications data from Android users. . Pierluigi Paganini.

Spyware 106

Spyware Mobile Advertising Malware 106

Security Affairs

NOVEMBER 16, 2024

” NSO Group continued using WhatsApp exploits, including spyware called “Erised,” even after being sued for violating anti-hacking laws. In May 2019, Facebook patched a critical zero-day vulnerability in WhatsApp, tracked as CVE-2019-3568 , that has been exploited to remotely install spyware on phones by calling the targeted device.

Spyware 117

Spyware Surveillance Malware Hacking 117

Security Affairs

DECEMBER 22, 2024

million individuals The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs Russia FSB relies on Ukrainian minors for criminal activities disguised as “quest games” U.S.

Data breaches 60

Data breaches Cybercrime Spyware Firmware 60