Security Affairs

MAY 14, 2019

Facebook fixed a critical zero-day flaw in WhatsApp that has been exploited to remotely install spyware on phones by calling the targeted device. Facebook has recently patched a critical zero-day vulnerability in WhatsApp, tracked as CVE-2019-3568 , that has been exploited to remotely install spyware on phones by calling the targeted device.

Spyware 111

Spyware Surveillance Mobile Advertising 111

Security Affairs

JUNE 17, 2022

Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.

Spyware 111

Spyware Surveillance Telecommunications Mobile 111

Security Affairs

OCTOBER 11, 2021

A Togolese human rights advocate was hit by mobile spyware that has been allegedly developed by an Indian firm called Innefu Labs. Experts believe the attackers used a spyware developed by an Indian company called Innefu Labs. In the past, the Donot Team spyware was found in attacks outside of South Asia. Pierluigi Paganini.

Spyware 105

Spyware Surveillance Accountability Mobile 105

Security Affairs

MARCH 3, 2023

The phone of an opposition-linked Polish mayor was infected with the powerful Pegasus spyware, local media reported. Reuters reported that the phone of an opposition-linked Polish mayor was infected with the Pegasus spyware. According to rumors, the Polish special services are using surveillance software to spy on government opponents.

Spyware 98

Spyware Surveillance Hacking Government 98

Security Affairs

MAY 29, 2023

Cisco Talos and the Citizen Lab researchers have published a technical analysis of the powerful Android spyware Predator. Security researchers at Cisco Talos and the Citizen Lab have shared technical details about a commercial Android spyware named Predator that is sold by the surveillance firm Intellexa (formerly known as Cytrox).

Spyware 98

Spyware Surveillance Media Malware 98

Security Affairs

JULY 11, 2019

Malware researchers from Kaspersky have discovered new and improved versions of the infamous FinFisher spyware used to infect both Android and iOS devices. Experts at Kaspersky have discovered a new improved variant of the FinFisher spyware used to spy on both iOS and Android users in 20 countries. Pierluigi Paganini.

Spyware 111

Spyware Advertising Mobile Architecture 111

Security Affairs

NOVEMBER 11, 2022

Researchers from mobile security firm Lookout uncovered two long-running surveillance campaigns targeting the Uyghurs minority. The threat actors behind the campaigns used two Android spyware to spy on the victims and steal sensitive information. List of installed packages. ” concludes the report. Pierluigi Paganini.

Surveillance 98

Surveillance Spyware Malware Mobile 98

Security Affairs

NOVEMBER 16, 2024

” NSO Group continued using WhatsApp exploits, including spyware called “Erised,” even after being sued for violating anti-hacking laws. In October 2019, WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks against its users. from April 29, 2018, to May 10, 2020).

Spyware 126

Spyware Surveillance Malware Hacking 126

Security Affairs

SEPTEMBER 27, 2020

Experts from Amnesty International uncovered a surveillance campaign that targeted Egyptian civil society organizations with a new version of FinSpy spyware. The binaries are obfuscated and do some checks to detect if the spyware is running in a Virtual Machine. ” reads the Amnesty’s report.

Spyware 145

Spyware Surveillance Advertising Mobile 145

Security Affairs

JUNE 24, 2022

Google’s Threat Analysis Group (TAG) revealed that the Italian spyware vendor RCS Labs was supported by ISPs to spy on users. CVE-2019-8605 internally referred to as SockPort2 and publicly known as SockPuppet CVE-2020-3837 internally referred to and publicly known as TimeWaste. Pierluigi Paganini.

Surveillance 141

Surveillance Mobile Spyware Telecommunications 141

Security Affairs

OCTOBER 14, 2020

The authorities started the investigation last year after the German blog Netzpolitik and some advocacy groups (Reporters Without Borders, Society for Freedom Rights, and the European Center for Constitutional and Human Rights), filed a complaint with Munich prosecutors in the summer of 2019.

Surveillance 134

Surveillance Spyware Software Advertising 134

Security Affairs

AUGUST 30, 2019

Threat actors used at least five unique iPhone exploit chains that allowed them to remotely jailbreak a device and deliver spyware. Project Zero Team Lead Ben Hawkes revealed that both CVE-2019-7286 and CVE-2019-7287 have been exploited in the wild. — Ben Hawkes (@benhawkes) February 7, 2019. on 7 Feb 2019.

Spyware 111

Spyware Hacking Advertising Encryption 111

Security Affairs

APRIL 8, 2020

In October 2019, WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks against its users. In May, Facebook has patched a critical zero-day vulnerability in WhatsApp, tracked as CVE-2019-3568 , that has been exploited to remotely install spyware on phones by calling the targeted device.

Surveillance 137

Surveillance Spyware Advertising Government 137

Security Affairs

MARCH 7, 2021

In the last years, security experts documented multiple hacking and disinformation campaigns, attributed to Russia-linked APT groups, that targeted Lithuania, Estonia , and Latvia. The head of cyber security Rimtautas Cerniauskas confirmed the discovery of at least three Russian spyware on government computers since 2015.

Cyber Attacks 142

Cyber Attacks Spyware Government Hacking 142

Security Affairs

SEPTEMBER 18, 2020

Every third email, meanwhile, contained spyware , which is used by threat actors to steal payment data or other sensitive info to then put it on sale in the darknet or blackmail its owner. Another 17 percent contained downloaders, while backdoors and banking Trojans came third with a 16- and 15-percent shares, respectively.

Phishing 136

Phishing Ransomware Spyware Banking 136

Security Affairs

DECEMBER 21, 2020

The attackers used an exploit chain named Kismet that was part of the arsenal of the controversial Pegasus spyware that is sold by the surveillance firm NSO Group. ” The KISMET exploit chain doesn’t work against iOS 14 and above because the new mobile iOS implements additional security protections.

Hacking 144

Hacking Surveillance Spyware Government 144

Security Affairs

OCTOBER 5, 2020

The experts were investigating several suspicious UEFI firmware images when discovered four components, some of which were borrowing the source code a Hacking Team spyware. Kaspersky researchers revealed to have found MosaicRegressor components at several dozen entities between 2017 and 2019.

Firmware 145

Firmware Spyware Surveillance Hacking 145

Security Affairs

APRIL 9, 2020

Spyware turned out to be the most common malware class hiding in fraudulent COVID-19 emails, with AgentTesla topping the list of phishers’ favorite strains. Spyware: the most likely COVID-19 payload. Most COVID-19-related phishing emails analyzed had different spyware strains embedded as attachments. Source: CERT-GIB.

Phishing 144

Phishing Malware Spyware DDOS 144

Security Affairs

APRIL 13, 2022

One of the officials targeted with the infamous spyware there is Didier Reynders, a senior Belgian statesman who has served as the European Justice Commissioner since 2019. ” Security researchers said that Apple sent the warnings to its users targeted between February and September 2021. ” concludes the report.

Surveillance 108

Surveillance Software Spyware Hacking 108

Security Affairs

OCTOBER 19, 2020

Researchers spotted new variants of the Windows GravityRAT spyware that now can also infect Android and macOS devices. The malware researchers found the new Android GravityRAT sample in 2019, on VirusTotal. Crooks also started using digital signatures to make the apps look more legitimate.

Malware 142

Malware Computers and Electronics Spyware Advertising 142

Security Affairs

OCTOBER 30, 2019

In May, Facebook has patched a critical zero-day vulnerability in WhatsApp, tracked as CVE-2019-3568 , that has been exploited to remotely install spyware on phones by calling the targeted device. Today @WhatsApp is taking a stand against the dangerous use of spyware. link] — Will Cathcart (@wcathcart) October 29, 2019.

Surveillance 75

Surveillance Technology Spyware Mobile 75

Security Affairs

MAY 20, 2019

Amnesty International filed a lawsuit against Israeli surveillance firm NSO and fears its staff may be targeted by the company with its Pegasus spyware. In July, Citizen Lab collected evidence of attacks against 175 targets worldwide carried on with the NSO spyware.

Surveillance 107

Surveillance Spyware Software Government 107

Security Affairs

FEBRUARY 6, 2022

One of the vulnerabilities in Apple iOS that was previously exploited by the spyware developed by the Israeli company NSO Group was also separately used by another surveillance firm named QuaDream. Apple addressed the flaw used by the ForcedEntry exploit in September 2021, rendering both NSO and QuaDream’s spyware ineffective.

Surveillance 98

Surveillance Spyware Government Hacking 98

Security Affairs

APRIL 11, 2021

The fight to the Joker malware (aka Bread) begun in September 2019 when security experts at Google removed from the official Play Store 24 apps because they were infected with a new spyware tracked as “ the Joker. ”. Experts from antivirus firm Doctor Web discovered ten apps in AppGallery that were containing the malicious code.

Malware 145

Malware Spyware Mobile Antivirus 145

Security Affairs

JULY 16, 2021

The spyware is able to steal SMS messages, contact lists, and device information and to sign victims up for premium service subscriptions. Since 2019 experts found many Joker apps on Google Play store, in September 2019 security experts at Google removed from the store 24 apps.

Malware 145

Malware Mobile Spyware Encryption 145

Security Affairs

DECEMBER 30, 2019

In 2019 we discussed several times about the abuse of surveillance software, in October WhatsApp sued Israeli surveillance firm NSO Group, accusing it of using a flaw in its messaging service to conduct cyberespionage on journalists and activists. “There is no consensus among member states on the need or value of drafting a new treaty.

Cybercrime 94

Cybercrime Surveillance Spyware Government 94

Security Affairs

APRIL 28, 2020

In 2019, researchers from Dr. Web discovered a backdoor trojan in Google Play, which appeared different from other threats due to its level of sophistication for this reason Kaspersky investigated it. . “One of the latest samples was published on the official Android market on November 6, 2019.

Malware 141

Malware Advertising Marketing Spyware 141

Security Affairs

FEBRUARY 14, 2021

COMB breach: 3.2B COMB breach: 3.2B

Phishing 118

Phishing Spyware Data breaches Surveillance 118

Security Affairs

JUNE 18, 2020

Security researchers at ESET recently uncovered a campaign carried out by the InvisiMole group that has been targeting a small number of high-profile organizations in the military sector and diplomatic missions in Eastern Europe. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

DNS 131

DNS Advertising Spyware Software 131

Security Affairs

SEPTEMBER 24, 2023

In 2016, researchers from the non-profit organization CitizenLab published a report that describes a campaign of targeted spyware attacks carried out by the Stealth Falcon. The attacks have been conducted from 2012 until 2106, against Emirati journalists, activists, and dissidents.

Spyware 144

Spyware Malware Architecture Encryption 144

Security Affairs

DECEMBER 28, 2023

According to Kaspersky researchers, Operation Triangulation began at least in 2019 and is still ongoing. In June, Kaspersky announced that after a six-month-long investigation, they completed the collection of all the components of the attack chain and the analysis of the spyware implant, tracked as TriangleDB.

Spyware 143

Spyware Firmware Mobile Malware 143

Security Affairs

JULY 21, 2019

SAP Patch Day – July 2019 addresses a critical flaw in Diagnostics Agent. CVE-2019-6342 flaw allows hackers to fully compromise Drupal 8.7.4 Experts spotted a rare Linux Desktop spyware dubbed EvilGnome. Paper Copy. Once again thank you! For nearly a year, Brazilian users have been targeted with router attacks.

Small Business 94

Small Business Media Spyware Advertising 94

Security Affairs

JULY 16, 2020

The source code of the Xerxes malware was leaked online around May 2019. The BlackRock malware borrows the code from the Xerxes banking malware, which is a strain of the popular LokiBot Android trojan. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware 136

Malware Banking Mobile Advertising 136

Security Affairs

JULY 13, 2019

Adobe Patch Tuesday updates for July 2019 address only 5 minor flaws. Microsoft released Patch Tuesday security updates for July 2019. New FinFisher spyware used to spy on iOS and Android users in 20 countries. CVE-2019-1132 Windows Zero-Day exploited by Buhtrap Group in government attack.

Data breaches 84

Data breaches Spyware Advertising Government 84

Security Affairs

SEPTEMBER 15, 2019

Hi folk, let me inform you that I suspended the newsletter service, anyway I’ll continue to provide you a list of published posts every week through the blog. Experts found Joker Spyware in 24 apps in the Google Play store. Adobe September 2019 Patch Tuesday updates fix 2 code execution flaws in Flash Player.

Spyware 87

Spyware Advertising Hacking IoT 87

Security Affairs

NOVEMBER 17, 2019

Microsoft Patch Tuesday updates fix CVE-2019-1429 flaw exploited in the wild. CVE-2019-3648 flaw in all McAfee AV allows DLL Hijacking. WhatsApp flaw CVE-2019-11931 could be exploited to install spyware. New TSX Speculative Attack allows stealing sensitive data from latest Intel CPUs.

DDOS 82

DDOS Spyware Advertising Ransomware 82

Security Affairs

OCTOBER 13, 2019

MS October 2019 Patch Tuesday updates address 59 flaws. Users reported problems with patches for CVE-2019-1367 IE zero-day. Amnesty claims that 2 Morocco rights advocates were targeted by NSO Group spyware. SAP October 2019 Security Patch Day fixes 2 critical flaws.

VPN 85

VPN Data breaches Spyware Advertising 85