Security Affairs

NOVEMBER 24, 2021

federal court for illegally targeting its customers with the surveillance spyware Pegasus. According to the lawsuit, NSO Group is accountable for hacking into Apple’s iOS-based devices using zero-click exploits. The complaint provides new information on how NSO Group infected victims’ devices with its Pegasus spyware.

Spyware 100

Spyware Surveillance Software Hacking 100

SecureList

MAY 3, 2021

In Q1 2021, new banking scams appeared alongside ones that are more traditional. In Q1 2021, scammers imitating bank emails began to focus on compensation. The link redirected them to a phishing page requesting their Microsoft account credentials. The link also required entering corporate account credentials.

Phishing 136

Phishing Banking Accountability Computers and Electronics 136

SecureWorld News

JULY 18, 2022

The controversial Pegasus spyware continues to stay in the news cycle, as a new report from the Citizen Lab details how the technology was used to target pro-democracy activists in Thailand. The increase in surveillance also means the use of Pegasus spyware. Pegasus spyware in Thailand.

Spyware 98

Spyware Surveillance Government Hacking 98

Security Affairs

APRIL 12, 2023

At least five members of civil society worldwide have been targeted with spyware and exploits developed by surveillance firm QuaDream. Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. and 14.4.2,

Spyware 98

Spyware Surveillance Malware Government 98

Schneier on Security

SEPTEMBER 14, 2023

Google removed it from Play in 2021. It was also available in the Samsung app store and on signalplus[.]org, org, a dedicated website mimicking the official Signal.org. An app calling itself FlyGram, meanwhile, was created by the same threat actor and was available through the same three channels. This kind of thing is really scary.

Malware 337

Malware Accountability Hacking Spyware 337

Security Affairs

APRIL 1, 2023

CISA has added nine flaws to its Known Exploited Vulnerabilities catalog, including bugs exploited by commercial spyware on mobile devices. The exploits were used to install commercial spyware and malicious apps on targets’ devices. The experts pointed out that both campaigns were limited and highly targeted.

Spyware 98

Spyware Surveillance Mobile Education 98

Security Affairs

JUNE 24, 2022

Google’s Threat Analysis Group (TAG) revealed that the Italian spyware vendor RCS Labs was supported by ISPs to spy on users. The following image shows a landing page to trick Italian users into installing one of the following apps in order to recover their accounts. CVE-2020-9907 internally referred to as AveCesare.

Surveillance 134

Surveillance Mobile Spyware Telecommunications 134

SecureList

NOVEMBER 26, 2021

IT threat evolution Q3 2021. IT threat evolution in Q3 2021. IT threat evolution in Q3 2021. According to Kaspersky Security Network, in Q3 2021: 9,599,519 malware, adware and riskware attacks on mobile devices were prevented. Number of detected malicious installation packages, Q3 2020 — Q3 2021 ( download ).

Mobile 133

Mobile Adware Banking Malware 133

Security Affairs

NOVEMBER 11, 2022

The threat actors behind the campaigns used two Android spyware to spy on the victims and steal sensitive information. The investigation into the BadBazaar campaign started in late 2021 and is based on a tweet from @MalwareHunterTeam research team that was referencing a malicious English-Uyghur dictionary app. Record phone calls.

Surveillance 98

Surveillance Spyware Malware Mobile 98

Security Affairs

SEPTEMBER 16, 2024

Apple drops its lawsuit against commercial spyware vendor NSO Group, due to the risk of “threat intelligence” information exposure. Apple is seeking to drop its lawsuit against Israeli spyware company NSO Group , citing the risk of “threat intelligence” information exposure. ” reads the court filing.

Surveillance 118

Surveillance Spyware Risk Hacking 118

Security Boulevard

MAY 3, 2021

A roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, April 2021. MI5 said the faked LinkedIn accounts are created and operation by nation-state spy agencies, with an intent to recruit individuals or gather sensitive information.

Ransomware 124

Ransomware Passwords Scams Government 124

Malwarebytes

SEPTEMBER 14, 2021

Spyware developed by the company NSO Group is back in the news today after Apple released an emergency fix for iPhones, iPads, Macs, and Apple Watches. Pegasus spyware is typically installed on victims’ phones using a software exploit that requires little or no user interaction—perhaps no more than a click.

Spyware 133

Spyware Surveillance Software Engineering 133

SecureList

JANUARY 19, 2022

Kaspersky ICS CERT has uncovered a number of spyware campaigns targeting industrial enterprises. The attackers use off-the-shelf spyware, but limit the scope and lifetime of each sample to the bare minimum. “Anomalous” spyware attacks. “Anomalous” spyware attacks. C2 infrastructure.

Spyware 105

Spyware Accountability VPN Malware 105

Security Affairs

JULY 25, 2021

Kaseya obtained a universal decryptor for REvil ransomware attack Over 80 US Municipalities Sensitive Information, Including Residents Personal Data, Left Vulnerable in Massive Data Breach Threat Report Portugal: Q2 2021 What Is An Identity and Access Management So-lution and How Can Businesses Benefit From It?

Spyware 123

Spyware Data breaches Government Ransomware 123

SecureWorld News

AUGUST 25, 2022

Israeli spyware company NSO Group has experienced quite a bit of controversy in the last few years. Its spyware product, Pegasus, has been used by various criminals and nation states to target individuals of interest, such as activists, politicians, and business leaders. I don’t see any reason this will be different.".

Spyware 98

Spyware Government Marketing Surveillance 98

SecureList

NOVEMBER 28, 2024

Chinese-speaking activity In July 2021, we detected a campaign called ExCone targeting government entities in Russia. Europe Awaken Likho is an APT campaign, active since at least July 2021, primarily targeting government organizations and contractors. Our report provided an initial analysis of the Trojanized USB management program.

Malware 118

Malware Government Software Spyware 118

Security Affairs

APRIL 13, 2022

One of the officials targeted with the infamous spyware there is Didier Reynders, a senior Belgian statesman who has served as the European Justice Commissioner since 2019. ” Security researchers said that Apple sent the warnings to its users targeted between February and September 2021. ” concludes the report.

Surveillance 103

Surveillance Software Spyware Hacking 103

SecureWorld News

NOVEMBER 21, 2023

The report, titled " Predator Files: Caught in the Net ," delves into the operations of the "Intellexa alliance," a complex network of interconnected companies that develop and market powerful spyware used to monitor and manipulate individuals worldwide. In 2021 about 86% of Intellexa’s sales were in the Middle East.

Surveillance 124

Surveillance Spyware Media Technology 124

Security Affairs

APRIL 22, 2024

The list also includes criminals, suspected terrorists, intelligence operatives and a European spyware firm. Compromised data vary by individuals and organizations, it includes names, passport numbers, Social Security numbers, online crypto account identifiers and bank account numbers, and more. LSEG acquired Refinitiv is 2021.

Risk 138

Risk Spyware Hacking Accountability 138

SecureList

NOVEMBER 23, 2021

For instance, we see a new trend emerging in the criminal ecosystem of spyware-based authentication data theft, with each individual attack being directed at a very small number of targets (from single digits to several dozen). Building on the success of 2021. Don’t forget about cyberhooligans and hacktivists.

Spyware 137

Spyware Phishing Cybercrime Energy and Utilities 137

SecureWorld News

OCTOBER 21, 2022

FurBall has been used since June 2021 to distribute a fraudulent translation app that mimics an Iranian website which provides translated articles, journals, and books. This version has similar spyware functionality as before, except " the threat actors slightly obfuscated class and method names, strings, logs, and server URIs."

Malware 98

Malware Spyware Government Surveillance 98

Security Affairs

JULY 24, 2022

ransom and sued its insurance firm for refusing to cover this payment Crooks stole $375k from Premint NFT, it is one of the biggest NFT hacks ever Google is going to remove App Permissions List from the Play Store Security Affairs newsletter Round 374 by Pierluigi Paganini APT groups target journalists and media organizations since 2021.

Spyware 107

Spyware Surveillance Malware Insurance 107

Malwarebytes

JANUARY 11, 2023

On Monday, the US Supreme Court denied the NSO Group's petition for a writ of certiorari , a request to the high court to review its case, signaling that Meta's WhatsApp can go ahead with its case against the Israeli-based company behind the Pegasus spyware. The court didn't explain why it refused to hear the NSO's appeal.

Spyware 98

Spyware Surveillance Government Internet 98

SecureList

MAY 27, 2022

The attackers are mainly interested in collecting data on user accounts, IP addresses and session information; and they steal configuration files from programs that work directly with cryptocurrency and may contain account credentials. The campaign has two goals: gathering information and stealing cryptocurrency. Other malware.

Phishing 133

Phishing Spyware Firmware Malware 133

Security Affairs

FEBRUARY 28, 2021

Bug bounty hacker earned $5,000 reporting a Stored XSS flaw in iCloud.com Experts warn of threat actors abusing Google Alerts to deliver unwanted programs FBI warns of the consequences of telephony denial-of-service (TDoS) attacks An attacker was able to siphon audio feeds from multiple Clubhouse rooms Georgetown County has yet to recover from a sophisticated (..)

Spyware 110

Spyware Backups Manufacturing Data breaches 110

Security Affairs

APRIL 8, 2023

The CVE-2023-26083 flaw in the Arm Mali GPU driver is chained with other issues to install commercial spyware, as reported by Google’s Threat Analysis Group (TAG) in a recent report. Mandiant researchers first observed this affiliate targeting Veritas issues in the wild on October 22, 2022.

Backups 98

Backups Spyware Ransomware Education 98

Webroot

OCTOBER 25, 2021

The respected technology blog TechRadar has even referred to 2021 as “the year of the Chromebook.”. Many third-party security solutions are designed to account for exactly this type of behavior. Momentum is unlikely to slow anytime soon, especially since the Chrome operating system will now be the first many students are exposed to.

Identity Theft 131

Identity Theft Spyware Phishing Antivirus 131

Security Affairs

JANUARY 23, 2022

from the Lympo NTF platform. from the Lympo NTF platform.

VPN 110

VPN Ransomware Spyware Hacking 110

SecureWorld News

NOVEMBER 23, 2021

The steps we’re taking today will send a clear message: In a free society, it is unacceptable to weaponize powerful state-sponsored spyware against those who seek to make the world a better place.". November 23, 2021. That behavior by NSO Group, according to Citizen Lab and Apple, includes secret installation of Pegasus Spyware.

Spyware 96

Spyware Surveillance Engineering Software 96

CyberSecurity Insiders

MAY 19, 2023

By Aaron Sandeen, CEO and co-founder at Securin Since June 2021, Hive Ransomware has been dominating the ransomware scene. Since June 2021, Hive has targeted an average of three companies per day. Bad actors like Hive may also use CVE-2021-33558, the newly discovered Boa vulnerability, to access a victim’s network.

Ransomware 124

Ransomware Encryption Healthcare Education 124

Hot for Security

JUNE 18, 2021

The malicious attachment ( AC 2021 09 V1.doc) After the malware has collected all the information from the victim’s system, it exfiltrates the credentials and other sensitive data via the SMTP protocol (email) back to an email account registered in advance by the attackers. Bitdefender detects the AC 2021 09 V1.doc

Malware 105

Malware Phishing Spyware Software 105

Security Affairs

FEBRUARY 13, 2022

Organizations are addressing zero-day vulnerabilities more quickly, says Google CISA, FBI, NSA warn of the increased globalized threat of ransomware Croatian phone carrier A1 Hrvatska discloses data breach FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors CISA adds 15 new vulnerabilities to its Known Exploited Vulnerabilities (..)

Ransomware 98

Ransomware Spyware Surveillance Hacking 98

eSecurity Planet

JUNE 16, 2022

The 2022 SonicWall Cyber Threat Report found that all types of cyberattacks increased in 2021. Major cyberattacks at companies like SolarWinds and Colonial Pipeline raised the public visibility of cybersecurity greatly in 2021, elevating it to a Presidential priority. Crimeware and spyware. Cyberattack Statistics. Other methods.

Backups 145

Backups Ransomware Malware Firewall 145

SecureList

NOVEMBER 1, 2022

We can confirm a Maui ransomware incident in 2022, but we would expand their “first seen” date from the reported May 2021 to April 15, 2021, and the geolocation of the target to Japan and India. At the beginning of 2021, Kaspersky published a private report about the A41APT campaign. Russian-speaking activity.

Malware 145

Malware Ransomware Spyware Encryption 145

SecureList

JANUARY 18, 2023

The threat landscape is constantly updated through new malware and spyware, advanced phishing methods, and new social engineering techniques. Whereas we were seeing 200 to 300 posts in each of the first ten months of 2021, the number peaked at more than 500 monthly at the end of 2021 and the first half of 2022 [1].

Media 139

Media Social Engineering Ransomware Hacking 139

Security Affairs

JULY 4, 2023

Neo_Net’s eCrime campaign was reportedly targeting clients of banks globally, with a focus on Spanish and Chilean banks, from June 2021 to April 2023. It has been estimated that the threat actor has stolen over 350,000 EUR from victims’ bank accounts and compromised Personally Identifiable Information (PII) of thousands of victims.

Banking 98

Banking Phishing Social Engineering Authentication 98

SecureList

OCTOBER 4, 2022

More importantly, one of the libraries bundled with the malicious Tor Browser is infected with spyware that collects various personal data and sends it to a command and control server. The spyware also provides the functionality to execute shell commands on the victim machine, giving the attacker control over it. 2021-Sep-25 21:56:47.

Encryption 145

Encryption Spyware Malware Software 145