Security Affairs

JUNE 16, 2023

An updated version of the Android remote access trojan GravityRAT can steal WhatsApp backup files and can delete files ESET researchers discovered an updated version of Android GravityRAT spyware that steals WhatsApp backup files and can delete files. The malware is distributed as the messaging apps BingeChat and Chatico.

Backups 98

Backups Spyware Malware Accountability 98

eSecurity Planet

FEBRUARY 4, 2022

Also Read: 4 Best Antivirus Software of 2022. Also Read: Best Enterprise VPN Solutions for 2022. A password manager improves internet security by helping users create diverse, secure passwords for each account they own. Also Read: 8 Best Password Managers & Tools for 2022. Key Features of Antivirus Software.

Internet 144

Internet Internet Software Antivirus 144

Security Affairs

APRIL 18, 2023

Citizen Lab reported that Israeli surveillance firm NSO Group used at least three iOS zero-click exploits in 2022. A new report from Citizen Lab states that the Israeli surveillance firm NSO Group used at least three zero-click zero-day exploits to deliver its Pegasus spyware. ” reads the report. ” reads the report.

Surveillance 98

Surveillance Spyware Education Risk 98

Security Affairs

NOVEMBER 11, 2022

The threat actors behind the campaigns used two Android spyware to spy on the victims and steal sensitive information. Over 70% of these apps were found in Uyghur-language communication channels within the second half of 2022.” List of installed packages. Call logs and geocoded location associated with the call. Take pictures.

Surveillance 98

Surveillance Spyware Malware Mobile 98

SecureList

NOVEMBER 23, 2021

For instance, we see a new trend emerging in the criminal ecosystem of spyware-based authentication data theft, with each individual attack being directed at a very small number of targets (from single digits to several dozen). And for some companies, the consequences of a security compromise in 2021 will catch up with them only in 2022.

Spyware 137

Spyware Phishing Cybercrime Energy and Utilities 137

SecureList

NOVEMBER 1, 2022

This is our latest installment, focusing on activities that we observed during Q3 2022. We can confirm a Maui ransomware incident in 2022, but we would expand their “first seen” date from the reported May 2021 to April 15, 2021, and the geolocation of the target to Japan and India. The most remarkable findings.

Malware 145

Malware Ransomware Spyware Encryption 145

SecureList

MAY 27, 2022

IT threat evolution in Q1 2022. IT threat evolution in Q1 2022. IT threat evolution in Q1 2022. According to Kaspersky Security Network, in Q1 2022: 6,463,414 mobile malware, adware and riskware attacks were blocked. Number of attacks targeting users of Kaspersky mobile solutions, Q1 2020 — Q1 2022 ( download ).

Mobile 130

Mobile Adware Banking Malware 130

SecureList

MARCH 8, 2023

The state of stalkerware in 2022 (PDF) Main findings of 2022 The State of Stalkerware is an annual report by Kaspersky which contributes to a better understanding of how many people in the world are affected by digital stalking. In addition, the data reveals a stable proliferation of stalkerware over the 12 months of 2022.

Mobile 122

Mobile Software Accountability Cybersecurity 122

eSecurity Planet

JUNE 7, 2022

They earned the highest score among providers named "Customer's Choice" in Gartner's 2022 "Voice of the Customer” Security Awareness Computer-Based Training report. The post Top Cybersecurity Companies for 2022 appeared first on eSecurityPlanet.

Cybersecurity 127

Cybersecurity Identity Theft Encryption Antivirus 127

Security Affairs

NOVEMBER 2, 2022

Threat actors are using previously undocumented Android spyware, dubbed SandStrike, to spy on a Persian-speaking religion minority. In Q3 2022, Kaspersky researchers uncovered a previously undocumented Android spyware, dubbed SandStrike, employed in an espionage campaign targeting the Persian-speaking religion minority, Bahá?í.

Spyware 117

Spyware Malware VPN Accountability 117

SecureList

NOVEMBER 18, 2022

IT threat evolution in Q3 2022. IT threat evolution in Q3 2022. IT threat evolution in Q3 2022. Nevertheless, in our APT predictions for 2022 , we noted that more attackers would reach the sophistication level required to develop such tools. Non-mobile statistics. Mobile statistics. Targeted attacks.

Malware 122

Malware Computers and Electronics Adware Cryptocurrency 122

SecureList

AUGUST 15, 2022

IT threat evolution in Q2 2022. IT threat evolution in Q2 2022. IT threat evolution in Q2 2022. WinDealer’s man-on-the-side spyware. Late in March, researchers discovered a critical vulnerability (CVE-2022-22965) in Spring, an open-source framework for the Java platform. Ransomware trends in 2022.

Mobile 98

Mobile Ransomware Malware Encryption 98

IT Security Guru

APRIL 26, 2021

The online gaming industry has exploded in recent years and is expected to generate close to $200 billion in revenue by 2022. Sensitive information, both personal and financial, are used, stored, and linked to online gaming accounts. Spyware monitors a user’s every movement and actions on the internet without their knowledge.

Cybersecurity 132

Cybersecurity Spyware VPN Passwords 132

Security Affairs

MAY 29, 2022

Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. I ask you to vote for me again (even if you have already done it), because this vote is for the final. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g.

InfoSec 135

InfoSec Spyware DDOS Firewall 135

CyberSecurity Insiders

JULY 11, 2022

Reacting to the news on the government spyware like NSO Group Pegasus and Android affecting Hermit malware, the Mobile Giant of Korea said that it offers a firm commitment to safeguarding the personal and sensitive information of its users.

Cyber Attacks 113

Cyber Attacks Spyware Mobile Accountability 113

Security Affairs

OCTOBER 5, 2022

The video was posted on January 2022, and according to Kaspersky’s telemetry, the first victims were compromised in March 2022. The experts also discovered that the libraries bundled with the malicious Tor Browser is infected with spyware. ” reads Kaspersky’s analysis. Pierluigi Paganini.

Spyware 100

Spyware Accountability Software Passwords 100

Security Affairs

APRIL 13, 2022

One of the officials targeted with the infamous spyware there is Didier Reynders, a senior Belgian statesman who has served as the European Justice Commissioner since 2019. The Pegasus spyware used the ForcedEntry zero-day exploit to compromise the recipients’ devices without their interaction. ” concludes the report.

Surveillance 103

Surveillance Software Spyware Hacking 103

Security Affairs

MAY 1, 2023

Researchers at the Lookout Threat Lab have discovered a new Android surveillance spyware, dubbed BouldSpy, that was used by the Law Enforcement Command of the Islamic Republic of Iran (FARAJA). The researchers are tracking the spyware since March 2020, starting in 2023, multiple security experts [ 1 , 2 ] started monitoring its activity.

Surveillance 98

Surveillance Malware Spyware Accountability 98

SecureList

NOVEMBER 28, 2024

The most remarkable findings In the second half of 2022, a wave of attacks from an unknown threat actor targeted victims with a new type of attack framework that we dubbed P8. Notably, the infections within the telecoms provider have been traced back to 2022.

Malware 118

Malware Government Software Spyware 118

Google Security

JULY 27, 2023

Maddie Stone, Security Researcher, Threat Analysis Group (TAG) This is Google’s fourth annual year-in-review of 0-days exploited in-the-wild [ 2021 , 2020 , 2019 ] and builds off of the mid-year 2022 review. Some of our key takeaways from 2022 include: N-days function like 0-days on Android due to long patching times.

Spyware 94

Spyware Manufacturing Internet Internet 94

Security Affairs

JULY 24, 2022

is optimized to automatically bypass censorship A massive cyberattack hit Albania Watch out for the CVE-2022-30136 Windows NFS Remote Code Execution flaw Graff paid a $7.5M is optimized to automatically bypass censorship A massive cyberattack hit Albania Watch out for the CVE-2022-30136 Windows NFS Remote Code Execution flaw Graff paid a $7.5M

Spyware 107

Spyware Surveillance Insurance Malware 107

Security Affairs

JUNE 4, 2023

Xplain hack impacted the Swiss cantonal police and Fedpol Zyxel published guidance for protecting devices from ongoing attacks Kimsuky APT poses as journalists and broadcast writers in its attacks New Linux Ransomware BlackSuit is similar to Royal ransomware CISA adds Progress MOVEit Transfer zero-day to its Known Exploited Vulnerabilities catalog (..)

Spyware 98

Spyware Hacking Malware Social Engineering 98

Security Affairs

APRIL 4, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added a Zimbra flaw, tracked as CVE-2022-27926 , to its Known Exploited Vulnerabilities Catalog. The CVE-2022-27926 flaw affects Zimbra Collaboration version 9.0.0, which is used to host publicly-facing webmail portals. reads the post published by Proofpoint.

Phishing 98

Phishing Government Spyware Passwords 98

Security Affairs

APRIL 23, 2023

Abandoned Eval PHP WordPress plugin abused to backdoor websites CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog At least 2 critical infrastructure orgs breached by North Korea-linked hackers behind 3CX attack American Bar Association (ABA) suffered a data breach,1.4

Spyware 98

Spyware Ransomware Malware Data breaches 98

Security Affairs

FEBRUARY 13, 2022

US seizes $3.6 to replace Chinese equipment Hackers breached a server of National Games of China days before the event Russian Gamaredon APT is targeting Ukraine since October Israeli surveillance firm QuaDream emerges from the dark Argo CD flaw could allow stealing sensitive data from Kubernetes Apps.

Ransomware 98

Ransomware Spyware Surveillance Hacking 98

eSecurity Planet

JUNE 16, 2022

Also read: Best Antivirus Software of 2022. The 2022 SonicWall Cyber Threat Report found that all types of cyberattacks increased in 2021. million per incident, according to the World Economic Forum (WEF) Global Cybersecurity Outlook 2022 report, while IBM reports that the number is now $4.24 Crimeware and spyware.

Backups 145

Backups Ransomware Malware Firewall 145

Security Affairs

JANUARY 23, 2022

from the Lympo NTF platform. from the Lympo NTF platform.

VPN 110

VPN Ransomware Spyware Hacking 110

Security Affairs

JUNE 5, 2022

Anonymous: Operation Russia after 100 days of war GitLab addressed critical account take over via SCIM email change LuoYu APT delivers WinDealer malware via man-on-the-side attacks Clipminer Botnet already allowed operators to make at least $1.7 If you want to also receive for free the newsletter with the international press subscribe here.

Spyware 105

Spyware Firmware Ransomware Scams 105

Security Affairs

APRIL 8, 2023

Mandiant researchers first observed this affiliate targeting Veritas issues in the wild on October 22, 2022. The CVE-2023-26083 flaw in the Arm Mali GPU driver is chained with other issues to install commercial spyware, as reported by Google’s Threat Analysis Group (TAG) in a recent report.

Backups 98

Backups Spyware Ransomware Education 98

CyberSecurity Insiders

MAY 19, 2023

By the end of 2022, the education sector had seen increased ransomware attacks. Between November and December 2022, there were 24 disclosed and confirmed ransomware attacks, five against K-12 universities and schools. Hive Ransomware added new additions to their VMware ESXi Linux encryptor in March of 2022.

Ransomware 124

Ransomware Encryption Healthcare Education 124

CyberSecurity Insiders

MARCH 16, 2023

But after the spread of the Covid-19 pandemic, the focus of hackers has shifted more towards the smart phones with more phishing and social engineering attacks recorded in a 2nd quarter of 2022. According to the Jurgen Stock, the Interpol Secretary, the global cost of cyber crime is said to reach $10.5

Cybercrime 94

Cybercrime Social Engineering Mobile Spyware 94

SecureList

OCTOBER 4, 2022

The video was posted in January 2022, and the campaign’s first victims started to appear in our telemetry in March 2022. More importantly, one of the libraries bundled with the malicious Tor Browser is infected with spyware that collects various personal data and sends it to a command and control server. Header data.

Encryption 145

Encryption Spyware Malware Software 145

Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches 98

Data breaches Malware Mobile Spyware 98

Security Affairs

DECEMBER 2, 2023

Researchers devised an attack technique to extract ChatGPT training data Fortune-telling website WeMystic exposes 13M+ user records Expert warns of Turtle macOS ransomware US govt sanctioned North Korea-linked APT Kimsuky Black Basta Ransomware gang accumulated at least $107 million in Bitcoin ransom payments since early 2022 Apple addressed 2 new (..)

Ransomware 124

Ransomware Hacking Spyware Cybercrime 124

Security Affairs

FEBRUARY 26, 2024

On February 16th, an account linked to that email uploaded a batch of files including marketing documents, images, screenshots, and a substantial collection of WeChat messages exchanged between I-SOON employees and clients. An analyst based in Taiwan, known as Azaka, discovered the data leak and shared their findings on social media.

Hacking 133

Hacking Government Marketing Spyware 133

SecureList

JANUARY 18, 2023

The threat landscape is constantly updated through new malware and spyware, advanced phishing methods, and new social engineering techniques. The trend for personal data leaks grew rapidly in 2022 and will continue into 2023. The number of posts in those blogs grew in 2022, both in open sources and on the dark web.

Media 139

Media Social Engineering Ransomware Hacking 139

Security Boulevard

FEBRUARY 17, 2025

The more accounts you have, the bigger your attack surface and potential exposure to data breaches. Tips for finding old accounts. Google's reCAPTCHA is not only useless, it's also basically spyware Techspot This study demonstrates Google's reCAPTCHA v2 and v3 are flawed and don't actually keep out bots.

Surveillance 52

Surveillance Data breaches VPN Malware 52