Bleeping Computer

JULY 29, 2024

A new version of the Android spyware 'Mandrake' has been found in five applications downloaded 32,000 times from Google Play, the platform's official app store. [.]

Spyware 127

Spyware Mobile 127

Schneier on Security

APRIL 20, 2023

These were used by NSO Group’s Pegasus spyware in 2022, and deployed by Mexico against human rights defenders. CitizenLab has identified three zero-click exploits against iOS 15 and 16. These vulnerabilities have all been patched.

Spyware 277

Spyware 277

The Hacker News

MAY 26, 2023

Security researchers have shared a deep dive into the commercial Android spyware called Predator, which is marketed by the Israeli company Intellexa (previously Cytrox). The spyware, which is delivered by means of

Spyware 138

Spyware Marketing 138

The Hacker News

AUGUST 30, 2023

Cybersecurity researchers have discovered malicious Android apps for Signal and Telegram distributed via the Google Play Store and Samsung Galaxy Store that are engineered to deliver the BadBazaar spyware on infected devices. Most likely active since July 2020 and since July 2022, respectively, the campaigns

Spyware 143

Spyware Engineering Cybersecurity 143

Security Affairs

MAY 23, 2022

link] — Shane Huntley (@ShaneHuntley) May 19, 2022. The attacks aimed at installing the surveillance spyware Predator, developed by the North Macedonian firm Cytrox. The post Cytrox’s Predator spyware used zero-day exploits in 3 campaigns appeared first on Security Affairs. To nominate, please visit:?

Spyware 144

Spyware Surveillance Government Banking 144

Malwarebytes

OCTOBER 18, 2024

The vulnerability, tracked as CVE-2024-44133 was fixed in the September 16 update for Mac Studio (2022 and later), iMac (2019 and later), Mac Pro (2019 and later), Mac Mini (2018 and later), MacBook Air (2020 and later), MacBook Pro (2018 and later), and iMac Pro (2017 and later).

Adware 143

Adware Spyware Mobile Technology 143

Security Affairs

APRIL 11, 2024

Apple is warning iPhone users in over 90 countries of targeted mercenary spyware attacks, Reuters agency reported. Apple is alerting iPhone users in 92 countries about mercenary spyware attacks, reported Reuters. Reuters only mentioned India as one of the countries where users were targeted by the attacks.

Spyware 132

Spyware Mobile Hacking Government 132

SecureWorld News

APRIL 15, 2024

Apple has escalated its fight against the commercial spyware industry enabling state actors to conduct highly-targeted cyberattacks against journalists, activists, politicians, and other high-risk individuals around the world. Apple introduced Lockdown Mode in mid-2022 as a response to this growing threat. Just last month, the U.S.

Spyware 112

Spyware Surveillance Risk Mobile 112

SecureList

SEPTEMBER 8, 2022

H1 2022 in numbers. In H1 2022, malicious objects were blocked at least once on 31.8% Percentage of ICS computers on which malicious objects were blocked, January – June 2020, 2021, and 2022. 15 countries and territories with the highest percentage of ICS computers on which malicious objects were blocked, H1 2022.

Spyware 125

Spyware Cryptocurrency Ransomware Phishing 125

SecureWorld News

SEPTEMBER 13, 2023

Alarming details have emerged about the exploitation of two Zero-Day vulnerabilities to deploy NSO Group's Pegasus commercial spyware on iPhones. Pegasus spyware and the controversial NSO Group Over the past few years, NSO Group, an Israeli spyware company, has been at the center of numerous controversies.

Spyware 119

Spyware Government Cybersecurity Backups 119

Security Affairs

NOVEMBER 30, 2022

Google’s Threat Analysis Group (TAG) linked three exploitation frameworks to a Spanish surveillance spyware vendor named Variston. While tracking the activities of commercial spyware vendors, Threat Analysis Group (TAG) spotted an exploitation framework likely linked Variston IT, a Spanish firm. ” TAG concludes.

Spyware 109

Spyware Surveillance Risk Internet 109

Security Affairs

MARCH 3, 2023

The phone of an opposition-linked Polish mayor was infected with the powerful Pegasus spyware, local media reported. Reuters reported that the phone of an opposition-linked Polish mayor was infected with the Pegasus spyware. According to rumors, the Polish special services are using surveillance software to spy on government opponents.

Spyware 98

Spyware Surveillance Hacking Government 98

SecureBlitz

MAY 18, 2022

It protects you from various forms of malware, spyware, rootkits, and other nasties without slowing down your computer. The post Malwarebytes Review 2022: Is It Worth It? Malwarebytes is a popular anti-malware program that has been around for years and years. appeared first on SecureBlitz Cybersecurity.

Spyware 119

Spyware Malware Cybersecurity Antivirus 119

Security Affairs

AUGUST 30, 2023

The campaigns observed by the researchers are likely active since July 2020 and since July 2022, respectively. The domain was registered on February 15 th , 2022, and provides a link to download the malicious Signal Plus Messenger application either from Google Play or directly from the website” continues the report.

Spyware 133

Spyware Accountability Malware Hacking 133

Heimadal Security

JANUARY 16, 2023

However, corrupted VPN installers have been used by threat actors to deliver a piece of spyware called EyeSpy, as part of a malware campaign that started in May 2022. The post Malicious VPN Installers Used to Infect Devices with Spyware appeared first on Heimdal Security Blog.

Spyware 97

Spyware VPN Marketing Technology 97

Security Affairs

JUNE 17, 2022

Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country. According to Lookout, the Hermit spyware was likely developed by Italian surveillance vendor RCS Lab S.p.A SecurityAffairs – hacking, Hermit spyware).

Spyware 105

Spyware Surveillance Telecommunications Mobile 105

Security Affairs

MARCH 29, 2023

Google’s Threat Analysis Group (TAG) discovered several exploit chains targeting Android, iOS, and Chrome to install commercial spyware. The exploit chains were used to install commercial spyware and malicious apps on targets’ devices. CVE-2022-38181 , a privilege escalation bug fixed by ARM in August 2022.

Spyware 98

Spyware Surveillance Firmware Internet 98

Security Affairs

APRIL 12, 2023

At least five members of civil society worldwide have been targeted with spyware and exploits developed by surveillance firm QuaDream. Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. and 14.4.2,

Spyware 98

Spyware Surveillance Malware Government 98

The Hacker News

JANUARY 5, 2023

Financial institutions are being targeted by a new version of Android malware called SpyNote at least since October 2022. The reason behind this increase is that the developer of the spyware, who was previously selling it to other actors, made the source code public," ThreatFabric said in a report shared with The Hacker News.

Spyware 98

Spyware Malware 98

Security Affairs

JUNE 7, 2023

June 2023 security update for Android released by Google fixes about fifty flaws, including an Arm Mali GPU bug exploited by surveillance firms in their spyware. Security updates released this month also addressed a vulnerability, tracked as CVE-2022-22706 , that affects the Arm Mali GPU. In early April, U.S.

Spyware 98

Spyware Surveillance Firmware Hacking 98

Security Affairs

APRIL 19, 2022

Researchers from Citizen Lab have published a report detailing the use of a new zero-click iMessage exploit, dubbed HOMAGE, to install the NSO Group Pegasus spyware on iPhones belonging to Catalan politicians, journalists, academics, and activists. ” concludes the report. To nominate, please visit:? Pierluigi Paganini.

Spyware 107

Spyware Surveillance Government Software 107

SecureList

MAY 27, 2022

IT threat evolution in Q1 2022. IT threat evolution in Q1 2022. IT threat evolution in Q1 2022. One of the things you can do to protect yourself from advanced mobile spyware is to reboot your device on a daily basis. Number of unique domains using the TOP 10 phishing kits, August 2021 — January 2022 ( download ).

Phishing 134

Phishing Spyware Firmware Malware 134

Security Affairs

MAY 29, 2023

Cisco Talos and the Citizen Lab researchers have published a technical analysis of the powerful Android spyware Predator. Security researchers at Cisco Talos and the Citizen Lab have shared technical details about a commercial Android spyware named Predator that is sold by the surveillance firm Intellexa (formerly known as Cytrox).

Spyware 98

Spyware Surveillance Media Malware 98

Security Affairs

APRIL 1, 2023

CISA has added nine flaws to its Known Exploited Vulnerabilities catalog, including bugs exploited by commercial spyware on mobile devices. The exploits were used to install commercial spyware and malicious apps on targets’ devices. Google TAG shared indicators of compromise (IoCs) for both campaigns.

Spyware 98

Spyware Surveillance Mobile Education 98

Security Affairs

APRIL 17, 2023

The Israeli surveillance firm QuaDream is allegedly shutting down its operations after Citizen Lab and Microsoft uncovered their spyware. Last week Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. and 14.4.2,

Surveillance 98

Surveillance Spyware Education Media 98

Malwarebytes

SEPTEMBER 29, 2022

This particular campaign, initially discovered by an Internet researcher going by the handle @idclickthat , gets unsuspecting users to download an information-stealer— spyware , if you prefer—from fake sites hosting malformed Zoom installers (malware bundled with a legitimate Zoom installer) onto their work systems.

Spyware 95

Spyware Malware Software Banking 95

SecureList

AUGUST 15, 2022

IT threat evolution in Q2 2022. IT threat evolution in Q2 2022. IT threat evolution in Q2 2022. According to Kaspersky Security Network, in Q2 2022: 5,520,908 mobile malware, adware and riskware attacks were blocked. Number of attacks targeting users of Kaspersky mobile solutions, Q1 2020 — Q2 2022 ( download ).

Mobile 140

Mobile Adware Banking Malware 140

The Hacker News

SEPTEMBER 26, 2024

French cybersecurity firm Sekoia, which disclosed details of the campaign dubbed SilentSelfie, described the intrusion set as long-running, with first signs of infection detected as far back as December 2022.

Spyware 132

Spyware Cybersecurity 132

Security Affairs

APRIL 18, 2023

Citizen Lab reported that Israeli surveillance firm NSO Group used at least three iOS zero-click exploits in 2022. A new report from Citizen Lab states that the Israeli surveillance firm NSO Group used at least three zero-click zero-day exploits to deliver its Pegasus spyware. ” reads the report. ” reads the report.

Surveillance 98

Surveillance Spyware Education Risk 98

Security Affairs

NOVEMBER 11, 2022

The threat actors behind the campaigns used two Android spyware to spy on the victims and steal sensitive information. Over 70% of these apps were found in Uyghur-language communication channels within the second half of 2022.” List of installed packages. Call logs and geocoded location associated with the call.

Surveillance 98

Surveillance Spyware Malware Mobile 98

SecureList

NOVEMBER 23, 2021

For instance, we see a new trend emerging in the criminal ecosystem of spyware-based authentication data theft, with each individual attack being directed at a very small number of targets (from single digits to several dozen). And for some companies, the consequences of a security compromise in 2021 will catch up with them only in 2022.

Spyware 138

Spyware Phishing Cybercrime Energy and Utilities 138

eSecurity Planet

FEBRUARY 4, 2022

Also Read: 4 Best Antivirus Software of 2022. Also Read: Best Enterprise VPN Solutions for 2022. Also Read: 8 Best Password Managers & Tools for 2022. Also Read: Best LastPass Alternatives for 2022: Compare Password Managers. Also Read: Top Web Application Firewall (WAF) Solutions for 2022. Password Managers.

Internet 144

Internet Internet Software Antivirus 144

Security Affairs

JUNE 16, 2023

An updated version of the Android remote access trojan GravityRAT can steal WhatsApp backup files and can delete files ESET researchers discovered an updated version of Android GravityRAT spyware that steals WhatsApp backup files and can delete files. The malware is distributed as the messaging apps BingeChat and Chatico.

Backups 98

Backups Spyware Malware Accountability 98

SecureList

MAY 27, 2022

IT threat evolution in Q1 2022. IT threat evolution in Q1 2022. IT threat evolution in Q1 2022. According to Kaspersky Security Network, in Q1 2022: 6,463,414 mobile malware, adware and riskware attacks were blocked. Number of attacks targeting users of Kaspersky mobile solutions, Q1 2020 — Q1 2022 ( download ).

Mobile 131

Mobile Adware Banking Malware 131

SecureList

NOVEMBER 17, 2021

The Israeli Defense Forces (IDF) have claimed that threat actors have been using catfishing to lure Israeli soldiers into installing spyware. Here are the developments we think we could be seeing in 2022. For this reason, supply chain attacks will be a growing trend into 2022 and beyond. More supply chain attacks.

Mobile 145

Mobile Surveillance Ransomware Government 145

SecureList

NOVEMBER 1, 2022

This is our latest installment, focusing on activities that we observed during Q3 2022. We can confirm a Maui ransomware incident in 2022, but we would expand their “first seen” date from the reported May 2021 to April 15, 2021, and the geolocation of the target to Japan and India. The most remarkable findings.

Malware 145

Malware Ransomware Spyware Encryption 145

SecureList

MARCH 8, 2023

The state of stalkerware in 2022 (PDF) Main findings of 2022 The State of Stalkerware is an annual report by Kaspersky which contributes to a better understanding of how many people in the world are affected by digital stalking. In addition, the data reveals a stable proliferation of stalkerware over the 12 months of 2022.

Mobile 123

Mobile Software Accountability Cybersecurity 123