Security Affairs

APRIL 17, 2023

The Israeli surveillance firm QuaDream is allegedly shutting down its operations after Citizen Lab and Microsoft uncovered their spyware. Last week Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. and 14.4.2,

Surveillance 98

Surveillance Spyware Education Media 98

Security Affairs

APRIL 12, 2023

At least five members of civil society worldwide have been targeted with spyware and exploits developed by surveillance firm QuaDream. Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. and 14.4.2,

Spyware 98

Spyware Surveillance Malware Government 98

SecureWorld News

JULY 18, 2022

The controversial Pegasus spyware continues to stay in the news cycle, as a new report from the Citizen Lab details how the technology was used to target pro-democracy activists in Thailand. Understandably, this led to mass protests and social media campaigns like #WhyDoWeNeedAKing and #FreeYouth. Pegasus spyware in Thailand.

Spyware 98

Spyware Surveillance Government Hacking 98

Security Affairs

JUNE 16, 2023

An updated version of the Android remote access trojan GravityRAT can steal WhatsApp backup files and can delete files ESET researchers discovered an updated version of Android GravityRAT spyware that steals WhatsApp backup files and can delete files. The malware is distributed as the messaging apps BingeChat and Chatico.

Backups 98

Backups Spyware Malware Accountability 98

Threatpost

MARCH 21, 2022

The trojanized Craftsart Cartoon Photo Tools app is available in the official Android app store, but it's actually spyware capable of stealing any and all information from victims' social-media accounts.

Accountability 84

Accountability Spyware Media Malware 84

SecureList

JANUARY 18, 2023

The threat landscape is constantly updated through new malware and spyware, advanced phishing methods, and new social engineering techniques. The media routinely report incidents and leaks of data that end up publicly accessible on the dark web. Kaspersky detects an average of 400,000 malicious files every day.

Media 140

Media Social Engineering Ransomware Hacking 140

Security Affairs

APRIL 1, 2023

CISA has added nine flaws to its Known Exploited Vulnerabilities catalog, including bugs exploited by commercial spyware on mobile devices. The exploits were used to install commercial spyware and malicious apps on targets’ devices. The experts pointed out that both campaigns were limited and highly targeted.

Spyware 98

Spyware Surveillance Mobile Education 98

Security Affairs

NOVEMBER 11, 2022

The threat actors behind the campaigns used two Android spyware to spy on the victims and steal sensitive information. The Android spyware was able to collect a broad range of information, including: Location (latitude and longitude). List of installed packages. Call logs and geocoded location associated with the call. Take pictures.

Surveillance 98

Surveillance Spyware Malware Mobile 98

Security Affairs

NOVEMBER 2, 2022

Threat actors are using previously undocumented Android spyware, dubbed SandStrike, to spy on a Persian-speaking religion minority. In Q3 2022, Kaspersky researchers uncovered a previously undocumented Android spyware, dubbed SandStrike, employed in an espionage campaign targeting the Persian-speaking religion minority, Bahá?í.

Spyware 117

Spyware Malware VPN Accountability 117

eSecurity Planet

NOVEMBER 12, 2024

I recommend McAfee if you’re looking for features like social media privacy, personal data monitoring, and scans of old internet accounts. Social Privacy Manager: McAfee helps you quickly adjust your privacy settings on social media based on your frequency of use. McAfee also doesn’t offer spyware detection.

Antivirus 62

Antivirus Software Identity Theft VPN 62

Security Affairs

FEBRUARY 9, 2025

Here’s how data awareness can help HTTP Client Tools Exploitation for Account Takeover Attacks Dangerous hacker responsible for more than 40 cyberattacks on strategic organizations arrested Whos Behind the Seized Forums Cracked & Nulled? What are the risks?

Spyware 60

Spyware Cybercrime Scams Social Engineering 60

SecureWorld News

JANUARY 9, 2025

Protecting military mobile devices Standards and policies will be implemented to secure Department of Defense mobile devices from foreign spyware. Agencies must report any compromises involving foreign spyware over the past two years. "We're finally repaying those businesses so they can maintain essential connectivity."

Cybersecurity 108

Cybersecurity Manufacturing Surveillance Ransomware 108

SecureWorld News

NOVEMBER 21, 2023

In a groundbreaking investigative report, the European Investigative Collaborations (EIC) media network, with technical assistance from Amnesty International's Security Lab, has exposed the shocking extent of the global surveillance crisis and the glaring inadequacies of EU regulation in curbing it. More commentary from Col.

Surveillance 123

Surveillance Spyware Media Technology 123

eSecurity Planet

FEBRUARY 17, 2025

McAfee benefits organizations wanting features like social media privacy, personal data monitoring, and scans of old internet accounts. Social Privacy Manager: It helps you quickly adjust your privacy settings on social media based on your frequency of use. McAfee also doesnt offer spyware detection, but Defender does.

Antivirus 67

Antivirus Identity Theft VPN Spyware 67

Security Affairs

APRIL 9, 2020

Spyware turned out to be the most common malware class hiding in fraudulent COVID-19 emails, with AgentTesla topping the list of phishers’ favorite strains. Spyware: the most likely COVID-19 payload. Most COVID-19-related phishing emails analyzed had different spyware strains embedded as attachments. Source: CERT-GIB.

Phishing 142

Phishing Malware Spyware DDOS 142

Malwarebytes

FEBRUARY 21, 2024

The iOS version of the RAT also claims to authorize and support all iOS device versions without jailbreaking, with features ranging from hardware information, GPS data, contacts, media files, and real-time audio records as an extension. Targeted automatic penetration testing scenario framework.

Penetration Testing 142

Penetration Testing Spyware Media Government 142

CyberSecurity Insiders

JULY 11, 2022

Reacting to the news on the government spyware like NSO Group Pegasus and Android affecting Hermit malware, the Mobile Giant of Korea said that it offers a firm commitment to safeguarding the personal and sensitive information of its users.

Cyber Attacks 113

Cyber Attacks Spyware Mobile Accountability 113

Security Affairs

APRIL 8, 2020

In May, Facebook has patched a critical zero-day vulnerability in WhatsApp, tracked as CVE-2019-3568 , that has been exploited to remotely install spyware on phones by calling the targeted device. ” reported Motherboard, the media outlet that disclosed the story. ” Who will win? Facebook or NSO Group?

Surveillance 136

Surveillance Spyware Advertising Government 136

Security Affairs

MAY 1, 2023

Researchers at the Lookout Threat Lab have discovered a new Android surveillance spyware, dubbed BouldSpy, that was used by the Law Enforcement Command of the Islamic Republic of Iran (FARAJA). The researchers are tracking the spyware since March 2020, starting in 2023, multiple security experts [ 1 , 2 ] started monitoring its activity.

Surveillance 98

Surveillance Malware Spyware Accountability 98

Hacker's King

OCTOBER 3, 2024

Introduction Social media platforms like WhatsApp, Instagram, and Facebook are now essential for communication and business, making them prime targets for cybercriminals. You may like to read more about Social Media Botnets – Hackers leveraging bots for large-scale attacks What Are Zero-Day Exploits? million users.

Media 52

Media Spyware Accountability Marketing 52

SiteLock

AUGUST 27, 2021

Data security is a problem for anyone who has an online account, whether it be for health services, banking, or social media. It’s up to each of us to do our part to safeguard our own privacy and data integrity by properly vetting these IoT devices before we purchase them. What Can You Do to Protect Your Networked Devices?

IoT 98

IoT Spyware VPN Passwords 98

Security Affairs

JULY 24, 2022

ransom and sued its insurance firm for refusing to cover this payment Crooks stole $375k from Premint NFT, it is one of the biggest NFT hacks ever Google is going to remove App Permissions List from the Play Store Security Affairs newsletter Round 374 by Pierluigi Paganini APT groups target journalists and media organizations since 2021.

Spyware 107

Spyware Surveillance Malware Insurance 107

Security Affairs

JUNE 4, 2023

Xplain hack impacted the Swiss cantonal police and Fedpol Zyxel published guidance for protecting devices from ongoing attacks Kimsuky APT poses as journalists and broadcast writers in its attacks New Linux Ransomware BlackSuit is similar to Royal ransomware CISA adds Progress MOVEit Transfer zero-day to its Known Exploited Vulnerabilities catalog (..)

Spyware 98

Spyware Hacking Malware Social Engineering 98

Hot for Security

JUNE 14, 2021

Most security threats faced by regular users arrive via the Internet, whether it’s a malicious app or a rigged website , a scam delivered through the user’s social media channels, or a phishing scheme carried out via email or SMS. A vulnerability in WhatsApp allegedly allows threat actors to install spyware onto iPhones.

Mobile 132

Mobile Malware Media Spyware 132

CyberSecurity Insiders

MARCH 16, 2023

Embedding malicious links in social media, emails, apps and SMS is making hackers target tech savvy individuals, thus taking this crime industry to a multi-billion-dollar business. Mainly such attacks are often launched by taking poor device security and software vulnerabilities into consideration.

Cybercrime 94

Cybercrime Social Engineering Mobile Spyware 94

Security Affairs

JULY 21, 2019

A flaw could have allowed hackers to take over any Instagram account in 10 minutes. Media File Jacking allows manipulating media files users receive via Android WhatsApp and Telegram. Sprint revealed that hackers compromised some customer accounts via Samsung site. NCSC report warns of DNS Hijacking Attacks.

Small Business 87

Small Business Media Spyware Advertising 87

Security Affairs

MARCH 22, 2021

European ICS engineering organizations were mainly targeted by phishing campaigns attempting to deliver spyware and cryptominers. Experts reported that the majority of computers in the ICS engineering sector are represented by desktop systems, but laptops remain more exposed to attacks via the internet, removable media devices, and email.

Engineering 141

Engineering VPN Software Accountability 141

SecureWorld News

JULY 10, 2023

The Google Play Store, a widely-trusted source for Android applications, has recently become a battleground for a concerning wave of spyware with ties to China. Pradeo, the mobile security company that discovered these malicious apps, has released a report discussing the spyware lurking on the Google Play Store. million users.

Spyware 75

Spyware Cyber threats Mobile Data collection 75

Security Affairs

APRIL 18, 2023

A new report from Citizen Lab states that the Israeli surveillance firm NSO Group used at least three zero-click zero-day exploits to deliver its Pegasus spyware. “These indicator overlaps allow us to attribute the 2022 zero-click chains to NSO Group’s Pegasus spyware with high confidence. ” reads the report. and 14.4.2,

Surveillance 98

Surveillance Spyware Education Risk 98

SecureList

NOVEMBER 2, 2023

Furthermore, the module transmits information about the victim’s contacts and accounts every five minutes. According to our findings, the spyware has been active since mid-August 2023. com hxxps://whats-media[.]com At the time of writing, all versions published in the channels since then contained malware. app hxxps://www.3ssem[.]com

Malware 145

Malware Spyware Mobile VPN 145

Security Boulevard

JULY 19, 2021

Citizen Lab has identified yet another Israeli company that sells spyware to governments around the world: Candiru. From the report : Summary: Candiru is a secretive Israel-based company that sells spyware exclusively to governments. Reportedly, their spyware can infect and monitor iPhones, Androids, Macs, PCs, and cloud accounts.

Manufacturing 52

Manufacturing Spyware Government Media 52

SecureList

DECEMBER 9, 2024

Media sources reported that explosives had been concealed within the devices. While AI chatbot accounts are already being traded on the dark web as a result of malware activity targeting individuals, an AI provider storage breach affecting clients at the corporate level could result in the compromise of even more sensitive data.

Internet 109

Internet Internet Risk Social Engineering 109

eSecurity Planet

FEBRUARY 16, 2021

Additional features of botnets include spam, ad and click fraud, and spyware. Cybersecurity vendors like Panda Security suggest the best way to defend against crimeware is using a combination of antivirus, anti-spyware, firewalls, and threat detection technology. Jump ahead: Adware. Bots and botnets. Browser hijacker. RAM scraper.

Malware 105

Malware Adware Spyware Antivirus 105

Security Affairs

APRIL 8, 2023

The CVE-2023-26083 flaw in the Arm Mali GPU driver is chained with other issues to install commercial spyware, as reported by Google’s Threat Analysis Group (TAG) in a recent report. Mandiant researchers first observed this affiliate targeting Veritas issues in the wild on October 22, 2022.

Backups 98

Backups Spyware Ransomware Education 98

Security Affairs

DECEMBER 2, 2023

Researchers devised an attack technique to extract ChatGPT training data Fortune-telling website WeMystic exposes 13M+ user records Expert warns of Turtle macOS ransomware US govt sanctioned North Korea-linked APT Kimsuky Black Basta Ransomware gang accumulated at least $107 million in Bitcoin ransom payments since early 2022 Apple addressed 2 new (..)

Ransomware 125

Ransomware Hacking Spyware Cybercrime 125

Security Affairs

APRIL 23, 2023

Abandoned Eval PHP WordPress plugin abused to backdoor websites CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog At least 2 critical infrastructure orgs breached by North Korea-linked hackers behind 3CX attack American Bar Association (ABA) suffered a data breach,1.4

Spyware 98

Spyware Ransomware Malware Data breaches 98

Security Affairs

FEBRUARY 26, 2024

An analyst based in Taiwan, known as Azaka, discovered the data leak and shared their findings on social media. On February 16th, an account linked to that email uploaded a batch of files including marketing documents, images, screenshots, and a substantial collection of WeChat messages exchanged between I-SOON employees and clients.

Hacking 133

Hacking Government Marketing Spyware 133