Mexican Drug Cartels with High-Tech Spyware
Schneier on Security
DECEMBER 17, 2020
Lots of details in the article. The cyberweapons arms business is immoral in many ways. This is just one of them.
Qatar Spyware
Schneier on Security
OCTOBER 18, 2022
Everyone visiting Qatar for the World Cup needs to install spyware on their phone. Despite what the article says, I don’t know how mandatory this actually is. Everyone travelling to Qatar during the football World Cup will be asked to download two apps called Ehteraz and Hayya.
Spyware 
355
355 Join 28,000+
Insiders
Sign Up for our Newsletter
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
On the Zero-Day Market
Schneier on Security
MAY 24, 2024
New paper: “ Zero Progress on Zero Days: How the Last Ten Years Created the Modern Spyware Market “: Abstract: Spyware makes surveillance simple. The last ten years have also been marked by stark failures to control spyware and its precursors and components.
Marketing 326
326 
Zero-Click iMessage Exploit
Schneier on Security
SEPTEMBER 17, 2021
Citizen Lab released a report on a zero-click iMessage exploit that is used in NSO Group’s Pegasus spyware. News articles on the exploit. Apple patched the vulnerability; everyone needs to update their OS immediately.
Spyware 351
351 Spyware 351
351 
Targeted spyware and why it’s a concern to us
Malwarebytes
MARCH 20, 2025
Experts are again warning about the proliferating market for targeted spyware and espionage. Before we dive into the world of targeted spyware, it’s worth looking at a few of the main players that are active in and against this industry. The name of Paragons spyware is Graphite.
Spyware 71
71 
Apple Sues NSO Group
Schneier on Security
NOVEMBER 24, 2021
Piling more on NSO Group’s legal troubles, Apple is suing it : The complaint provides new information on how NSO Group infected victims’ devices with its Pegasus spyware. NSO Group’s Pegasus spyware is favored by totalitarian governments around the world, who use it to hack Apple phones and computers.
Spyware 354
354 
New Zero-Click Exploits Against iOS
Schneier on Security
APRIL 20, 2023
These were used by NSO Group’s Pegasus spyware in 2022, and deployed by Mexico against human rights defenders. News article. CitizenLab has identified three zero-click exploits against iOS 15 and 16. These vulnerabilities have all been patched.
Spyware 277
277 Spyware 277
277 
Major Hotel Group Leaks 1TB of Customer Data
Adam Levin
NOVEMBER 26, 2019
“Our team was able to access this server because it was completely unsecured and unencrypted,” announced VPN review website vpnMentor in a blog article describing their findings. . The contents of the database could also help hackers and cybercriminals target the same companies in other ways.
B2B 295
295 
Apple’s Lockdown Mode
Schneier on Security
JULY 26, 2022
This is how Apple describes it: Lockdown Mode offers an extreme, optional level of security for the very few users who, because of who they are or what they do, may be personally targeted by some of the most sophisticated digital threats, such as those from NSO Group and other private companies developing state-sponsored mercenary spyware.
Spyware 292
292 
BLASTPASS: Government agencies told to secure iPhones against spyware attacks
Graham Cluley
SEPTEMBER 14, 2023
CISA, the United States's Cybersecurity and Infrastructure Security Agency, has ordered federal agencies to patch their iPhones against vulnerabilities that can be used as part of a zero-click attack to install spyware from the notorious NSO Group. Read more in my article on the Tripwire State of Security blog.
Spyware 111
111 
A New-ish Mobile Attack: Zero-Click Spyware
SecureWorld News
OCTOBER 24, 2022
The app then connected to a malicious server and downloaded spyware to the phone, listening in on calls and viewing text messages for nearly a year and a half. Behind the attack is spyware manufacturer NSO Group, which sells technology to governments and law enforcement agencies, Bloomberg reported. Read the full Bloomberg article.
Spyware 103
103 
Pegasus spyware found on UK government office phone
Malwarebytes
APRIL 21, 2022
” John Scott-Railton recalled after finding out on July 7, 2020 that Pegasus, the highly sophisticated flagship spyware of Israel’s NSO Group, was used to infect a phone linked to the network at 10 Downing Street, the UK Prime Minister’s home and office. “When we found the No. 10 case, my jaw dropped.” Hello, Maestro?
Spyware 124
124 
Security Affairs newsletter Round 501 by Pierluigi Paganini – INTERNATIONAL EDITION
Security Affairs
DECEMBER 8, 2024
Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
Espionage campaign loads VPN spyware on Android devices via social media
CSO Magazine
NOVEMBER 3, 2022
A new espionage campaign, dubbed SandStrike, has been detected using malicious VPN apps to load spyware on Android devices, cybersecurity company Kaspersky reports. To read this article in full, please click here
Spyware 117
117 
Confucius Uses Pegasus Spyware-related Lures to Target Pakistani Military
Trend Micro
AUGUST 16, 2021
While investigating the Confucius threat actor, we found a recent spear phishing campaign that utilizes Pegasus spyware-related lures to entice victims into opening a malicious document downloading a file stealer.
Spyware 124
124 
Spyware vendors use exploit chains to take advantage of patch delays in mobile ecosystem
CSO Magazine
MARCH 31, 2023
Several commercial spyware vendors developed and used zero-day exploits against iOS and Android users last year. To read this article in full, please click here
Spyware 117
117 
Exiled Russian journalist claims “European state” hacked her iPhone with Pegasus spyware
Graham Cluley
SEPTEMBER 26, 2023
The founder of a news outlet outlawed in Russia for its independent reporting and stance on the war in Ukraine, believes that a country in the European Union was behind the hacking of her iPhone with military-grade spyware. Read more in my article on the Hot for Security blog.
Spyware 100
100 
SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 31
Security Affairs
FEBRUARY 2, 2025
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.
Malware 72
72 
Fake WhatsApp app may have been built to spy on iPhone users – what you need to know
Hot for Security
FEBRUARY 5, 2021
A fake version of the WhatsApp messaging app is suspected of being created by an Italian spyware company to snoop upon individuals and steal sensitive data. Read more in my article on the Hot for Security blog.
Spyware 145
145 
Apple dismisses lawsuit against surveillance firm NSO Group due to risk of threat intelligence exposure
Security Affairs
SEPTEMBER 16, 2024
Apple drops its lawsuit against commercial spyware vendor NSO Group, due to the risk of “threat intelligence” information exposure. Apple is seeking to drop its lawsuit against Israeli spyware company NSO Group , citing the risk of “threat intelligence” information exposure. ” reads the court filing.
Surveillance 119
119 
Lockdown Mode: Apple to protect users from targeted spyware attacks
The State of Security
JULY 7, 2022
Read more in my article on the Tripwire State of Security blog. Apple has previewed a new feature which aims to harden high-risk users from the serious threat of being spied upon by enemy states and intelligence agencies.
Spyware 123
123 
CapraRAT Spyware Masks As Popular Android Apps
Security Boulevard
JULY 18, 2024
In the realm of cybercrime, a threat actor by the name of Transparent Tribe is rapidly spreading the CapraRAT spyware by disguising it as popular Android apps. In this article, we’ll dive into the details of these […] The post CapraRAT Spyware Masks As Popular Android Apps appeared first on TuxCare.
Spyware 64
64 
Technical Report of the Bezos Phone Hack
Schneier on Security
JANUARY 24, 2020
The Motherboard article also quotes forensic experts on the report: A mobile forensic expert told Motherboard that the investigation as depicted in the report is significantly incomplete and would only have provided the investigators with about 50 percent of what they needed, especially if this is a nation-state attack.
Hacking 273
273 
Security Affairs newsletter Round 496 by Pierluigi Paganini – INTERNATIONAL EDITION
Security Affairs
NOVEMBER 3, 2024
Every week the best security articles from Security Affairs are free in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
Cryptocurrency 109
109 
Dark Caracal: Global Espionage Malware from Lebanon
Schneier on Security
JANUARY 22, 2018
The EFF and Lookout are reporting on a new piece of spyware operating out of Lebanon. Three news articles. It primarily targets mobile devices compromised by fake secure messaging clients like Signal and WhatsApp. The campaigns span across 21+ countries and thousands of victims. There's a lot in the full report. It's worth reading.
Malware 182
182 
SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 27
Security Affairs
JANUARY 5, 2025
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.
Malware 66
66 
CISOs, beware of spyware tools for illicit competitive intelligence
CSO Magazine
FEBRUARY 24, 2022
To read this article in full, please click here Elite de Carga would sell these capabilities to the Mexican state government of Baja and Durango for what was tacitly understood to be for political as well as law enforcement purposes.
Spyware 128
128 
Cyberwar's global players—it's not always Russia or China
CSO Magazine
NOVEMBER 18, 2021
Consequently, the SolarWinds spyware infiltration , the Microsoft Exchange hack , and ransomware attacks launched by criminal gangs harbored by the Kremlin dominate headlines and drive nation-state cybersecurity responses. To read this article in full, please click here
Spyware 142
142 
Security Affairs newsletter Round 510 by Pierluigi Paganini – INTERNATIONAL EDITION
Security Affairs
FEBRUARY 9, 2025
Every week the best security articles from Security Affairs are free in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
Spyware 60
60 
Scranos – A Cross Platform, Rootkit-Enabled Spyware rapidly spreading
Security Affairs
APRIL 16, 2019
Scranos is a powerful cross-platform rootkit-enabled spyware discovered while investigating malware posing as legitimate software like video players, drivers and even anti-virus products. The operation, partially described in a recent article by Tencent, primarily targeted Chinese territory until recently, when it broke out around the world.”
Spyware 102
102 
SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 11
Security Affairs
SEPTEMBER 15, 2024
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.
Malware 119
119 
NetWire Remote Access Trojan Maker Arrested
Schneier on Security
MARCH 14, 2023
The article details the mistakes that led to the person’s address. While the defendant in this case hasn’t yet been named publicly, the NetWire website has been leaking information about the likely true identity and location of its owner for the past 11 years.
Cybercrime 272
272 
More malware-infested apps, downloaded millions of times, found in the Google Play store
The State of Security
JULY 20, 2022
Three million Android users may have lost money and had their devices infected by spyware, after the discovery that the official Google Play store has been distributing apps infected by a new family of malware. Read more in my article on the Tripwire State of Security blog.
Spyware 103
103 
Security Affairs newsletter Round 511 by Pierluigi Paganini – INTERNATIONAL EDITION
Security Affairs
FEBRUARY 15, 2025
Every week the best security articles from Security Affairs are free in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
Spyware 69
69 
Stalkerware app pcTattletale announces it is ‘out of business’ after suffering data breach and website defacement
Graham Cluley
MAY 31, 2024
US spyware vendor pcTattletale has shut down its operations following a serious data breach that exposed sensitive information about its customers, as well as data stolen from some of their victims. Read more in my article on the Hot for Security blog.
Security Affairs newsletter Round 515 by Pierluigi Paganini – INTERNATIONAL EDITION
Security Affairs
MARCH 16, 2025
Every week the best security articles from Security Affairs are free in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
Spyware 72
72 
Norton vs McAfee: Compare Antivirus Software 2025
eSecurity Planet
NOVEMBER 12, 2024
Norton has multiple training videos and help articles for using the software, and it offers phone, email, and chat options for customer support. Norton doesn’t have spyware protection; I recommend looking at business antivirus products if that’s a priority for you. McAfee also doesn’t offer spyware detection.
Antivirus 63
63 
Evil Telegram campaign: Trojanized Telegram apps found on Google Play
Security Affairs
SEPTEMBER 10, 2023
Researchers from Kaspersky discovered several Telegram mods on the Google Play Store that contained spyware, the campaign was tracked as Evil Telegram. Evil Telegram: a Trojanized version of the Telegram app was spotted on the Google Play Store, Kaspersky researchers reported. ” concludes the analysis.
Spyware 137
137 
Security Affairs newsletter Round 377
Security Affairs
AUGUST 7, 2022
Every week the best security articles from Security Affairs free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! If you want to also receive for free the newsletter with the international press subscribe here.
Spyware 141
141 
How to choose an endpoint protection suite
CSO Magazine
SEPTEMBER 28, 2021
Threat vectors for end-user devices include browser-based attacks, phishing attempts, malicious software, or spyware. To read this article in full, please click here Because of the diverse array of attack vectors a variety of protection methods must be leveraged to protect endpoint devices from compromise.
Antivirus 124
124 
Let's personalize your content