WIRED Threat Level

OCTOBER 5, 2020

The tool attacks a device’s UEFI firmware—which makes it especially hard to detect and destroy.

Spyware 100

Spyware Firmware Hacking 100

Security Boulevard

SEPTEMBER 30, 2021

Spyware found embedded in UEFI and MBR firmware - ran undetected for years. The post September Firmware Threat Report appeared first on Security Boulevard.

Firmware 52

Firmware Threat Reports Spyware 52

Security Affairs

SEPTEMBER 28, 2021

Experts spotted a new variant of the FinFisher surveillance spyware that is able to hijack and replace the Windows UEFI bootloader to infect Windows machines. Kaspersky experts shared the results of an 8-months investigation into FinSpy spyware at the Security Analyst Summit (SAS) 2021.

Spyware 110

Spyware Surveillance Firmware Malware 110

Security Affairs

JANUARY 21, 2022

At the end of 2021, researchers discovered a UEFI firmware-level compromise by analyzing logs from its Firmware Scanner. Threat actors compromised a single component within the firmware image to intercept the original execution flow of the machine’s boot sequence and inject the sophisticated implant. Pierluigi Paganini.

Firmware 145

Firmware Malware Spyware Surveillance 145

The Hacker News

SEPTEMBER 29, 2021

Commercially developed FinFisher surveillanceware has been upgraded to infect Windows devices using a UEFI (Unified Extensible Firmware Interface) bootkit using a trojanized Windows Boot Manager, marking a shift in infection vectors that allow it to elude discovery and analysis.

Spyware 104

Spyware Firmware Malware 104

Troy Hunt

MARCH 23, 2019

I'm pretty damn frustrated with those Instamics right now between the flakey firmware upgrade process and the unexpected loss of recording today. So firstly, sorry for the audio quality. I'll make sure I get on top of it for next time. Elsevier looks like they logged a bunch of passwords in plain text (who would do that.

Data breaches 159

Data breaches Spyware Firmware Passwords 159

Security Affairs

APRIL 3, 2024

CVE-2024-29745 CVE-2024-29748″ The company did not provide details about the attacks, but in the past such kind of bugs was actively exploited by nation-state actors or commercial spyware vendors. The 2024-04-01 security patch level addressed eight high-severity flaws in Framework and System.

Spyware 134

Spyware Firmware Hacking Information Security 134

Security Affairs

AUGUST 6, 2024

The TAG team investigates attacks carried out by nation-state actors and commercial spyware vendors. In June 2024, Google [link] of an elevation of privilege vulnerability, tracked as CVE-2024-32896, in the Pixel Firmware, which has been exploited in the wild as a zero-day. ” continues the advisory. reads the advisory.

Firmware 129

Firmware Spyware Hacking Technology 129

Security Boulevard

MARCH 24, 2025

Researchers name several countries as potential Paragon spyware customers TechCrunch The Citizen Lab, a group of academics and security researchers, recently published a report indicating the governments of Australia, Canada, Cyprus, Denmark, Israel, and Singapore are "likely" customers of Israeli spyware maker Paragon Solutions.

Surveillance 75

Surveillance Telecommunications Data breaches Malware 75

Security Affairs

OCTOBER 6, 2024

Baseband firmware can be affected by vulnerabilities, making it a significant attack vector. Zero-day brokers and commercial spyware vendors can exploit these vulnerabilities to target mobile users and deploy malware like Predator. .” reads Google’s announcement. Exploiting baseband bugs can lead to remote code execution.

Firmware 131

Firmware Mobile Spyware Software 131

SecureList

MAY 27, 2022

MoonBounce: the dark side of UEFI firmware. Late last year, we became aware of a UEFI firmware-level compromise through logs from our firmware scanner (integrated into Kaspersky products at the start of 2019). One of the things you can do to protect yourself from advanced mobile spyware is to reboot your device on a daily basis.

Phishing 134

Phishing Spyware Firmware Malware 134

eSecurity Planet

FEBRUARY 22, 2022

NSO Group’s Pegasus software has been routinely in the headlines in recent years for using zero-click attacks to install its spyware. Spyware and Zero-Days: A Troubling Market. It can even access the chip’s firmware to gain root access on the device, a significant privilege escalation.

Spyware 126

Spyware Software Government Social Engineering 126

SecureWorld News

JANUARY 9, 2025

Protecting military mobile devices Standards and policies will be implemented to secure Department of Defense mobile devices from foreign spyware. Agencies must report any compromises involving foreign spyware over the past two years. "We're finally repaying those businesses so they can maintain essential connectivity."

Cybersecurity 107

Cybersecurity Manufacturing Surveillance Ransomware 107

SiteLock

AUGUST 27, 2021

Most manufacturers of IoT enabled devices update their firmware frequently. Many companies are re-thinking BYOD policies in recent years in order to protect their business networks. It’s better to keep a barrier between home and work, at least in cyberspace. Update, Update, Update.

IoT 98

IoT Spyware VPN Passwords 98

Security Affairs

OCTOBER 1, 2023

ALPHV/BlackCat ransomware gang hacked the hotel chain Motel One FBI warns of dual ransomware attacks Progress Software fixed two critical severity flaws in WS_FTP Server Child abuse site taken down, organized child exploitation crime suspected – exclusive A still unpatched zero-day RCE impacts more than 3.5M

Artificial Intelligence 127

Artificial Intelligence Firmware Data breaches Hacking 127

Security Boulevard

MARCH 17, 2025

Vulnerabilities and Malware Primarily includes severe and exploited vulnerabilities in devices or software used by end users (ex: a major router firmware flaw). Telegram also implemented a detailed info page for users receiving a first-time message from outside their contacts list.

Surveillance 59

Surveillance Data breaches Spyware Malware 59

SecureList

DECEMBER 27, 2023

The exploit obtains root privileges and proceeds to execute other stages, which load spyware. Because this feature is not used by the firmware, we have no idea how attackers would know how to use it. Device tree files can be extracted from the firmware, and their contents can be viewed with the help of the dt utility.

Firmware 145

Firmware Engineering Spyware Retail 145

SecureList

MARCH 20, 2024

Instead, it is a full-fledged spyware application that collects SMS messages, keystrokes, etc. The same malware earlier had been found in the firmware of a kids’ smart watch by an Israeli manufacturer distributed mainly in Europe and the Middle East. Tambir Tambir is an Android backdoor that targets users in Turkey.

Malware 129

Malware Mobile Firmware Spyware 129

Security Affairs

SEPTEMBER 14, 2024

CISA adds SonicWall SonicOS, ImageMagick and Linux Kernel bugs to its Known Exploited Vulnerabilities catalog Electronic payment gateway Slim CD disclosed a data breach impacting 1.7M

Data breaches 121

Data breaches Computers and Electronics Spyware Cybercrime 121

Security Affairs

JUNE 5, 2022

Unpatched critical Atlassian Confluence Zero-Day RCE flaw actively exploited Microsoft blocked Polonium attacks against Israeli organizations LockBit ransomware attack impacted production in a Mexican Foxconn plant Conti leaked chats confirm that the gang’s ability to conduct firmware-based attacks An international police operation dismantled FluBot (..)

Spyware 105

Spyware Firmware Ransomware Scams 105

eSecurity Planet

FEBRUARY 26, 2021

The Unified Extensible Firmware Interface (UEFI) scanner is a valuable tool for protecting firmware. Capabilities for scanning firmware are not common in antimalware solutions, setting ESET ahead of the competition in this vertical. This tool can block suspicious emails that may contain spyware, ransomware and phishing websites.

Antivirus 85

Antivirus Firmware Encryption Spyware 85

eSecurity Planet

FEBRUARY 16, 2021

Additional features of botnets include spam, ad and click fraud, and spyware. Cybersecurity vendors like Panda Security suggest the best way to defend against crimeware is using a combination of antivirus, anti-spyware, firewalls, and threat detection technology. Firmware rootkit. Jump ahead: Adware. Bots and botnets.

Malware 105

Malware Adware Spyware Antivirus 105

Security Affairs

DECEMBER 28, 2023

In June, Kaspersky announced that after a six-month-long investigation, they completed the collection of all the components of the attack chain and the analysis of the spyware implant, tracked as TriangleDB. The spyware is directly deployed in memory, but if the victim reboots the device the malware doesn’t persist. .

Spyware 138

Spyware Firmware Mobile Malware 138

Security Affairs

APRIL 24, 2022

Phishing attacks using the topic “Azovstal” targets entities in Ukraine Conti ransomware claims responsibility for the attack on Costa Rica Cyber Insurance and the Changing Global Risk Environment A stored XSS flaw in RainLoop allows stealing users’ emails QNAP firmware updates fix Apache HTTP vulnerabilities in its NAS Pwn2Own Miami hacking contest (..)

Cyber Insurance 100

Cyber Insurance Spyware Firmware Hacking 100

SecureList

NOVEMBER 30, 2021

In November, Apple announced that it was taking legal action against NSO Group for developing software that targets its users with “malicious malware and spyware” Detecting infection traces from Pegasus and other advanced mobile malware is very tricky, and complicated by the security features of modern OSs such as iOS and Android.

Malware 140

Malware Mobile Spyware Surveillance 140

Security Boulevard

FEBRUARY 17, 2025

Google's reCAPTCHA is not only useless, it's also basically spyware Techspot This study demonstrates Google's reCAPTCHA v2 and v3 are flawed and don't actually keep out bots. Vulnerabilities and Malware Primarily includes severe and exploited vulnerabilities in devices or software used by end users (ex: a major router firmware flaw).

Surveillance 52

Surveillance Data breaches VPN Malware 52

Security Affairs

AUGUST 25, 2019

Intel addresses High-Severity flaws in NUC Firmware and other tools. App tainted with Ahmyst Open-source spyware appeared on Google Play Store twice. Bluetana App allows detecting Bluetooth card skimmers in just 3 seconds. Capital One hacker suspected to have breached other 30 companies. 5 Common Phishing Attacks and How to Avoid Them?

Small Business 78

Small Business Advertising Data breaches Spyware 78

eSecurity Planet

FEBRUARY 26, 2021

The Unified Extensible Firmware Interface (UEFI) scanner is a valuable tool for protecting firmware. Capabilities for scanning firmware are not common in antimalware solutions, setting ESET ahead of the competition in this vertical. This tool can block suspicious emails that may contain spyware, ransomware and phishing websites.

Antivirus 59

Antivirus Firmware Encryption Spyware 59

eSecurity Planet

AUGUST 20, 2024

Third-Party Application Package Installed on Pixel Devices Type of vulnerability: Third-party application package installed on Pixel device firmware, with insufficient security controls. Researchers investigating the threat found an Android application package, Showcase.apk, that’s part of the device firmware.

Authentication 108

Authentication Firmware Technology Software 108

eSecurity Planet

SEPTEMBER 11, 2023

The fix: ASUS released firmware updates to address the vulnerabilities. The flaws were a component of the BLASTPASS zero-click iMessage exploit chain, which let hackers use malicious photos and attachments to install the Pegasus mercenary spyware from the NSO Group on fully patched iPhones.

VPN 116

VPN Authentication Firmware Phishing 116

SecureWorld News

AUGUST 8, 2022

Cybercriminals often use malware to gain access to a computer or mobile device to deploy viruses, worms, Trojans, ransomware, spyware, and rootkits. For the top malware strains, the advisory provides six mitigations: Update software, including operating systems, applications, and firmware, on IT network assets. Enforce MFA.

Malware 98

Malware Banking Penetration Testing Healthcare 98

SecureList

JUNE 3, 2024

The attackers were able to bypass this hardware-based security protection using another hardware feature of Apple-designed SoCs (System on a Chip): they did this by writing the data, destination address and data hash to unknown hardware registers of the chip that are not used by the firmware.

Banking 113

Banking Malware Computers and Electronics Mobile 113

Pen Test Partners

JANUARY 14, 2025

This tool allows attackers to leverage the weaknesses in the MediaTek chipsets to perform firmware alterations on the device. This means they can potentially alter the firmware on the device. From a technical perspective, altering the IMEI requires access to certain low-level functions of the phone’s hardware and firmware.

Firmware 75

Firmware Malware Manufacturing Mobile 75

Security Boulevard

FEBRUARY 10, 2025

Spyware maker Paragon terminates contract with Italian government: media reports TechCrunch This campaign was included in Week 5 of the Privacy Roundup , where Meta disrupted a campaign on WhatsApp targeting approximately 100 users with Paragon Spyware. this is certainly a news item worth paying attention to.

Spyware 52

Spyware Surveillance Government Data breaches 52

Responsible Cyber

APRIL 8, 2020

Ransomware is a type of malware, but others exist, including spyware, adware, bots and Trojans. Additionally, operating systems, firewalls and firmware must be hardened and updated with vendor provided patches regularly and timely, and previously mentioned anti-virus software must be kept up to date.

Cybersecurity 98

Cybersecurity DDOS Small Business Phishing 98

eSecurity Planet

OCTOBER 18, 2022

For example, the reputable Kaspersky anti-malware company might offer legitimate anti-ransomware tools suitable for many organizations, but their Russian headquarters may cause hesitation over concerns related to the invasion of Ukraine or concerns of spyware. For-pay ransomware recovery tool. Full disconnect recommendation.

Ransomware 145

Ransomware Encryption Insurance Backups 145

eSecurity Planet

MAY 2, 2024

Sophos: Noted that 43% of all 2023 malware signature updates are for stealers, spyware, and keyloggers often used to steal credentials from devices. 60% of all mobile and browser zero-days are exploited by spyware vendors. 20% increase accesses of specific organizations advertised. and software libraries to attack the supply chain.

Cybersecurity 123

Cybersecurity DDOS Penetration Testing Passwords 123