Government, Information Security and Spyware

Poland probes Pegasus spyware abuse under the PiS government

Security Affairs

DECEMBER 3, 2024

Poland probes Pegasus spyware abuse under the PiS government; ex-security chief Piotr Pogonowski arrested to testify before parliament. The former head of Poland’s internal security service was arrested Monday and brought before parliament to testify about prior government use of spyware against hundreds of individuals.

Spyware

Spyware Government Surveillance Hacking

Pegasus Project – how governments use Pegasus spyware against journalists

Security Affairs

JULY 19, 2021

Pegasus Project investigation into the leak of 50,000 phone numbers of potential surveillance targets revealed the abuse of NSO Group’s spyware. Pegasus Project is the name of a large-scale investigation into the leak of 50,000 phone numbers of potential surveillance targets that revealed the abuse of NSO Group’s spyware.

Spyware

Spyware Government Surveillance Media

US Gov sanctioned Intellexa Consortium individuals and entities behind Predator spyware attacks

Security Affairs

MARCH 5, 2024

government sanctioned two individuals and five entities linked to the development and distribution of the Predator spyware used to target Americans. government officials, journalists, and policy experts. The Department of the Treasury warns that the proliferation of commercial spyware poses growing risks to the United States.

Spyware

Spyware Surveillance Government Technology

Russia’s FSB used spyware against a Russian programmer

Security Affairs

DECEMBER 7, 2024

Russia’s FSB used spyware against a Russian programmer after detaining him for allegedly donating to Ukraine earlier this year. The Federal Security Service (FSB) used spyware to monitor a Russian programmer, Kirill Parubets, after he was detained earlier this year for allegedly donating to Ukraine.

Spyware

Spyware Passwords Encryption Surveillance

U.S. Gov imposes visa restrictions on individuals misusing Commercial Spyware

Security Affairs

FEBRUARY 6, 2024

government imposes visa restrictions on individuals who are involved in the illegal use of commercial spyware. State Department announced it is implementing a new policy to impose visa restrictions on individuals involved in the misuse of commercial spyware. government. national security or foreign policy interests.

Spyware

Spyware Surveillance Government Technology

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

Security Affairs

DECEMBER 16, 2024

Researchers warn of previously undetected surveillance spyware, named NoviSpy, that was found infecting a Serbian journalist’s phone. First, forensic traces showed that Serbian police used a Cellebrite tool to unlock and extract data from his device without informing him, obtaining legal consent, or disclosing the searchs purpose.

Spyware

Spyware Surveillance Technology Mobile

U.S. Gov imposed Visa restrictions on 13 individuals linked to commercial spyware activity

Security Affairs

APRIL 23, 2024

Department of State imposed visa restrictions on 13 individuals allegedly linked to the commercial spyware business. The US Department of State is imposing visa restrictions on 13 individuals involved in the development and sale of commercial spyware or their immediate family members. Government personnel.”

Spyware

Spyware Surveillance Government Technology

Life360 Selling Location Data, NSO Group Spyware Hacks Government Employees, Homecoming Queen Contest Hacked

Security Boulevard

DECEMBER 12, 2021

State Department employees were hacked with spyware from the infamous NSO Group, and details on a bizarre story about a mother and daughter that face 16 years in prison for […]. The post Life360 Selling Location Data, NSO Group Spyware Hacks Government Employees, Homecoming Queen Contest Hacked appeared first on The Shared Security Show.

Spyware

Spyware Hacking Government Technology

U.S. Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp

Security Affairs

MARCH 2, 2024

Court ordered surveillance firm NSO Group to hand over the source code for its Pegasus spyware and other products to Meta. Meta won the litigation against the Israeli spyware vendor NSO Group , a U.S. from April 29, 2018, to May 10, 2020). from April 29, 2018, to May 10, 2020).

Spyware

Spyware Surveillance Architecture Software

The iPhone of a Russian journalist was infected with the Pegasus spyware

Security Affairs

SEPTEMBER 14, 2023

The iPhone of a prominent Russian journalist, who is at odds with Moscow, was infected with NSO Group’s Pegasus spyware. The iPhone of the Russian journalist Galina Timchenko was compromised with NSO Group’s Pegasus spyware. The threat actors used a zero-click exploit, likely the PWNYOURHOME. .”

Spyware

Spyware Surveillance Media Government

Commercial spyware vendors are behind most zero-day exploits discovered by Google TAG

Security Affairs

FEBRUARY 6, 2024

Google’s TAG revealed that Commercial spyware vendors (CSV) were behind most of the zero-day vulnerabilities discovered in 2023. “If governments ever had a monopoly on the most sophisticated capabilities, that era is certainly over. Google hopes this report will serve as a call to action. ” concludes Google.

Spyware

Spyware Surveillance Government Software

NSO Group spyware used to compromise iPhones of 9 US State Dept officials

Security Affairs

DECEMBER 3, 2021

Apple warns that the mobile devices of at least nine US Department of State employees were compromised with NSO Group ‘s Pegasus spyware. The iPhones of at least nine US state department officials were compromised with the NSO Group’s spyware Pegasus. “Apple Inc iPhones of at least nine U.S.

Spyware

Spyware Surveillance Hacking Software

APT32 state hackers target human rights defenders with spyware

Security Affairs

FEBRUARY 24, 2021

The threat actors used by spyware to take over the target systems, spy on the victims, and exfiltrate data. The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. ” reads the post published by Amnesty International. .”

Spyware

Spyware Government Surveillance Phishing

Cytrox’s Predator spyware used zero-day exploits in 3 campaigns

Security Affairs

MAY 23, 2022

The attacks aimed at installing the surveillance spyware Predator, developed by the North Macedonian firm Cytrox. “Seven of the nine 0-days TAG discovered in 2021 fall into this category: developed by commercial providers and sold to and used by government-backed actors. . ” reads the advisory published by Google.

Spyware

Spyware Surveillance Government Banking

Apple warns of mercenary spyware attacks on iPhone users in 92 countries

Security Affairs

APRIL 11, 2024

Apple is warning iPhone users in over 90 countries of targeted mercenary spyware attacks, Reuters agency reported. Apple is alerting iPhone users in 92 countries about mercenary spyware attacks, reported Reuters. Reuters only mentioned India as one of the countries where users were targeted by the attacks.

Spyware

Spyware Mobile Hacking Government

Facebook vs NSO Group lawsuit: 1,400+ users were targeted with Pegasus spyware

Security Affairs

APRIL 25, 2020

Facebook advocates have challenged a plea from spyware maker NSO Group to dismiss the legal dispute over the hacking accusations, arguing it has immunity from prosecution. Now both companies are providing technical details requested by the cyber-security experts. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Spyware

Spyware Surveillance Advertising Mobile

U.S. Court rules against NSO Group in WhatsApp spyware Lawsuit

Security Affairs

DECEMBER 23, 2024

court ruled in favor of WhatsApp against NSO Group, holding the spyware vendor liable for exploiting a flaw to deliver Pegasus spyware. court over exploiting a vulnerability to deliver Pegasus spyware. In March 2024, Meta won the litigation against the Israeli spyware vendor, a U.S. This ruling is a huge win for privacy.

Spyware

Spyware Surveillance Software Hacking

Recently patched Apple and Chrome zero-days exploited to infect devices in Egypt with Predator spyware

Security Affairs

SEPTEMBER 22, 2023

Citizen Lab and Google’s TAG revealed that the three recently patched Apple zero-days were used to install Cytrox Predator spyware. Apple this week released emergency security updates to address three new zero-day vulnerabilities (CVE-2023-41993, CVE-2023-41991, CVE-2023-41992) that have been exploited in attacks in the wild.

Spyware

Spyware Surveillance Mobile Hacking

NSO Group Pegasus spyware leverages new zero-click iPhone exploit in recent attacks

Security Affairs

APRIL 19, 2022

Researchers from Citizen Lab have published a report detailing the use of a new zero-click iMessage exploit, dubbed HOMAGE, to install the NSO Group Pegasus spyware on iPhones belonging to Catalan politicians, journalists, academics, and activists. ” concludes the report. . ” concludes the report. To nominate, please visit:?

Spyware

Spyware Surveillance Government Software

WhatsApp zero-day exploited in targeted attacks to deliver NSO spyware

Security Affairs

MAY 14, 2019

Facebook fixed a critical zero-day flaw in WhatsApp that has been exploited to remotely install spyware on phones by calling the targeted device. Facebook has recently patched a critical zero-day vulnerability in WhatsApp, tracked as CVE-2019-3568 , that has been exploited to remotely install spyware on phones by calling the targeted device.

Spyware

Spyware Surveillance Mobile Advertising

Pegasus spyware used to spy on a Polish mayor

Security Affairs

MARCH 3, 2023

The phone of an opposition-linked Polish mayor was infected with the powerful Pegasus spyware, local media reported. Reuters reported that the phone of an opposition-linked Polish mayor was infected with the Pegasus spyware. According to rumors, the Polish special services are using surveillance software to spy on government opponents.

Spyware

Spyware Surveillance Hacking Government

Google links three exploitation frameworks to Spanish commercial spyware vendor Variston

Security Affairs

NOVEMBER 30, 2022

Google’s Threat Analysis Group (TAG) linked three exploitation frameworks to a Spanish surveillance spyware vendor named Variston. While tracking the activities of commercial spyware vendors, Threat Analysis Group (TAG) spotted an exploitation framework likely linked Variston IT, a Spanish firm. ” TAG concludes.

Spyware

Spyware Surveillance Risk Internet

Finnish diplomats’ devices infected with Pegasus spyware

Security Affairs

JANUARY 28, 2022

Finland Ministry for Foreign Affairs revealed that devices of Finnish diplomats have been infected with NSO Group’s Pegasus spyware. Finland’s Ministry for Foreign Affairs revealed that the devices of some Finnish diplomats have been compromised with the infamous NSO Group’s Pegasus spyware. Pierluigi Paganini.

Spyware

Spyware Surveillance Mobile Risk

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Security Affairs

JUNE 17, 2022

Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country. According to Lookout, the Hermit spyware was likely developed by Italian surveillance vendor RCS Lab S.p.A To nominate, please visit:?.

Spyware

Spyware Surveillance Telecommunications Mobile

Swedish Government grants police the use of spyware against violent crime suspects

Security Affairs

OCTOBER 24, 2019

The Sweden government is going to authorize the use of spyware on suspects’ devices to spy on their communications and track them. ” Starting from March 1, 2020, the Police Authority, the Security Police, the Customs Administration and the Swedish Crime Agency will be granted extended powers with the proposal.

Spyware

Spyware Government Surveillance Encryption

QuaDream surveillance firm’s spyware targeted iPhones with zero-click exploit

Security Affairs

APRIL 12, 2023

At least five members of civil society worldwide have been targeted with spyware and exploits developed by surveillance firm QuaDream. Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. and 14.4.2,

Spyware

Spyware Surveillance Malware Government

Spyware, ransomware and Nation-state hacking: Q&A from a recent interview

Security Affairs

FEBRUARY 10, 2022

I transcribed a recent interview, here some questions and answers about nation-state hacking, spyware, and cyber warfare. Enjoy” How has spyware changed the rules of cyber security in recent years? What will cyber security look like now that those tools are all over the internet? Anyway, it is not the only one.

Spyware

Spyware Hacking Ransomware Surveillance

New zero-click exploit used to target Bahraini activists’ iPhones with NSO spyware

Security Affairs

AUGUST 24, 2021

Citizen Lab uncovered a new zero-click iMessage exploit that was used to deploy the NSO Group’s Pegasus spyware on devices belonging to Bahraini activists. Researchers from Citizen Lab spotted a zero-click iMessage exploit that was used to deploy NSO Group’s Pegasus spyware on Bahraini activists’ devices.

Spyware

Spyware Surveillance Hacking Mobile

NSO Group, Positive Technologies and other firms sanctioned by the US government

Security Affairs

NOVEMBER 3, 2021

The Commerce Department’s Bureau of Industry and Security (BIS) has sanctioned four companies for the development of spyware or the sale of hacking tools used by nation-state actors. The firms are NSO Group and Candiru from Israel, Computer Security Initiative Consultancy PTE. Secretary of Commerce Gina M.

Technology

Technology Government Surveillance Spyware

European Data Protection Supervisor call for bans on surveillance spyware like Pegasus

Security Affairs

FEBRUARY 17, 2022

The European Data Protection Supervisor authority called for a ban on the development and the use of Pegasus-like commercial spyware. The European Data Protection Supervisor (EDPS) authority this week called for a ban on the development and the use of surveillance software like the Pegasus spyware in the EU. ” continues EDPS.

Surveillance

Surveillance Spyware Government Software

Israeli surveillance firm QuaDream is shutting down amidst spyware accusations

Security Affairs

APRIL 17, 2023

The Israeli surveillance firm QuaDream is allegedly shutting down its operations after Citizen Lab and Microsoft uncovered their spyware. Last week Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. and 14.4.2,

Surveillance

Surveillance Spyware Education Media

Regin spyware involved in attack against the Russian tech giant Yandex

Security Affairs

JUNE 28, 2019

Many experts linked the Regin malware to the Five Eyes alliance , they found alleged references to the super spyware in a number of presentations leaked by Edward Snowden and according to malware researchers, it has been used in targeted attacks against government agencies in the EU and the Belgian telecoms company Belgacom.

Spyware

Spyware Malware Advertising Authentication

New FinFisher spyware used to spy on iOS and Android users in 20 countries

Security Affairs

JULY 11, 2019

Malware researchers from Kaspersky have discovered new and improved versions of the infamous FinFisher spyware used to infect both Android and iOS devices. Experts at Kaspersky have discovered a new improved variant of the FinFisher spyware used to spy on both iOS and Android users in 20 countries. Pierluigi Paganini.

Spyware

Spyware Advertising Mobile Architecture

Experts attribute WyrmSpy and DragonEgg spyware to the Chinese APT41 group

Security Affairs

JULY 20, 2023

China-linked group APT41 was spotted using two previously undocumented Android spyware called WyrmSpy and DragonEgg China-linked APT group APT41 has been observed using two previously undocumented Android spyware called WyrmSpy and DragonEgg. government. Upon installing the two spyware, they request extensive device permissions.

Spyware

Spyware Surveillance Mobile Malware

Apple sues NSO Group for abusing state-sponsored Pegasus spyware

Security Affairs

NOVEMBER 24, 2021

federal court for illegally targeting its customers with the surveillance spyware Pegasus. The software developed by the surveillance firm was used to spy on activists, journalists, researchers, and government officials. The complaint provides new information on how NSO Group infected victims’ devices with its Pegasus spyware.

Spyware

Spyware Surveillance Software Hacking

Apple dismisses lawsuit against surveillance firm NSO Group due to risk of threat intelligence exposure

Security Affairs

SEPTEMBER 16, 2024

Apple drops its lawsuit against commercial spyware vendor NSO Group, due to the risk of “threat intelligence” information exposure. Apple is seeking to drop its lawsuit against Israeli spyware company NSO Group , citing the risk of “threat intelligence” information exposure.

Surveillance

Surveillance Spyware Risk Hacking

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

Security Affairs

NOVEMBER 11, 2022

Researchers from mobile security firm Lookout uncovered two long-running surveillance campaigns targeting the Uyghurs minority. The threat actors behind the campaigns used two Android spyware to spy on the victims and steal sensitive information. List of installed packages. Pierluigi Paganini.

Surveillance

Surveillance Spyware Malware Mobile

France’s government is giving the police more surveillance power

Security Affairs

JULY 9, 2023

The French government is going to grant law enforcement the power to spy on suspects through smartphones and other devices. French legislators are going to approve a justice reform bill that also gives more power to law enforcement, allowing them to spy on suspects through their smartphones and other electronic devices.

Surveillance

Surveillance Government Spyware IoT

PseudoManuscrypt, a mysterious massive cyber espionage campaign

Security Affairs

DECEMBER 16, 2021

Tens of thousands of devices worldwide, including many industrial control systems (ICS), have been hit by the PseudoManuscrypt spyware. Kaspersky researchers reported that tens of thousands of devices belonging to industrial and government organizations worldwide have been hit by the PseudoManuscrypt spyware.

Spyware

Spyware Energy and Utilities Malware Engineering

Unknown FinSpy Mac and Linux versions found in Egypt

Security Affairs

SEPTEMBER 27, 2020

Experts from Amnesty International uncovered a surveillance campaign that targeted Egyptian civil society organizations with a new version of FinSpy spyware. The binaries are obfuscated and do some checks to detect if the spyware is running in a Virtual Machine. ” reads the Amnesty’s report.

Spyware

Spyware Surveillance Advertising Mobile

Russia-linked APT groups exploited Lithuanian infrastructure to launch attacks

Security Affairs

MARCH 7, 2021

“Nevertheless, Russian intelligence operations pose a major threat to Lithuania’s national security,” State Security Department head Darius Jauniskis told Lithuanian lawmakers during the presentation of the report at the Parliament. If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Cyber Attacks

Cyber Attacks Spyware Government Hacking

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Security Affairs

JUNE 24, 2022

Google’s Threat Analysis Group (TAG) revealed that the Italian spyware vendor RCS Labs was supported by ISPs to spy on users. This week, Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.

Surveillance

Surveillance Mobile Spyware Telecommunications

Will iPhone’s New “Lockdown Mode” Create Dangerous Overconfidence In Apple’s CyberSecurity Capabilities?

Joseph Steinberg

JULY 13, 2022

Apple last week announced new security features specifically intended to offer “specialized additional protection to users who may be at risk of highly targeted cyberattacks from private companies developing state-sponsored mercenary spyware.”. Flip phones are not totally immune from government surveillance and action either.).

Cybersecurity

Cybersecurity Artificial Intelligence Government Social Engineering

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 11

Security Affairs

SEPTEMBER 15, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Malware

Malware Spyware Banking Ransomware

Poland probes Pegasus spyware abuse under the PiS government

Pegasus Project – how governments use Pegasus spyware against journalists

Trending Sources

US Gov sanctioned Intellexa Consortium individuals and entities behind Predator spyware attacks

Russia’s FSB used spyware against a Russian programmer

U.S. Gov imposes visa restrictions on individuals misusing Commercial Spyware

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

U.S. Gov imposed Visa restrictions on 13 individuals linked to commercial spyware activity

Life360 Selling Location Data, NSO Group Spyware Hacks Government Employees, Homecoming Queen Contest Hacked

U.S. Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp

The iPhone of a Russian journalist was infected with the Pegasus spyware

Commercial spyware vendors are behind most zero-day exploits discovered by Google TAG

NSO Group spyware used to compromise iPhones of 9 US State Dept officials

APT32 state hackers target human rights defenders with spyware

Cytrox’s Predator spyware used zero-day exploits in 3 campaigns

Apple warns of mercenary spyware attacks on iPhone users in 92 countries

Facebook vs NSO Group lawsuit: 1,400+ users were targeted with Pegasus spyware

U.S. Court rules against NSO Group in WhatsApp spyware Lawsuit

Recently patched Apple and Chrome zero-days exploited to infect devices in Egypt with Predator spyware

NSO Group Pegasus spyware leverages new zero-click iPhone exploit in recent attacks

WhatsApp zero-day exploited in targeted attacks to deliver NSO spyware

Pegasus spyware used to spy on a Polish mayor

Google links three exploitation frameworks to Spanish commercial spyware vendor Variston

Finnish diplomats’ devices infected with Pegasus spyware

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Swedish Government grants police the use of spyware against violent crime suspects

QuaDream surveillance firm’s spyware targeted iPhones with zero-click exploit

Spyware, ransomware and Nation-state hacking: Q&A from a recent interview

New zero-click exploit used to target Bahraini activists’ iPhones with NSO spyware

NSO Group, Positive Technologies and other firms sanctioned by the US government

European Data Protection Supervisor call for bans on surveillance spyware like Pegasus

Israeli surveillance firm QuaDream is shutting down amidst spyware accusations

Regin spyware involved in attack against the Russian tech giant Yandex

New FinFisher spyware used to spy on iOS and Android users in 20 countries

Experts attribute WyrmSpy and DragonEgg spyware to the Chinese APT41 group

Apple sues NSO Group for abusing state-sponsored Pegasus spyware

Apple dismisses lawsuit against surveillance firm NSO Group due to risk of threat intelligence exposure

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

France’s government is giving the police more surveillance power

PseudoManuscrypt, a mysterious massive cyber espionage campaign

Unknown FinSpy Mac and Linux versions found in Egypt

Russia-linked APT groups exploited Lithuanian infrastructure to launch attacks

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Will iPhone’s New “Lockdown Mode” Create Dangerous Overconfidence In Apple’s CyberSecurity Capabilities?

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 11

Stay Connected