Security Affairs

JANUARY 21, 2022

Researchers spotted several spyware campaigns targeting industrial enterprises to steal credentials and conduct financial fraud. Researchers from Kaspersky Lab have uncovered multiple spyware campaigns that target industrial firms to steal email account credentials and carry out fraudulent activities. ” continues the report.

Spyware 98

Spyware Accountability Social Engineering Phishing 98

Security Affairs

DECEMBER 8, 2024

SmokeLoader Attack Targets Companies in Taiwan LogoFAIL Exploited to Deploy Bootkitty, the first UEFI bootkit for Linux Horns&Hooves campaign delivers NetSupport RAT and BurnsRAT DroidBot: Insights from a new Turkish MaaS fraud operation RedLine, A License to Steal: The Rudometov Story & Operation Magnus Unveiling RevC2 and Venom Loader Ultralytics (..)

Malware 69

Malware Spyware Phishing Hacking 69

Security Affairs

JUNE 15, 2020

The Earth Empusa threat group is distributing new Android spyware, dubbed ActionSpy, through watering hole attacks to targets Turkic minority group. Attackers injected the malicious code to deploy the spyware in websites, some of them were actually fake. The server, in turn, may send some commands to the compromised device.

Spyware 105

Spyware Advertising Encryption Phishing 105

Security Affairs

MARCH 16, 2025

CISA adds Apple products and Juniper Junos OS flaws to its Known Exploited Vulnerabilities catalog GitLab addressed critical auth bypass flaws in CE and EE North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy Experts warn of a coordinated surge in the exploitation attempts of SSRF vulnerabilities Meta warns of actively exploited (..)

Spyware 72

Spyware Cybercrime Ransomware IoT 72

SecureWorld News

NOVEMBER 2, 2022

government threat report , released this morning and titled "Rise in Mobile Phishing Credential Theft Targeting Public Sector," includes these key findings: Nearly 50% of state and local government employees are running outdated Android operating systems, exposing them to hundreds of device vulnerabilities.

Mobile 115

Mobile Government Phishing Risk 115

Security Affairs

DECEMBER 21, 2023

Threat actors are exploiting an old Microsoft Office vulnerability, tracked as CVE-2017-11882 (CVSS score: 7.8), as part of phishing campaigns to spread the Agent Tesla malware. Agent Tesla is a spyware that is used to spy on the victims by collecting keystrokes, system clipboard, screenshots, and credentials from the infected system.

Malware 132

Malware Phishing Spyware Cyber threats 132

SecureList

MAY 3, 2021

Banking phishing: new version of an old scheme. Clients of several Dutch banks faced a phishing attack using QR codes. The links in their messages took the victim to a well-designed phishing pages with official emblems, business language and references to relevant laws. Quarterly highlights. Vaccine with cyberthreat.

Phishing 137

Phishing Banking Accountability Computers and Electronics 137

Security Affairs

JULY 21, 2021

FormBook is a data-stealing malware that is used in cyber espionage campaigns, like other spyware it is capable of extracting data from HTTP sessions, keystroke logging, stealing clipboard contents. SecurityAffairs – hacking, FormBook). XLoader is a very cheap malware strain that is based on the popular Formbook Windows malware.

Spyware 112

Spyware Malware Cybercrime Advertising 112

Threatpost

APRIL 21, 2020

Highly targeted spearphishing emails are being sent to oil and gas companies in hopes of infecting them with the Agent Tesla spyware.

Spyware 100

Spyware Phishing Malware Hacking 100

Security Affairs

FEBRUARY 15, 2025

CISA adds Microsoft Windows, Zyxel device flaws to its Known Exploited Vulnerabilities catalog Microsoft Patch Tuesday security updates for February 2025 ficed 2 actively exploited bugs Hacking Attackers exploit a new zero-day to hijack Fortinet firewalls Security OpenSSL patched high-severity flaw CVE-2024-12797 Progress Software fixed multiple high-severity (..)

Spyware 69

Spyware Firewall Artificial Intelligence Malware 69

Security Affairs

FEBRUARY 9, 2025

Texas is the first state to ban DeepSeek on government devices Law enforcement seized the domains of HeartSender cybercrime marketplaces WhatsApp disrupted a hacking campaign targeting journalists with Paragon spyware Ransomware attack hit Indian multinational Tata Technologies International Press Newsletter Cybercrime FBI, Dutch Police Disrupt Manipulaters (..)

Spyware 60

Spyware Cybercrime Scams Social Engineering 60

Security Affairs

JULY 18, 2019

The researchers attribute the spyware to the Russia-linked and Gamaredon Group. The attack starts with spear-phishing emails containing weaponized attachments, the malware is distributed via Russian hosting providers. The post Experts spotted a rare Linux Desktop spyware dubbed EvilGnome appeared first on Security Affairs.

Spyware 109

Spyware Malware Advertising Cyber Attacks 109

Security Affairs

AUGUST 4, 2024

Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter)

Malware 139

Malware Spyware Media Phishing 139

SecureList

FEBRUARY 16, 2023

Short-lived phishing sites often offered to see the premieres before the eagerly awaited movie or television show was scheduled to hit the screen. At the beginning of that year, we still observed phishing attacks that used the themes of infection and prevention as the bait.

Phishing 118

Phishing Scams Accountability Energy and Utilities 118

Security Affairs

NOVEMBER 24, 2024

A cyberattack on gambling giant IGT disrupted portions of its IT systems China-linked APT Gelsemium uses a new Linux backdoor dubbed WolfsBane Microsoft seized 240 sites used by the ONNX phishing service U.S.

Cybercrime 71

Cybercrime Artificial Intelligence Hacking VPN 71

Security Affairs

AUGUST 21, 2024

The Computer Emergency Response Team of Ukraine (CERT-UA) warned of new phishing attacks, carried out by the Vermin group, distributing a malware. The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of a new phishing campaign conducted by the Vermin group that distributed malware.

Malware 127

Malware Spyware Phishing Cyber threats 127

Security Affairs

APRIL 16, 2019

Scranos is a powerful cross-platform rootkit-enabled spyware discovered while investigating malware posing as legitimate software like video players, drivers and even anti-virus products. The post Scranos – A Cross Platform, Rootkit-Enabled Spyware rapidly spreading appeared first on Security Affairs. Pierluigi Paganini.

Spyware 102

Spyware Adware Malware Accountability 102

SecureList

FEBRUARY 9, 2022

Our Anti-Phishing system blocked 253 365 212 phishing links. Safe Messaging blocked 341 954 attempts to follow phishing links in messengers. Hurry up and lose your account: phishing in the corporate sector. Another noticeable phishing trend targeting the corporate sector was to exploit popular cloud services as bait.

Phishing 97

Phishing Scams Accountability Banking 97

SecureList

MAY 27, 2022

The group uses various malware families, including Wroba, and attack methods that include phishing, mining, smishing and DNS poisoning. While it’s not clear how the threat actor tricked the victims into executing the Trojanized app, we suspect they sent a spear-phishing email or contacted them via social media. Other malware.

Phishing 134

Phishing Spyware Firmware Malware 134

Security Affairs

JUNE 4, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Spyware 98

Spyware Hacking Malware Social Engineering 98

Security Affairs

JANUARY 3, 2025

Cybersecurity firm Cyfirma warns of the FireScam Android info-stealing malware that supports spyware capabilities. The malware is distributed as a fake Telegram Premium APK via a phishing website hosted on the GitHub.io The analysis of FireScam reveals a sophisticated and multifaceted threat targeting Android devices.

Spyware 67

Spyware Malware Phishing Internet 67

Security Affairs

APRIL 21, 2024

carmaker with phishing attacks Law enforcement operation dismantled phishing-as-a-service platform LabHost Previously unknown Kapeka backdoor linked to Russian Sandworm APT Cisco warns of a command injection escalation flaw in its IMC. Automotive Industry Chinese Organized Crime’s Latest U.S.

Data breaches 131

Data breaches Ransomware Phishing Malware 131

Malwarebytes

SEPTEMBER 4, 2024

After using passwords obtained from one of the countless breaches as a lure to trick victims into paying, the “Hello pervert” sextortion scammers have recently introduced two new pressure tactics: Name-dropping the infamous Pegasus spyware and adding pictures of your home environment. Here, this isn’t some act of advanced hacking.

Scams 137

Scams Spyware Passwords Password Management 137

The Last Watchdog

JULY 18, 2023

July 18, 2022 – Around 30,000 websites get hacked every day , with the majority of those cyberattacks due to human error. A new study by HostingAdvice, the premier authority on web hosting, found that 32% of Americans say they’ve gotten hacked from visiting a sketchy website and of those, 53% got a computer virus. Gainesville, Fla.,

Hacking 100

Hacking DDOS Small Business Spyware 100

Security Affairs

FEBRUARY 14, 2021

SecurityAffairs – hacking, newsletter). Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the international press subscribe here. COMB breach: 3.2B COMB breach: 3.2B COMB breach: 3.2B COMB breach: 3.2B COMB breach: 3.2B Pierluigi Paganini.

Phishing 111

Phishing Spyware Data breaches Surveillance 111

eSecurity Planet

FEBRUARY 22, 2022

Most attacks make would-be victims click to install malware or redirect them to a phishing page to steal their credentials. NSO Group’s Pegasus software has been routinely in the headlines in recent years for using zero-click attacks to install its spyware. Spyware and Zero-Days: A Troubling Market.

Spyware 126

Spyware Software Government Social Engineering 126

Security Affairs

JULY 25, 2021

SecurityAffairs – hacking, newsletter). Japanese computers hit by a wiper malware ahead of 2021 Tokyo Olympics Obtaining password hashes of Windows systems with PetitPotam attack. If you want to also receive for free the international pre ss subscribe here. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Spyware 123

Spyware Data breaches Government Ransomware 123

Security Affairs

APRIL 21, 2020

Hackers launched spear-phishing attacks against organizations in the oil and gas industry sector spreading the Agent Tesla info-stealer malware. To do this, the spyware creates different threads and timer functions in the main function. SecurityAffairs – energy, hacking). ” continues the analysis. Pierluigi Paganini.

Spyware 136

Spyware Manufacturing Malware Engineering 136

Security Affairs

JUNE 2, 2024

OpenAI’s Altman Sidesteps Questions About Governance, Johansson at UN AI Summit Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter)

Data breaches 123

Data breaches VPN Cloud Migration Malware 123

Adam Levin

FEBRUARY 25, 2020

Stalkerware apps are installed by someone with physical access to a device (potentially by a spouse or parent) or via phishing exploits where the sender lures their target into clicking a link or downloading something that appears to be legitimate. This is thought to be the way Amazon founder and CEO Jeff Bezos was hacked in 2019.

Malware 236

Malware Mobile Phishing Authentication 236

Security Affairs

SEPTEMBER 3, 2023

Hacks QakBot, Quietly Removes Botnet Infections Under Siege: Rapid7-Observed Exploitation of Cisco ASA SSL VPNs Why is.US Being Used to Phish So Many of Us?

Social Engineering 125

Social Engineering Data breaches Spyware Malware 125

Webroot

OCTOBER 25, 2021

Even strong security can’t prevent an account from being hacked if account credentials are stolen in a phishing attack, one of the most common causes of identity theft. In 2020, phishing scams spiked by 510 percent between January and February alone. Web-borne malware remains widespread.

Identity Theft 131

Identity Theft Spyware Phishing Antivirus 131

Security Affairs

MARCH 8, 2020

The emails provide updates on the Coronavirus outbreak, it includes stats on the epidemic and contains an email of corona-virus@caramail.com that is likely used for phishing purposes. See Using Caution with Email Attachments and Avoiding Social Engineering and Phishing Scams for more information. Pierluigi Paganini.

Malware 145

Malware Scams Social Engineering Phishing 145

eSecurity Planet

NOVEMBER 12, 2024

Aside from antivirus, Norton offers ransomware and hacking protection, privacy monitoring, and a VPN. Norton doesn’t have spyware protection; I recommend looking at business antivirus products if that’s a priority for you. McAfee also doesn’t offer spyware detection. 5 Pricing: 3.7/5 5 Core features: 3.5/5

Antivirus 63

Antivirus Software Identity Theft VPN 63

Security Affairs

MAY 19, 2020

Spear-phishing is a rapidly emerging threat. It’s more specific than generic phishing attempts and often targets a single person or company. Data from Barracuda cybersecurity researchers identified a 667% increase in spear-phishing attacks between the end of February and the following month.

Energy and Utilities 124

Energy and Utilities Phishing Advertising Technology 124

Security Affairs

NOVEMBER 25, 2020

Business Email Compromise (BEC) is a type of email phishing attack that relies on social engineering. As part of BEC, phishing emails can target particular people within an organization or sent out en masse. 2 Sample of the TMT’s phishing email. The attackers use Gammadyne Mailer and Turbo-Mailer to send out phishing emails.

Cybercrime 138

Cybercrime Phishing Social Engineering Spyware 138

Security Affairs

NOVEMBER 11, 2023

Police seized BulletProftLink phishing-as-a-service (PhaaS) platform Serbian pleads guilty to running ‘Monopoly’ dark web drug market McLaren Health Care revealed that a data breach impacted 2.2 Every week the best security articles from Security Affairs are free for you in your email box.

DDOS 127

DDOS Data breaches Ransomware Marketing 127