Security Boulevard

MARCH 24, 2025

Surveillance Tech in the News This section covers surveillance technology and methods in the news. Vulnerabilities and Malware Primarily includes severe and exploited vulnerabilities in devices or software used by end users (ex: a major router firmware flaw). Malware campaigns covered generally target/affect the end user.

Surveillance 75

Surveillance Telecommunications Malware Data breaches 75

Security Affairs

JUNE 3, 2024

Russia-linked APT28 used the HeadLace malware and credential-harvesting web pages in attacks against networks across Europe. The experts observed the APT deploying Headlace in three distinct phases from April to December 2023, respectively, using phishing, compromised internet services, and living off the land binaries.

Malware 141

Malware Phishing Surveillance Internet 141

The Hacker News

JANUARY 4, 2024

The threat actor known as UAC-0050 is leveraging phishing attacks to distribute Remcos RAT using new strategies to evade detection from security software.

Phishing 103

Phishing Surveillance Malware Software 103

SecureWorld News

APRIL 13, 2025

These platforms can automatically recognize and classify threatening behavior such as suspicious network activity, phishing attacks, and transmission of malware. Here's an example that shows how Google performs phishing detection.

Cybersecurity 97

Cybersecurity Artificial Intelligence Threat Detection Cyber threats 97

Security Boulevard

MARCH 31, 2025

Surveillance Tech in the News This section covers surveillance technology and methods in the news. Vulnerabilities and Malware Primarily includes severe and exploited vulnerabilities in devices or software used by end users (ex: a major router firmware flaw). Malware campaigns covered generally target/affect the end user.

VPN 59

VPN Surveillance Malware Data breaches 59

Security Affairs

DECEMBER 12, 2024

Lookout researchers linked the BoneSpy and PlainGnome Android surveillance families to the Russian APT group Gamaredon (a.k.a. These are the first known mobile malware families linked to the Russian APT. These findings tie the mobile surveillance families to Gamaredons desktop campaigns. PlainGnome uses a two-stage deployment.

Mobile 95

Mobile Malware Surveillance Social Engineering 95

SecureList

NOVEMBER 28, 2024

Based on limited telemetry, we believe with medium to low confidence that some of the initial infections were spear-phishing emails. We also found Cobalt Strike beacons and several traces tying this actor to the ShadowPad malware and UNC2643 activity, which is in turn associated with the HAFNIUM threat actor.

Malware 118

Malware Government Software Spyware 118

Security Affairs

JANUARY 19, 2025

CISA adds Aviatrix Controllers vulnerability to its Known Exploited Vulnerabilities catalog ESET detailed a flaw that could allow a bypass of the Secure Boot in UEFI systems Russia-linked APT Star Blizzard targets WhatsApp accounts Prominent US law firm Wolf Haldenstein disclosed a data breach Clop Ransomware exploits Cleo File Transfer flaw: dozens (..)

Spyware 69

Spyware Data breaches DNS Artificial Intelligence 69

Security Affairs

SEPTEMBER 18, 2020

Security researchers discovered Android malware capable of bypassing 2FA that was developed by an Iran-linked group dubbed Rampant Kitten. Security researchers from Check Point discovered an Android malware, developed by an Iran-linked group dubbed Rampant Kitten, that is able to bypass 2FA. Pierluigi Paganini.

Malware 109

Malware Phishing Accountability Advertising 109

Security Affairs

APRIL 19, 2020

PaloAlto Networks experts warn of malicious Coronavirus themed phishing campaigns targeting government and medical organizations. April 17 – Gmail blocked 18 Million phishing and malware emails using COVID-19 lures in a week. April 18 – Trickbot is the most prolific malware operation using COVID-19 themed lures.

Scams 140

Scams Malware Phishing Surveillance 140

The Hacker News

MAY 25, 2022

An unknown advanced persistent threat (APT) group has been linked to a series of spear-phishing attacks targeting Russian government entities since the onset of the Russo-Ukrainian war in late February 2022. The campaigns [.]

Government 99

Government Surveillance Malware Phishing 99

Security Affairs

NOVEMBER 10, 2021

The malware already hit more than a thousand South Korean victims. Unlike other surveillance software that attempts to exploit vulnerabilities on the device, PhoneSpy disguised itself as a harmless application with purposes ranging from learning Yoga to watching TV and videos, or browsing photos. Zimperium concludes.

Spyware 145

Spyware Mobile Social Engineering Malware 145

Security Boulevard

MARCH 17, 2025

Surveillance Tech in the News This section covers surveillance technology and methods in the news. Vulnerabilities and Malware Primarily includes severe and exploited vulnerabilities in devices or software used by end users (ex: a major router firmware flaw). Malware campaigns covered generally target/affect the end user.

Surveillance 59

Surveillance Data breaches Spyware Malware 59

Security Boulevard

FEBRUARY 17, 2025

Surveillance Tech in the News This section covers surveillance technology and methods in the news. Vulnerabilities and Malware Primarily includes severe and exploited vulnerabilities in devices or software used by end users (ex: a major router firmware flaw). Malware campaigns covered generally target/affect the end user.

Surveillance 52

Surveillance Data breaches VPN Malware 52

SecureWorld News

AUGUST 8, 2022

Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Cyber Security Centre (ACSC) released a joint Cybersecurity Advisory (CSA) providing details on the top malware strains of 2021. The top malware strains in 2021 included remote access Trojans (RATs), banking Trojans, information stealers, and ransomware.

Malware 98

Malware Banking Penetration Testing Healthcare 98

Security Affairs

SEPTEMBER 1, 2024

reward for Belarusian man involved in mass malware distribution U.S. CISA adds Google Chromium V8 bug to its Known Exploited Vulnerabilities catalog Young Consulting data breach impacts 954,177 individuals BlackByte Ransomware group targets recently patched VMware ESXi flaw CVE-2024-37085 US offers $2.5M

Malware 119

Malware Surveillance Firewall Phishing 119

Security Affairs

APRIL 4, 2020

The attack described by Microsoft begun with a phishing message that was opened by an internal employee, the malware infected its systems and made lateral movements infected other systems in the same network. The incident also affected the surveillance camera network of the company along with the finance department.

Antivirus 144

Antivirus Malware Phishing Advertising 144

Security Affairs

NOVEMBER 24, 2024

A cyberattack on gambling giant IGT disrupted portions of its IT systems China-linked APT Gelsemium uses a new Linux backdoor dubbed WolfsBane Microsoft seized 240 sites used by the ONNX phishing service U.S.

Cybercrime 71

Cybercrime Artificial Intelligence Hacking VPN 71

eSecurity Planet

OCTOBER 8, 2024

Companies like Verizon, AT&T, and Lumen Technologies were targeted in this attack, allowing unauthorized access to critical systems used for court-authorized wiretapping — a tool vital for law enforcement surveillance. law enforcement for surveillance purposes. The hackers, identified by U.S. telecom networks.

Surveillance 113

Surveillance Government Phishing Cybersecurity 113

Security Affairs

FEBRUARY 14, 2021

COMB breach: 3.2B COMB breach: 3.2B COMB breach: 3.2B If you want to also receive for free the international press subscribe here. Pierluigi Paganini. SecurityAffairs – hacking, newsletter).

Phishing 111

Phishing Spyware Data breaches Surveillance 111

Security Affairs

SEPTEMBER 11, 2022

The campaigns have been conducted since 2015 and are aimed at conducting information collection and surveillance operations against individuals and organizations of strategic interest to Teheran. ” The surveillance operations conducted by the APT group involved the distribution of Android malware such as VINETHORN and PINEFLOWER. .”

Surveillance 100

Surveillance Social Engineering Phishing Government 100

Security Boulevard

MARCH 3, 2025

Surveillance Tech in the News This section covers surveillance technology and methods in the news. The surveillance tech waiting for workers as they return to the office ArsTechnica RTO continues to pick up steam. In pursuit of "more productivity," some employers are leaning heavily into surveillance tech.

Surveillance 52

Surveillance Data breaches Firmware Encryption 52

Security Affairs

NOVEMBER 1, 2021

Experts uncovered a new threat actor, tracked as Balikbayan Foxes, that is impersonating the Philippine government to spread malware. . Both Remcos and NanoCore are used for information gathering, data exfiltration, surveillance, and control of the victims’ computers. . ” reads the analysis published by the experts.

Malware 111

Malware Government Surveillance Phishing 111

Security Affairs

FEBRUARY 9, 2025

US Justice Department says cybercrime forum allegedly affected 17 million Americans Cybercrime is increasingly complex.

Spyware 60

Spyware Cybercrime Scams Social Engineering 60

Security Affairs

JUNE 9, 2023

Stealth Soldier is surveillance software that allows operators to spy on the victims and exfiltrate collected data. The newest version of the malware (Version 9) was likely employed in February 2023, while the oldest version discovered by the researchers (Version 6) dates back to October 2022. ” Check Point concludes.

Surveillance 98

Surveillance Malware Social Engineering Engineering 98

Security Affairs

SEPTEMBER 3, 2023

Being Used to Phish So Many of Us? Hacks QakBot, Quietly Removes Botnet Infections Under Siege: Rapid7-Observed Exploitation of Cisco ASA SSL VPNs Why is.US

Social Engineering 125

Social Engineering Data breaches Spyware Malware 125

Malwarebytes

APRIL 14, 2021

They may give tip-offs, or send files over, and most commonly, do some work in anti-phishing. For example, a popular past time is filling up phish pages with bogus data. The post FBI shuts down malware on hundreds of Exchange servers, opens Pandora’s box appeared first on Malwarebytes Labs.

Malware 121

Malware Hacking Phishing Passwords 121

SecureWorld News

FEBRUARY 8, 2024

The Super Bowl stadium and its vendors will connect everything from digital ticketing and payments to lighting, scoreboards, and surveillance cameras—exponentially expanding the attack surface. Potential risks span from malware infections to denial-of-service attacks to theft of sensitive data.

Penetration Testing 117

Penetration Testing Surveillance Cyber Risk Malware 117

Security Affairs

APRIL 12, 2020

supports the Secure Boot Fake Cisco ‘Critical Update used in phishing campaign to steal WebEx credentials Hackers accessed staff mailboxes at Italian bank Monte dei Paschi SFO discloses data breach following the hack of 2 of its websites. hacked, data of 600k users available for sale Updated: Italian email provider Email.it

Hacking 102

Hacking Advertising Surveillance Phishing 102

Security Affairs

FEBRUARY 24, 2021

“Amnesty Tech’s Security Lab found technical evidence in phishing emails sent to two prominent Vietnamese human rights defenders, one of whom lives in Germany, and a Vietnamese NGO based in the Philippines, showing that Ocean Lotus is responsible for the attacks between 2018 and November 2020.”

Spyware 124

Spyware Government Surveillance Phishing 124

Security Boulevard

DECEMBER 22, 2021

While well intentioned, you may have inadvertently created a security breach for the recipient or opened your family up to unwanted surveillance. Did you give or receive a toy or new parental control or security app for the holidays? The Internet of security breaches The Internet of Things (IoT) is not just for your smart.

IoT 143

IoT Surveillance Internet Internet 143

Security Affairs

AUGUST 23, 2020

At that time, the researchers tracked the sources IP in Pakistan, the attacks were part of a wider operation that relies on multi vector such as watering hole websites and phishing email campaigns delivering custom RATs dubbed Crimson and Peppy. These RATs are capable of exfiltrate information, take screenshot, and record webcam streams.

Malware 145

Malware Media Advertising Surveillance 145

Malwarebytes

MAY 24, 2022

An unknown Advanced Persistent Threat (APT) group has targeted Russian government entities with at least four separate spear phishing campaigns since late February, 2022. In this campaign the threat actor packaged its custom malware in a tar file called Patch_Log4j.tar.gz , a fake fix for December’s high-profile Log4j vulnerability.

Malware 145

Malware Phishing Government Accountability 145

CyberSecurity Insiders

FEBRUARY 13, 2022

Modified Elephant is a hacking group that offers Remote Access Trojans (RATs) to those interested in surveillance crimes. It has offered tools to many agencies that have the potential to deliver malware, siphon data to conduct phishing crimes via key loggers. Then how to keep such cyber crimes at bay?

Surveillance 94

Surveillance Passwords Malware Hacking 94

Security Affairs

MAY 16, 2019

During the last month, our Threat Intelligence surveillance team spotted increasing evidence of an operation intensification against the Banking sector. The piece of malware under analysis were downloaded from “bullettruth[.com/out[.exe”, Figure 3: Malware Signature by SLON LTD. Figure 4: Malware suspicious entropy level.

Banking 102

Banking Malware Surveillance Retail 102

Hot for Security

APRIL 5, 2021

Internet-connected smart devices, like surveillance cams, smart light bulbs, smart locks and doorbells and baby monitors, are notoriously fraught with vulnerabilities, posing grave security risks. Android malware. This opened up their devices to malware posing as Zoom installers.

Cybercrime 116

Cybercrime Ransomware Cyber threats Malware 116

Security Affairs

SEPTEMBER 3, 2022

Google rolled out emergency fixes to address actively exploited Chrome zero-day Samsung discloses a second data breach this year The Prynt Stealer malware contains a secret backdoor. users China-linked APT40 used ScanBox Framework in a long-running espionage campaign Russian streaming platform Start discloses a data breach impacting 7.5M

Data breaches 97

Data breaches Malware Ransomware Surveillance 97