Threatpost

MAY 1, 2020

Threatpost editors discuss a phishing attack abusing Microsoft Sway, a Microsoft Teams flaw and an Android spyware campaign unearthed this week.

Spyware 86

Spyware Phishing 86

Penetration Testing

APRIL 11, 2024

Apple has sent warnings to a growing number of users, alerting them about highly sophisticated mercenary spyware attacks.

Spyware 109

Spyware Penetration Testing Scams Phishing 109

Adam Levin

NOVEMBER 26, 2019

Using the information and accesses exposed, they could create effective phishing campaigns, or target companies with various forms of malicious software attacks: malware, spyware, ransomware, and more,” the article continued.

B2B 295

B2B Spyware VPN Phishing 295

Security Affairs

SEPTEMBER 18, 2020

Web-phishing targeting various online services almost doubled during the COVID-19 pandemic , it accounted for 46 percent of the total number of fake web pages. Secure web- phishing. In the first six months of 2020, CERT-GIB blocked a total of 9 304 phishing web resources, which is an increase of 9 percent compared to the previous year.

Phishing 135

Phishing Ransomware Spyware Banking 135

Security Affairs

APRIL 9, 2020

Group-IB’s CERT-GIB analyzed hundreds of coronavirus -related phishing emails and discovered top malware strains in COVID-19 campaigns. Group-IB’s Computer Emergency Response Team ( CERT-GIB ) analyzed hundreds of coronavirus-related phishing emails between February 13 and April 1, 2020. Spyware: the most likely COVID-19 payload.

Phishing 142

Phishing Malware Spyware DDOS 142

Security Affairs

NOVEMBER 3, 2024

Chinese threat actors use Quad7 botnet in password-spray attacks FBI arrested former Disney World employee for hacking computer menus and mislabeling allergy info Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide PTZOptics cameras zero-days actively exploited in the wild New LightSpy spyware (..)

Cryptocurrency 110

Cryptocurrency Hacking Phishing Cyber Attacks 110

Security Boulevard

JUNE 22, 2022

It could be via virus malware, phishing, social engineering, fileless malware, etc. So, we’re here to talk about one such common tactic: Spyware. What is spyware and how does it work? The post What is Spyware and How to Protect Against it? The post What is Spyware and How to Protect Against it?

Spyware 97

Spyware Social Engineering Engineering Phishing 97

Security Affairs

JUNE 15, 2020

The Earth Empusa threat group is distributing new Android spyware, dubbed ActionSpy, through watering hole attacks to targets Turkic minority group. Attackers injected the malicious code to deploy the spyware in websites, some of them were actually fake. The server, in turn, may send some commands to the compromised device.

Spyware 106

Spyware Advertising Encryption Phishing 106

Security Affairs

JANUARY 21, 2022

Researchers spotted several spyware campaigns targeting industrial enterprises to steal credentials and conduct financial fraud. Researchers from Kaspersky Lab have uncovered multiple spyware campaigns that target industrial firms to steal email account credentials and carry out fraudulent activities. ” continues the report.

Spyware 98

Spyware Accountability Social Engineering Phishing 98

SecureWorld News

NOVEMBER 2, 2022

government threat report , released this morning and titled "Rise in Mobile Phishing Credential Theft Targeting Public Sector," includes these key findings: Nearly 50% of state and local government employees are running outdated Android operating systems, exposing them to hundreds of device vulnerabilities.

Mobile 117

Mobile Government Phishing Risk 117

Malwarebytes

APRIL 28, 2025

Unfortunately, spyware apps with poor reputations and even weaker security practices are all too common. Some forms of two-factor authentication (2FA) can be phished just as easily as a password. 2FA that relies on a FIDO2 device cant be phished. Watch out for phishing attacks.

Passwords 67

Passwords Phishing Spyware Password Management 67

Threatpost

APRIL 21, 2020

Highly targeted spearphishing emails are being sent to oil and gas companies in hopes of infecting them with the Agent Tesla spyware.

Spyware 100

Spyware Phishing Malware Hacking 100

SecureList

MAY 3, 2021

Banking phishing: new version of an old scheme. Clients of several Dutch banks faced a phishing attack using QR codes. The links in their messages took the victim to a well-designed phishing pages with official emblems, business language and references to relevant laws. Quarterly highlights. Vaccine with cyberthreat.

Phishing 136

Phishing Banking Accountability Computers and Electronics 136

Security Affairs

MAY 18, 2020

Security experts discovered a highly sophisticated Android spyware platform, dubbed Mandrake, that remained undetected for four years. Researchers from Bitdefender discovered a high-sophisticated Android spyware platform dubbed Mandrake, it was involved in highly targeted attacks against specific devices. Pierluigi Paganini.

Spyware 114

Spyware Malware Advertising Banking 114

Security Affairs

DECEMBER 21, 2023

Threat actors are exploiting an old Microsoft Office vulnerability, tracked as CVE-2017-11882 (CVSS score: 7.8), as part of phishing campaigns to spread the Agent Tesla malware. Agent Tesla is a spyware that is used to spy on the victims by collecting keystrokes, system clipboard, screenshots, and credentials from the infected system.

Malware 134

Malware Phishing Spyware Cyber threats 134

Threatpost

AUGUST 20, 2019

A phishing campaign targeting utility grid operators uses a PDF attachment to deliver spyware.

Spyware 77

Spyware Phishing Antivirus Malware 77

Security Boulevard

MARCH 3, 2021

Another reason is that social engineering lures may be expertly crafted by the attacker after they have been monitoring a victim’s activity for some time, resulting in more effective phishing campaigns with serious security implications. Continue reading Trojan Spyware and BEC Attacks at Sucuri Blog.

Spyware 75

Spyware Social Engineering Phishing Engineering 75

Security Affairs

JULY 21, 2021

FormBook is a data-stealing malware that is used in cyber espionage campaigns, like other spyware it is capable of extracting data from HTTP sessions, keystroke logging, stealing clipboard contents. The post XLoader, a $49 spyware that could target both Windows and macOS devices appeared first on Security Affairs. Pierluigi Paganini.

Spyware 114

Spyware Malware Cybercrime Advertising 114

Security Affairs

JULY 18, 2019

The researchers attribute the spyware to the Russia-linked and Gamaredon Group. The attack starts with spear-phishing emails containing weaponized attachments, the malware is distributed via Russian hosting providers. The post Experts spotted a rare Linux Desktop spyware dubbed EvilGnome appeared first on Security Affairs.

Spyware 109

Spyware Malware Advertising Cyber Attacks 109

Security Affairs

DECEMBER 8, 2024

SmokeLoader Attack Targets Companies in Taiwan LogoFAIL Exploited to Deploy Bootkitty, the first UEFI bootkit for Linux Horns&Hooves campaign delivers NetSupport RAT and BurnsRAT DroidBot: Insights from a new Turkish MaaS fraud operation RedLine, A License to Steal: The Rudometov Story & Operation Magnus Unveiling RevC2 and Venom Loader Ultralytics (..)

Malware 70

Malware Spyware Phishing Hacking 70

Tech Republic Security

DECEMBER 12, 2016

Spyware, brute force attacks, dictionary attacks, and phishing can make circumventing passwords easy. The password simply isn't secure anymore. Here are five tools to add an extra layer of security.

Spyware 138

Spyware Authentication Passwords Phishing 138

The Hacker News

OCTOBER 16, 2023

Typically spread via SMS phishing campaigns, attack chains involving the spyware trick potential victims into installing the app by clicking on the embedded link, according to F-Secure. The Android banking trojan known as SpyNote has been dissected to reveal its diverse information-gathering features.

Spyware 143

Spyware Banking Phishing 143

Webroot

FEBRUARY 21, 2025

Phishing scams, ransomware attacks, data breaches, and identity theft are part of a growing list of online dangers that are a daily reality. It combines multiple security capabilities into one easy-to-use package that includes: Antivirus protection Detects and neutralizes viruses, malware , spyware , and ransomware.

Antivirus 74

Antivirus Identity Theft Cyber threats Phishing 74

SecureList

DECEMBER 16, 2021

In June 2021, Kaspersky ICS CERT experts identified malware whose loader has some similarities to the Manuscrypt malware, which is part of the Lazarus APT group’s arsenal. In 2020, the group used Manuscrypt in attacks on defense enterprises in different countries.

Spyware 135

Spyware Energy and Utilities Malware VPN 135

Threatpost

SEPTEMBER 9, 2020

Malware can take over common device functions as well as creates a phishing page to steal Facebook credentials.

Spyware 104

Spyware Phishing Malware Mobile 104

Security Affairs

APRIL 16, 2019

Scranos is a powerful cross-platform rootkit-enabled spyware discovered while investigating malware posing as legitimate software like video players, drivers and even anti-virus products. The post Scranos – A Cross Platform, Rootkit-Enabled Spyware rapidly spreading appeared first on Security Affairs. Pierluigi Paganini.

Spyware 103

Spyware Adware Malware Accountability 103

SecureList

MAY 27, 2024

Malicious activity in numbers Malicious objects used for initial infection Malicious objects that are used for initial infection of computers include dangerous internet resources that are added to denylists, malicious scripts and phishing pages, and malicious documents. This is also reflected in our statistics.

Spyware 128

Spyware Malware Internet Internet 128

Security Affairs

JANUARY 19, 2025

CISA adds BeyondTrust PRA and RS and Qlik Sense flaws to its Known Exploited Vulnerabilities catalog Inexperienced actors developed the FunkSec ransomware using AI tools Credit Card Skimmer campaign targets WordPress via database injection Microsoft took legal action against crooks who developed a tool to abuse its AI-based services Pro-Russia hackers (..)

Spyware 70

Spyware Data breaches DNS Artificial Intelligence 70

Zero Day

MARCH 24, 2022

The malware is being spread through an interesting phishing tactic.

Spyware 101

Spyware Phishing Malware 101

Dark Reading

MARCH 7, 2023

Attackers use phishing emails that appear to come from reputable organizations, dropping the payload using public cloud servers and an old Windows UAC bypass technique.

Spyware 101

Spyware Phishing 101

Security Affairs

NOVEMBER 17, 2024

CISA adds Palo Alto Networks Expedition bugs to its Known Exploited Vulnerabilities catalog Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices China-linked threat actors compromised multiple telecos and spied on a limited number of U.S.

Cryptocurrency 112

Cryptocurrency Malware Hacking Ransomware 112

SecureList

SEPTEMBER 8, 2022

Southern Europe leads the ranking of regions by percentage of ICS computers on which malicious email attachments and phishing links were blocked. Regions ranked by percentage of ICS computers on which malicious email attachments and phishing links were blocked, H1 2022. Spyware was blocked on 6% of ICS computers.

Spyware 125

Spyware Cryptocurrency Ransomware Phishing 125

Security Affairs

MARCH 10, 2024

Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp Cybercrime BlackCat Ransomware Affiliate TTPs American Express credit cards EXPOSED in third-party vendor data breach – account numbers and names among details accessed in hack LockBit 3.0’S

Spyware 128

Spyware Data breaches Hacking Ransomware 128

Security Affairs

FEBRUARY 9, 2025

Texas is the first state to ban DeepSeek on government devices Law enforcement seized the domains of HeartSender cybercrime marketplaces WhatsApp disrupted a hacking campaign targeting journalists with Paragon spyware Ransomware attack hit Indian multinational Tata Technologies International Press Newsletter Cybercrime FBI, Dutch Police Disrupt Manipulaters (..)

Spyware 61

Spyware Cybercrime Scams Social Engineering 61

Security Affairs

MARCH 16, 2025

CISA adds Apple products and Juniper Junos OS flaws to its Known Exploited Vulnerabilities catalog GitLab addressed critical auth bypass flaws in CE and EE North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy Experts warn of a coordinated surge in the exploitation attempts of SSRF vulnerabilities Meta warns of actively exploited (..)

Spyware 74

Spyware Cybercrime Ransomware IoT 74

Security Affairs

FEBRUARY 15, 2025

Sorry, It’s Windows Malware Malware Mobile Indian Cyber Heist: FatBoyPanel And His Massive Data Breach Google Tag Manager Skimmer Steals Credit Card Info From Magento Site From South America to Southeast Asia: The Fragile Web of REF7707 Deep Learning-Driven Malware Classification with API Call Sequence Analysis and Concept Drift Handling Hacking (..)

Spyware 70

Spyware Firewall Artificial Intelligence Malware 70

Bleeping Computer

FEBRUARY 22, 2023

Threat actors are actively exploiting the popularity of OpenAI's ChatGPT AI tool to distribute Windows malware, infect Android devices with spyware, or direct unsuspecting victims to phishing pages. [.]

Malware 105

Malware Spyware Phishing 105