Tag: spyware
-
Whatsapp plugs bug allowing RCE with spoofed filenames
Whatsapp makes for a popular attack vector: Whatsapp has been frequently targeted in the past for its popularity as an encrypted chatting platform. With over 10 billion downloads on Google Play Store alone, the platform makes for a lucrative target for threat actors.A similar security oversight was reported in July 2024 to be affecting the…
-
NCSC issues warning over Chinese Moonshine and BadBazaar spyware
Two spyware variants are being used to target the mobile devices of persons of interest to Chinese intelligence, including individuals in the Taiwanese, Tibetan and Uyghur communities First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366622023/NCSC-issues-warning-over-Chinese-Moonshine-and-BadBazaar-spyware
-
As spyware market continues to expand, diplomatic Pall Mall Process hits a pivot point
The Pall Mall Process, a diplomatic initiative designed to reform the commercial spyware and hacking market, has added more nations as it confronts an industry that is more complex than ever. First seen on therecord.media Jump to article: therecord.media/pall-mall-process-commercial-spyware-hacking-paris-diplomacy
-
NCSC shares technical details of spyware targeting Uyghur, Tibetan and Taiwanese groups
The U.K.’s National Cyber Security Centre and international cybersecurity and intelligence agencies on Wednesday said hackers are deploying two forms of previously identified spyware to snoop on Uyghur, Tibetan and Taiwanese individuals and civil society organizations. First seen on therecord.media Jump to article: therecord.media/ncsc-shares-details-on-spyware-targeting-uyghur-tiben-taiwanese-groups
-
21 Countries Sign Onto Voluntary Pact to Stem the Proliferation of Spyware
Twenty-one countries signed onto the Pall Mall Process, an effort a year in the making that was created to develop a framework nations could adopt to address the proliferation and malicious use of spyware by governments that want it to track human rights workers, activists, journalists, and other such targets. First seen on securityboulevard.com Jump…
-
Voluntary ‘Pall Mall Process’ seeks to curb spyware abuses
Tags: spywareThe 21 signatories support a number of steps, such as banning vendors who behave illegally, in a document agreed to last week in Paris. First seen on cyberscoop.com Jump to article: cyberscoop.com/voluntary-pall-mall-process-seeks-to-curb-spyware-abuses/
-
Everest Ransomware Gang’s Leak Site Hacked and Defaced
TechCrunch has uncovered a concerning development in consumer-grade spyware: a stealthy Android monitoring app that employs password-protected uninstallation to prevent removal. This app, which abuses built-in Android features like overlay permissions and device admin access, exemplifies the escalating technical sophistication of stalkerware tools designed for covert surveillance. While rebooting into >>safe mode
-
Maryland pharmacist used keyloggers to spy on coworkers for a decade, victim alleges
A Maryland pharmacist installed spyware on hundreds of computers at a major teaching hospital and recorded videos of staff over the course of a decade, a class-action lawsuit alleges. First seen on therecord.media Jump to article: therecord.media/maryland-pharmacist-keylogger-spying-lawsuit
-
New Android Spyware Tricks Users by Demanding Passwords for Uninstallation
A newly identified Android spyware app is elevating its tactics to remain hidden and unremovable by leveraging a password prompt for uninstallation. This unsettling feature effectively blocks users from removing the app unless the correct password”, set by the person who installed the spyware”, is entered. How the Spyware Works The spyware, which TechCrunch decided…
-
Das gehört in Ihr Security-Toolset
Tags: access, ai, antivirus, authentication, backup, breach, business, cloud, compliance, control, cyberattack, cybersecurity, data, data-breach, defense, detection, edr, firewall, gartner, governance, iam, identity, incident response, intelligence, iot, malware, mfa, ml, mobile, network, password, ransomware, risk, saas, service, software, spyware, threat, tool, update, vulnerability, vulnerability-managementLesen Sie, welche Werkzeuge essenziell sind, um Unternehmen gegen Cybergefahren abzusichern.Sicherheitsentscheider sind mit einer sich kontinuierlich verändernden Bedrohungslandschaft, einem zunehmend strengeren, regulatorischen Umfeld und immer komplexeren IT-Infrastrukturen konfrontiert. Auch deshalb wird die Qualität ihrer Sicherheits-Toolsets immer wichtiger.Das Problem ist nur, dass die Bandbreite der heute verfügbaren Cybersecurity-Lösungen überwältigend ist. Für zusätzliche Verwirrung sorgen dabei nicht…
-
Research links Paragon spyware to new government clients
First seen on scworld.com Jump to article: www.scworld.com/brief/research-links-paragon-spyware-to-new-government-clients
-
Two Serbian journalists reportedly targeted with Pegasus spyware
Two investigative journalists in Serbia were targeted with advanced commercial spyware last month, Amnesty International said Thursday. First seen on therecord.media Jump to article: therecord.media/two-serbian-journalists-targeted-with-pegasus-spyware
-
Report on Paragon Spyware
Citizen Lab has a new report on Paragon’s spyware: Key Findings: Introducing Paragon Solutions. Paragon Solutions was founded in Israel in 2019 and sells spyware called Graphite. The company differentiates itself by claiming it has safeguards to prevent the kinds of spyware abuses that NSO Group and other vendors are notorious for. Infrastructure Analysis of…
-
Nation-State ‘Paragon’ Spyware Infections Target Civil Society
Law enforcement entities in democratic states have been deploying top-of-the-line messaging app spyware against journalists and aid workers. First seen on darkreading.com Jump to article: www.darkreading.com/application-security/nation-state-paragon-spyware-infections
-
Breach Roundup: A WhatsApp Flaw Ushered in Spyware
Also: France Temporarily Lifts Pavel Durov’s Travel Ban Amid Telegram Probe. This week, Paragon Solutions spread through WhatsApp, France suspended Pavel Durov’s travel ban, Vapor malware hit 60M Android users, state-backed hackers exploit a Windows flaw, Western Alliance Bank exposed customers data, Apple fixed a passwords bug, and a sperm bank exposed customer information. First…
-
Israeli Spyware Graphite Targeted WhatsApp with 0-Click Exploit
Citizen Lab’s investigation reveals sophisticated spyware attacks exploiting WhatsApp vulnerabilities, implicating Paragon Solutions. Learn how their research exposed these threats and the implications for digital privacy. First seen on hackread.com Jump to article: hackread.com/israeli-spyware-graphite-hit-whatsapp-0-click-exploit/
-
Six Governments Likely Use Israeli Paragon Spyware to Hack IM Apps and Harvest Data
The governments of Australia, Canada, Cyprus, Denmark, Israel, and Singapore are likely customers of spyware developed by Israeli company Paragon Solutions, according to a new report from The Citizen Lab.Paragon, founded in 2019 by Ehud Barak and Ehud Schneorson, is the maker of a surveillance tool called Graphite that’s capable of harvesting sensitive data from…
-
Paragon Spyware Attacks Exploited WhatsApp Zero-Day
Attacks involving Paragon’s Graphite spyware involved a WhatsApp zero-day that could be exploited without any user interaction. The post Paragon Spyware Attacks Exploited WhatsApp Zero-Day appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/paragon-spyware-attacks-exploited-whatsapp-zero-day/
-
SpyX Data Breach Exposes Personal Information of Nearly 2 Million Users
SpyX, a company known for developing spyware, has experienced a data breach that compromised the personal information of nearly 2 million users. As per a report posted by Have I been Pwned, the breach, which occurred on June 24, 2024, exposed a wide array of sensitive data, including email addresses, IP addresses, device information, geographic…
-
WhatsApp fixed zero-day flaw used to deploy Paragon Graphite spyware
WhatsApp fixed a zero-click, zero-day vulnerability used to install Paragon’s Graphite spyware on the devices of targeted individuals. WhatsApp has addressed a zero-click, zero-day vulnerability exploited to install Paragon’s Graphite spyware on the devices of targeted individuals. WhatsApp blocked a spyware campaign by Paragon targeting journalists and civil society members after reports of the Citizen…
-
Data breach at stalkerware SpyX affects close to 2 million, including thousands of Apple users
Another consumer-grade spyware operation was hacked in June 2024, which exposed thousands of Apple Account credentials. First seen on techcrunch.com Jump to article: techcrunch.com/2025/03/19/data-breach-at-stalkerware-spyx-affects-close-to-2-million-including-thousands-of-apple-users/
-
Chinese Group Spreads Android Spyware via Trojan Signal, Telegram Apps
Thousands of devices have become infected with BadBazaar, malware previously used to spy on Uyghur and Turkic ethnic minorities in China. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/china-group-spreads-android-spyware-via-trojan-signal-telegram-apps
-
Amazon is still hosting spyware victims’ data weeks after breach alert
Amazon won’t say if it will stop hosting data from three phone surveillance operations that spilled private data on millions of people. First seen on techcrunch.com Jump to article: techcrunch.com/2025/03/13/amazon-is-still-hosting-stalkerware-victims-data-weeks-after-breach-alert/
-
Android spyware ‘KoSpy’ spread by suspected North Korean APT
First seen on scworld.com Jump to article: www.scworld.com/news/android-spyware-kospy-spread-by-suspected-north-korean-apt