June 7, 2024 at 12:06PM Cybersecurity researchers have discovered that the LightSpy spyware targeting Apple iOS users is actually an undocumented macOS variant, capable of infecting various platforms and devices. The macOS version has been active since January 2024, with capabilities to harvest various types of information and intercept communications. The ongoing development sheds light … Read more
May 30, 2024 at 07:15AM The LightSpy surveillance framework, previously known for targeting Android and iOS, has now been found infiltrating macOS. It steals a wide range of data such as files, screenshots, location info, voice recordings, and payment details. The attackers use WebKit flaws to execute code within Safari and compromise macOS. LightSpy on … Read more
May 24, 2024 at 06:35PM The pcTattletale spyware website was hacked, and databases and source code data were leaked, exposing a serious security flaw. Despite attempts to contact the developers, the vulnerability remains unresolved. A security researcher discovered the flaw and exposed it, prompting a hacker to deface the website and leak data. Meanwhile, the … Read more
May 23, 2024 at 04:22PM pcTattletale spyware infiltrated Wyndham hotels, capturing sensitive guest and customer details through a security bug, making the screenshots available online. The app, which can run undetected on Android and Windows devices, allows remote viewing and screenshot downloading. Despite attempts to contact the company, no response was received. Users should run … Read more
May 23, 2024 at 01:51AM CloudSEK has warned of scammers selling fake code masquerading as NSO Group’s Pegasus spyware. The firm alleges that threat actors are distributing their own tools under Pegasus’s name to profit from its infamy. CloudSEK researchers discovered fake spyware offered for sale on various platforms and noted a shift in Apple’s … Read more
May 6, 2024 at 04:39AM Cybersecurity researchers have discovered a new information stealer, Cuckoo by Kandji, targeting Apple macOS systems. It is capable of running on both Intel- and Arm-based Macs and establishes persistence by utilizing a LaunchAgent. The malware gathers extensive information from the system and tricks users into entering their passwords. It also … Read more
April 26, 2024 at 08:25AM SecurityWeek’s cybersecurity news roundup provides concise coverage of significant stories. This week, notable developments include a Chinese government-linked hack of Volkswagen, German police shutting down a DDoS attack service, and the NSA’s updates to the Commercial National Security Algorithm Suite. Other stories cover critical findings in Microsoft products, cybersecurity executive … Read more
April 23, 2024 at 03:39AM The U.S. Department of State plans to impose visa restrictions on 13 individuals linked to commercial spyware activities targeting journalists and human rights defenders. The move aims to counter the misuse and proliferation of spyware, including recent sanctions on the Intellexa Consortium. Additionally, Kaspersky reported an increase in stalkerware victims, … Read more
April 15, 2024 at 05:15AM Cybersecurity researchers discovered a new cyber espionage campaign named “F_Warehouse” targeting South Asian users with an Apple iOS spyware implant, LightSpy. The malware-steals sensitive data and communicates with a server pointing to Chinese involvement, possibly state-sponsored. Apple issued threat notifications to users in 92 countries, including India. BlackBerry warns of … Read more
April 10, 2024 at 10:34AM An Android malware campaign named eXotic Visit is targeting users in South Asia, particularly in India and Pakistan, through fake apps distributed on dedicated websites and Google Play Store. The campaign uses the XploitSPY RAT to gather sensitive data, and its purpose is espionage targeting victims in the region. The … Read more