Russian cyberspies target Android users with new spyware

December 13, 2024 at 12:49PM Russian cyberspies Gamaredon are using two Android spyware families, BoneSpy and PlainGnome, to target Russian-speaking individuals in former Soviet states. BoneSpy has been active since 2021, while PlainGnome emerged in 2024. Both malware types collect extensive data from mobile devices, highlighting Gamaredon’s evolved tactics in digital surveillance. **Meeting Takeaways:** 1. … Read more

Apple Drops Spyware Case Against NSO Group, Citing Risk of Threat Intelligence Exposure

September 16, 2024 at 04:09AM Apple has filed a motion to dismiss its lawsuit against NSO Group, citing a shifting risk landscape that could expose critical “threat intelligence” information. The lawsuit, originally filed in 2021, aimed to hold NSO Group accountable for illegally targeting users with its Pegasus surveillance tool. Apple now seeks voluntary dismissal … Read more

Thousands Download New Mandrake Android Spyware Version From Google Play

July 30, 2024 at 06:12AM In 2022, a new version of the Mandrake Android spyware went undetected on Google Play for two years, garnering 32,000+ downloads. The advanced spyware grants attackers full control over infected devices, enabling theft of credentials, files, and money, as well as screen recording and blackmail. Kaspersky warns that the spyware’s … Read more

Android spyware ‘Mandrake’ hidden in apps on Google Play since 2022

July 29, 2024 at 06:29PM A new variant of the Android spyware ‘Mandrake’ was discovered in five Google Play apps downloaded 32,000 times. Kaspersky found the updated version with enhanced obfuscation and evasion, entering through these apps. The spyware operates stealthily, prompting users to install further malicious APKs. Android users are urged to be cautious … Read more

Apple Warns iPhone Users in 98 Countries of More Spyware Attacks

July 11, 2024 at 03:58PM Apple issued alerts to iPhone users in 98 countries regarding potential mercenary spyware attacks, without disclosing attackers’ identities or specific target countries. This is the second warning since April. Recipients were urged to take the warning seriously, with Apple highlighting the sensitive nature of their threat identification methods. From the … Read more

Microsoft MSHTML Flaw Exploited to Deliver MerkSpy Spyware Tool

July 3, 2024 at 06:05AM Unknown threat actors exploited a patched Microsoft MSHTML security flaw to distribute the surveillance tool MerkSpy, targeting users in Canada, India, Poland, and the U.S. The attack used a Microsoft Word document to trigger the exploitation, enabling the download and execution of malicious payloads to collect sensitive information and establish … Read more

Apple Warns Users in 150 Countries of Mercenary Spyware Attacks

April 11, 2024 at 02:30PM Apple updated its spyware threat notification system to aid users targeted by mercenary spyware attacks, having alerted individuals in over 150 countries. The attacks typically target high-profile individuals such as journalists, activists, and politicians. Apple detects and notifies users of spyware within two days, attributing the threat to the NSO … Read more

Trail of Bits Spinout iVerify Tackles Mercenary Spyware Threat

December 6, 2023 at 10:48AM iVerify, emerging from Trail of Bits as a seed-stage startup, introduces a platform targeting iOS and Android zero-day threats, focusing on combating mercenary spyware. Source: SecurityWeek. Takeaways from the meeting: 1. Company Profile: iVerify is a seed-stage startup. 2. Origin: The company has been spun out of Trail of Bits. … Read more

Warning for iPhone Users: Experts Warn of Sneaky Fake Lockdown Mode Attack

December 5, 2023 at 10:07AM Malicious actors can deceive users into believing their iPhone is in Lockdown Mode when it’s not, allowing covert attacks. Jamf Threat Labs exposed a method where a compromised device can appear secure, yet malware persists and functions despite the security feature. Apple’s iOS 17 improvements may mitigate such issues. Takeaways … Read more