#SpywareThreats

NSO Group Exploited WhatsApp to Install Pegasus Spyware Even After Meta’s Lawsuit

November 18, 2024 by Xynik

November 18, 2024 at 02:03AM Legal documents reveal that NSO Group exploited WhatsApp vulnerabilities to install Pegasus spyware, even after facing lawsuits from Meta. New vectors, like “Erised,” were developed to bypass defenses. NSO controls the spyware deployment, contradicting claims of client operation responsibility, with Apple enhancing security features against such breaches. ### Meeting Takeaways: … Read more

Russian cyber snoops linked to massive credential-stealing campaign

August 14, 2024 by Xynik

August 14, 2024 at 02:52PM Russia’s FSB cyberspies and a new group conducted a phishing campaign targeting US and European entities, including opposition figures, media outlets, and defense-industrial targets. Named “River of Phish,” the campaign aimed to steal user credentials and influence Western elections. The attackers impersonated colleagues and used encrypted PDFs to trick victims … Read more

New Android Spyware LianSpy Evades Detection Using Yandex Cloud

August 6, 2024 by Xynik

August 6, 2024 at 06:06AM The LianSpy, an Android post-compromise spyware, has targeted users in Russia since 2021. Discovered in March 2024, it uses Yandex Cloud for command-and-control communications, enabling it to capture screencasts, exfiltrate user data, and evade detection. Its stealth tactics include bypassing privacy indicators and leveraging legitimate services for communication and storage. … Read more

In Other News: Microsoft Details ICS Flaws, Smart Grill Hacking, Predator Spyware Activity

July 5, 2024 by Xynik

July 5, 2024 at 07:52AM This week’s cybersecurity news roundup includes an Australian man charged for creating ‘evil twin’ Wi-Fi networks, dozens of vulnerabilities found in Sharp and Toshiba printers, a data breach at the Egyptian Health Department, and hacking of smart grills. Also covered are a Pakistan-linked Android spyware targeting gamers and weapons enthusiasts, … Read more

In Other News: China’s Undersea Spying, Hotel Spyware, Iran’s Disruptive Attacks

May 24, 2024 by Xynik

May 24, 2024 at 08:04AM SecurityWeek’s cybersecurity news roundup compiles important stories often overlooked, providing a valuable overview of the cybersecurity landscape. This week’s stories cover spyware found on US hotel check-in systems, cellular network flaws, undersea cable vulnerability, cybersecurity funding, Incognito Market owner’s arrest, NIST’s 2023 report, Iranian group’s attacks, Energy Department funding, AWS … Read more