December 11, 2024 at 04:06PM A new Android spyware, EagleMsgSpy, developed by Wuhan Chinasoft Token, facilitates surveillance by Chinese law enforcement. Operational since 2017, it targets various data types, including messages and location. Evidence ties it to public security bureaus, suggesting systematic government use. An iOS version is suspected but unverified. ### Meeting Takeaways: EagleMsgSpy … Read more
December 6, 2024 at 11:24AM A Russian programmer’s Android device was secretly infected with spyware by the FSB after his detention for allegedly donating to Ukraine. The spyware, disguised as a legitimate app, enables extensive data collection. This incident highlights the risks associated with security services gaining custody of personal devices. ### Meeting Takeaways – … Read more
December 5, 2024 at 11:12AM Researchers at Trend Micro have identified a cyber-threat operation, Earth Minotaur, targeting the Tibetan and Uyghur communities using the Moonshine exploit kit. This operation delivers the DarkNimbus spyware to Android and Windows devices, stealing personal data and monitoring activities. Users are advised to exercise caution and update applications regularly. **Meeting … Read more
November 18, 2024 at 02:03AM Legal documents reveal that NSO Group exploited WhatsApp vulnerabilities to install Pegasus spyware, even after facing lawsuits from Meta. New vectors, like “Erised,” were developed to bypass defenses. NSO controls the spyware deployment, contradicting claims of client operation responsibility, with Apple enhancing security features against such breaches. ### Meeting Takeaways: … Read more
August 14, 2024 at 02:52PM Russia’s FSB cyberspies and a new group conducted a phishing campaign targeting US and European entities, including opposition figures, media outlets, and defense-industrial targets. Named “River of Phish,” the campaign aimed to steal user credentials and influence Western elections. The attackers impersonated colleagues and used encrypted PDFs to trick victims … Read more
August 6, 2024 at 06:06AM The LianSpy, an Android post-compromise spyware, has targeted users in Russia since 2021. Discovered in March 2024, it uses Yandex Cloud for command-and-control communications, enabling it to capture screencasts, exfiltrate user data, and evade detection. Its stealth tactics include bypassing privacy indicators and leveraging legitimate services for communication and storage. … Read more
July 5, 2024 at 07:52AM This week’s cybersecurity news roundup includes an Australian man charged for creating ‘evil twin’ Wi-Fi networks, dozens of vulnerabilities found in Sharp and Toshiba printers, a data breach at the Egyptian Health Department, and hacking of smart grills. Also covered are a Pakistan-linked Android spyware targeting gamers and weapons enthusiasts, … Read more
May 24, 2024 at 08:04AM SecurityWeek’s cybersecurity news roundup compiles important stories often overlooked, providing a valuable overview of the cybersecurity landscape. This week’s stories cover spyware found on US hotel check-in systems, cellular network flaws, undersea cable vulnerability, cybersecurity funding, Incognito Market owner’s arrest, NIST’s 2023 report, Iranian group’s attacks, Energy Department funding, AWS … Read more