Lucene search
K

13 matches found

The Hacker News
The Hacker News
added 2023/08/02 7:31 a.m.35 views

Iranian Company Cloudzy Accused of Aiding Cybercriminals and Nation-State Hackers

Services offered by an obscure Iranian company known as Cloudzy are being leveraged by multiple threat actors, including cybercrime groups and nation-state crews. "Although Cloudzy is incorporated in the United States, it almost certainly operates out of Tehran, Iran – in possible violation of U....

7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/04/17 4:32 p.m.21 views

Israeli Spyware Vendor QuaDream to Shut Down Following Citizen Lab and Microsoft Expose

Israeli spyware vendor QuaDream is allegedly shutting down its operations in the coming days, less than a week after its hacking toolset was exposed by Citizen Lab and Microsoft. The development was reported by the Israeli business newspaper Calcalist, citing unnamed sources, adding the company...

6.3AI score
Exploits0
hivepro
hivepro
added 2022/07/28 6:6 a.m.62 views

Spyware Group Candiru exploits Chrome Zero-Day to Target Middle East

Threat Level Attack Report For a detailed advisory, download the pdf file here Summary CandiruSaito Tech spyware used the recently fixed CVE-2022-2294 Chrome zero-day in assaults on journalists, with a substantial portion of the attacks taking place in Lebanon. This recently patched vulnerability...

1.7AI score0.70461EPSS
Exploits0
HackRead
HackRead
added 2022/07/22 3:35 p.m.23 views

Israeli Spyware Vendor Uses Chrome 0day to Target Journalists

By Deeba Ahmed The spyware vendor Candiru used the Chrome zero-day in March 2022 to target journalists and other unsuspected victims… This is a post from HackRead.com Read the original post: Israeli Spyware Vendor Uses Chrome 0day to Target Journalists...

1.6AI score
Exploits0
The Hacker News
The Hacker News
added 2022/07/22 6:40 a.m.69 views

Candiru Spyware Caught Exploiting Google Chrome Zero-Day to Target Journalists

The actively exploited but now-fixed Google Chrome zero-day flaw that came to light at the start of this month was weaponized by an Israeli spyware company and used in attacks targeting journalists in the Middle East. Czech cybersecurity firm Avast linked the exploitation to Candiru aka Saito Tec...

0.70461EPSS
Exploits0
ThreatPost
ThreatPost
added 2022/04/19 4:4 p.m.193 views

‘CatalanGate’ Spyware Infections Tied to NSO Group

An unknown zero-click exploit in Apple’s iMessage was used by Israeli-based NSO Group to plant either Pegasus or Candiru malware on iPhones owned by politicians, journalists and activists. Citizen Lab, in collaboration with Catalan-based researchers, released the finding in a report on Monday tha...

9.8CVSS8.7AI score0.39166EPSS
Exploits0References9
The Hacker News
The Hacker News
added 2022/04/19 10:26 a.m.63 views

Experts Uncover Spyware Attacks Against Catalan Politicians and Activists

A previously unknown zero-click exploit in Apple's iMessage was used to install mercenary spyware from NSO Group and Candiru against at least 65 individuals as part of a "multi-year clandestine operation." "Victims included Members of the European Parliament, Catalan Presidents, legislators,...

9.8CVSS0.8AI score0.39166EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/11/17 11:10 a.m.49 views

Israel's Candiru Spyware Found Linked to Watering Hole Attacks in U.K and Middle East

Israeli spyware vendor Candiru, which was added to an economic blocklist by the U.S. government this month, is said to have reportedly waged "watering hole" attacks against high-profile entities in the U.K. and the Middle East, new findings reveal. "The victimized websites belong to media outlets...

7.5AI score
Exploits0
ThreatPost
ThreatPost
added 2021/11/04 6:3 p.m.24 views

US Bans Trade With Pegasus Spyware Maker

NSO Group – the Israeli-based maker of the notorious, military-grade Pegasus spyware that’s been linked to cyberattacks against dissidents, activists and NGOs and murders of journalists at the hands of repressive regimes – has been blacklisted by the United States. NSO Group is one of four spywar...

7AI score
Exploits0References18
The Hacker News
The Hacker News
added 2021/11/04 6:58 a.m.11 views

US Sanctions Pegasus-maker NSO Group and 3 Others For Selling Spyware

The U.S. Commerce Department on Wednesday added four companies, including Israel-based spyware companies NSO Group and Candiru, to a list of entities engaging in "malicious cyber activities." The agency said the two companies were added to the list based on evidence that "these entities developed...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/07/16 11:13 a.m.139 views

Israeli Firm Helped Governments Target Journalists, Activists with 0-Days and Spyware

Two of the zero-day Windows flaws rectified by Microsoft as part of its Patch Tuesday update earlier this week were weaponized by an Israel-based company called Candiru in a series of "precision attacks" to hack more than 100 journalists, academics, activists, and political dissidents globally. T...

8.8CVSS1AI score0.64701EPSS
Exploits1
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/07/15 3:21 p.m.92 views

Protecting customers from a private-sector offensive actor using 0-day exploits and DevilsTongue malware

The Microsoft Threat Intelligence Center MSTIC alongside the Microsoft Security Response Center MSRC has uncovered a private-sector offensive actor, or PSOA, that we are calling SOURGUM in possession of now-patched, Windows 0-day exploits CVE-2021-31979 and CVE-2021-33771. Private-sector offensiv...

7.2CVSS0.4AI score0.06204EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2021/07/14 12:0 a.m.136 views

CVE-2021-33771

Windows Kernel Elevation of Privilege Vulnerability Recent assessments: gwillcox-r7 at July 14, 2021 5:35pm UTC reported: Update : Looks like this was used by the exploit brokerage company Candiru along with CVE-2021-31979 to deliver spyware to targeted users, which according to Microsoft’s blog...

7.8CVSS8.9AI score0.06204EPSS
In wildExploits0References2
Rows per page
Query Builder