197 matches found
Experts Uncover Spyware Attacks Against Catalan Politicians and Activists
A previously unknown zero-click exploit in Apple's iMessage was used to install mercenary spyware from NSO Group and Candiru against at least 65 individuals as part of a "multi-year clandestine operation." "Victims included Members of the European Parliament, Catalan Presidents, legislators,...
North Korea's Lazarus Group Was Behind $540 Million Ronin Theft
Plus: Spyware maker NSO Group deemed “valueless,” T-Mobile fails to buy its stolen data, and malware spreads on Telegram...
E.U. Officials Reportedly Targeted with Israeli Pegasus Spyware
Senior officials in the European Union were allegedly targeted with NSO Group's infamous Pegasus surveillance tool, according to a new report from Reuters. At least five individuals, including European Justice Commissioner Didier Reynders, are said to have been singled out in total, the news agen...
Apple Patches Actively Exploited WebKit Zero Day
Apple has patched yet another zero-day vulnerability, this time in its WebKit browser engine, that threat actors already are actively exploiting to compromise iPhones, iPads and MacOS devices. The zero-day, tracked as CVE-2022-22620, is a Use-After-Free issue, which is related to incorrect use of...
QuaDream, 2nd Israeli Spyware Firm, Weaponizes iPhone Bug
ForcedEntry – the exploit of a zero-click iMessage zero day that circumvented Apple’s then-brand-new BlastDoor security feature starting a year ago – was picked apart not just by NSO Group with its Pegasus spyware but also by a newly uncovered, smaller smartphone-hacking toolmaker named QuaDream...
Another Israeli Firm, QuaDream, Caught Weaponizing iPhone Bug for Spyware
A now-patched security vulnerability in Apple iOS that was previously found to be exploited by Israeli company NSO Group was also separately weaponized by a different surveillance vendor named QuaDream to hack into the company's devices. The development was reported by Reuters, citing unnamed...
NSO Group Pegasus Spyware Aims at Finnish Diplomats
The controversial Pegasus spyware, developed by NSO Group, has been found on the devices of Finland’s diplomatic corps serving outside the country as part of a wide-ranging espionage campaign, according to Finnish officials. They also said the infections were of the zero-click variety. “The highl...
A DDoS Attack Wiped Out Andorra's Internet
Plus: Securing US water systems, the FBI's NSO Group dealings, and more of the week's top security news...
NSO Group Spyware Targeted Dozens of Reporters in El Salvador
The newly disclosed campaign shows how little the company has done to curb abuses of its powerful surveillance tools...
More on NSO Group and Cytrox: Two Cyberweapons Arms Manufacturers
Citizen Lab published another report on the spyware used against two Egyptian nationals. One was hacked by NSO Groups Pegasus spyware. The other was hacked both by Pegasus and by the spyware from another cyberweapons arms manufacturer: Cytrox. We havent heard a lot about Cytrox and its Predator...
Meta Ousts 7 Surveillance-for-Hire Operations From Its Platforms
While NSO Group gets most of the attention, the takedowns underscore how insidious the industry has become...
Google Warns That NSO Hacking Is On Par With Elite Spy Groups
ForcedEntry is “one of the most technically sophisticated exploits” Project Zero security researchers have ever seen...
A deep dive into an NSO zero-click iMessage exploit: Remote Code Execution
Posted by Ian Beer & Samuel Groß of Google Project Zero We want to thank Citizen Lab for sharing a sample of the FORCEDENTRY exploit with us, and Apple’s Security Engineering and Architecture SEAR group for collaborating with us on the technical analysis. The editorial opinions reflected below ar...
A week in security (Dec 6 – 12)
Last week on Malwarebytes Labs: Log4j zero-day “Log4Shell” arrives just in time to ruin your weekend Click “OK” to defeat MFA Fake job interviews plague major game developers like Riot Games and Rockstar Has your WordPress site been backdoored by a skimmer? What is a search engine and why does...
NSO Group’s Pegasus Spyware Used Against US State Department Officials
NSO Groups descent into Internet pariah status continues. Its Pegasus spyware was used against nine US State Department employees. We dont know which NSO Group customer trained the spyware on the US. But the company does: NSO Group said in a statement on Thursday that it did not have any indicati...
iPhones of 9 State Dept officials hijacked by NSO Pegasus spyware
By Deeba Ahmed It has been revealed that NSO Group's Pegasus malware was used to spy on U.S. government officials over the past few months. This is a post from HackRead.com Read the original post: iPhones of 9 State Dept officials hijacked by NSO Pegasus spyware...
Pegasus Spyware Infects U.S. State Department iPhones
An unknown assailant planted NSO Group’s Pegasus spyware on the iPhones of at least nine U.S. State Department employees, according to four of Reuters’ sources who are familiar with the matter. Two of the sources said that the attacks took place over the last several months, hitting targets eithe...
NSO Group spyware found on iPhones of US State Department employees
iPhones of at least nine US State Department employees are said to have been hacked using the Pegasus spyware developed by the Israeli technology company, NSO Group. Pegasus is a proprietary and sophisticated spyware capable of the remote surveillance of smartphones. The employees targeted by an...
Pegasus Spyware Reportedly Hacked iPhones of U.S. State Department and Diplomats
Apple reportedly notified several U.S. Embassy and State Department employees that their iPhones may have been targeted by an unknown assailant using state-sponsored spyware created by the controversial Israeli company NSO Group, according to multiple reports from Reuters and The Washington Post...
NSO Group Spyware Hits at Least 9 US State Department Phones
The incident lays bare how hollow the surveillance company’s reassurances about the limits of its hacking tools have always been...