Lucene search
K

11058 matches found

The Hacker News
The Hacker News
added 2026/01/27 4:54 p.m.12 views

WhatsApp Rolls Out Lockdown-Style Security Mode to Protect Targeted Users From Spyware

Meta on Tuesday announced it's adding Strict Account Settings on WhatsApp to secure certain users against advanced cyber attacks because of who they are and what they do. The feature, similar to Lockdown Mode in Apple iOS and Advanced Protection in Android, aims to protect individuals, such as...

6.2AI score
Exploits0
Schneier on Security
Schneier on Security
added 2026/01/26 12:4 p.m.6 views

Ireland Proposes Giving Police New Digital Surveillance Powers

This is coming: The Irish government is planning to bolster its police's ability to intercept communications, including encrypted messages, and provide a legal basis for spyware use...

5.9AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/26 12:0 a.m.5 views

PT-2026-4852

Name of the Vulnerable Software and Affected Versions Linux kernel versions 5.10 through 6.19 Description An out-of-bounds read exists in the Linux kernel's H.323 connection tracking parser within the nf conntrack h323 module. The issue occurs in the decode int function during the CONS case...

8.2CVSS5.7AI score0.00452EPSS
Exploits0
Malwarebytes
Malwarebytes
added 2026/01/09 3:41 p.m.9 views

pcTattletale founder pleads guilty as US cracks down on stalkerware

Reportedly, pcTattletale founder Bryan Fleming has pleaded guilty in US federal court to computer hacking, unlawfully selling and advertising spyware, and conspiracy. This is good news not just because we despise stalkerware like pcTattletale, but because it is only the second US federal...

6.6AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 9:55 a.m.5 views

CVE-2020-12122

In Max Secure Max Spyware Detector 1.0.0.044, the driver file MaxProc64.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x2200019. This also extends to the various other products from Max Secure...

7.8CVSS7.4AI score0.00466EPSS
Exploits1References1
Wired Threat Level
Wired Threat Level
added 2026/01/03 10:0 a.m.6 views

How to Protect Your iPhone or Android Device From Spyware

Being targeted by sophisticated spyware is relatively rare, but experts say that everyone needs to stay vigilant as this dangerous malware continues to proliferate worldwide...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/12/31 5:17 a.m.6 views

U.S. Treasury Lifts Sanctions on Three Individuals Linked to Intellexa and Predator Spyware

The U.S. Department of the Treasury's Office of Foreign Assets Control OFAC on Tuesday removed three individuals linked to the Intellexa Consortium, the holding company behind a commercial spyware known as Predator, from the specially designated nationals list. The names of the individuals are as...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2025/12/29 1:38 p.m.32 views

⚡ Weekly Recap: MongoDB Attacks, Wallet Breaches, Android Spyware, Insider Crime & More

Last week's cyber news in 2025 was not about one big incident. It was about many small cracks opening at the same time. Tools people trust every day behave in unexpected ways. Old flaws resurfaced. New ones were used almost immediately. A common theme ran through it all in 2025. Attackers moved...

9.9CVSS9.8AI score0.97875EPSS
Exploits87
Qualys Blog
Qualys Blog
added 2025/12/17 6:0 p.m.14 views

ShadyPanda: The Silent Browser Takeover Threat and How Qualys TruRisk Eliminate Helps You Stop It

Executive Summary ShadyPanda has exploited trusted browser extensions to compromise millions of users, illustrating how legitimate software can unexpectedly become harmful. Qualys TruRisk Eliminate empowers organizations to identify risky behaviors, prioritize real threats, and eliminate maliciou...

7.8AI score
Exploits0
The Hacker News
The Hacker News
added 2025/12/17 2:54 p.m.12 views

New ForumTroll Phishing Attacks Target Russian Scholars Using Fake eLibrary Emails

The threat actor linked to Operation ForumTroll has been attributed to a fresh set of phishing attacks targeting individuals within Russia, according to Kaspersky. The Russian cybersecurity vendor said it detected the new activity in October 2025. The origins of the threat actor are presently...

9.8CVSS6.6AI score0.99999EPSS
Exploits81
The Hacker News
The Hacker News
added 2025/12/15 11:55 a.m.15 views

A Browser Extension Risk Guide After the ShadyPanda Campaign

In early December 2025, security researchers exposed a cybercrime campaign that had quietly hijacked popular Chrome and Edge browser extensions on a massive scale. A threat group dubbed ShadyPanda spent seven years playing the long game, publishing or acquiring harmless extensions, letting them r...

6.6AI score
Exploits0
Securelist
Securelist
added 2025/12/15 7:0 a.m.10 views

Frogblight threatens you with a court case: a new Android banker targets Turkish users

In August 2025, we discovered a campaign targeting individuals in Turkey with a new Android banking Trojan we dubbed "Frogblight". Initially, the malware was disguised as an app for accessing court case files via an official government webpage. Later, more universal disguises appeared, such as th...

7.5AI score
Exploits0
GoogleProjectZero
GoogleProjectZero
added 2025/12/12 12:0 a.m.16 views

A look at an Android ITW DNG exploit

Posted by Benoît Sevens, Google Threat Intelligence Group Introduction Between July 2024 and February 2025, 6 suspicious image files were uploaded to VirusTotal. Thanks to a lead from Meta, these samples came to the attention of Google Threat Intelligence Group. Investigation of these images show...

9.8CVSS7.8AI score0.11606EPSS
Exploits1
The Hacker News
The Hacker News
added 2025/12/11 1:40 p.m.33 views

ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories

This week's cyber stories show how fast the online world can turn risky. Hackers are sneaking malware into movie downloads, browser add-ons, and even software updates people trust. Tech giants and governments are racing to plug new holes while arguing over privacy and control. And researchers kee...

10CVSS7.5AI score0.99562EPSS
Exploits374
Malwarebytes
Malwarebytes
added 2025/12/08 8:3 a.m.6 views

A week in security (December 1 – December 7)

Last week on Malwarebytes Labs: Leaks show Intellexa burning zero-days to keep Predator spyware running How scammers use fake insurance texts to steal your identity Canadian police trialing facial recognition bodycams Update Chrome now: Google fixes 13 security issues affecting billions Attackers...

7.1AI score
Exploits0
HackRead
HackRead
added 2025/12/05 3:21 p.m.9 views

New Variant of ClayRat Android Spyware Seize Full Device Control

The dangerous ClayRat Android spyware has evolved, gaining the ability to steal PINs, record screens, and disable security by abusing Accessibility Services. Users must beware of fake apps spreading through phishing sites and Dropbox...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/12/05 1:31 p.m.10 views

Leaks show Intellexa burning zero-days to keep Predator spyware running

Intellexa is a well-known commercial spyware vendor, servicing governments and large corporations. Its main product is the Predator spyware. An investigation by several independent parties describes Intellexa as one of the most notorious mercenary spyware vendors, still operating its Predator...

7.6AI score
Exploits0
The Hacker News
The Hacker News
added 2025/12/05 11:47 a.m.10 views

Intellexa Leaks Reveal Zero-Days and Ads-Based Vector for Predator Spyware Delivery

A human rights lawyer from Pakistan's Balochistan province received a suspicious link on WhatsApp from an unknown number, marking the first time a civil society member in the country was targeted by Intellexa's Predator spyware, Amnesty International said in a report. The link, the non-profit...

9.6CVSS9.1AI score0.40798EPSS
Exploits18
Malwarebytes
Malwarebytes
added 2025/12/02 5:49 p.m.8 views

“Sleeper” browser extensions woke up as spyware on 4 million devices

Researchers have unraveled a malware campaign that really did play the long game. After seven years of behaving normally, a set of browser extensions installed on roughly 4.3 million Chrome and Edge users’ devices suddenly went rogue. Now they can track what you browse and run malicious code insi...

7.8AI score
Exploits0
Securelist
Securelist
added 2025/12/02 10:7 a.m.10 views

Kaspersky Security Bulletin 2025. Statistics

All statistics in this report come from Kaspersky Security Network KSN, a global cloud service that receives information from components in our security solutions voluntarily provided by Kaspersky users. Millions of Kaspersky users around the globe assist us in collecting information about...

6.5AI score
Exploits0
Rows per page
Query Builder