Global oil and gas industry is fending off a major spyware campaign using highly targeted spear phishing attack emails with disguised .EXE file that contains Agent Tesla.
Campaign run by a group of state-sponsored hackers appears to have been passing data-siphoning spyware through approved apps in Google Play Store for years.
Spyware campaign stole sensitive user information through 111 fake Google Chrome extensions which gathered over 32 million downloads on the Chrome Web Store.
The fallout from the Pegasus spyware incident has prompted the Biden administration to issue a warning to the general public about commercial surveillance tools, offering advice for self-protection to journalists and dissidents.
A spyware vendor in Spain has been linked to a zero-day exploitation framework that impacted Windows, as well as the Chrome and Firefox browsers, from 2018 to 2021. Google researchers present markers found in its code including a script that is signed by the company.
Citizen Lab reports that QuaDream spyware is being used by governments in at least 10 countries to track activists, journalists and political opponents among other questionable uses.
Popular mini-game module found in over 100 Android apps, pitched to developers as a legitimate marketing SDK meant to improve user engagement and attention, has been found to have spyware capability hidden in it.
Mobile spyware is not a threat that will lessen anytime soon. Mobile devices present an attack surface that is ripe for threat actors. To mitigate the mobile security risk at its root, organizations need to employ an agent on the devices they manage that analyzes applications installed and the SDKs within them.