Meta claims NSO Group still targets WhatsApp users despite court order 2026-06-08 at 23:44 By Sinisa Markovic Meta claims it disrupted spear-phishing attempts linked to NSO Group and is asking a US federal court to hold the spyware vendor in contempt for allegedly violating an injunction that bars it from targeting WhatsApp and its users. […]
Meta claims NSO Group still targets WhatsApp users despite court order Read More »
WhatsApp Catches Spyware Firm NSO Defying No-Hacking Court Order 2026-06-08 at 17:58 By Eduard Kovacs The Meta-owned communications app is filing a federal court contempt order against NSO. The post WhatsApp Catches Spyware Firm NSO Defying No-Hacking Court Order appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
WhatsApp Catches Spyware Firm NSO Defying No-Hacking Court Order Read More »
OverlayPhantom: The Android Banking Trojan Hiding in Plain Sight 2026-05-27 at 09:24 By rohansinhacyblecom Executive Summary Cyble Research and Intelligence Labs (CRIL) has identified a novel Android banking trojan, dubbed OverlayPhantom, actively distributed in the wild via malicious URLs. The malware employs a two-stage infection chain, using a dropper application that impersonates trusted platforms, including
OverlayPhantom: The Android Banking Trojan Hiding in Plain Sight Read More »
Hacked Hospitals, Hidden Spyware: Iran Conflict Shows How Digital Fight Is Ingrained in Warfare 2026-03-30 at 14:26 By Associated Press Iran-linked hacking groups are turning to high-volume, low-impact cyberattacks, and AI is providing a boost. The post Hacked Hospitals, Hidden Spyware: Iran Conflict Shows How Digital Fight Is Ingrained in Warfare appeared first on SecurityWeek.
‘DarkSword’ iOS Exploit Kit Used by State-Sponsored Hackers, Spyware Vendors 2026-03-18 at 17:54 By Ionut Arghire Targeting six iOS vulnerabilities and leading to full device compromise, the exploit chain is meant for surveillance. The post ‘DarkSword’ iOS Exploit Kit Used by State-Sponsored Hackers, Spyware Vendors appeared first on SecurityWeek. This article is an excerpt from
‘DarkSword’ iOS Exploit Kit Used by State-Sponsored Hackers, Spyware Vendors Read More »
Fake Zoom meeting leads to silent install of surveillance software 2026-02-25 at 18:16 By Zeljka Zorz Malwarebytes researchers have uncovered a fake (but convincing) Zoom meeting page that downloads surveillance software on Windows computers and tricks users into running it. According to Microsoft MVP Steven Lim, the page has claimed nearly 1,500 victims in 12
Fake Zoom meeting leads to silent install of surveillance software Read More »
Predator Spyware Turns Failed Attacks Into Intelligence for Future Exploits 2026-01-14 at 16:03 By Kevin Townsend The Predator spyware is more sophisticated and dangerous than previously realized. The post Predator Spyware Turns Failed Attacks Into Intelligence for Future Exploits appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Predator Spyware Turns Failed Attacks Into Intelligence for Future Exploits Read More »
CISA Warns of Spyware Targeting Messaging App Users 2025-11-25 at 20:32 By Eduard Kovacs CISA has described the techniques used by attackers and pointed out that the focus is on high-value individuals. The post CISA Warns of Spyware Targeting Messaging App Users appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original
CISA Warns of Spyware Targeting Messaging App Users Read More »
CISA: Patch Samsung flaw exploited to deliver spyware (CVE-2025-21042) 2025-11-11 at 17:38 By Zeljka Zorz CISA has added CVE-2025-21042, a vulnerability affecting Samsung mobile devices, to its Known Exploited Vulnerabilities (KEV) catalog, and has ordered US federal civilian agencies to address it by the start of December. “This type of vulnerability is a frequent attack
CISA: Patch Samsung flaw exploited to deliver spyware (CVE-2025-21042) Read More »
Landfall Android Spyware Targeted Samsung Phones via Zero-Day 2025-11-07 at 19:39 By Eduard Kovacs Threat actors exploited CVE-2025-21042 to deliver malware via specially crafted images to users in the Middle East. The post Landfall Android Spyware Targeted Samsung Phones via Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Landfall Android Spyware Targeted Samsung Phones via Zero-Day Read More »
Italian-made spyware Dante linked to Chrome zero-day exploitation campaign 2025-10-28 at 16:28 By Zeljka Zorz CVE-2025-2783, a Chrome zero-day vulnerability that was detected being exploited in March 2025 and was subsequently fixed by Google, was used by unknown attackers to deliver LeetAgent, suspected commercial spyware. An analysis of the malware’s code and the campaign’s infrastructure
Italian-made spyware Dante linked to Chrome zero-day exploitation campaign Read More »
Chrome Zero-Day Exploitation Linked to Hacking Team Spyware 2025-10-27 at 11:33 By Ionut Arghire The threat actor behind Operation ForumTroll used the same toolset typically employed in Dante spyware attacks. The post Chrome Zero-Day Exploitation Linked to Hacking Team Spyware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Chrome Zero-Day Exploitation Linked to Hacking Team Spyware Read More »
ProSpy and ToSpy: New spyware families impersonating secure messaging apps 2025-10-02 at 12:04 By Anamarija Pogorelec ESET researchers have found two Android spyware campaigns aimed at people looking for secure messaging apps such as Signal and ToTok. The attackers spread the spyware through fake websites and social engineering. Researchers identified two previously unknown spyware families.
ProSpy and ToSpy: New spyware families impersonating secure messaging apps Read More »
Samsung Patches Zero-Day Exploited Against Android Users 2025-09-15 at 11:21 By Ionut Arghire Reported by Meta and WhatsApp, the vulnerability leads to remote code execution and was likely exploited by a spyware vendor. The post Samsung Patches Zero-Day Exploited Against Android Users appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original
Samsung Patches Zero-Day Exploited Against Android Users Read More »
Apple Sends Fresh Wave of Spyware Notifications to French Users 2025-09-12 at 15:22 By Ionut Arghire Apple this year sent at least four rounds of notifications to French users potentially targeted by commercial spyware. The post Apple Sends Fresh Wave of Spyware Notifications to French Users appeared first on SecurityWeek. This article is an excerpt
Apple Sends Fresh Wave of Spyware Notifications to French Users Read More »
Apple Unveils iPhone Memory Protections to Combat Sophisticated Attacks 2025-09-10 at 15:54 By Eduard Kovacs Apple’s new Memory Integrity Enforcement (MIE) brings always-on memory-safety protection covering key attack surfaces — including the kernel and over 70 userland processes. The post Apple Unveils iPhone Memory Protections to Combat Sophisticated Attacks appeared first on SecurityWeek. This article
Apple Unveils iPhone Memory Protections to Combat Sophisticated Attacks Read More »
Iranian APT Targets Android Users With New Variants of DCHSpy Spyware 2025-07-21 at 16:15 By Ionut Arghire Iranian APT MuddyWater has been using new versions of the DCHSpy Android surveillance tool since the beginning of the conflict with Israel. The post Iranian APT Targets Android Users With New Variants of DCHSpy Spyware appeared first on
Iranian APT Targets Android Users With New Variants of DCHSpy Spyware Read More »
Photo-Stealing Spyware Sneaks Into Apple App Store, Google Play 2025-06-24 at 12:45 By Ionut Arghire Newly discovered spyware has sneaked into Apple’s App Store and Google Play to steal images from users’ mobile devices. The post Photo-Stealing Spyware Sneaks Into Apple App Store, Google Play appeared first on SecurityWeek. This article is an excerpt from
Photo-Stealing Spyware Sneaks Into Apple App Store, Google Play Read More »
FreeType Zero-Day Found by Meta Exploited in Paragon Spyware Attacks 2025-06-20 at 13:25 By Eduard Kovacs WhatsApp told SecurityWeek that it linked the exploited FreeType vulnerability CVE-2025-27363 to a Paragon exploit. The post FreeType Zero-Day Found by Meta Exploited in Paragon Spyware Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View
FreeType Zero-Day Found by Meta Exploited in Paragon Spyware Attacks Read More »
iOS zero-click attacks used to deliver Graphite spyware (CVE-2025-43200) 2025-06-13 at 15:22 By Zeljka Zorz A zero-click attack leveraging a freshly disclosed Messages vulnerability (CVE-2025-43200) has infected the iPhones of two European journalists with Paragon’s Graphite mercenary spyware, Citizen Lab researchers have revealed on Thursday. The attacks happened in January and early February 2025. “We
iOS zero-click attacks used to deliver Graphite spyware (CVE-2025-43200) Read More »