Information Management Today

Recently patched Apple and Chrome zero-days exploited to infect devices in Egypt with Predator spyware

Security Affairs

SEPTEMBER 22, 2023

Citizen Lab and Google’s TAG revealed that the three recently patched Apple zero-days were used to install Cytrox Predator spyware. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.7.” Apple fixed the flaw with improved checks.

Security

Security Risk Government IT

Apple released iOS 17.2 to address a dozen of security flaws

Security Affairs

DECEMBER 12, 2023

The company released iOS 17.2 The company released iOS 16.7.3 The fact that the issues were discovered by Google TAG suggests they were exploited by a nation-state actor or by a surveillance firm. Apple rolled out emergency security updates to backport patches for two actively exploited zero-day flaws to older devices.

Security

Security IT Information Security

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Security Affairs

JUNE 24, 2022

Google’s Threat Analysis Group (TAG) revealed that the Italian spyware vendor RCS Labs was supported by ISPs to spy on users. TAG researchers tracked more than 30 vendors selling exploits or surveillance capabilities to nation-state actors. ” reads the report published by Google. ” continues the analysis.

Government

Government Security IT Information Security

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Google: China dominates government exploitation of zero-day vulnerabilities in 2023

Security Affairs

MARCH 28, 2024

Google’s Threat Analysis Group (TAG) and Mandiant reported a surge in the number of actively exploited zero-day vulnerabilities in 2023. In 2023, Google (TAG) and Mandiant discovered 29 out of 97 vulnerabilities exploited in the wild. ” reads the report published by Google TAG.

Government

Government Ransomware Libraries Access

Google: Commercial Spyware Used by Governments Laden With Zero-Day Exploits

Dark Reading

MARCH 29, 2023

Google TAG researchers reveal two campaigns against iOS, Android, and Chrome users that demonstrate how the commercial surveillance market is thriving despite government-imposed limits.

Government

Government Marketing

Apple addressed 2 new iOS zero-day vulnerabilities

Security Affairs

NOVEMBER 30, 2023

“Apple is aware of a report that this issue may have been exploited against versions of iOS before iOS 16.7.1.” The fact that the issues were discovered by Google TAG suggests they were exploited by a nation-state actor or by a surveillance firm. Apple addressed the flaws with the release of iOS 17.1.2,

Security

Security IT Information Security

Surveillance firm’s leaked docs show the purchase of an $8M iOS RCE zero-day exploit?

Security Affairs

AUGUST 28, 2022

Leaked documents show the surveillance firm Intellexa offering exploits for iOS and Android devices for $8 Million. Leaked documents details the purchase of an iOS Remote Code Execution zero-day exploit for $8,000,000. The exploits should work against the Android 12 update and iOS 15.4.1, Pierluigi Paganini.

IT

IT Security Information Security

Google TAG shares details about exploit chains used to install commercial spyware

Security Affairs

MARCH 29, 2023

Google’s Threat Analysis Group (TAG) discovered several exploit chains targeting Android, iOS, and Chrome to install commercial spyware. Google’s Threat Analysis Group (TAG) shared details about two distinct campaigns which used several zero-day exploits against Android, iOS and Chrome.

Archiving

Archiving Access Risk Security

macOS Zero-Day exploited in watering hole attacks on users in Hong Kong

Security Affairs

NOVEMBER 12, 2021

Google TAG researchers discovered that threat actors leveraged a zero-day vulnerability in macOS in a watering hole campaign aimed at delivering malware to users in Hong Kong. The researchers discovered that attackers deployed on the sites hosted two iframes that were used to serve iOS and macOS exploits to the visitors.

Encryption

Encryption IT Security Information Security

Apple fixed the 17th zero-day flaw exploited in attacks

Security Affairs

OCTOBER 4, 2023

Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.6.” The flaw was discovered by security researcher Clément Lecigne from Google’s Threat Analysis Group (TAG). “A local attacker may be able to elevate their privileges.

Security

Security IT Information Security

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

The researchers from Google TAG are warning of Russia-linked threat actors targeting Ukraine with phishing campaigns. Russia-linked threat actors launched large-volume phishing campaigns against hundreds of users in Ukraine to gather intelligence and aimed at spreading disinformation, states Google’s Threat Analysis Group (TAG).

Phishing

Phishing Military Ransomware Education

CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 1, 2023

Five of the issues added by CISA to its catalog are part of the exploits used by surveillance vendors to target mobile devices with their commercial spyware: CVE-2021-30900 – Apple iOS, iPadOS, and macOS Out-of-Bounds Write Vulnerability. Google TAG shared indicators of compromise (IoCs) for both campaigns.

Cybersecurity

Cybersecurity Education Risk Security

The iPhone 11 Pro’s Location Data Puzzler

Krebs on Security

DECEMBER 4, 2019

13, KrebsOnSecurity contacted Apple to report this as a possible privacy bug in the new iPhone Pro and/or in iOS 13.x, The behavior appears to persist in the latest iPhone operating system (iOS 13.2.3) I was not able replicate this behavior on an older model iPhone 8 with the latest iOS. on iPhone 11 Pro devices.

Privacy

Privacy Encryption IT Security

Sophisticated attackers used DazzleSpy macOS backdoor in watering hole attacks

Security Affairs

JANUARY 25, 2022

The investigation started in November after Google TAG published a blogpost about watering-hole attacks targeting macOS users in Hong Kong. Google TAG researchers discovered that threat actors leveraged a zero-day vulnerability in macOS in a watering hole campaign aimed at delivering malware to users in Hong Kong.

Authentication

Authentication Security IT Information Security

Google: four zero-day flaws have been exploited in the wild

Security Affairs

JULY 14, 2021

Security researchers from Google Threat Analysis Group (TAG) and Google Project Zero revealed that four zero-day vulnerabilities have been exploited in the wild earlier this year. ” Post by @_clem1 & @maddiestone on 4 0days TAG found this year (with IOCs!). Also thoughts on why we are seeing so many 0day in 2021.

Government

Government Security IT Cybersecurity

Apple addressed two actively exploited zero-day flaws

Security Affairs

APRIL 7, 2023

Today, Apple published an emergency update for all iPhones to patch an exploit chain which we, together with @_clem1 (Google TAG) discovered in the wild. In February, the company released emergency security updates to address an actively exploited zero-day vulnerability, tracked as CVE-2023-23529 , that impacts iOS, iPadOS, and macOS.

Education

Education Security Cybersecurity IT

Google revealed how watering hole attacks compromised iPhone devices earlier this year

Security Affairs

AUGUST 30, 2019

Earlier this year, Google Threat Analysis Group (TAG) experts uncovered an iPhone hacking campaign, initially, they spotted a limited number of hacked websites used in watering hole attacks against iPhone users. “Earlier this year Google’s Threat Analysis Group (TAG) discovered a small collection of hacked websites.

Encryption

Encryption Access Authentication IT

In 2022, more than 40% of zero-day exploits used in the wild were variations of previous issues

Security Affairs

JULY 30, 2023

The popular Threat Analysis Group (TAG) Maddie Stone wrote Google’s fourth annual year-in-review of zero-day flaws exploited in-the-wild [ 2021 , 2020 , 2019 ], it is built off of the mid-year 2022 review. ” reads the report published by Google TAG.

IT

IT Security Information Security

Massive iPhone Hack Targets Uyghurs

Schneier on Security

SEPTEMBER 3, 2019

The vulnerabilities were patched in iOS 12.1.4, Earlier this year Google's Threat Analysis Group (TAG) discovered a small collection of hacked websites. TAG was able to collect five separate, complete and unique iPhone exploit chains, covering almost every version from iOS 10 through to the latest version of iOS 12.

Government

Government IT

Android Zero-Day exploits are the most expensive in the new Zerodium price list

Security Affairs

SEPTEMBER 4, 2019

Zero-day broker Zerodium has updated the price list for both Android and iOS exploits, with Android ones having surpassed the iOS ones for the first time. For the first time, the price for Android exploits is higher than the iOS ones, this is what has emerged from the updated price list published by the zero-day broker Zerodium.

Marketing

Marketing Security IT

North Korea-linked Zinc group posed as Samsung recruiters to target security firms

Security Affairs

NOVEMBER 28, 2021

North Korea-linked APT group posed as Samsung recruiters is a spear-phishing campaign that targeted South Korean security companies that sell anti-malware solutions, Google TAG researchers reported. Google TAG researchers reported that the same group, tracked as Zinc ,” also targeted security researchers in past campaigns.

Security

Security Phishing Information Security Communications

North Korea-linked campaign targets security experts via social media

Security Affairs

JANUARY 26, 2021

Google TAG is warning that North Korea-linked hackers targeting security researchers through social media. Google Threat Analysis Group (TAG) is warning that North Korea-linked hackers targeting security researchers through social media. ” reads the TAG’s report. ” reads the TAG’s report.

Security

Security Communications Cybersecurity Government

Microsoft Patch Tuesday, December 2022 Edition

Krebs on Security

DECEMBER 14, 2022

The vulnerability allows attackers to craft documents that won’t get tagged with Microsoft’s “Mark of the Web,” despite being downloaded from untrusted sites. The bug already seeing exploitation is CVE-2022-44698 , which allows attackers to bypass the Windows SmartScreen security feature.

Ransomware

Ransomware Authentication Security Access

June 2023 Security Update for Android fixed Arm Mali GPU bug used by spyware?

Security Affairs

JUNE 7, 2023

In March, Google’s Threat Analysis Group (TAG) shared details about two distinct campaigns which used several zero-day exploits against Android, iOS and Chrome. At the time of delivery, the latest Samsung firmware had not included a fix for this vulnerability. This vulnerability grants the attacker system access.

Security

Security Cybersecurity Access IT

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Security Affairs

APRIL 23, 2023

Abandoned Eval PHP WordPress plugin abused to backdoor websites CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog At least 2 critical infrastructure orgs breached by North Korea-linked hackers behind 3CX attack American Bar Association (ABA) suffered a data breach,1.4

Security

Security Ransomware Data breaches Cybersecurity

Security Affairs newsletter Round 455 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JANUARY 21, 2024

CISA warns of actively exploited Ivanti EPMM flaw CVE-2023-35082 The Quantum Computing Cryptopocalypse – I’ll Know It When I See It Kansas State University suffered a serious cybersecurity incident CISA adds Chrome and Citrix NetScaler to its Known Exploited Vulnerabilities catalog Google TAG warns that Russian COLDRIVER APT is using a custom backdoor (..)

Security

Security e-Discovery Artificial Intelligence Ransomware

Google report on iPhone hack created ‘False Impression,’ states Apple

Security Affairs

SEPTEMBER 7, 2019

Earlier this year, Google Threat Analysis Group (TAG) experts uncovered an iPhone hacking campaign, initially, they spotted a limited number of hacked websites used in watering hole attacks against iPhone users. Earlier this year Google’s Threat Analysis Group (TAG) discovered a small collection of hacked websites. ” Sainz wrote.”Google’s

Security

Security IT Information Security

Microsoft: North Korea-linked Zinc APT targets security experts

Security Affairs

JANUARY 29, 2021

Microsoft, like Google TAG, observed a cyber espionage campaign aimed at vulnerability researchers that attributed to North Korea-linked Zinc APT group. ” This week, Google Threat Analysis Group (TAG) also warned of North Korea-linked hackers targeting security researchers through social media.

Security

Security Encryption Passwords Communications

Apple comes out swinging in the duel of the data titans | John Naughton

The Guardian Data Protection

MAY 1, 2021

the newest version of iOS, the operating system that runs my iPhone. Ponder that for a moment and then reflect on the irony of a company that since 2013 has been selling such tagged devices, while at the same time bragging about its commitment to users’ privacy. I’ve just downloaded v14.5,

Privacy

Privacy IT

Weekly Vulnerability Recap – October 9, 2023 – Zero-Days Strike Android, Microsoft, Apple, Cisco & More

eSecurity Planet

OCTOBER 9, 2023

Researchers from Google’s Threat Analysis Group (TAG) and Project Zero uncovered the weakness, which is connected to unauthorized access to freed memory, possibly allowing attackers to corrupt or change sensitive data. Published patches for iOS 17.0.3 The iOS 17.0.3 and iPadOS 17.0.3 or earlier.

Libraries

Libraries Ransomware Access Security

Security Affairs newsletter Round 334

Security Affairs

OCTOBER 3, 2021

Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, newsletter).

Security

Security Data breaches Information Security Risk

Researchers analyzed the PREDATOR spyware and its loader Alien

Security Affairs

MAY 29, 2023

” In May 2022, Google’s Threat Analysis Group (TAG) researchers discovered three campaigns, between August and October 2021, targeting Android users with five zero-day vulnerabilities. Currently, the Predator spyware is developed and sold by Israeli company Intellexa, it can target both iOS and Android devices.

IT

IT Communications Access Manufacturing

What Happens When You Don’t Have a Modern Data Solution?

eDiscovery Daily

JANUARY 11, 2022

The message was allegedly sent to her iPhone 5 which cannot run an operating system beyond iOS 10. A forensics investigator examined the screenshot and discovered an emoji present in the image was a version not available until iOS 13 was released. Chat applications (WhatsApp, Telegram, Facebook Messenger, etc.).

Computer and Electronics

Computer and Electronics Metadata Communications Risk

Microsoft February 2021 Patch Tuesday fixes 56 bugs, including an actively exploited Windows zero-day

Security Affairs

FEBRUARY 9, 2021

” The lists of security updates released by Microsoft is available on the Security Update Guide portal : Tag CVE ID CVE Title.NET Core CVE-2021-26701.NET ” The lists of security updates released by Microsoft is available on the Security Update Guide portal : Tag CVE ID CVE Title.NET Core CVE-2021-26701.NET

IoT

IoT Libraries Encryption Security

Microsoft March 2022 Patch Tuesday updates fix 89 vulnerabilities

Security Affairs

MARCH 8, 2022

Below is the complete list of vulnerabilities addressed by Microsoft: Tag CVE ID CVE Title Severity.NET and Visual Studio CVE-2022-24512.NET Below is the complete list of vulnerabilities addressed by Microsoft: Tag CVE ID CVE Title Severity.NET and Visual Studio CVE-2022-24512.NET

Libraries

Libraries IoT Cloud Security

My favorite software for academic productivity

Information Matters

NOVEMBER 30, 2017

It works very well across apps on iOS and Android as well as web browsers. Being able to tag these references and attached PDF files using a structured set of tags I have created has saved me countless hours over the last 3 years.

Paper

Paper IT Cloud Access

ScamClub malvertising gang abused WebKit zero-day to redirect to online gift card scams

Security Affairs

FEBRUARY 17, 2021

. “A typical ScamClub payload has a few layers to it, starting with an ad tag that loads a malicious CDN hosted dependency. The group has been active since 2018, it mainly targeted iOS users with malicious ads that often redirected users to sites hosting online scams. Google Chrome team also notified (Chrome on iOS uses WebKit).

Security

Security IT Information Security

Humans are Bad at URLs and Fonts Don’t Matter

Troy Hunt

OCTOBER 28, 2020

Yet in the dev tools we see the href attribute of the hyperlink referring to an unrecognisable string of characters and the domain name within the <a> tag almost looking like a very familiar one, albeit for the fourth character. Certainly, the Twitter website does, so does the native iOS client and so does Tweetbot.

Phishing

Phishing Passwords Education IT

Brett Burney of Burney Consultants LLC: eDiscovery Trends 2018

eDiscovery Daily

MARCH 20, 2018

Brett speaks around the country on litigation support, eDiscovery, Mac, and iOS-related topics and today authors a variety of blogs and online courses for legal professionals. Brett graduated from the University of Dayton School of Law in 2000 and quickly became active in the world of legal technology. That’s negligent and ripe with risk.

e-Discovery

e-Discovery IoT Education Blockchain

Passkeys

Imperial Violet

SEPTEMBER 22, 2022

Platforms for developing with passkeys include: Safari on iOS 16 or macOS 13. Just adding the webauthn tag doesn’t do anything if there’s not a pending promise for the browser to resolve.) But with iOS 16 it’ll exclude the platform authenticator. is a reasonable place, with the passkey tag. But it's here for now.

Passwords

Passwords Authentication Libraries IT

Google issued 40,000 alerts of State-Sponsored attacks in 2019

Security Affairs

MARCH 27, 2020

” wrote Toni Gidwani, a Security Engineering Manager with Google’s Threat Analysis Group (TAG). Google TAG reported the case of a single threat actor that employed five zero-day vulnerabilities in a relatively short time frame. You can also use the built-in security key in an iPhone running iOS 10+ or an Android 7+ device.

Phishing

Phishing Passwords Risk Personal data

Massive Ad fraud scheme VASTFLUX targeted over 11 million devices

Security Affairs

JANUARY 23, 2023

The threat actors evaded ad verification tags to avoid detection. ” VASTFLUX exploited the restricted in-app environments that run ads, particularly on iOS, to place bids and display malicious ad banners. . The malvertising campaign spoofed more than 1,700 apps and 120 publishers, and targeted nearly 11 million devices.

Communications

Communications Security Information Security IT

Dashlane vs. 1Password: Compare Top Password Managers for 2021

eSecurity Planet

MAY 14, 2021

You can also create tags to group related items, like financial information and social media accounts, or favorite items you use frequently. Image: 1Password iOS app. Image: Dashlane iOS app. You can add as many categories as you need to organize all of your online accounts, documents, and other security details.

Passwords

Passwords Encryption Authentication Access

Security Affairs newsletter Round 266

Security Affairs

MAY 31, 2020

Experts observed a spike in COVID-19 related malspam emails containing GuLoader Silent Night Zeus botnet available for sale in underground forums The Florida Unemployment System suffered a data breach Voter information for 2 millions of Indonesians leaked online 25 million Mathway user records available for sale on the dark web Online education site (..)

Security

Security Data breaches Ransomware Sales

Recently patched Apple and Chrome zero-days exploited to infect devices in Egypt with Predator spyware

Apple released iOS 17.2 to address a dozen of security flaws

Webinars

Trending Sources

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Webinars

Google: China dominates government exploitation of zero-day vulnerabilities in 2023

Google: Commercial Spyware Used by Governments Laden With Zero-Day Exploits

Apple addressed 2 new iOS zero-day vulnerabilities

Surveillance firm’s leaked docs show the purchase of an $8M iOS RCE zero-day exploit?

Google TAG shares details about exploit chains used to install commercial spyware

macOS Zero-Day exploited in watering hole attacks on users in Hong Kong

Apple fixed the 17th zero-day flaw exploited in attacks

Google TAG warns of Russia-linked APT groups targeting Ukraine

CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog

The iPhone 11 Pro’s Location Data Puzzler

Sophisticated attackers used DazzleSpy macOS backdoor in watering hole attacks

Google: four zero-day flaws have been exploited in the wild

Apple addressed two actively exploited zero-day flaws

Google revealed how watering hole attacks compromised iPhone devices earlier this year

In 2022, more than 40% of zero-day exploits used in the wild were variations of previous issues

Massive iPhone Hack Targets Uyghurs

Android Zero-Day exploits are the most expensive in the new Zerodium price list

North Korea-linked Zinc group posed as Samsung recruiters to target security firms

North Korea-linked campaign targets security experts via social media

Microsoft Patch Tuesday, December 2022 Edition

June 2023 Security Update for Android fixed Arm Mali GPU bug used by spyware?

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Security Affairs newsletter Round 455 by Pierluigi Paganini – INTERNATIONAL EDITION

Google report on iPhone hack created ‘False Impression,’ states Apple

Microsoft: North Korea-linked Zinc APT targets security experts

Apple comes out swinging in the duel of the data titans | John Naughton

Weekly Vulnerability Recap – October 9, 2023 – Zero-Days Strike Android, Microsoft, Apple, Cisco & More

Security Affairs newsletter Round 334

Researchers analyzed the PREDATOR spyware and its loader Alien

What Happens When You Don’t Have a Modern Data Solution?

Microsoft February 2021 Patch Tuesday fixes 56 bugs, including an actively exploited Windows zero-day

Microsoft March 2022 Patch Tuesday updates fix 89 vulnerabilities

My favorite software for academic productivity

ScamClub malvertising gang abused WebKit zero-day to redirect to online gift card scams

Humans are Bad at URLs and Fonts Don’t Matter

Brett Burney of Burney Consultants LLC: eDiscovery Trends 2018

Passkeys

Google issued 40,000 alerts of State-Sponsored attacks in 2019

Massive Ad fraud scheme VASTFLUX targeted over 11 million devices

Dashlane vs. 1Password: Compare Top Password Managers for 2021

Security Affairs newsletter Round 266

Stay Connected