iPhone Spyware

New LightSpy Spyware Version Targets iPhones with Increased Surveillance Tactics

New LightSpy Spyware Version Targets iPhones with Increased Surveillance Tactics Oct 31, 2024Ravie LakshmananSpyware / Mobile Security Cybersecurity researchers have discovered an improved version of an Apple iOS spyware called LightSpy that not only expands on its functionality, but also incorporates destructive capabilities to prevent the compromised device from booting Read more…

Dancho Danchev’s Blog – Mind Streams of Information Security Knowledge: Domains Portfolio Operated by Cytrox Spyware

Dancho Danchev’s Blog – Mind Streams of Information Security Knowledge: Domains Portfolio Operated by Cytrox Spyware The following is a list of C&C domains belonging to the Cytrox commercial spyware. Sample domains involved in the campaign include:  hxxp://5m5.io hxxp://actumali.org hxxp://addons.ne hxxp://adibjan.net hxxp://adservices.gr.com hxxp://advertsservices.com hxxp://almasryelyuom.com hxxp://alpineai.uk hxxp://alraeeenews.com hxxp://alraeesnews.net hxxp://altsantiri.ne hxxp://amazing.la hxxp://api-apple-buy.com Read more…

Dancho Danchev’s Blog – Mind Streams of Information Security Knowledge: The Intellexa Commercial Spyware Consortium, The Predator Spyware, NSO Group and Bulgaria’s Circles Commercial Spyware Vendor

Dancho Danchev’s Blog – Mind Streams of Information Security Knowledge: The Intellexa Commercial Spyware Consortium, The Predator Spyware, NSO Group and Bulgaria’s Circles Commercial Spyware Vendor Dear blog readers, I’ve decided to continue my post on Bulgaria’s Circles commercial spyware vendor which I profiled here in depth which appears to Read more…

Dancho Danchev’s Blog – Mind Streams of Information Security Knowledge: Exposing an Indian Police Spyware Cyber Operation

Dancho Danchev’s Blog – Mind Streams of Information Security Knowledge: Exposing an Indian Police Spyware Cyber Operation This analysis is based on this Wired.com story. Sample Gmail accounts known to have been involved in the campaign include:jagdish.meshraam@gmail.comdrsnehapatil64@gmail.comsinhamuskaan04@gmail.comjennifergonzales789@gmail.compayalshastri79@gmail.com Sample malicious domains known to have been involved in the campaign:researchplanet.zapto.orgsocialstatistics.zapto.orgduniaenewsportal.ddns.net Sample domain Read more…

Spyware via Memory Function

ChatGPT macOS Flaw Could’ve Enabled Long-Term Spyware via Memory Function

ChatGPT macOS Flaw Could’ve Enabled Long-Term Spyware via Memory Function Sep 25, 2024Ravie LakshmananArtificial Intelligence / Vulnerability A now-patched security vulnerability in OpenAI’s ChatGPT app for macOS could have made it possible for attackers to plant long-term persistent spyware into the artificial intelligence (AI) tool’s memory. The technique, dubbed SpAIware, Read more…