ESET discovers a chat app spying on users and leaking stolen data

ESET researchers have discovered a new operation within a long-running cyber-espionage campaign in the Middle East, apparently with links to the threat actor group known as Gaza Hackers, or Molerats. Instrumental in the operation is an Android app, Welcome Chat, which serves as spyware while also delivering the promised chatting functionality. The malicious website promoting … More ESET discovers a chat app spying on users and leaking stolen data

Aerospace and military companies in the crosshairs of cyberspies

ESET researchers uncover targeted attacks against high-profile aerospace and military companies. At the end of last year, we discovered targeted attacks against aerospace and military companies in Europe and the Middle East, active from September to December 2019. A collaborative investigation with two of the affected European companies allowed us to gain insight into the … More Aerospace and military companies in the crosshairs of cyberspies

Notorious spy tool taken down in global operation

IM-RAT, which could be had for as little as US$25, was bought by nearly 15,000 people. Law enforcement authorities in a number of countries have broken up a cybercriminal operation that peddled a notorious Remote Access Trojan (RAT) capable of giving anyone with ill intentions total control over compromised machines, according to announcements by Europol, the United Kingdom’s National … More Notorious spy tool taken down in global operation

Email sextortion scam, claiming victim’s paedophilia links, hits Irish mailboxes

ESET Ireland warning about scammers claiming they’ll release videos of victims watching illegal pornography unless paid 5000 GBP in Bitcoin. ESET Ireland has registered several related emails being sent to Irish mailboxes, threatening recipients with releasing videos of them watching illegal pornography online, unless they immediately pay the blackmailers 5000 GBP (5,611 EUR) in Bitcoin. The … More Email sextortion scam, claiming victim’s paedophilia links, hits Irish mailboxes

First‑of‑its‑kind spyware sneaks into Google Play

ESET analysis breaks down the first known spyware that is built on the AhMyth open-source espionage tool and has appeared on Google Play – twice. ESET researchers have discovered the first known spyware that is built on the foundations of AhMyth open-source malware and has circumvented Google’s app-vetting process. The malicious app, called Radio Balouch … More First‑of‑its‑kind spyware sneaks into Google Play