Items tagged with Spyware

Sarahah, an anonymous feedback app that has recently exploded in popularity across the globe, is now coming under fire for privacy violations. The app stands accused of uploading emails and phone numbers from user address books to its servers. More intriguingly, there doesn’t seem to be a reason for why the company would need to take such an ill-advised action in the app's current form. The developers of Sarahah describe the app, stating, “Sarahah helps you in discovering your strengths and areas for improvement by receiving honest feedback from your employees and your friends in a private manner”.... Read more...
Just last weekend, we wrote about SonicSpy, a grossly robust piece of malware that infected hundreds of apps on the Play Store. Google is always quick to remove this awful junk when it is detected, but the fact that we keep talking about the issue means it's not going away. It was security research firm Lookout that informed us of SonicSpy, and apparently, the company has been working overtime, as it now introduces us to yet another piece of Android maliciousness, an ad network called lgexin. This issue has impacted many apps on the Play Store, although it's not guaranteed that all of them unleashed... Read more...
A freelance security consultant and Handler at SANS Internet Storm Center has discovered a rather interesting exploit in Microsoft Word, one that allows an attacker to abuse the productivity program's ability to auto-update links. This is a feature that is enabled by default—when you add links to external sources like URLs, World with automatically update them without any prompts. Therein lies the issue. "The infection vector was classic: The document (‘N_Order#xxxxx.docx with 5 random numbers) was received as an attachment and has a VT score of 12/59 this morning. The file has an embedded link... Read more...
Despite Google's best efforts to protect its users who download apps from its Play Store, some malware inevitably slips through the cracks. While it might be easy to assume that most of that malware is found in obscure software that people shouldn't be downloading anyway, this latest case is proof that if malware does manage to get through, it could impact millions of people. Research firm Zscaler, and its threat-hunting team ThreatLabz, recently discovered an app on the Play Store that included the Android spyware SMSVova. Looking at the image below, it's hard to imagine why anyone would fall... Read more...
The last thing that Verizon customers were probably asking for was the addition of yet another app to invade their Android smartphone. But that is just what the nation's #1 wireless carrier is doing with the inclusion of AppFlash, which will gain prominent positioning on the home screens of Verizon smartphones (sans the iPhone, of course). AppFlash, which was developed by Evie, allows you to discover new apps, browse for music, check out movie showings, or search for restaurants in the area. It will also give you listing of frequently used apps, and provides a universal search feature that is able... Read more...
The folks at Lookout Mobile Security released the 2011 Mobile Threat Report, which offers a sobering look at the current state of mobile threats. According to the report, mobile users are more likely than ever to experience a malware attack, and the tactics that cybercriminals are employing are increasingly sophisticated. The news is worse for Android users, as most of those threats are targeted at them. Apparently that walled garden Apple built is good for something, at least for now; the report states that although issues of privacy and application vulnerabilities affect both iOS and Android... Read more...
If you have a Symbian, BlackBerry, Windows Mobile, iOS, or Android smartphone, your phone even now could be infected with spyware. However, it might be spyware that your significant other or spouse intentionally installed on your phone. The software is ePhoneTracker. Released last week, ePhoneTracker allows users to monitor everything one on an "infected" smartphone, including the following: Every text message sent and received, including the full text ... even if the phone's logs are deleted. All incoming and outgoing call numbers along with duration and time. GPS positions captured at an variable... Read more...
If you've surfed the Internet for any length of time, chances are good that you've seen a browser window pop up with a warning that your computer is in DANGER from a whole slew of evil viruses. Such windows, if clicked on, often perform an utterly fake virus scan during which they invariably "detect" infected/contaminated files. Users are then prompted to purchase a registered copy of Antivirus 2010 in order to protect themselves. Certain versions of the program will intercept and hijack online searches, disable or refuse to install real antimalware software, and may even block users from accessing... Read more...
Thinking of using those newfound hacking skills to engage in nefarious behavior? Think again. Albert Gonzalez is a name that'll go down in hacking history, but it's not for anything positive. After being charged with stealing some 130 million credit and debit card numbers, Albert plead guilty to previous data-theft charges in New York and Massachusetts. His penalty? Aside from dealing with a stream of media coverage, he'll be forced to cough up $1.65 million in assets. Oh, and then there's a little thing called "jail time." He'll be dealing with 15 to 25 years of that, after Federal prosecutors... Read more...
There's hardly anything that gets us at HotHardware more steamed than spyware, and we can only imagine how infuriated over 100,000 BlackBerry users in the UAE are after being fooled with a spyware-infused update. In a story that's sounds too bizarre to be true (but is, in fact, true), Etisalat--a major cellular operator in the United Arab Emirates--pushed out an update to its 145,000 BlackBerry customers that actually contained spyware.The application was reportedly developed by SS8, and it promised BlackBerry users that it would improve performance. In fact, the company is still maintaining that... Read more...
After a 10-month cyber espionage investigation, researchers have found 1,295 computers in 103 countries with software that is capable of stealing information from high-profile targets such as the Dalai Lama and government agencies around the world. In the report published today by Information Warfare Monitor, a Toronto-based organization, we learn the affected computers include embassies belonging to Germany, India, Romania, and Thailand as well as the ministries of foreign affairs for Barbados, Iran, and Latvia. The infected computers acted as an illicit information-gathering network. Researchers... Read more...
Lavasoft, developer of the long-time entrant in the spyware detection arena, Ad-Aware, has released a stand-alone antivirus application. The new product, Lavasoft Anti-Virus Helix is based on technology from antivirus vendor Avira. It's interesting that Lavasoft would make this move shortly after Microsoft's announcement to drop OneCare and replace it with a simplified free product in the second half of next year. Additionally, the AV market is rather crowded, though obviously, the development of this product was long underway prior to the Microsoft announcement. Pricing is reasonable, with a 1... Read more...
A bipartisan bill to outlaw various spyware activities, that passed 395-1 when voted on in the House of Representatives in 2005, has been re-introduced by its co-sponsors Zoe Lofgren (D-CA) and Bob Goodlatte (R-VA). The bill would protect "Americans from Internet crime while not impinging on software development," Lofgren said in a statement. "Spyware has become a plague for computer users, and Congress must address the mounting negative impact that it is having on our economy. Americans should not be afraid to use the Internet." The legislation will punish "bad actors" while protecting legitimate... Read more...
Brian Krebs of the Washington Post reports that, over the past week, MySpace and other websites ran a banner advertisement that infected over a million users with spyware using a Windows security flaw. The banner ad was designed to take advantage of a serious security weakness in the way Windows renders Windows Metafile (WMF) images. The flaw was originally patched by Microsoft in January. Unpatched Internet Explorer users who visited the websites that displayed the malicious banners would become infected by a Trojan horse. The Trojan would then download and install spyware that... Read more...
1 2 Next