If you have one of these apps on your Android phone, 👉 delete it immediately
The apps in question are YohooTalk, TikTalk, Privee Talk, MeetMe, Nidus, GlowChat, Let’s Chat, Quick Chat, Rafaqat, Chit Chat, Hello Chat, and Wave Chat.
The #NSO Group raised security alarms this week, and once again, it’s the devastatingly powerful #Pegasus malware that was deployed in Jordan to spy on journalists and activists.
#CyberSecurity#Spyware#NSOGroup#Pegasus#Jordan: "A new joint investigation, Between a hack and a hard place: how Pegasus spyware crushes civic space in Jordan, by Access Now, the Citizen Lab, and local partners reveals the widespread use of Israeli-owned NSO Group’s Pegasus spyware in Jordan. At least 35 journalists, activists, human rights lawyers, and civil society members have been targeted with Pegasus between 2019 and 2023. Read the full report.
The Pegasus hacking comes against a backdrop of escalating crackdowns on civic space and press freedom in Jordan, growing instability and violence across the region, and an increasingly-exposed use of invasive spyware across the globe. Among those targeted are two Jordan-based staff at Human Rights Watch, as confirmed by a forensic analysis conducted by Human Rights Watch in collaboration with Amnesty International’s Security Lab."
Grossartiges Podium zur Serie "Surveillance Fédérale" der @republik_magazin heute Abend im vollbesetzten Walcheturm.
Ein engagiertes Publikum interessierte sich brennend für die von (v.l.n.r.) Lucia Herrmann moderierte Diskussion mit Informatiker @besendorf (#RSF), Journalistin @adfichter (#Republik) und Jurist @vgyoerffy (#DigiGes).
(Includes a link to NSO's latest "transparency report", published after a two-year hiatus, with a helpful summary by @davidkaye : "It mainly repackages preexisting defenses and statements that NSO Group has put forward")
India: una nuova schiacciante indagine forense rivela l'uso ripetuto dello spyware Pegasus per prendere di mira giornalisti di alto profilo
Le indagini del Security Lab di #Amnesty International hanno confermato che Siddharth Varadarajan, direttore fondatore di The Wire, e Anand Mangnale, redattore per l'Asia meridionale del The Organized Crime and Corruption Report Project (OCCRP), erano tra i giornalisti recentemente presi di mira dallo spyware #Pegasus
🕵️♂️ Discover how a simple 'Shutdown.log' file on your #iPhone could be the key to identifying the presence of notorious #spyware, including #Pegasus, QuaDream's Reign, and Intellexa's Predator.
Zgoda w polskim Sejmie: wszyscy obecni na sali posłowie i posłanki zagłosowali ZA powołaniem komisji śledczej, która wyjaśni przypadki wykorzystywania w Polsce oprogramowania #Pegasus. Jutro mamy poznać skład komisji.
W składankach wypowiedzi polityków w programach informacyjnych najbardziej wpadło nam w ucho: to też dla pana bezpieczeństwa. Z tej okazji obrazek.
Posłowie i posłanki nie mogą dojść do porozumienia ws. reprezentacji PiS w komisji. Termin zgłaszania kandydatów i kandydatek został w związku z tym przesunięty na 24.01.2024. #Pegasus
"🔍 Kaspersky Unveils Scripts for Detecting Pegasus Spyware on iPhones 📱"
Kaspersky has developed scripts to detect Pegasus, Reign, and Predator spyware on iPhones. These scripts, written in Python (100% Python according to GitHub), analyze the Shutdown.log file in the iPhone's sysdiagnose archive for forensic artifacts indicative of these spywares. Infections leave traces in Shutdown.log, especially in the path "/private/var/db/". These scripts, available for macOS, Windows, and Linux, simplify spyware detection by extracting, analyzing, and parsing Shutdown.log. Open-source and under an MIT license, you can find them on GitHub.
Assessing the #security of computer systems is really hard because of "known unknowns" and "unknown unknowns". For example, there are lots of reports about #NSO#Pegasus being found on #iPhone but few about #Android. One might be tempted to conclude that Android is more secure. The truth is unfortunately much harder to pin down. For example, it is harder to detect and confirm Pegasus on Android, although it is clear that there have been plenty of infections on both platforms.