spyware Archives • Daily CyberSecurity

Trolling as a Service: How the New CrystalX RAT Uses “Prankware” to Torture Its Victims CrystalX RAT Prankware

Trolling as a Service: How the New CrystalX RAT Uses “Prankware” to Torture Its Victims

Do Son April 7, 2026

In the world of cybercrime, malware is typically designed for one of two things: stealthy espionage or...

ResokerRAT Uses Telegram to Hijack Your PC and Disable Your Security Keys GuLoader Malware CloudEye Obfuscation npm, malware Ethereum, npm supply chain OAST techniques StilachiRAT macOS Malware PasivRobber

GuLoader Malware CloudEye Obfuscation npm, malware Ethereum, npm supply chain OAST techniques StilachiRAT macOS Malware PasivRobber

ResokerRAT Uses Telegram to Hijack Your PC and Disable Your Security Keys

Do Son April 6, 2026

A new and sophisticated threat has emerged in the digital landscape, turning a popular messaging app into...

Unmasking DarkSword: GTIG Exposes Full-Chain iOS Exploit Used by Global Spies DarkSword Exploit iOS Zero-Day

Unmasking DarkSword: GTIG Exposes Full-Chain iOS Exploit Used by Global Spies

Do Son March 22, 2026

In a comprehensive technical disclosure, the Google Threat Intelligence Group (GTIG) has revealed the existence of a...

The 1% Breach: 287 Chrome Extensions Caught Spying on 37M Users Malicious Chrome Extensions

The 1% Breach: 287 Chrome Extensions Caught Spying on 37M Users

Do Son February 17, 2026

A sweeping new investigation by Q Continuum has uncovered a massive surveillance network operating within the Chrome...

Apple Zero-Day (CVE-2026-20700) Exploited in the Wild Coruna Exploit Kit iOS Security Update Apple Zero-Day CVE-2026-20700 Apple Data Privacy Day 2026, iPhone privacy features guide iOS Privilege Escalation, CVE-2025-24085 PoC Apple Manufacturing Academy, US Investment CVE-2024-44258 - symlink vulnerability

Coruna Exploit Kit iOS Security Update Apple Zero-Day CVE-2026-20700 Apple Data Privacy Day 2026, iPhone privacy features guide iOS Privilege Escalation, CVE-2025-24085 PoC Apple Manufacturing Academy, US Investment CVE-2024-44258 - symlink vulnerability

Apple Zero-Day (CVE-2026-20700) Exploited in the Wild

Do Son February 12, 2026

Apple has issued an emergency security update for its entire mobile ecosystem, racing to close a critical...

Spy vs. Spy: Predator Malware Now Hunts the Researchers OSX/Amos Stealer Electron ASAR Trojan MioLab Malware macOS Security MacSync Stealer macOS Malware ambar-src npm Malware Supply Chain Typosquatting Matryoshka Mac Malware ClickFix Crypto Scam Infostealer Evolution macOS Malware Predator Spyware Intellexa Anti-Analysis XCSSET macOS Malware, Xcode Supply Chain

OSX/Amos Stealer Electron ASAR Trojan MioLab Malware macOS Security MacSync Stealer macOS Malware ambar-src npm Malware Supply Chain Typosquatting Matryoshka Mac Malware ClickFix Crypto Scam Infostealer Evolution macOS Malware Predator Spyware Intellexa Anti-Analysis XCSSET macOS Malware, Xcode Supply Chain

Spy vs. Spy: Predator Malware Now Hunts the Researchers

Do Son January 20, 2026

The commercial spyware industry isn’t just building tools to spy on victims; they are building tools to...

The Silent Hijacker: New Cellik Android RAT Turns Legitimate Google Play Apps into Surveillance Tools Cellik Android RAT, Google Play Trojan

The Silent Hijacker: New Cellik Android RAT Turns Legitimate Google Play Apps into Surveillance Tools

Do Son December 22, 2025

A sophisticated new Android Remote Access Trojan (RAT) has surfaced in cybercrime networks, offering attackers a “turnkey”...

The KGB’s All-Seeing Eye: How ResidentBat Spyware Turns Seized Phones into Total Surveillance Tools Honeywell CCTV Vulnerability CVE-2026-1670 EagleMsgSpy Spyware Tool ResidentBat Spyware, Belarusian KGB Surveillance

Honeywell CCTV Vulnerability CVE-2026-1670 EagleMsgSpy Spyware Tool ResidentBat Spyware, Belarusian KGB Surveillance

The KGB’s All-Seeing Eye: How ResidentBat Spyware Turns Seized Phones into Total Surveillance Tools

Do Son December 22, 2025

A new report has exposed a low-tech but highly effective cyber-espionage campaign being waged against civil society...

Frogblight Android Banking Trojan Targets Turkey via Fake E-Gov Smishing and WebView Frogblight Banking Trojan, Turkey Smishing

Frogblight Android Banking Trojan Targets Turkey via Fake E-Gov Smishing and WebView

Do Son December 16, 2025

A new and evolving Android banking Trojan dubbed “Frogblight” has been discovered targeting individuals in Turkey, masquerading...

ShadyPanda Spyware Hacked 4.3 Million Users by Weaponizing Trusted Browser Extensions via Auto-Updates

Do Son December 4, 2025

A massive, long-running cyber-espionage campaign has been discovered operating in plain sight within the official Chrome and...

Zero-Click Samsung Zero-Day (CVE-2025-21042) Delivered LANDFALL Spyware Via Malicious DNG Images Samsung Zero-Click Spyware, LANDFALL

Zero-Click Samsung Zero-Day (CVE-2025-21042) Delivered LANDFALL Spyware Via Malicious DNG Images

Do Son November 10, 2025

Researchers from Unit 42, the threat intelligence team at Palo Alto Networks, have discovered a previously unknown...

Fantasy Hub RAT MaaS Uncovered: Russian Spyware Uses Telegram Bot and WebRTC to Hijack Android Devices Fantasy Hub MaaS, Android RAT WebRTC

Fantasy Hub RAT MaaS Uncovered: Russian Spyware Uses Telegram Bot and WebRTC to Hijack Android Devices

Do Son November 10, 2025

Researchers at zLabs have uncovered a sophisticated Android Remote Access Trojan (RAT) known as Fantasy Hub, being...

Kaspersky Exposes Chrome Zero-Day RCE (CVE-2025-2783) Delivering Memento Labs Spyware in ForumTroll Campaign

Do Son October 28, 2025

Researchers at Kaspersky uncovered a sophisticated espionage campaign exploiting a zero-day vulnerability in Google Chrome and delivering...

Spy vs. Spy: Mercenary Spyware Targets the Developers Who Build It Mercenary spyware, developer target Serbian Spyware

Spy vs. Spy: Mercenary Spyware Targets the Developers Who Build It

Do Son October 22, 2025

Developer Jay Gibson recently contacted TechCrunch to recount his experience of being targeted by a state-sponsored spyware...

Apple Ups Bounty to $5 Million for Zero-Click Spyware Exploits Bypassing Lockdown Mode Apple Bounty $5M, Zero-Click Exploit Zero-day, Apple security CVE-2025-43300

Apple Bounty $5M, Zero-Click Exploit Zero-day, Apple security CVE-2025-43300

Apple Ups Bounty to $5 Million for Zero-Click Spyware Exploits Bypassing Lockdown Mode

Do Son October 13, 2025

Apple has announced a major overhaul of its Security Bounty vulnerability reward program, set to take effect...

Pegasus Spyware Creator NSO Group Acquired by US Firm for “Tens of Millions” NSO Group Acquisition, Pegasus Spyware

Pegasus Spyware Creator NSO Group Acquired by US Firm for “Tens of Millions”

Do Son October 11, 2025

The notorious Israeli commercial spyware developer NSO Group has confirmed that it has been acquired by a...

Datzbro Trojan: Spyware-Banking Malware Hijacks Seniors’ Devices with Fake Facebook Lures Datzbro Android Trojan, Senior Scam

Datzbro Trojan: Spyware-Banking Malware Hijacks Seniors’ Devices with Fake Facebook Lures

Do Son October 1, 2025

ThreatFabric researchers uncovered a sophisticated scam campaign that weaponizes social engineering and mobile malware to exploit one...

Apple Issues New Spyware Alerts for French Officials and Journalists Apple Zero-Day CVE-2025-43529 WebKit Zero-Day, Targeted iOS Spyware Apple spyware alerts, zero-click attacks Apple, trademark lawsuit CVE-2024-54527 PoC exploit Apple, App Store

Apple Zero-Day CVE-2025-43529 WebKit Zero-Day, Targeted iOS Spyware Apple spyware alerts, zero-click attacks Apple, trademark lawsuit CVE-2024-54527 PoC exploit Apple, App Store

Apple Issues New Spyware Alerts for French Officials and Journalists

Do Son September 12, 2025

Apple occasionally issues spyware attack notifications, publicly disclosing on its website which countries or regions have received...

Apple’s “Most Significant Upgrade” to iPhone Security Is Here DarkSword exploit kit iOS 18.7.7 security update CVE-2024-44308 & CVE-2024-44309 Apple appeal, Epic Games lawsuit

DarkSword exploit kit iOS 18.7.7 security update CVE-2024-44308 & CVE-2024-44309 Apple appeal, Epic Games lawsuit

Apple’s “Most Significant Upgrade” to iPhone Security Is Here

Do Son September 10, 2025

Apple Security Engineering and Architecture (SEAR) has unveiled Memory Integrity Enforcement (MIE), an always-on, hardware-assisted memory safety...

CISA Flags Two Actively Exploited Vulnerabilities: TP-Link Router Reset Flaw and WhatsApp Zero-Day Chain Ivanti EPMM Vulnerability CVE-2026-1340 CISA KEV Catalog CVE-2026-21385 CISA KEV Update CVE-2008-0015 CISA KEV, Array Networks Command Injection CVE-2025-0111 & CVE-2025-23209 CISA, Known Exploited Vulnerabilities

Ivanti EPMM Vulnerability CVE-2026-1340 CISA KEV Catalog CVE-2026-21385 CISA KEV Update CVE-2008-0015 CISA KEV, Array Networks Command Injection CVE-2025-0111 & CVE-2025-23209 CISA, Known Exploited Vulnerabilities

CISA Flags Two Actively Exploited Vulnerabilities: TP-Link Router Reset Flaw and WhatsApp Zero-Day Chain

Do Son September 3, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has added two new security flaws to its Known Exploited...

Critical Alert 1 Active Exploit Detected Today