时间:2025-04-04 04:56:51 来源:网络整理编辑:綜合
As part of Google's efforts to track the activities of commercial spyware vendors, the company's Thr
As part of Google's efforts to track the activities of commercial spyware vendors, the company's Threat Analysis Group (TAG) released a report Thursday on spyware campaigns targeting Android and iOS users.
Google TAG researchers Benoit Sevens and Clement Lecigne go into detail about the use of entrepreneurial grade spyware dubbed "Hermit." This sophisticated spyware tool allows attackers to steal data, private messages and make phone calls. In their report, TAG researchers attributed Hermit to RCS Labs, a commercial spyware vendor based in Italy.
Hermit poses many significant dangers. Due to its modularity, Hermit is quite customizable, allowing the functions of the spyware to be altered to the will of its user. Once fully situated on a target's phone, attackers can harvest sensitive information such as call logs, contacts, photos, precise location, and SMS messages.
An explainer:What is 'hermit spyware' and how can you protect yourself from it?
Sevens and Lecigne's full report details the ways in which attackers can access both Android and iOS devices through the use of clever tricks and drive-by attacks. Potential targets of this scam will have their data disabled through their ISP carrier before sending a malicious link via text to get them to ‘fix’ the issue. If that doesn't work, targets will be tricked into downloading malicious apps masqueraded as messaging applications.
Just last week, cybersecurity firm Lookout reported the use of Hermit by agents working in the governments of Kazakhstan, Syria, and Italy. Google has already identified victims in these countries, stating that "TAG is actively tracking more than 30 vendors with varying levels of sophistication and public exposure selling exploits or surveillance capabilities to government-backed actors."
The Milan-based company claims to provide "law enforcement agencies worldwide with cutting-edge technological solutions and technical support in the field of lawful interception for more than twenty years." More than 10,000 intercepted targets are purported to be handled daily in Europe alone.
When reached out for comment by The Hacker News, RCS Labs said its "core business is the design, production, and implementation of software platforms dedicated to lawful interception, forensic intelligence, and data analysis" and that it "helps law enforcement prevent and investigate serious crimes such as acts of terrorism, drug trafficking, organized crime, child abuse, and corruption."
Still, the news of the spyware being used by state government agents is concerning. Not only does it erode trust in the safety of the internet but it also puts at risk the lives of anyone a government considers an enemy of the state such as dissidents, journalists, human rights workers, and opposition party politicians.
"Tackling the harmful practices of the commercial surveillance industry will require a robust, comprehensive approach that includes cooperation among threat intelligence teams, network defenders, academic researchers, governments, and technology platforms," Google TAG researchers wrote. "We look forward to continuing our work in this space and advancing the safety and security of our users around the world."
TopicsCybersecurity
Fiji wins first2025-04-04 04:56
泰山VS海港首發 :莫伊塞斯費萊尼領銜 奧斯卡出戰2025-04-04 04:54
陳戌源:深刻反思中國足球事業現狀 盡快厘清主要問題2025-04-04 04:52
決勝戰役泰山再變3中衛 郝偉自我否定臨場調整製勝2025-04-04 04:29
Researchers create temporary tattoos you can use to control your devices2025-04-04 04:25
朗尼克 :卡瓦尼親承留守曼聯 他是年輕球員的榜樣2025-04-04 03:54
國足希望鄭智能夠隨隊出征12強賽 有助於與歸化球員溝通2025-04-04 03:17
名記:博格巴若合同到期離開曼聯 大概率加盟巴黎2025-04-04 02:29
We asked linguists if Donald Trump speaks like that on purpose2025-04-04 02:27
西班牙人前瞻:武磊盼獲出場機會 衝擊主場4連勝2025-04-04 02:10
This company is hiring someone just to drink all day2025-04-04 04:54
巴薩VS格拉納達首發 :登貝萊布斯克茨先發 皮克出戰2025-04-04 04:43
亞冠聯賽分組抽簽1月17日進行 泰山海港成種子隊2025-04-04 04:35
官方:阿森納球員奈爾斯租借加盟羅馬 租期至賽季結束2025-04-04 04:34
Fake news reports from the Newseum are infinitely better than actual news2025-04-04 04:28
郝偉 :傷病已經全部恢複 希望90分鍾內結束戰鬥2025-04-04 03:54
記者 :非血緣歸化就這麽爛尾了 國籍純粹是高薪的附屬品2025-04-04 03:19
浙江主帥 :兩隊實力均等 青島主帥:次回合扳回局麵2025-04-04 02:50
Cat gets stuck in the most awkward position ever2025-04-04 02:48
本澤馬獨造四球閃耀全場 戰艦生涯301球僅次三大神2025-04-04 02:30