cyberscoop.com cyberscoop.com

Spyware campaign targets Turkish dissidents, research shows

Spyware made by a notorious vendor has been used to target critics of the Turkish government via Twitter, according to digital rights advocacy group Access Now. Attackers used spyware from FinFisher to target protestors focused on the Turkish government in 2017, Access Now said in a report. Hackers allegedly used Twitter-linked malicious websites to install spyware on activists’ phones. The perpetrators used a “benign-looking...

blog.skyboxsecurity.com blog.skyboxsecurity.com

Adobe Flash Exploit Delivering FINSPY to UN Member Countries

An exploit in the beleaguered Adobe Flash software is delivering the FINSPY (aka FinFisher) remote access Trojan (RAT). The exploit, which has been observed in the wild, targets a Flash memory corruption vulnerability (CVE-2017-11292) that could allow remote code execution. It also includes code presumably to avoid antivirus detection. The FINSPY payload is legitimate — if controversial — spyware used for legal surveillance within...