Predator spyware sold with Chrome, Android zero-day exploits to monitor targets

25 May 2022

Spyware vendor Cytrox sold zero-day exploits to government-backed snoops who used them to deploy the firm’s Predator spyware in at least three campaigns in 2021, according to Google’s Threat Analysis Group (TAG). The Predator campaigns relied on four vulnerabilities in Chrome (CVE-2021-37973, CVE-2021-37976, CVE-2021-38000 and CVE-2021-38003) and one in Android (CVE-2021-1048) to infect devices with the surveillance-ware. Based on CitizenLab’s analysis of Predator spyware, Google’s bug hunters believe that the buyers of these exploits operate in Egypt, Armenia, Greece, Madagascar, Côte d’Ivoire, Serbia, Spain, Indonesia, and possibly other countries.

Read full article on The Register

Date:

25 May 2022

Categorie(s):

NEWS

Tag(s):

Android, Browsers, Chrome, Internet, Mobile Development

.NET Aspire Preview 6: Enhanced Security and Testing, New Features, and More26 April 2024
The unspoken obnoxiousness of Google’s Gemini improvements26 April 2024
Hackers Exploit Old Microsoft Office 0-day to Deliver Cobalt Strike26 April 2024
Android versions: A living history from 1.0 to 1526 April 2024
Secure Coding Practices to Stop Cyber Attacks26 April 2024