Facebook Tried to Buy a Hacking Tool to Spy on iPhone Users

· Andrew Orr · Link

Facebook logo

According to court filings, when Facebook was in the early stages of building its spyware VPN called Onavo Protect, it noticed that it wasn’t as effective on Apple devices as it was on Android. So Facebook approached a hacking group called NSO Group to use its Pegasus malware.

According to the court documents, it seems the Facebook representatives were not interested in buying parts of Pegasus as a hacking tool to remotely break into phones, but more as a way to more effectively monitor phones of users who had already installed Onavo.

A Fix For That Scary WhatsApp Exploit is Live

· Andrew Orr · Link

WhatsApp

An Israeli firm called NSO Group used a WhatsApp exploit to inject spyware on target devices. A fix for the exploit is live.

Given the stealthy way the attack was attempted, it’s impressive that WhatsApp caught it as quickly as they did. Engineers at Facebook have been busy sorting this one out over the weekend…Named CVE-2019-3568…affected versions include…WhatsApp for iOS prior to v2.19.51, WhatsApp Business for iOS prior to v2.19.51.

Major WhatsApp Spyware Vulnerability Revealed

· Charlotte Henry · News

WhatsApp open padlock

A major WhatsApp vulnerability that allowed hackers to inject spyware via voice calls made on the popular messaging app has been revealed.

Spyware App Exodus Targets iPhone Users

· Andrew Orr · News

Researchers found spyware app Exodus, originally designed for Android, has been found on iPhones, but we don’t know how many.

Facebook Shuts Down Onavo Spyware...We Think

· Andrew Orr · Link

Facebook is shutting down its Onavo spyware VPN and associated “research” app. That is, if you believe anything Facebook says.

To preempt any more scandals around Onavo and the Facebook Research app and avoid Google stepping in to forcibly block the apps, Facebook is now taking Onavo off the Play Store and stopping recruitment of Research testers. That’s a surprising voluntary move that perhaps shows Facebook is finally getting in tune with the public perception of its shady actions.

Eh, I wouldn’t go that far. Not with Facebook blaming users when it screws them over.

How Former U.S. Hackers Broke Into iPhones For UAE

· Andrew Orr · Link

A team of former U.S. hackers broke into iPhones for the United Arab Emirates. They used a spying tool called ‘Karma.’

Karma was used by an offensive cyber operations unit in Abu Dhabi comprised of Emirati security officials and former American intelligence operatives working as contractors for the UAE’s intelligence services. The existence of Karma and of the hacking unit, code named Project Raven, haven’t been previously reported.

Sounds like a powerful tool. They could remotely break into iPhones just by uploading phone numbers or email accounts into an automated system. It didn’t work on Android phones.