Begin typing your search above and press return to search.
proflie-avatar
Login
exit_to_app
DEEP READ
Munambam Waqf issue decoded
access_time 16 Nov 2024 10:48 PM IST
Ukraine
access_time 16 Aug 2023 11:16 AM IST
Foreign espionage in the UK
access_time 22 Oct 2024 2:08 PM IST
Netanyahu: the world’s Number 1 terrorist
access_time 5 Oct 2024 11:31 AM IST
exit_to_app
Homechevron_rightTechnologychevron_rightFake Pegasus scam...

Fake Pegasus scam emerges as new hacker tool on Dark Web

text_fields
bookmark_border
Fake Pegasus scam emerges as new hacker tool on Dark Web
cancel

New Delhi: Cybersecurity researchers have cautioned that the exploitation of fake Pegasus spyware has become widespread on the dark web, where hackers are profiting financially by faking the original Pegasus with duplicated versions.


Following Apple's recent notification to users in 92 countries about a ‘mercenary spyware’ attack, homegrown cybersecurity firm CloudSEK carried out an in-depth investigation. They found a widespread misuse of Israel-based company NSO’s Pegasus spyware's name.

The findings serve “as an advisory against scammers and threat actors who are exploiting the growing recognition of NSO Group's renowned product, Pegasus, for their fraudulent purposes,” the researchers noted. The researchers analysed approximately 25,000 posts on Telegram, many of which claimed to sell authentic Pegasus source code.

“These posts followed a common template offering illicit services, with Pegasus and NSO tools frequently mentioned,” the team mentioned. By interacting with over 150 potential sellers, CloudSEK gained insights into various samples and indicators shared by these actors. This included purported Pegasus source code, live demonstrations, file structures, and snapshots.

“Similar misuse was observed on surface web code-sharing platforms, where actors disseminated randomly generated source codes falsely associated with Pegasus,” said researchers. After analysing 15 samples and over 30 indicators from human intelligence (HUMINT), deep, and dark web sources, the team discovered that nearly all samples were “fraudulent and ineffective”.

Threat actors created their own tools and scripts, distributing them under Pegasus' name to capitalise on its notoriety for financial gain, the report said.

Source: IANS


Show Full Article
TAGS:Dark WebTechnology newsFake Pegasus
Next Story