Predator Spyware Turns Failed Attacks Into Intelligence For Future Exploits

In December 2024 the Google Threat Intelligence Group published research on the code of the commercial spyware "Predator". But there's now been new research by Jamf (the company behind a mobile device management solution) showing Predator is more dangerous and sophisticated than we realized, according to SecurityWeek.

Long-time Slashdot reader wiredmikey writes: The new research reveals an error taxonomy that reports exactly why deployments fail, turning black boxes into diagnostic events for threat actors. Almost exclusively marketed to and used by national governments and intelligence agencies, the spyware also detects cybersecurity tools, suppresses forensics evidence, and has built-in geographic restrictions.

Exclusions explanation is lame

[evanh]

It clearly states at the start that he's ex-Israeli military. They'd string him up in an instant if he was ever disloyal. Hell, they're probably even using his tools.

check the error logs and run inventory

[MicroSlut]

Hackers learn from their failures. News at 11.

Just for your OS image......

[twinirondrives]

I bet it has a HOSTS file you can include.....

How does Predator get onto your computer?

[Mirnotoriety]

How does Predator get onto your computer?

Re:

[shanen]

There's a book called Pegasus that focuses on the smartphone side. I've read a number of them about breaching computers. Less about the breaches than the reasons the breaches are possible is Microsoft Secrets about how Microsoft develops such amazingly vulnerable software. (I could search for more books if my CGI/PERL was enabled... Running the PERL locally is quite tedious. I still want a better tool, but I'm losing interest in that project, too. Also a better webhost than the dying Tripod. (It came ba