{"id":51291,"date":"2023-03-30T14:40:55","date_gmt":"2023-03-30T14:40:55","guid":{"rendered":"https:\/\/packetstormsecurity.com\/news\/view\/34476\/Hackers-Used-Spyware-Made-In-Spain-To-Target-Users-In-The-UAE.html"},"modified":"2023-03-30T14:40:55","modified_gmt":"2023-03-30T14:40:55","slug":"hackers-used-spyware-made-in-spain-to-target-users-in-the-uae","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/","title":{"rendered":"Hackers Used Spyware Made In Spain To Target Users In The UAE"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/techcrunch.com\/wp-content\/uploads\/2021\/12\/android-spyware2.jpg?resize=1200,674\" class=\"ff-og-image-inserted\"><\/div>\n<p id=\"speakable-summary\">In November 2022, Google <a href=\"https:\/\/techcrunch.com\/2022\/11\/30\/variston-spyware-chrome-firefox-windows\/\">revealed the existence<\/a> of a then-unknown spyware vendor called Variston. Now, Google researchers say they have seen hackers use Variston\u2019s tools in the United Arab Emirates.<\/p>\n<p>In a <a href=\"https:\/\/blog.google\/threat-analysis-group\/spyware-vendors-use-0-days-and-n-days-against-popular-platforms\/\" target=\"_blank\" rel=\"noopener\">report published on Wednesday<\/a>, Google\u2019s Threat Analysis Group (TAG) said it discovered hackers targeting people in the UAE who used Samsung\u2019s native Android browser, which is a customized version of Chromium. The hackers used a set of vulnerabilities chained together and delivered via one-time web links sent to the targets by text message. Of the four vulnerabilities in the chain, two were zero-days at the time of the attack, meaning they had not been reported to the software maker and were unknown at that point, according to the new blog post by TAG.<\/p>\n<p>If a target clicked on the malicious web links, they would have been directed to a landing page \u201cidentical to the one TAG examined in the <a href=\"https:\/\/blog.google\/threat-analysis-group\/new-details-on-commercial-spyware-vendor-variston\/\" target=\"_blank\" rel=\"noopener\">Heliconia framework<\/a> developed by commercial spyware vendor Variston.\u201d (Both campaigns used the same exact and unique landing page, Google told TechCrunch. Once exploited the victim would have been infected with \u201ca fully featured Android spyware suite\u201d designed to capture data from chat and browser apps, according to the post.<\/p>\n<p>\u201cThe actor using the exploit chain to target UAE users may be a customer or partner of Variston, or otherwise working closely with the spyware vendor,\u201d the blog post read.<\/p>\n<p>It\u2019s unclear who is behind the hacking campaign or who the victims are. A Google spokesperson told TechCrunch that TAG observed about 10 malicious web links in the wild. Some of the links redirected to StackOverflow after exploitation and may have been the attacker\u2019s test devices, Google said. TAG said it wasn\u2019t clear who was behind the hacking campaign.<\/p>\n<p>Samsung spokesperson Chris Langlois said that the company has \u201calready taken necessary steps to prevent these potential exploit chains by issuing patches for the Samsung Internet app in December 2022.\u201d<\/p>\n<p>\u201cDecember\u2019s updates to the Samsung Internet app disable entry points for the remaining vulnerabilities and ensure devices are protected. We are actively collaborating with our partners to release patches for the remaining vulnerabilities as early as possible, starting in April, and recommend all users keep their devices updated with the latest software to ensure the highest level of protection possible,\u201d Langlois said.<\/p>\n<p>Ralf Wegener and Ramanan Jayaraman are the founders of Variston, <a href=\"https:\/\/www.intelligenceonline.com\/surveillance--interception\/2021\/10\/22\/german-ralf-wegener-builds-small-cyber-intelligence-empire-in-cyprus-and-beyond,109700415-gra\" target=\"_blank\" rel=\"noopener\">according to Intelligence Online<\/a>, an online news publication that covers the surveillance industry. The two owned half of the company each in 2018, according to Spanish business records.<\/p>\n<p>Neither founder responded to a request for comment. Variston is headquartered in Barcelona, Spain. According to business registration records in Italy, Variston acquired the Italian zero-day research company Truel in 2018.<\/p>\n<p>The hacking campaign in the UAE was discovered by Amnesty International\u2019s Security Lab. <a href=\"https:\/\/www.amnesty.org\/en\/latest\/news\/2023\/03\/new-android-hacking-campaign-linked-to-mercenary-spyware-company\/\" target=\"_blank\" rel=\"noopener\">In a press release<\/a>, Amnesty said that the campaign has been active since at least 2020 and targeted both mobile phones and computers. Amnesty said they observed the exploits being delivered by a network of more than 1,000 malicious domains, \u201cincluding domains spoofing media websites in multiple countries.\u201d The organization also said they observed traces of the campaign in Indonesia, Belarus, the UAE and Italy, but these countries \u201clikely represent only a small subset of the overall attack campaign based on the extensive nature of the wider attack infrastructure.\u201d<\/p>\n<p>Google also said on Wednesday that it discovered hackers exploiting an iOS zero-day bug, <a href=\"https:\/\/techcrunch.com\/2022\/12\/13\/apple-zero-day-webkit-iphone\/\">patched in November<\/a>, to remotely plant spyware on users\u2019 devices. The researchers say they observed attackers abusing the security flaw as part of an exploit chain targeting iPhone owners running iOS 15.1 and older located in Italy, Malaysia and Kazakhstan.<\/p>\n<p>The flaw was found in the WebKit browser engine that powers Safari and other apps, and was first discovered and reported by Google TAG researchers. Apple patched the bug in December, confirming at the time that the company was aware that the vulnerability was actively exploited \u201cagainst versions of iOS released before iOS 15.1.\u201d<\/p>\n<p>Hackers also used a second iOS vulnerability described as a <a href=\"https:\/\/techcrunch.com\/2022\/06\/10\/apple-m1-unpatchable-flaw\/\">PAC bypass technique<\/a> that was fixed by Apple in March 2022, which Google researchers say is the exact technique used by North Macedonian spyware developer Cytrox to install its Predator spyware. Citizen Lab previously <a href=\"https:\/\/techcrunch.com\/2021\/12\/16\/cytrox-predator-phone-hacking-meta\/\">released a report highlighting widespread government use of the Predator spyware<\/a>.<\/p>\n<p>Google also observed hackers exploiting a chain of three Android bugs targeting devices running an ARM-based graphics chip, including one zero-day. Google said ARM released a fix, but several vendors \u2014 including Samsung, Xiaomi, Oppo and Google itself \u2014 did not incorporate the patch, resulting in \u201ca situation where attackers were able to freely exploit the bug for several months,\u201d Google said.<\/p>\n<p>The discovery of these new hacking campaigns is \u201ca reminder that the commercial spyware industry continues to thrive, says Google. \u201cEven smaller surveillance vendors have access to 0-days, and vendors stockpiling and using 0-day vulnerabilities in secret poses a severe risk to the Internet.\u201d<\/p>\n<p>\u201cThese campaigns may also indicate that exploits and techniques are being shared between surveillance vendors, enabling the proliferation of dangerous hacking tools,\u201d the blog read.<\/p>\n<p><em>This story has been updated with a statement from Amnesty International, and Samsung.<\/em><\/p>\n<p> READ MORE <a href=\"https:\/\/packetstormsecurity.com\/news\/view\/34476\/Hackers-Used-Spyware-Made-In-Spain-To-Target-Users-In-The-UAE.html\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":51292,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[60],"tags":[10452],"class_list":["post-51291","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-packet-storm","tag-headlinemalwarephonegooglespywarespain"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.6 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Hackers Used Spyware Made In Spain To Target Users In The UAE 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Hackers Used Spyware Made In Spain To Target Users In The UAE 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2023-03-30T14:40:55+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/techcrunch.com\/wp-content\/uploads\/2021\/12\/android-spyware2.jpg?resize=1200,674\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Hackers Used Spyware Made In Spain To Target Users In The UAE\",\"datePublished\":\"2023-03-30T14:40:55+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\\\/\"},\"wordCount\":870,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/04\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae.jpg\",\"keywords\":[\"headline,malware,phone,google,spyware,spain\"],\"articleSection\":[\"Packet Storm\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\\\/\",\"name\":\"Hackers Used Spyware Made In Spain To Target Users In The UAE 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/04\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae.jpg\",\"datePublished\":\"2023-03-30T14:40:55+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/04\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/04\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae.jpg\",\"width\":1200,\"height\":674},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"headline,malware,phone,google,spyware,spain\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/headlinemalwarephonegooglespywarespain\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Hackers Used Spyware Made In Spain To Target Users In The UAE\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Hackers Used Spyware Made In Spain To Target Users In The UAE 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/","og_locale":"en_US","og_type":"article","og_title":"Hackers Used Spyware Made In Spain To Target Users In The UAE 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2023-03-30T14:40:55+00:00","og_image":[{"url":"https:\/\/techcrunch.com\/wp-content\/uploads\/2021\/12\/android-spyware2.jpg?resize=1200,674","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Hackers Used Spyware Made In Spain To Target Users In The UAE","datePublished":"2023-03-30T14:40:55+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/"},"wordCount":870,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/04\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae.jpg","keywords":["headline,malware,phone,google,spyware,spain"],"articleSection":["Packet Storm"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/","url":"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/","name":"Hackers Used Spyware Made In Spain To Target Users In The UAE 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/04\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae.jpg","datePublished":"2023-03-30T14:40:55+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/04\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/04\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae.jpg","width":1200,"height":674},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/hackers-used-spyware-made-in-spain-to-target-users-in-the-uae\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"headline,malware,phone,google,spyware,spain","item":"https:\/\/www.threatshub.org\/blog\/tag\/headlinemalwarephonegooglespywarespain\/"},{"@type":"ListItem","position":3,"name":"Hackers Used Spyware Made In Spain To Target Users In The UAE"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/51291","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=51291"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/51291\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/51292"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=51291"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=51291"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=51291"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}