LightSpy Malware Now Targets Facebook & Instagram Data

LightSpy is a modular surveillance framework active since 2020 that has evolved into a cross-platform (Android, iOS, Windows, macOS, Linux, routers) data-exfiltration and surveillance tool. This report documents an expanded C2 command set (now >100 commands), newly observed Windows plugins (keylogging, audio/video capture, USB interaction), iOS plugins, targeting of Facebook and Instagram database files, exposed admin panel endpoints, active C2 IPs, file hashes for host artifacts, and recommended mitigations such as restricting app permissions and enabling platform security features.