CSO Magazine

OCTOBER 27, 2021

In a new report this week, Microsoft warns that since May, the group known as Nobelium has targeted over 140 cloud service resellers and technology providers and has succeeded to compromise as many as 14. Nobelium, also known as APT29 or Cozy Bear, is considered the hacking arm of Russia's foreign intelligence service, the SVR.

Surveillance 108

Surveillance Technology Government Software 108

Security Affairs

DECEMBER 14, 2022

Businesses and homeowners increasingly rely on internet protocol (IP) cameras for surveillance. And while cosmetic security measures are in place, security leaders have long warned that technologies produced by Chinese companies can be exploited by China’s government. Surge in internet-facing cameras. Most insecure brands.

Surveillance 122

Surveillance Manufacturing Passwords Internet 122

Schneier on Security

OCTOBER 9, 2023

Reading the headlines, one would hope that the rapid gains in AI technology have also brought forth a unifying realization of the risks—and the steps we need to take to mitigate them. The technology historian David C. This group’s concerns are well documented and urgent—and far older than modern AI technologies.

Risk 319

Risk Artificial Intelligence Technology Surveillance 319

Schneier on Security

JUNE 6, 2023

In 2013 and 2014, I wrote extensively about new revelations regarding NSA surveillance based on the documents provided by Edward Snowden. Neither were any of the algorithm names I knew, not even algorithms I knew that the US government used. I’m sure that a bunch of major governments have a complete copy of everything Greenwald has.

Surveillance 306

Surveillance Computers and Electronics Encryption Government 306

The Last Watchdog

OCTOBER 2, 2023

Surrounded by the invisible hum of electromagnetic energy, we’ve harnessed its power to fuel our technological marvels for decades. Often overlooked, the SIM card —short for Subscriber Identification Module—acts as the nexus between our identity and technology, illuminating the thin line between connection and surveillance.

Mobile 203

Mobile Technology Surveillance Education 203

Schneier on Security

FEBRUARY 1, 2019

One blog post described public-interest technologists as "technology practitioners who focus on social justice, the common good, and/or the public interest." Public-interest technology isn't one thing; it's many things. I maintain a resources page for public-interest technology. Defining this term is difficult.

Artificial Intelligence 194

Artificial Intelligence Technology Government Surveillance 194

CSO Magazine

MARCH 2, 2022

Since Russia launched a full-scale military invasion into Ukraine on February 23, a series of cyberattacks have been detected targeting Ukrainian businesses, websites and government agencies amid the ongoing conflict. The firm stated that the ransomware contains implementation errors, making its encryption breakable and slow.

Threat Detection 134

Threat Detection Surveillance Technology Cybersecurity 134

Krebs on Security

MARCH 22, 2023

Google said it believes the exploit chain for Samsung devices belonged to a “commercial surveillance vendor,” without elaborating further. “At present, a large number of end users have complained on multiple social platforms,” reads a translated version of the DarkNavy blog post.

Malware 272

Malware eCommerce Mobile Media 272

The Last Watchdog

AUGUST 23, 2021

For instance, if you have employees in China and the EU, you’ll have to obtain Chinese government approval to provide data from China to EU authorities enforcing the GDPR. Government Monitoring. In some countries, government agencies may monitor your employees’ web activity.

Internet 223

Internet Internet Government Risk 223

The Last Watchdog

MAY 29, 2020

Apple and Google are partnering up to bring technology to bear on COVID-19 contact tracing efforts. Apple and Google are partnering up to bring technology to bear on COVID-19 contact tracing efforts. In general, many companies and government agencies do not have great security.

Surveillance 195

Surveillance Healthcare Government Data privacy 195

The Last Watchdog

JULY 27, 2020

Either way, a singular piece of technology – artificial intelligence (AI) — is destined to profoundly influence which way we go from here. At the moment, there’s little to constrain corporations or government agencies from using AI however they want. based Hypergiant Industries, a supplier of AI technologies.

Surveillance 304

Surveillance Government Accountability Artificial Intelligence 304

Security Affairs

SEPTEMBER 19, 2021

Last week the Israeli cybersecurity firm Kape Technologies has acquired the industry’s leading virtual private networks ExpressVPN, as part of a $936 million deal. The surveillance it represents is completely antithetical to our mission.” military and various government contractors, then with a U.S.

Surveillance 142

Surveillance VPN Hacking Cybersecurity 142

Schneier on Security

JANUARY 18, 2019

Australia, and elsewhere -- argue that the pervasive use of civilian encryption is hampering their ability to solve crimes and that they need the tech companies to make their systems susceptible to government eavesdropping. In a blog post, cryptographer Matthew Green summarized the technical problems with this GCHQ proposal.

Encryption 248

Encryption Government Surveillance Hacking 248

Javvad Malik

NOVEMBER 25, 2020

When we talk about privacy and surveillance, discussions usually involve talk of Governments keep the population under manners. But unlike the good old days of the eighteenth century, Governments aren’t the only ones with skin in the population monitoring, control, and profiteering business. Surveillance 365.

Surveillance 130

Surveillance Marketing Internet Internet 130

Krebs on Security

MARCH 29, 2022

It involves compromising email accounts and websites tied to police departments and government agencies, and then sending unauthorized demands for subscriber data while claiming the information being requested can’t wait for a court order because it relates to an urgent matter of life and death.

Accountability 276

Accountability Government Hacking Social Engineering 276

SecureList

NOVEMBER 28, 2022

Our last edition of privacy predictions focused on a few important trends where business and government interests intersect, with regulators becoming more active in a wide array of privacy issues. This showed how consumer data collection can directly impact the relationships between citizens and governments.

Insurance 108

Insurance Social Engineering IoT Data breaches 108

Malwarebytes

DECEMBER 7, 2021

Nickel’s techniques vary, but in the end the group’s activity has only one objective, namely to implant stealthy malware for getting into networks, stealing data, and spying on government agencies, think tanks, and human rights organizations. A long list of IOCs can be found at the end of this write-up about Nickel by MSTIC.

Hacking 99

Hacking Malware Surveillance Data collection 99

BH Consulting

MAY 25, 2022

This blog is here to guide you through topical trends to note as we enter GDPR’s fifth year. An example is the ePrivacy Regulation which governs electronic communications. Emerging technologies based on artificial intelligence (AI) offer benefits in many areas today for us all. Upcoming Acts to watch out for.

Artificial Intelligence 97

Artificial Intelligence Marketing Government Technology 97

Thales Cloud Protection & Licensing

JANUARY 14, 2020

Today’s innovations and technologies provide tremendous opportunities for enterprises. Along with innovation and technology proliferation, new challenges that will shape business during 2020. In addition, malicious actors can and will adopt technologies such as AI and machine learning faster than security leaders can.

Data privacy 90

Data privacy IoT Data breaches Surveillance 90

Malwarebytes

DECEMBER 7, 2021

Nickel’s techniques vary, but in the end the group’s activity has only one objective, namely to implant stealthy malware for getting into networks, stealing data, and spying on government agencies, think tanks, and human rights organizations. A long list of IOCs can be found at the end of this write-up about Nickel by MSTIC.

Hacking 77

Hacking Malware Surveillance Data collection 77

The Last Watchdog

MARCH 13, 2019

billion IoT devices in use as of 2017, half are consumer gadgets, like smart TVs, speakers, watches, baby cams and home thermostats; much of the rest is made up of things like smart electric meters and security cameras in corporate and government use. Industry standards-setting bodies and government regulators recognize what’s at stake.

Internet 189

Internet Internet IoT Energy and Utilities 189

eSecurity Planet

OCTOBER 26, 2021

In a blog post , Tom Burt, corporate vice president of customer security and trust at Microsoft, wrote that the hacker group Nobelium is looking to use the same pathways that it leveraged in its attack on SolarWinds and its customers by compromising a set of companies to gain access to their customers. “We Old Attack Techniques Resurface.

Government 117

Government Cybercrime Accountability Software 117

SecureWorld News

OCTOBER 26, 2021

The malicious hacking group, which goes by the name Nobelium or Cozy Bear, wants to further cause chaos to global supply chains by targeting Microsoft's technology resellers and software clients more than 22,000 times in 6 months with a high success rate. Over the past weeks, tensions have hit a head between the U.S.

Technology 80

Technology Social Engineering Cybersecurity Surveillance 80

CyberSecurity Insiders

JUNE 17, 2021

Back in February 2021, we wrote a blog discussing how to prevent sophisticated physical document fraud , focusing on what the fraud looks like today and what can be done to reduce it. How governments can ensure the issuance of secure documents. Security is a gradual process, not binary.

Government 52

Government Software Surveillance Cybersecurity 52

Thales Cloud Protection & Licensing

DECEMBER 22, 2020

As a result, data has become a critical asset for companies and governments alike, as well as the primary target for nefarious actors and nation states. Multinationals face difficult and unique compliance challenges to successfully meet the ongoing waves of government regulations for data privacy and security. In the Dec.

Data privacy 118

Data privacy Encryption Risk Digital transformation 118

SecureList

NOVEMBER 30, 2021

Based on forensic analysis of numerous mobile devices, Amnesty International’s Security Lab found that the software was repeatedly used in an abusive manner for surveillance. Later that month, representatives from the Israeli government visited the offices of NSO as part of an investigation into the claims.

Malware 107

Malware Mobile Spyware Surveillance 107

DoublePulsar

APRIL 20, 2023

Capita handle £6.5billion of UK government contracts. Here’s a writeup from Kroll on a typical Black Basta incident: Qakbot has been around for many years, and is under heavy surveillance by both commercial CTI providers and independent security researchers. The UK government now classes it as a tier 1 threat, the same as terrorism.

Ransomware 126

Ransomware Government Data breaches Media 126

SecureList

NOVEMBER 14, 2022

Last June, Google’s TAG team released a blog post documenting attacks on Italian and Kazakh users that they attribute to RCS Lab, an Italian offensive software vendor. In line with our predictions, we released two blog posts in 2022 introducing sophisticated low-level bootkits.

Firmware 110

Firmware Surveillance Mobile Telecommunications 110

Security Boulevard

SEPTEMBER 30, 2021

Pegasus is the creation of the NSO Group , an Israeli firm that licenses it to governments to perform surveillance. NSO states its technology is intended to “prevent and investigate terrorism and crime to save thousands of lives around the globe”. Therefore, they could not possibly possess or leak a list of targets.

Spyware 52

Spyware Government Surveillance Mobile 52

Thales Cloud Protection & Licensing

NOVEMBER 6, 2019

Vulnerable devices could be used to spread malware within the enterprise, used for corporate espionage, surveillance of personnel, or plan whaling phishing campaigns. Invest in the right technology. In a previous blog , we discovered that less than half of companies (48%) could detect if any of their IoT devices have been breached.

IoT 122

IoT Risk Energy and Utilities Healthcare 122

Centraleyes

MARCH 11, 2024

Cloud frameworks provided by major cloud service providers such as Google Cloud, AWS, and Azure are not mandatory requirements imposed by external governing bodies or regulatory authorities. FedRAMP (Federal Risk and Authorization Management Program): A Shield for Government Galaxies Targeted at U.S.

Architecture 52

Architecture Government Encryption Risk 52

Krebs on Security

NOVEMBER 15, 2022

Gary Warner , director of research in computer forensics at the University of Alabama at Birmingham, noted in his blog from 2014 that Tank told co-conspirators in a JabberZeus chat on July 22, 2009 that his daughter, Miloslava , had been born and gave her birth weight. would serve as godfather to Tank’s daughter Miloslava.

Banking 277

Banking Small Business Accountability Cybercrime 277

Thales Cloud Protection & Licensing

JUNE 4, 2019

The types of activities for which the most complaints have been made so far are telemarketing, promotional e-mails and vdeo surveillance/CCTV. From artificial intelligence, development of 5G networks to integrity of our elections, strong data protection rules help to develop our policies and technologies based on people’s trust.”.

Data privacy 103

Data privacy Artificial Intelligence Data breaches Technology 103

Thales Cloud Protection & Licensing

JULY 12, 2018

They all must have unique identifiers and the ability to collect and transfer data over networks to enable monitoring, surveillance, and execution of decisions based on the collected data with little or no human intervention. PKI solutions provide the technology needed to secure growing IoT deployments.

IoT 72

IoT Data collection Encryption eCommerce 72

Privacy and Cybersecurity Law

MAY 29, 2019

Receive our latest blog posts by email. Click here to view a more detailed agenda. We will work with you to make appropriate arrangements. Register now. Share on Facebook. Share on Twitter. Share via email. Share on LinkedIn. Subscribe and stay updated. Stay in Touch.

Internet 40

Internet Internet Surveillance Encryption 40

Krebs on Security

FEBRUARY 18, 2019

government — along with a number of leading security companies — recently warned about a series of highly complex and widespread attacks that allowed suspected Iranian hackers to siphon huge volumes of email passwords and other sensitive data from multiple governments and private companies. That changed on Jan.

DNS 271

DNS Internet Internet Government 271

SecureList

APRIL 27, 2021

This resulted in the deployment of a custom backdoor, named Sunburst, on the networks of more than 18,000 SolarWinds customers, including many large corporations and government bodies, in North America, Europe, the Middle East and Asia. In November and December 2020, two public blog posts were published about this campaign.

Malware 141

Malware Spyware Government Social Engineering 141