Hacking, Information Security, Internet and Surveillance

Surveillance firm’s leaked docs show the purchase of an $8M iOS RCE zero-day exploit?

Security Affairs

AUGUST 28, 2022

Leaked documents show the surveillance firm Intellexa offering exploits for iOS and Android devices for $8 Million. Intellexa is an Israeli surveillance firm founded by Israeli entrepreneur Tal Dilian, it offers surveillance and hacking solution to law enforcement and intelligence agencies. Pierluigi Paganini.

Surveillance

Surveillance Spyware Mobile Hacking

Anonymous leaked 128GB of data stolen from Russian ISP Convex revealing FSB’s warrantless surveillance

Security Affairs

FEBRUARY 7, 2023

The popular collective Anonymous has leaked 128 GB of data allegedly stolen from the Russian Internet Service Provider Convex. The collective Anonymous released last week 128 gigabytes of documents that were allegedly stolen from the Russian Internet Service Provider Convex. ” reads a statement sent by Caxxii to the Kyiv Post.”

Surveillance

Surveillance Internet Internet Government

NSA buys internet browsing records from data brokers without a warrant

Security Affairs

JANUARY 29, 2024

National Security Agency (NSA) admitted to buying internet browsing records from data brokers to monitor Americans’ activity online without a court order. released documents that confirmed the National Security Agency (NSA) buys Americans’ internet browsing records without a court order. Senator Ron Wyden, D-Ore.,

Internet

Internet Internet Surveillance Government

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

US NCSC and DoS share best practices against surveillance tools

Security Affairs

JANUARY 9, 2022

The US NCSC and the Department of State published joint guidance on defending against attacks using commercial surveillance tools. In the last years, we have reported several cases of companies selling commercial surveillance tools to governments and other entities that have used them for malicious purposes. Pierluigi Paganini.

Surveillance

Surveillance Mobile Spyware Malware

An RCE in Annke video surveillance product allows hacking the device

Security Affairs

AUGUST 27, 2021

Researchers from Nozomi Networks discovered a critical vulnerability that can be exploited to hack a video surveillance product made by Annke. The vulnerability, tracked as CVE-2021-32941 can be exploited by an attacker to hack a video surveillance product made by Annke, a provider of home and business security solutions.

Surveillance

Surveillance Hacking Firmware Manufacturing

Israeli surveillance firm Candiru used Windows zero-days to deploy spyware

Security Affairs

JULY 15, 2021

Experts said that Israeli surveillance firm Candiru, tracked as Sourgum, exploited zero-days to deliver a new Windows spyware. Microsoft and Citizen Lab believe that the secretive Israel-based Israeli surveillance firm Candiru, tracked as Sourgum, used Windows zero-day exploits to deliver a new Windows spyware dubbed DevilsTongue.

Spyware

Spyware Surveillance Manufacturing Government

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Security Affairs

JUNE 24, 2022

Researchers from Google’s Threat Analysis Group (TAG) revealed that the Italian surveillance firm RCS Labs was helped by some Internet service providers (ISPs) in Italy and Kazakhstan to infect Android and iOS users with their spyware. SecurityAffairs – hacking, RCS Labs). Pierluigi Paganini.

Surveillance

Surveillance Mobile Spyware Telecommunications

Camera tricks: Privacy concerns raised after massive surveillance cam breach

SC Magazine

MARCH 10, 2021

Pictured: a Dome Series security camera from Verkada. A hacking collective compromised roughly 150,000 internet-connected surveillance cameras from Verkada, Inc., When surveillance leads to spying. It is deeply invasive for anyone who’s captured on film.”.

Surveillance

Surveillance IoT Accountability Passwords

CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 1, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added nine new vulnerabilities to its Known Exploited Vulnerabilities Catalog. The exploits were used to install commercial spyware and malicious apps on targets’ devices. Google TAG shared indicators of compromise (IoCs) for both campaigns.

Spyware

Spyware Surveillance Mobile Education

European firm DSIRF behind the attacks with Subzero surveillance malware

Security Affairs

JULY 28, 2022

The Microsoft Threat Intelligence Center (MSTIC) and the Microsoft Security Response Center (MSRC) researchers linked a threat group known as Knotweed to an Austrian surveillance firm named DSIRF, known for using multiple Windows and Adobe zero-day exploits. SecurityAffairs – hacking, Subzero malware). Pierluigi Paganini.

Surveillance

Surveillance Malware Authentication DNS

Spyware, ransomware and Nation-state hacking: Q&A from a recent interview

Security Affairs

FEBRUARY 10, 2022

I transcribed a recent interview, here some questions and answers about nation-state hacking, spyware, and cyber warfare. Enjoy” How has spyware changed the rules of cyber security in recent years? What will cyber security look like now that those tools are all over the internet? Anyway, it is not the only one.

Spyware

Spyware Hacking Ransomware Surveillance

Expert found Russia’s SORM surveillance equipment leaking user data

Security Affairs

AUGUST 30, 2019

A Russian security researcher has found that hardware wiretapping equipment composing Russia’s SORM surveillance system had been leaking user data. SORM is a mass surveillance system that allows the Government of Moscow to track online activities of single individuals thanks to the support of the Russian ISPs.

Surveillance

Surveillance Firmware Mobile Advertising

An Iranian group hacked Israeli CCTV cameras, defense was aware but didn’t block it

Security Affairs

DECEMBER 23, 2022

An Iranian group hacked dozens of CCTV cameras in Israel in 2021 and maintained access for a long period of time. A picture shows a security camera of a big security organization that was hacked by Iranian hackers, in Jerusalem, November 24, 2022. The Moses Staff group claimed it had hacked security cameras.

Hacking

Hacking Surveillance Internet Internet

Internet disruption in Russia coincided with the introduction of restrictions

Security Affairs

MARCH 12, 2021

Experts at the NetBlocks Internet Observatory observed this week a temporary disruption of internet service in Russia due to new restrictions. On Wednesday 10 March 2021, researchers from Network data from the NetBlocks Internet Observatory observed the disruption of internet service provided by the Russian operator Rostelecom.

Internet

Internet Internet Mobile Hacking

Commercial spyware vendors are behind most zero-day exploits discovered by Google TAG

Security Affairs

FEBRUARY 6, 2024

The latest report published by Google Threat Analysis Group (TAG), titled “ Buying Spying, an in-depth report with our insights into Commercial Surveillance Vendors (CSVs )”, warns of the rise of commercial spyware vendors and the risks to free speech, the free press, and the open internet. ” concludes Google. .

Spyware

Spyware Surveillance Government Software

3.5m IP cameras exposed, with US in the lead

Security Affairs

DECEMBER 14, 2022

The number of internet-facing cameras in the world is growing exponentially. Businesses and homeowners increasingly rely on internet protocol (IP) cameras for surveillance. New research by Cybernews shows an exponential rise in the uptake of internet-facing cameras. Surge in internet-facing cameras.

Surveillance

Surveillance Manufacturing Passwords Internet

A consumer-grade spyware app found in check-in systems of 3 US hotels

Security Affairs

MAY 22, 2024

The security researcher Eric Daigle discovered a commercial spyware app, called pcTattletale, on the check-in systems of at least three Wyndham hotels across the US, TechCrunch first reported. Daigle discovered the commercial surveillance software on the hotel check-in systems while investigating consumer-grade spyware (aka stalkerware ).

Spyware

Spyware Surveillance Software Internet

Pegasus spyware used to spy on a Polish mayor

Security Affairs

MARCH 3, 2023

According to rumors, the Polish special services are using surveillance software to spy on government opponents. The news of the hack was reported by the Gazeta Wyborcza daily, and unfortunately, it isn’t the first time that the Pegasus spyware was used in the country.

Spyware

Spyware Surveillance Hacking Government

Austria investigates DSIRF firm for allegedly developing Subzero spyware

Security Affairs

AUGUST 2, 2022

At the end of July, Microsoft Threat Intelligence Center (MSTIC) and the Microsoft Security Response Center (MSRC) researchers linked a threat group known as Knotweed to an Austrian surveillance firm named DSIRF, known for using multiple Windows and Adobe zero-day exploits. SecurityAffairs – hacking, DSIRF). Pierluigi Paganini.

Spyware

Spyware Surveillance Banking Hacking

Snowden Ten Years Later

Schneier on Security

JUNE 6, 2023

In 2013 and 2014, I wrote extensively about new revelations regarding NSA surveillance based on the documents provided by Edward Snowden. Reading about the NSA’s hacking abilities will do that to you. Could agents take control of my computer over the Internet if they wanted to? I wrote the essay below in September 2013.

Surveillance

Surveillance Computers and Electronics Encryption Government

Hundreds of malicious Chrome browser extensions used to spy on you!

Security Affairs

JUNE 20, 2020

Malicious Chrome browser extensions were employed in a surveillance campaign on a large scale, millions of users potentially impacted. ” reads the analysis published by Awake Security. The domains were found hosting several browser-based surveillance tools and malware. SecurityAffairs – hacking, Chrome).

Surveillance

Surveillance Internet Internet Advertising

Google links three exploitation frameworks to Spanish commercial spyware vendor Variston

Security Affairs

NOVEMBER 30, 2022

Google’s Threat Analysis Group (TAG) linked three exploitation frameworks to a Spanish surveillance spyware vendor named Variston. Officially, Variston claims to provide custom security solutions and custom patches for embedded system. SecurityAffairs – hacking, Variston). ” TAG concludes. Pierluigi Paganini.

Spyware

Spyware Surveillance Risk Internet

Jeff Moss on the Evolution of Hacking at SecTor 2021

ForAllSecure

NOVEMBER 3, 2021

His talk was nostalgic, reflecting on the 40+ years of computer hacking. Moss also said that all hacking is not infosec and that all infosec is not hacking. “Hacking can provide a lot of joy and absolutely no income. But hacking, not so much. Where with infosec the goal is to produce income. It’s a job.

Hacking

Hacking InfoSec Internet Internet

Russia is going to disconnect from the internet as part of a planned test

Security Affairs

FEBRUARY 16, 2019

Russia plans to disconnect the country from the internet as part of an experiment aimed at testing the response to cyber attacks that should isolate it. Russia plans to conduct the country from the Internet for a limited period of time to conduct a test aimed at assessing the security of its infrastructure. and Yandex.ru

Internet

Internet Internet DNS Cyber Attacks

Kalay cloud platform flaw exposes millions of IoT devices to hack

Security Affairs

AUGUST 17, 2021

Most of the devices using the platform are video surveillance products such as IP cameras and baby monitors, an attacker could exploit this flaw to eavesdrop audio and video data. SecurityAffairs – hacking, CVE-2021-28372). The attacker could also use RPC (remote procedure call) functionality to completely take over the device.

IoT

IoT Hacking Social Engineering Firmware

Kazakhstan wants to intercept all HTTPS Internet traffic of its citizens

Security Affairs

JULY 22, 2019

The Kazakhstan authorities issued an advisory to local Internet Service Providers (ISPs) asking them to allow their customers to access the Internet only after the installation on their devices of government-issued root certificates. SecurityAffairs – Kazakhstan, surveillance). ” states Tele2. Pierluigi Paganini.

Internet

Internet Internet Encryption Government

Security Affairs newsletter Round 429 by Pierluigi Paganini – International edition

Security Affairs

JULY 23, 2023

Multiple DDoS botnets were observed targeting Zyxel devices CISA warns of attacks against Citrix NetScaler ADC and Gateway Devices Experts believe North Korea behind JumpCloud supply chain attack Nice Suzuki, sport: shame dealer left your data up for grabs Experts attribute WyrmSpy and DragonEgg spyware to the Chinese APT41 group ALPHV/BlackCat and (..)

DDOS

DDOS Hacking Spyware Surveillance

Turkish Sea Turtle APT targets Dutch IT and Telecom firms

Security Affairs

JANUARY 7, 2024

The threat actors gathered personal information on minority groups and potential political dissents. “The stolen information is likely to be exploited for surveillance or intelligence gathering on specific groups and or individuals.” Reduce the number of systems that can be reached over internet using SSH.

Media

Media Accountability Telecommunications Government

Google: four zero-day flaws have been exploited in the wild

Security Affairs

JULY 14, 2021

The four security flaws were discovered earlier this year and affect Google Chrome, Internet Explorer, and WebKit browser engine. “We assess three of these exploits were developed by the same commercial surveillance company that sold these capabilities to two different government-backed actors. . Pierluigi Paganini.

Surveillance

Surveillance Government Internet Internet

Security Affairs newsletter Round 453 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JANUARY 7, 2024

Experts spotted a new macOS Backdoor named SpectralBlur linked to North Korea Merck settles with insurers regarding a $1.4

Artificial Intelligence

Artificial Intelligence Data breaches Scams Insurance

A flaw in Dahua IP Cameras allows full take over of the devices

Security Affairs

JULY 31, 2022

. “We’re publishing the details of a new vulnerability (tracked under CVE-2022-30563) affecting the implementation of the Open Network Video Interface Forum (ONVIF) WS-UsernameToken authentication mechanism in some IP cameras developed by Dahua, a very popular manufacturer of IP-based surveillance solutions.” Pierluigi Paganini.

Surveillance

Surveillance Authentication Telecommunications Manufacturing

Hikvision fixed a critical flaw in Hybrid SAN and cluster storage products?

Security Affairs

APRIL 13, 2023

Chinese video surveillance giant Hikvision addressed a critical vulnerability in its Hybrid SAN and cluster storage products. Chinese video surveillance giant Hikvision addressed an access control vulnerability, tracked as CVE-2023-28808, affecting its Hybrid SAN and cluster storage products.

Surveillance

Surveillance Education Media Hacking

IoT and Cybersecurity: What’s the Future?

Security Affairs

MAY 2, 2022

They continuously send and receive data via the internet and can be the easiest way for a hacker to access your home network. In March 2021, hackers gained access to a security company’s surveillance cameras and live-streamed those video feeds from hospitals, jails, schools, police stations, gyms, and even Tesla.

IoT

IoT Cybersecurity VPN Internet

Google TAG shares details about exploit chains used to install commercial spyware

Security Affairs

MARCH 29, 2023

This was recently highlighted by blog posts from Project Zero and Github Security Lab.” ” The second campaign was spotted in December 2022 when the researchers discovered an exploit chain targeting the latest version of the Samsung Internet Browser using multiple zero-days and n-days. ” concludes the report.

Spyware

Spyware Surveillance Firmware Internet

Denmark intel helped US NSA to spy on European politicians

Security Affairs

MAY 31, 2021

Danish Defense Intelligence Service (Danish: Forsvarets Efterretningstjeneste, FE) allowed the US National Security Agency (NSA) to tap into a primary internet and telecommunications hub in Denmark, the operation allowed the US intelligence agency to spy on the communications of European politicians. SecurityAffairs – hacking, NSA).

Telecommunications

Telecommunications Surveillance Internet Internet

Security Affairs newsletter Round 449 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 10, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Will Enable Mass Spying Reddit Says Leaked U.S.-U.K.

Data breaches

Data breaches Ransomware Hacking Financial Services

Experts Explain How to Bypass Recent Improvement of China’s Great Firewall

Security Affairs

JANUARY 31, 2021

Last year, the group published a detailed analysis on how the Chinese government has improved its surveillance system to detect and block the popular circumvention tools Shadowsocks and its variants. Shadowsocks is a free and open-source encryption protocol project, widely used in China to circumvent Internet censorship.

Firewall

Firewall Surveillance Internet Internet

FBI warns swatting attacks on owners of smart devices

Security Affairs

JANUARY 2, 2021

According to the alert issued by the FBI, the swatters have been hijacking smart devices such as video and audio capable home surveillance devices. “Recently, offenders have been using victims’ smart devices, including video and audio capable home surveillance devices, to carry out swatting attacks. Pierluigi Paganini.

Passwords

Passwords Surveillance Manufacturing Accountability

Will iPhone’s New “Lockdown Mode” Create Dangerous Overconfidence In Apple’s CyberSecurity Capabilities?

Joseph Steinberg

JULY 13, 2022

Not all of the elements within Lockdown Mode are completely new – some have been available and enabled by users (including me) for years – but, Lockdown mode does dramatically simplify the process of enabling better security on Apple devices. Flip phones are not totally immune from government surveillance and action either.).

Cybersecurity

Cybersecurity Artificial Intelligence Government Social Engineering

QNAP warns of a new wave of DeadBolt ransomware attacks against its NAS devices

Security Affairs

MAY 20, 2022

Taiwanese vendor QNAP is asking users to install the latest update on their NAS devices and avoid exposing them on the Internet. “QNAP urges all NAS users to check and update QTS to the latest version as soon as possible, and avoid exposing their NAS to the Internet.” SecurityAffairs – hacking, NAS). and QTS 4.4.1.

Ransomware

Ransomware Internet Internet Firmware

Russian spies are attempting to tap transatlantic undersea cables

Security Affairs

MARCH 1, 2020

Ireland is a strategic place for intercontinental communications because it represents the place where undersea cables which carry internet traffic connect to Europe. Despite the Cable & Wireless bought by Vodafone in July 2012, the Nigella surveillance access point remained active as of April 2013. Source [link].

Wireless

Wireless Surveillance Telecommunications Advertising

After SIMJacker, WIBattack hacking technique disclosed. Billions of users at risk

Security Affairs

SEPTEMBER 28, 2019

Researchers are warning of a new variant of recently disclosed SimJacker attack, dubbed WIBattack , that could expose millions of mobile phones to remote hacking. WIBattack is a new variant of the recently discovered Simjacker attack method that could expose millions of mobile phones to remote hacking. Pierluigi Paganini.

Hacking

Hacking Mobile Risk Advertising

An attacker was able to siphon audio feeds from multiple Clubhouse rooms

Security Affairs

FEBRUARY 22, 2021

Representatives of the Stanford Internet Observatory declared that users should assume all conversations are being recorded by the company, a circumstance that raises concerns because they have no information on how the conversations are stored. Lets talk about the Clubhouse 'hack' which wasn't. Pierluigi Paganini.

CSO

CSO Internet Internet Surveillance

Security Affairs newsletter Round 305

Security Affairs

MARCH 14, 2021

If you want to receive the weekly Security Affairs Newsletter for free subscribe here. SecurityAffairs – hacking, newsletter). The post Security Affairs newsletter Round 305 appeared first on Security Affairs. Pierluigi Paganini.

Surveillance

Surveillance DDOS Cryptocurrency Ransomware

Surveillance firm’s leaked docs show the purchase of an $8M iOS RCE zero-day exploit?

Anonymous leaked 128GB of data stolen from Russian ISP Convex revealing FSB’s warrantless surveillance

Webinars

Trending Sources

NSA buys internet browsing records from data brokers without a warrant

Webinars

US NCSC and DoS share best practices against surveillance tools

An RCE in Annke video surveillance product allows hacking the device

Israeli surveillance firm Candiru used Windows zero-days to deploy spyware

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Camera tricks: Privacy concerns raised after massive surveillance cam breach

CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog

European firm DSIRF behind the attacks with Subzero surveillance malware

Spyware, ransomware and Nation-state hacking: Q&A from a recent interview

Expert found Russia’s SORM surveillance equipment leaking user data

An Iranian group hacked Israeli CCTV cameras, defense was aware but didn’t block it

Internet disruption in Russia coincided with the introduction of restrictions

Commercial spyware vendors are behind most zero-day exploits discovered by Google TAG

3.5m IP cameras exposed, with US in the lead

A consumer-grade spyware app found in check-in systems of 3 US hotels

Pegasus spyware used to spy on a Polish mayor

Austria investigates DSIRF firm for allegedly developing Subzero spyware

Snowden Ten Years Later

Hundreds of malicious Chrome browser extensions used to spy on you!

Google links three exploitation frameworks to Spanish commercial spyware vendor Variston

Jeff Moss on the Evolution of Hacking at SecTor 2021

Russia is going to disconnect from the internet as part of a planned test

Kalay cloud platform flaw exposes millions of IoT devices to hack

Kazakhstan wants to intercept all HTTPS Internet traffic of its citizens

Security Affairs newsletter Round 429 by Pierluigi Paganini – International edition

Turkish Sea Turtle APT targets Dutch IT and Telecom firms

Google: four zero-day flaws have been exploited in the wild

Security Affairs newsletter Round 453 by Pierluigi Paganini – INTERNATIONAL EDITION

A flaw in Dahua IP Cameras allows full take over of the devices

Hikvision fixed a critical flaw in Hybrid SAN and cluster storage products?

IoT and Cybersecurity: What’s the Future?

Google TAG shares details about exploit chains used to install commercial spyware

Denmark intel helped US NSA to spy on European politicians

Security Affairs newsletter Round 449 by Pierluigi Paganini – INTERNATIONAL EDITION

Experts Explain How to Bypass Recent Improvement of China’s Great Firewall

FBI warns swatting attacks on owners of smart devices

Will iPhone’s New “Lockdown Mode” Create Dangerous Overconfidence In Apple’s CyberSecurity Capabilities?

QNAP warns of a new wave of DeadBolt ransomware attacks against its NAS devices

Russian spies are attempting to tap transatlantic undersea cables

After SIMJacker, WIBattack hacking technique disclosed. Billions of users at risk

An attacker was able to siphon audio feeds from multiple Clubhouse rooms

Security Affairs newsletter Round 305

Stay Connected