2012, Accountability and Surveillance - Cyber Security Informer

Faulty DoD Cybersecurity Leaves U.S. At Risk of Missile Attacks

Adam Levin

DECEMBER 18, 2018

The report makes several recommendations to mitigate the systemic vulnerabilities, most of them widely recognized best cybersecurity practices including multi-factor authentication, increased video surveillance at facilities, securing server racks and placing tighter controls on removable media such as USB keys.

Risk

Risk Cybersecurity Surveillance Government

AI and Trust

Schneier on Security

DECEMBER 4, 2023

I wrote about this in 2012 in a book called Liars and Outliers. We are both under constant surveillance and are competing for star rankings. They have social media accounts with personalities. Surveillance is the business model of the Internet. And the incentives of surveillance capitalism are just too much to resist.

Government

Government Surveillance Artificial Intelligence Marketing

Law enforcement agencies can extract data from thousands of cars’ infotainment systems

Security Affairs

DECEMBER 4, 2022

Recently security the security expert researcher Sam Curry warned of vulnerabilities in mobile apps that exposed Hyundai and Genesis car models after 2012 to remote attacks. ” Privacy advocates are raising the alarm on surveillance activities operated by law enforcement by collecting data from connected systems in modern cars.

Surveillance

Surveillance Technology Hacking Mobile

Here’s what data the FBI can get from WhatsApp, iMessage, Signal, Telegram, and more

Malwarebytes

DECEMBER 1, 2021

Unlike other apps, it doesn’t require you to enter an email address or phone number to create an account. Provides account (i.e. User activity on WeChat has been known to be analyzed, tracked and shared with Chinese authorities upon request as part of the mass surveillance network in China. Date and time account created.

Encryption

Encryption Computers and Electronics Backups Accountability

Dangerous monitoring tool mSpy suffers data breach, exposes customer details

Malwarebytes

JULY 12, 2024

Without getting consent from a child, these surveillance capabilities represent serious invasions of privacy. ” In an earlier archived version of mSpy’s website from 2012 , the company touts that its app can help you “discover if your partner is cheating on you.” Such programs are easy to buy and install.

Data breaches

Data breaches Mobile Surveillance Advertising

Malicious app exploiting CVE-2019-2215 zero-day available in Google Play since March

Security Affairs

JANUARY 7, 2020

According to Stone, the CVE-2019-2215 vulnerability was being used or sold by the controversial surveillance firm NSO Group , it was exploited by its surveillance software Pegasus. SideWinder, a group that has been active since 2012, is a known threat and has reportedly targeted military entities’ Windows machines.

Surveillance

Surveillance Advertising Marketing Encryption

Top VC Firms in Cybersecurity of 2022

eSecurity Planet

APRIL 26, 2022

Company Sector Year Status Isovalent Cloud security 2020 Private Illumio Cloud security 2015 Private SignalFx Monitoring 2015 Acquired: Splunk CipherCloud Cloud security 2012 Acquired: Lookout Lookout Mobile security 2011 Private. Mimecast Email security 2012 Nasdaq: MIME. a16z Investments. Bessemer Venture Partners. Greylock Partners.

Cybersecurity

Cybersecurity Technology Marketing Healthcare

Facebook May Have Gotten Hacked, and Maybe It’s Better We Don’t Know

Adam Levin

APRIL 8, 2019

A week after it landed with a curious (and most likely spurious) thud, Zuckerberg’s announcement about a new tack on consumer privacy still has the feel of an unexpected message from some parallel universe where surveillance (commercial and/or spycraft) isn’t the new normal.

Hacking

Hacking Data privacy Artificial Intelligence System Administration

Inside Mirai the infamous IoT Botnet: A Retrospective Analysis

Elie

DECEMBER 2, 2017

What’s remarkable about these record-breaking attacks is they were carried out via small, innocuous Internet-of-Things (IoT) devices like home routers, air-quality monitors, and personal surveillance cameras. his blog suffered 269 DDOS attacks between July 2012 and September 2016.

IoT

IoT DDOS Internet Internet

The future of cyberconflicts

SecureList

DECEMBER 18, 2020

While the newer actors are filling the skills gap quickly, the most advanced parties are scaling to obtain global surveillance capabilities through technological supremacy. On June 27, 2017, a Ukrainian tax accounting package used by most companies in the country (MeDoc) downloaded a malicious update that contained ransomware.

Government

Government Technology Malware Hacking

Snowden Ten Years Later

Schneier on Security

JUNE 6, 2023

In 2013 and 2014, I wrote extensively about new revelations regarding NSA surveillance based on the documents provided by Edward Snowden. It’s amazing that one person could have had so much access with so little accountability, and could sneak all of this data out without raising any alarms. And Edward Snowden?

Surveillance

Surveillance Computers and Electronics Government Encryption

Russia’s SolarWinds Attack

Schneier on Security

DECEMBER 28, 2020

Recent news articles have all been talking about the massive Russian cyberattack against the United States, but that’s wrong on two accounts. In the interests of surveillance, the NSA has pushed for an insecure cell phone encryption standard and a backdoor in random number generators (important for secure encryption).

Hacking

Hacking Government Internet Internet

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Krebs on Security

SEPTEMBER 30, 2024

KrebsOnSecurity has learned that many of the man’s alleged targets were members of UGNazi , a hacker group behind multiple high-profile breaches and cyberattacks back in 2012. One of many self portraits published on the Instagram account of Enzo Zelocchi. “ JoshTheGod ,” referred to in the Iza complaint as “M.I.”

Cryptocurrency

Cryptocurrency Government Internet Internet

CISSPs from Around the Globe: An Interview with James Wright

CyberSecurity Insiders

SEPTEMBER 8, 2021

I discovered a handful of security vulnerabilities that allowed an attacker with physical access to the iOS device to gain unauthorized access to a victim’s account even if they had logged out of LastPass. I was a delegate to Unitarian Universalist General Assembly, the church's international leadership body, in 2012.

Computers and Electronics

Computers and Electronics Architecture Encryption Education

APT trends report Q3 2023

SecureList

OCTOBER 17, 2023

This strategic shift signals its intent to intensify its surveillance capabilities and expand its range of targets. The stolen cookies can be used later to remotely access victims’ email accounts. StrongyPity (aka PROMETHIUM) is a Turkish-speaking threat actor known to have been active since at least 2012.

Government

Government Malware Manufacturing VPN

Highlights from the New U.S. Cybersecurity Strategy

Krebs on Security

MARCH 2, 2023

. “Regulations for other industries went through a similar transformation, and we saw a positive result — there’s now an expectation of appropriate due care, and accountability for those who fail to comply. ” Many of the U.S.

Cybersecurity

Cybersecurity Insurance Cyber Insurance Government

Cyber Security Informer

Faulty DoD Cybersecurity Leaves U.S. At Risk of Missile Attacks

AI and Trust

Trending Sources

Law enforcement agencies can extract data from thousands of cars’ infotainment systems

Here’s what data the FBI can get from WhatsApp, iMessage, Signal, Telegram, and more

Dangerous monitoring tool mSpy suffers data breach, exposes customer details

Malicious app exploiting CVE-2019-2215 zero-day available in Google Play since March

Top VC Firms in Cybersecurity of 2022

Facebook May Have Gotten Hacked, and Maybe It’s Better We Don’t Know

Inside Mirai the infamous IoT Botnet: A Retrospective Analysis

The future of cyberconflicts

Snowden Ten Years Later

Russia’s SolarWinds Attack

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

CISSPs from Around the Globe: An Interview with James Wright

APT trends report Q3 2023

Highlights from the New U.S. Cybersecurity Strategy

Stay Connected