2012, Software and Surveillance - Cyber Security Informer

On Chinese "Spy Trains"

Schneier on Security

SEPTEMBER 26, 2019

The reason these threats are so real is that it's not difficult to hide surveillance or control infrastructure in computer components, and if they're not turned on, they're very difficult to find. Even so, these examples illustrate an important point: there's no escaping the technology of inevitable surveillance. Our allies do it.

Surveillance

Surveillance Wireless Government Internet

Snowden speaks about the role of surveillance firm NSO Group in Khashoggi murder

Security Affairs

NOVEMBER 9, 2018

Snowden warns of abuse of surveillance software that also had a role in the murder of the Saudi Arabian journalist Jamal Khashoggi. Snowden claimed that Israeli company NSO Group had sold Saudi Arabia software that was used to compromise the smartphone of one of Khashoggi’s friends. COUNTRY NEXUS. 1 (Source: Citizen Lab ).

Surveillance

Surveillance Spyware Software Advertising

Chinese Supply-Chain Attack on Computer Systems

Schneier on Security

FEBRUARY 13, 2021

That included an FBI counterintelligence investigation that began around 2012, when agents started monitoring the communications of a small group of Supermicro workers, using warrants obtained under the Foreign Intelligence Surveillance Act , or FISA, according to five of the officials. We need some fundamental security research here.

Surveillance

Surveillance Government Internet Internet

RedTorch Formed from Ashes of Norse Corp.

Krebs on Security

MARCH 22, 2021

Flushed with venture capital funding in 2012, Norse’s founders started hiring dozens of talented cybersecurity professionals. An ad for RedTorch’s “Cheetah” counter-surveillance tech. By 2014 it was throwing lavish parties at top Internet security conferences.

Surveillance

Surveillance Computers and Electronics Internet Internet

North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy

Security Affairs

MARCH 13, 2025

North Korea-linked threat actor ScarCruft (aka APT37 , Reaper, and Group123) is behind a previously undetected Android surveillance tool namedKoSpythat was used to target Korean and English-speaking users. The most recent samples detected by the cybersecurity firm are dated March 2024. ” reads the report published by the researchers.

Spyware

Spyware Surveillance Encryption Malware

Amnesty International employee targeted with NSO group surveillance malware

Security Affairs

AUGUST 1, 2018

An employee at Amnesty International has been targeted with Israeli surveillance malware, the news was revealed by the human rights group. Amnesty International revealed that one of its employees was targeted with a surveillance malware developed by an Israeli firm. com , pine-sales[.]com com , and ecommerce-ads[.]org.”

Surveillance

Surveillance Malware Spyware Mobile

Experts Explain How to Bypass Recent Improvement of China’s Great Firewall

Security Affairs

JANUARY 31, 2021

Last year, the group published a detailed analysis on how the Chinese government has improved its surveillance system to detect and block the popular circumvention tools Shadowsocks and its variants. ” reads the paper published by the experts.

Firewall

Firewall Surveillance Internet Internet

Law enforcement agencies can extract data from thousands of cars’ infotainment systems

Security Affairs

DECEMBER 4, 2022

Recently security the security expert researcher Sam Curry warned of vulnerabilities in mobile apps that exposed Hyundai and Genesis car models after 2012 to remote attacks. ” Privacy advocates are raising the alarm on surveillance activities operated by law enforcement by collecting data from connected systems in modern cars.

Surveillance

Surveillance Technology Hacking Mobile

FireEye and Microsoft execs, senators dissect mandatory breach disclosure in wake of SolarWinds

SC Magazine

FEBRUARY 24, 2021

The hearing comes about two months after FireEye’s revelation that hackers used a malicious software update on the SolarWinds Orion IT management system to hack several government agencies and private firms — including FireEye itself. in 2012 to smooth the process of notifying government. Joe Lieberman, I-Conn.,

Surveillance

Surveillance Government Hacking Software

Dangerous monitoring tool mSpy suffers data breach, exposes customer details

Malwarebytes

JULY 12, 2024

Without getting consent from a child, these surveillance capabilities represent serious invasions of privacy. ” In an earlier archived version of mSpy’s website from 2012 , the company touts that its app can help you “discover if your partner is cheating on you.”

Data breaches

Data breaches Mobile Surveillance Advertising

Top VC Firms in Cybersecurity of 2022

eSecurity Planet

APRIL 26, 2022

billion in 2021, and growing concerns over data security , software supply chains , and ransomware suggest the market will remain strong through economic ups and downs. Formed in 1965, Greylock Partners has a long history of investing in enterprise and consumer software for seed and early-stage and beyond. AllegisCyber Capital.

Cybersecurity

Cybersecurity Technology Marketing Healthcare

Advanced threat predictions for 2023

SecureList

NOVEMBER 14, 2022

Last June, Google’s TAG team released a blog post documenting attacks on Italian and Kazakh users that they attribute to RCS Lab, an Italian offensive software vendor. Although 2022 did not feature any mobile intrusion story on the scale of the Pegasus scandal, a number of 0-days have still been exploited in the wild by threat actors.

Firmware

Firmware Surveillance Mobile Telecommunications

Malicious app exploiting CVE-2019-2215 zero-day available in Google Play since March

Security Affairs

JANUARY 7, 2020

According to Stone, the CVE-2019-2215 vulnerability was being used or sold by the controversial surveillance firm NSO Group , it was exploited by its surveillance software Pegasus. SideWinder, a group that has been active since 2012, is a known threat and has reportedly targeted military entities’ Windows machines.

Surveillance

Surveillance Advertising Marketing Encryption

Cybersecurity Report: June 29, 2015

SiteLock

AUGUST 27, 2021

Popular Security Software Came Under Relentless NSA and GCHQ Attacks. According to Edward Snowden, the National Security Agency and the British Government Communications Headquarters have worked to subvert anti-virus and other security software to track users and infiltrate networks. WikiLeaks: NSA Snooped on French Leaders.

Cybersecurity

Cybersecurity Surveillance Government Consumer Protection

Why ForAllSecure is a 2021 SC Awards Best Enterprise Security Solution Finalist

ForAllSecure

APRIL 27, 2021

It’s 2021 and as we all know software is everywhere -- it has even made its way into our everyday household items like our Internet-connected toothbrushes and coffee cups. How does any organization manage their software’s security if the man-hours are attributed to software development? The Future is Fuzzing.

Software

Software Technology Surveillance Hacking

Why ForAllSecure is a 2021 SC Awards Best Enterprise Security Solution Finalist

ForAllSecure

APRIL 27, 2021

It’s 2021 and as we all know software is everywhere -- it has even made its way into our everyday household items like our Internet-connected toothbrushes and coffee cups. How does any organization manage their software’s security if the man-hours are attributed to software development? The Future is Fuzzing.

Software

Software Technology Surveillance Hacking

The future of cyberconflicts

SecureList

DECEMBER 18, 2020

Intrusion software just as sophisticated as the frameworks developed by APT actors is gradually released to the public for free. While the newer actors are filling the skills gap quickly, the most advanced parties are scaling to obtain global surveillance capabilities through technological supremacy.

Government

Government Technology Malware Hacking

If I Go to a Protest, What Kinds of Personal Information Might Police Collect About Me? (important guest post)

Architect Security

SEPTEMBER 24, 2020

And when thousands of protesters are out on the street, the opportunity is ripe for law enforcement to not only surveil the scene but to collect personal information that it can then hold on to for a long time. So your experience will depend on where you are. It’s one thing to identify someone based on their tattoos,” said Maass. “But

Surveillance

Surveillance Data collection Media Software

Snowden Ten Years Later

Schneier on Security

JUNE 6, 2023

In 2013 and 2014, I wrote extensively about new revelations regarding NSA surveillance based on the documents provided by Edward Snowden. Everything has one: every program, every piece of equipment, every piece of software. Has the company that makes my encryption software deliberately weakened the implementation for it?

Surveillance

Surveillance Computers and Electronics Government Encryption

Russia’s SolarWinds Attack

Schneier on Security

DECEMBER 28, 2020

Sometime before March, hackers working for the Russian SVR — previously known as the KGB — hacked into SolarWinds and slipped a backdoor into an Orion software update. (We In 2012, Iran attacked the Saudi national oil company. Hardening widely used software like Orion (or the core internet protocols) helps everyone.

Hacking

Hacking Government Internet Internet

CISSPs from Around the Globe: An Interview with James Wright

CyberSecurity Insiders

SEPTEMBER 8, 2021

Philip Zimmermann was at the center of attention in the 1990s with his security software known as PGP. Philip Zimmermann’s stance on human rights and privacy closely aligns with my core belief that technology should enhance one's life and enable private channels to exchange and develop ideas without surveillance and censorship.

Computers and Electronics

Computers and Electronics Architecture Encryption Education

NSO mobile Pegasus Spyware used in operations in 45 countries

Security Affairs

SEPTEMBER 18, 2018

Pegasus is a surveillance malware developed by the Israeli surveillance NSO Group that could infect both iPhones and Android devices, it is sold exclusively to the governments and law enforcement agencies. Our technique identified a total of 45 countries where Pegasus operators may be conducting surveillance operations.

Spyware

Spyware Mobile Surveillance DNS

APT trends report Q3 2023

SecureList

OCTOBER 17, 2023

The USB drive contains a protected partition which can only be accessed via custom software bundled on an unencrypted part of the USB and a passphrase known to the user. This strategic shift signals its intent to intensify its surveillance capabilities and expand its range of targets.

Government

Government Malware Manufacturing VPN

NYT Report: U.S. Cyber units planted destructive Malware in Russian Power Grid

Security Affairs

JUNE 17, 2019

cyber army is targeting the Russian power grid since at least 2012 with reconnaissance operations, but recently it also carried out more offensive operations. “Since at least 2012, current and former officials say, the United States has put reconnaissance probes into the control systems of the Russian electric grid.”

Malware

Malware Energy and Utilities Cyber Attacks Advertising

Highlights from the New U.S. Cybersecurity Strategy

Krebs on Security

MARCH 2, 2023

The Biden administration today issued its vision for beefing up the nation’s collective cybersecurity posture, including calls for legislation establishing liability for software products and services that are sold with little regard for security. ” Many of the U.S.

Cybersecurity

Cybersecurity Insurance Cyber Insurance Government

Cyber Security Informer

On Chinese "Spy Trains"

Snowden speaks about the role of surveillance firm NSO Group in Khashoggi murder

Trending Sources

Chinese Supply-Chain Attack on Computer Systems

RedTorch Formed from Ashes of Norse Corp.

North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy

Amnesty International employee targeted with NSO group surveillance malware

Experts Explain How to Bypass Recent Improvement of China’s Great Firewall

Law enforcement agencies can extract data from thousands of cars’ infotainment systems

FireEye and Microsoft execs, senators dissect mandatory breach disclosure in wake of SolarWinds

Dangerous monitoring tool mSpy suffers data breach, exposes customer details

Top VC Firms in Cybersecurity of 2022

Advanced threat predictions for 2023

Malicious app exploiting CVE-2019-2215 zero-day available in Google Play since March

Cybersecurity Report: June 29, 2015

Why ForAllSecure is a 2021 SC Awards Best Enterprise Security Solution Finalist

Why ForAllSecure is a 2021 SC Awards Best Enterprise Security Solution Finalist

The future of cyberconflicts

If I Go to a Protest, What Kinds of Personal Information Might Police Collect About Me? (important guest post)

Snowden Ten Years Later

Russia’s SolarWinds Attack

CISSPs from Around the Globe: An Interview with James Wright

NSO mobile Pegasus Spyware used in operations in 45 countries

APT trends report Q3 2023

NYT Report: U.S. Cyber units planted destructive Malware in Russian Power Grid

Highlights from the New U.S. Cybersecurity Strategy

Stay Connected