SecureList

FEBRUARY 26, 2021

The state of stalkerware in 2020 (PDF). Kaspersky’s data shows that the scale of the stalkerware issue has not improved much in 2020 compared to the last year: The number of people affected is still high. In total, 53,870 of our mobile users were affected globally by stalkerware in 2020. Main findings.

Mobile 132

Mobile Surveillance Software Technology 132

Thales Cloud Protection & Licensing

JANUARY 28, 2020

January 28, 2020 marks the 13th iteration of Data Privacy Day. The latter measure is especially important, as data-in-motion encryption helps shield an organization’s data, video, voice and metadata from eavesdropping, surveillance and other interception attempts. Its aim is to foster dialogue around the importance of privacy.

Data privacy 150

Data privacy Unstructured Data Encryption Identity Theft 150

Hot for Security

APRIL 5, 2021

Bitdefender this week has published its annual Consumer Threat Landscape Report for 2020 underscoring some of the most prevalent cyber threats targeting regular users today. A key stat: cybercrime in 2020 was marked by a visible and aggressive targeting of the human layer. Aligned efforts to capitalize on COVID-19.

Cybercrime 116

Cybercrime Ransomware Cyber threats Malware 116

The Last Watchdog

DECEMBER 31, 2019

Muthukrishnan Access control, surveillance , and testing are the three major components that comprise the physical security of a system. Surveillance includes monitoring and detecting intruders into the network. Access control is the restricting of access to a system. There are several types of access control methods used.

Cyber Risk 173

Cyber Risk Risk Firewall Surveillance 173

SecureList

NOVEMBER 29, 2021

The victim was infected by PowerShell malware and we discovered evidence that the actor had already stolen data from the victim and had been surveilling this victim for several months. Additionally, we discovered older variants of the malware, delivered via HWP documents, dating back to mid-2020. Contact: intelreports@kaspersky.com.

Surveillance 144

Surveillance Malware Phishing Encryption 144

Krebs on Security

OCTOBER 28, 2020

In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hackers had broken into its network and sold the access to a criminal group which specializes in deploying ransomware. The company has operations in 25 countries, more than 4,000 employees, and billions in revenue annually.

Hacking 358

Hacking Ransomware Banking Accountability 358

Security Affairs

MAY 1, 2023

Researchers at the Lookout Threat Lab have discovered a new Android surveillance spyware, dubbed BouldSpy, that was used by the Law Enforcement Command of the Islamic Republic of Iran (FARAJA). The researchers are tracking the spyware since March 2020, starting in 2023, multiple security experts [ 1 , 2 ] started monitoring its activity. .

Surveillance 98

Surveillance Malware Spyware Accountability 98

Security Affairs

NOVEMBER 18, 2024

Privacy Shield framework in 2020. Privacy Shield in 2020, Meta continued transferring data under a framework that was deemed insufficient to protect European citizens from U.S. government surveillance. The company faced allegations of improperly transferring sensitive data about European drivers to the U.S. Billion ($1.4

Data privacy 130

Data privacy Risk Surveillance Government 130

Security Affairs

JULY 28, 2022

The Microsoft Threat Intelligence Center (MSTIC) and the Microsoft Security Response Center (MSRC) researchers linked a threat group known as Knotweed to an Austrian surveillance firm named DSIRF, known for using multiple Windows and Adobe zero-day exploits. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Surveillance 100

Surveillance Malware Authentication Accountability 100

Malwarebytes

FEBRUARY 22, 2022

Bosch, known more for its line of refrigerators, ovens, and dishwashers, also develops and sells an entire suite of surveillance cameras. In 2020, for instance, Google implemented stricter controls against stalkerware-type applications. It shouldn’t. This is not innovation. It’s experimentation without foresight.

Surveillance 100

Surveillance Artificial Intelligence Technology Internet 100

Schneier on Security

NOVEMBER 13, 2018

And current liability laws make it hard to hold companies accountable for shoddy software security. California's new SB 327 law , which will take effect in January 2020, requires all "connected devices" to have a "reasonable security feature." It falls upon lawmakers to create laws that protect consumers.

IoT 261

IoT Manufacturing Internet Internet 261

Malwarebytes

MARCH 12, 2021

Hackers were able to gain access to camera feeds from Verkada, a tech company that specializes in video security and physical access control, to demonstrate how prevalent surveillance is, reports say. ” Kottmann was also credited for breaching Intel in August 2020 and Nissan Motors in January 2021.

Hacking 114

Hacking Surveillance Computers and Electronics Accountability 114

Security Affairs

MARCH 23, 2020

Experts observed multiple botnets exploiting zero-day vulnerabilities in DVRs for surveillance systems manufactured by Taiwan-based LILIN. Botnet operators are exploiting several zero-day vulnerabilities in digital video recorders (DVRs) for surveillance systems manufactured by Taiwan-based LILIN-.

Firmware 139

Firmware Surveillance Manufacturing Advertising 139

Krebs on Security

JULY 27, 2020

For 2020, the company estimates an overall 258 percent spike in the crime. That surveillance has helped to paint a detailed picture of how business ID thieves operate, as well as the tricks they use to gain credit in a company’s name. In 2019, Dun & Bradstreet saw more than a 100 percent increase in business identity theft.

Identity Theft 363

Identity Theft Small Business Energy and Utilities Computers and Electronics 363

Security Affairs

OCTOBER 11, 2021

Their devices were targeted between December 2019 and January 2020, during a tense political climate ahead of the 2020 Togolese presidential election.” The company denied any involvement in the surveillance campaign attributed to the Donot Team APT. ” reads the post published by Amnesty.

Spyware 103

Spyware Surveillance Accountability Mobile 103

Security Affairs

JANUARY 7, 2024

“The stolen information is likely to be exploited for surveillance or intelligence gathering on specific groups and or individuals.” Sea Turtle also used code from a publicly accessible GitHub account, which is likely under the control of the threat actor. Enable 2FA on all externally exposed accounts.

Accountability 141

Accountability Media Telecommunications Government 141

Security Affairs

MARCH 21, 2021

Hackers also posted images captured from the hacked surveillance video on Twitter with an #OperationPanopticon hashtag, published images show that they have gained root shell access to the surveillance cameras used by Telsa and Cloudflare. The initial charges are for previous hacking activities as the they date from September 2020.

Identity Theft 108

Identity Theft Computers and Electronics Surveillance Hacking 108

Security Affairs

NOVEMBER 24, 2021

Apple has filed suit to ban the Israeli surveillance firm NSO Group and parent company Q Cyber Technologies from using its product and services. federal court for illegally targeting its customers with the surveillance spyware Pegasus. Apple has sued NSO Group and its parent company Q Cyber Technologies in a U.S.

Spyware 100

Spyware Surveillance Software Hacking 100

Malwarebytes

MAY 9, 2023

We have identified attacks from the group starting in 2020, meaning that they have remained under the radar for at least three years. Malwarebytes has identified multiple operations, first dated in 2020. Notes about activity before the war OP#1 - Late 2020 The first operation we know of happened in December 2020.

Surveillance 90

Surveillance Accountability DNS Encryption 90

Security Affairs

OCTOBER 9, 2020

Cisco fixed three high-severity flaws in Webex video conferencing system, Video Surveillance 8000 Series IP Cameras and Identity Services Engine. The most severe of these vulnerabilities is a Remote Code Execution and Denial of Service issue in Cisco’s Video Surveillance 8000 Series IP Cameras. received a CVSS score of 8.8

Surveillance 98

Surveillance Engineering Advertising Authentication 98

Security Affairs

DECEMBER 4, 2022

” Privacy advocates are raising the alarm on surveillance activities operated by law enforcement by collecting data from connected systems in modern cars. “New cars are surveillance on wheels, sending sensitive passenger data to carmakers and police. ” continues Forbes.

Surveillance 111

Surveillance Technology Hacking Mobile 111

The Last Watchdog

NOVEMBER 9, 2020

A candy store for hackers A recent Forrester workforce survey showed that by mid 2020, 58 percent of corporations worldwide had at least half of their employees working from home, where an average of 11 devices lurk — connected to the internet. 2020 has been a year of tumultuous, unimaginable developments. And it’s not over yet.

IoT 279

IoT Healthcare Internet Internet 279

Security Affairs

SEPTEMBER 11, 2022

The campaigns have been conducted since 2015 and are aimed at conducting information collection and surveillance operations against individuals and organizations of strategic interest to Teheran. ” The surveillance operations conducted by the APT group involved the distribution of Android malware such as VINETHORN and PINEFLOWER.

Surveillance 100

Surveillance Social Engineering Phishing Government 100

Security Affairs

SEPTEMBER 6, 2020

Is the Belarusian government behind the surveillance Android app banned by Google? The Twitter account of Indian Prime Minister Modi was hacked Evilnum APT used Python-based RAT PyVil in recent attacks SunCrypt Ransomware behind North Carolina school district data breach U.S.

Wireless 119

Wireless Surveillance Advertising Hacking 119

Malwarebytes

OCTOBER 11, 2023

It’s spying when governments do it through opaque, mass surveillance regimes, it’s spying when companies do it through shadowy data broker networks that braid together disparate streams of information, and it’s spying when private individuals do it through unseen behavior on personal devices. The good news?

Surveillance 130

Surveillance Passwords Software Technology 130

SecureWorld News

JULY 18, 2022

The current Thai government was not exactly thrilled by this and responded with a wave of arrests and increased surveillance dramatically. The increase in surveillance also means the use of Pegasus spyware. Pegasus spyware in Thailand. If you are not familiar, Pegasus is the flagship product sold by the Israel-based NSO Group.

Spyware 98

Spyware Surveillance Government Hacking 98

SecureWorld News

AUGUST 27, 2021

Australian Parliament passed the controversial Surveillance Legislation Amendment Bill 2020, also known as the Identify and Disrupt Bill and to a few the “hacking” bill, on August 25. Account activity warrant —Allows the takeover of an individual’s online account(s) for the purpose of gathering criminal evidence.

Hacking 98

Hacking Computers and Electronics Surveillance Cybercrime 98

Security Affairs

DECEMBER 29, 2019

A flaw in Twitter App for Android could have been exploited to take over the account. Thai Officials confirmed the hack of prison surveillance cameras and the video broadcast. Top cybersecurity Predictions for 2020. 173 Million Zynga accounts were impacted in the September hack.

Cyber Attacks 86

Cyber Attacks Surveillance Advertising Ransomware 86

Duo's Security Blog

JULY 1, 2021

By enforcing local authentication via PIN, we effectively force remote attackers to “walk” to each account they want to hack. Lindsey O'Donnell, ThreatPost In 2020, Talos did an investigation of fingerprint sensors and their practical spoofability on a reasonable budget. Even weak local authentication stops most remote attacks cold.

Passwords 98

Passwords Surveillance Authentication Risk 98

Malwarebytes

APRIL 21, 2022

” John Scott-Railton recalled after finding out on July 7, 2020 that Pegasus, the highly sophisticated flagship spyware of Israel’s NSO Group, was used to infect a phone linked to the network at 10 Downing Street, the UK Prime Minister’s home and office. “When we found the No. 10 case, my jaw dropped.”

Spyware 133

Spyware Government Hacking Surveillance 133

SecureWorld News

AUGUST 10, 2021

Microsoft filed a bid protest with the Government Accountability Office on July 21, hoping to reverse the contract, or at least get a slice of the billion dollar pie. In 2020, Amazon was able to get a portion of the CIA's C2E contract, which is potentially worth up to tens of billions of dollars. NSA awards cloud contract to Amazon.

Government 98

Government Surveillance Accountability Cybersecurity 98

eSecurity Planet

JULY 21, 2021

Top public cloud provider Amazon Web Services (AWS) disabled all accounts linked to the Israeli company. Anyone and everyone is at risk, and even technology giants like Apple are ill-equipped to deal with the massive scale of surveillance at hand.”. The impact of the burgeoning scandal continues to ripple. Apple Under Fire.

Spyware 125

Spyware Mobile Government Surveillance 125

Hacker Combat

JUNE 3, 2021

Since mid-April in 2020, the Atos-owned organization has struggled to have the security loopholes fixed in vain. Further, the vulnerabilities have been allocated the Common Vulnerabilities and Exposures (CVE) identifiers CVE-2020-12500 over CVE-2020-12504. These vulnerabilities include: Backdoor account. Surveillance.

Firmware 85

Firmware Energy and Utilities Cyber Attacks Surveillance 85

SecureList

MAY 31, 2021

While investigating attacks on the defense industry in mid-2020, we were able to observe the complete life-cycle of an attack, uncovering more technical details and links to the group’s other campaigns. We saw a fall in numbers in 2020, the drop-off coinciding with the worldwide lockdowns that came in the wake of the COVID-19 pandemic.

Malware 140

Malware Adware Encryption Architecture 140

SecureList

NOVEMBER 28, 2024

The second, an article published in 2024 by the Google Threat Analysis Group, described the business model of various companies that provide commercial surveillance solutions. PhantomNet is a RAT first described by ESET in late 2020. Knowledge of this threat is sparse and the Epeius malware has never been publicly described in detail.

Malware 118

Malware Government Software Spyware 118

Thales Cloud Protection & Licensing

DECEMBER 22, 2020

Tue, 12/22/2020 - 10:08. The 2020 analysis found that customer data was by far the most-commonly compromised type of record with 80% of breached organizations saying that customer PII was affected. Things get even more complicated with the July 2020 ruling from the EU’s top court that the EU-U.S. Privacy Shield was unlawful.

Data privacy 118

Data privacy Encryption Risk Data breaches 118

Malwarebytes

JANUARY 26, 2022

The article also mentions that using Google Search on a phone’s browser, something that shouldn’t really rely on a user’s location data, can accurately pinpoint one’s precise latitude and longitude and save it to their Google account. “This seems like a pretty straightforward position to have.”

Accountability 100

Accountability Surveillance Advertising Mobile 100