SecureWorld News

JUNE 25, 2020

Privacy and security advocates may be forced to battle it out on the Senate floor to stop a newly introduced bill that will help law enforcement get past encryption. New backdoor bill in Congress hits encryption debate head on. The question: should encrypted communication be out of law enforcement's reach?

Encryption 87

Encryption Computers and Electronics Government Technology 87

Security Affairs

JANUARY 14, 2022

Like other ransomware gangs, Lorenz operators also implement double-extortion model by stealing data before encrypting it and threatening them if the victim doesn’t pay the ransom. Hensoldt AG focuses on sensor technologies for protection and surveillance missions in the defence, security and aerospace sectors. billion euros in 2020.

Ransomware 140

Ransomware Surveillance Mobile Encryption 140

CyberSecurity Insiders

APRIL 22, 2021

It is learnt that the massive file encrypting malware campaign started on April 19th,2021 when victims took help of the technology forums to know more about the ransomware. Qlocker Ransomware is not only accessing files by encrypting them with a password protected 7Zip archives ending with.7z BTC for each file.

Ransomware 109

Ransomware Surveillance Backups Encryption 109

Security Affairs

OCTOBER 18, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

VPN 104

VPN Advertising Surveillance Ransomware 104

Security Affairs

NOVEMBER 24, 2021

Apple has filed suit to ban the Israeli surveillance firm NSO Group and parent company Q Cyber Technologies from using its product and services. federal court for illegally targeting its customers with the surveillance spyware Pegasus. Apple has sued NSO Group and its parent company Q Cyber Technologies in a U.S.

Spyware 100

Spyware Surveillance Software Hacking 100

Security Affairs

OCTOBER 24, 2019

The Sweden government is going to authorize law enforcement agencies into using spyware to spy on suspects’ devices, the malicious code allows agents to read encrypted communications, to track their movements, exfiltrate data and spy on them via built-in microphone and camera. ” reads the official announcement.

Spyware 75

Spyware Government Surveillance Encryption 75

Malwarebytes

MAY 9, 2023

We have identified attacks from the group starting in 2020, meaning that they have remained under the radar for at least three years. Malwarebytes has identified multiple operations, first dated in 2020. Notes about activity before the war OP#1 - Late 2020 The first operation we know of happened in December 2020.

Surveillance 88

Surveillance Accountability DNS Encryption 88

Security Affairs

DECEMBER 30, 2019

The Assembly would set up a committee of international experts in 2020 that will be tasked with elaborating “a comprehensive international convention on countering the use of information and communications technologies for criminal purposes.”

Cybercrime 94

Cybercrime Surveillance Spyware Government 94

Thales Cloud Protection & Licensing

DECEMBER 22, 2020

Tue, 12/22/2020 - 10:08. New EU restrictions could force companies to change data transfer practices and adopt more advanced data encryption methods. The 2020 analysis found that customer data was by far the most-commonly compromised type of record with 80% of breached organizations saying that customer PII was affected.

Data privacy 118

Data privacy Encryption Risk Data breaches 118

Thales Cloud Protection & Licensing

DECEMBER 20, 2020

Using Encryption with Access Controls to Mitigate Malware and Ransomware Damage. Mon, 12/21/2020 - 07:23. Microsoft’s 2020 Digital Defense Report makes it clear that threat actors have rapidly increased in sophistication and are using techniques that are very hard to detect. All Encryption Solutions are Not Created Equal.

Encryption 62

Encryption Malware Ransomware Unstructured Data 62

Security Affairs

JANUARY 10, 2021

To best understand the scale of the problem, let’s look into some recently notified, large organisation security breaches, reported over a four-week period between 20 th November and 17 th December 2020. 20 th Nov 2020 – Manchester United Football Club ( www.manutd.com ). 30 th November 2020 – Embrear ( www.embrear.com ).

Cyber Attacks 126

Cyber Attacks Government Surveillance Software 126

Security Affairs

JANUARY 4, 2021

The group was involved in cyber espionage campaigns aimed at new generation weapons and in surveillance activities on dissidents and other civilian groups. The recent string of attacks launched by the cyber espionage group took place in 2020 and aimed at at least five companies in the online gambling sector.

Ransomware 136

Ransomware Malware Encryption Financial Services 136

CyberSecurity Insiders

APRIL 29, 2021

In 2021, Schrems II – the landmark data privacy verdict issued in July 2020 – continues to prevent businesses from carrying out basic data transfers to non-EU countries. billion in 2020. One technical measure that can be put in place to help organisations is the encryption of data. What is Schrems II? billion, up from $257.5

Encryption 98

Encryption Surveillance Data privacy Cybersecurity 98

Malwarebytes

AUGUST 5, 2021

Amazon One was introduced in September 2020 as (according to Dilip Kumar, Vice President of Physical Retail & Technology for Amazon in an official post ) “a quick, reliable, and secure way for people to identify themselves or authorize a transaction while moving seamlessly through their day.”

Retail 141

Retail Encryption Surveillance Authentication 141

SecureList

NOVEMBER 28, 2024

However, P8 contains many built-in functions and redesigns of the communication protocol and encryption algorithm, making it a well-designed and powerful espionage platform. The access management software facilitates access to the encrypted partition of the drive. PhantomNet is a RAT first described by ESET in late 2020.

Malware 118

Malware Government Software Spyware 118

Malwarebytes

AUGUST 26, 2021

The Bahrain government and groups linked to them—such as LULU , a known operator of Pegasus, and others like them who are associated with a separate government—were tagged as culprits of the surveillance activity. In 2020, Citizen Lab named KISMET , a then 0-day exploit against iPhone iOS version 13.5.1 KISMET: the other exploit.

Spyware 108

Spyware Surveillance Social Engineering Government 108

Malwarebytes

MAY 10, 2022

In 2020, the European Commission initiated temporary legislation which allows the searching of all private chats, messages, and emails for illegal depictions of minors and attempted initiation of contact with minors. Needless to say that many privacy advocates are ready to storm the barricades to prevent this law from being approved.

Encryption 100

Encryption Surveillance Artificial Intelligence Spyware 100

Security Affairs

DECEMBER 29, 2019

Ryuk Ransomware evolution avoid encrypting Linux folders. Thai Officials confirmed the hack of prison surveillance cameras and the video broadcast. Top cybersecurity Predictions for 2020. More than 100 Chinese nationals arrested in Nepal over suspected cyber scam.

Cyber Attacks 86

Cyber Attacks Advertising Surveillance Ransomware 86

Hot for Security

FEBRUARY 2, 2021

The FTC’s settlement with Zoom dates back to November 2020, when the commission alleged the company had deceived users about security for its meeting platform and unfairly undermined a browser security feature for Apple device users, among other things. 290 million new users in four months.

Encryption 86

Encryption Consumer Protection Surveillance Data breaches 86

Security Affairs

APRIL 14, 2021

. “With the TLS secrets at hand, we will demonstrate how a man-in-the-middle (MitM) attack can lead to the compromise of WhatsApp communications, to remote code execution on the victim device and to the extraction of Noise [ 05 ] protocol keys used for end-to-end encryption in user communications.” CENSUS has tracked the TLS 1.2

Mobile 112

Mobile Hacking Encryption Surveillance 112

SecureList

MAY 31, 2021

While investigating attacks on the defense industry in mid-2020, we were able to observe the complete life-cycle of an attack, uncovering more technical details and links to the group’s other campaigns. Ransomware encrypting virtual hard disks. Ecipekac: sophisticated multi-layered loader discovered in A41APT campaign.

Malware 140

Malware Adware Encryption Architecture 140

SecureList

APRIL 27, 2021

One of the suspected FinFly Web servers was active for more than a year between October 2019 and December 2020. As it turned out, it was active for a very short time around September 2020 on a host that appears to have been impersonating the popular Mail.ru The activities peaked in November 2020, but are still ongoing.

Malware 145

Malware Government Spyware Social Engineering 145

Security Affairs

FEBRUARY 2, 2020

The p opular ProtonMail end-to-end encrypted email service and ProtonVPN VPN service have been blocked by the Russian government this week. This week the Russian government has blocked the ProtonMail end-to-end encrypted email service and ProtonVPN VPN service.

Government 110

Government VPN Telecommunications Advertising 110

eSecurity Planet

APRIL 26, 2022

Company Sector Year Status Isovalent Cloud security 2020 Private Illumio Cloud security 2015 Private SignalFx Monitoring 2015 Acquired: Splunk CipherCloud Cloud security 2012 Acquired: Lookout Lookout Mobile security 2011 Private. a16z Investments. ForgePoint Investments. Insight Investments. Kleiner Perkins Investments. LVP Investments.

Cybersecurity 128

Cybersecurity Technology Marketing Healthcare 128

SecureWorld News

AUGUST 8, 2022

Also known as Gozi, Ursnif has evolved over the years to include a persistence mechanism, methods to avoid sandboxes and virtual machines, and search capability for disk encryption software to attempt key extraction for unencrypting files. A 2020 LokiBot variant was disguised as a launcher for the Fortnite multiplayer video game.

Malware 98

Malware Banking Penetration Testing Healthcare 98

SecureList

SEPTEMBER 21, 2023

Brute-force attacks on services that use SSH, a more advanced protocol that encrypts traffic, can yield similar outcomes. Botnet based on Medusa, working since 2020. User files were encrypted, with the device’s interface displaying a ransom note demanding payment of 0.03 Our advantages: 1. BTC to recover the data.

IoT 137

IoT DDOS Passwords Malware 137

McAfee

MAY 20, 2021

Despite detailed guidelines [3] issued in November 2020, in the absence of new definitive guidelines for transferring data across European borders [4] , many are starting to wonder whether data localisation is the magic bullet to protect personal data. While localisation does offer some protections (i.e.

Surveillance 60

Surveillance Internet Internet Government 60

The Last Watchdog

OCTOBER 19, 2021

I highly recommend reading Zuboff’s New York Times Book of the Year, The Age of Surveillance Capitalism: The Fight for A Human Future At the New Frontier of Power as well as viewing Rifkin’s riveting speech, The Third Industrial Revolution: A Radical New Sharing Economy. These credentials are then used by the user to access the backend.

Internet 223

Internet Internet Cryptocurrency Software 223

SecureList

JANUARY 20, 2022

Previous cases included LoJax and MosaicRegressor , which we reported on during October 2020. It obtains the ScrambleCross shellcode by applying a modified ChaCha20 algorithm on an encrypted blob, which may reside as an additional file on disk or be embedded in the loader itself.

Firmware 145

Firmware Malware Encryption Passwords 145

eSecurity Planet

SEPTEMBER 25, 2022

By 2015, Microsoft joined, and in 2020, Apple followed. Additionally, In 2020, Cisco Talos discovered that some fingerprint scanning equipment might be exploited using 3D printing. Identity, citizenship, and surveillance are all societal concerns. Google, Paypal, and Lenovo were among the original FIDO founding members.

Passwords 125

Passwords Password Management Authentication Technology 125

Thales Cloud Protection & Licensing

JULY 28, 2021

The Schrems II ruling was issued by the Court of Justice of the European Union (CJEU) in July 2020. The reasoning behind this decision is that the US surveillance law (FISA) does not provide adequate protections or remedies for non-US persons in the EU. Protect sensitive data in motion and wherever it is stored using robust encryption.

Encryption 77

Encryption Surveillance Data privacy Risk 77

Thales Cloud Protection & Licensing

JULY 12, 2018

billion devices will be connected to the Internet by 2020 2. They all must have unique identifiers and the ability to collect and transfer data over networks to enable monitoring, surveillance, and execution of decisions based on the collected data with little or no human intervention. billion 1 , and Gartner projects over 20.8

IoT 72

IoT Data collection Encryption eCommerce 72

Security Affairs

FEBRUARY 2, 2020

This week the Russian government has blocked the ProtonMail end-to-end encrypted email service and ProtonVPN VPN service. This email service was used by cybercriminals both in 2019 and especially actively in January 2020 to send false messages under the guise of reliable information about mass mining of objects in the Russian Federation,”.

Telecommunications 71

Telecommunications VPN Advertising Government 71

CyberSecurity Insiders

JANUARY 20, 2022

MIAMI–( BUSINESS WIRE )–Shareholders entrusted Cloudastructure with $30 million via a RegA+ to expand their cloud-based video surveillance platform empowered with Artificial Intelligence and Machine Learning analytics. As a result of that team’s efforts, Cloudastructure’s video surveillance platform now includes: People Detection.

Artificial Intelligence 52

Artificial Intelligence Surveillance Marketing Media 52

SecureList

NOVEMBER 26, 2021

This toolset was in use from as early as July 2020, mainly targeting Southeast Asian entities, including government agencies and telecoms companies. The attack is estimated to have resulted in the encryption of files belonging to around 60 Kaseya customers using the on-premises version of the platform.

Malware 135

Malware Banking Energy and Utilities Accountability 135

McAfee

JANUARY 28, 2021

The Safe Harbor was replaced by the Privacy Shield, which – together with European Standard Clauses (“SCCs”) – were suspected of not being able to sufficiently protect European rights against US massive surveillance. As you may have heard, on 16 July 2020 [4] , the Privacy Shield has been invalidated. No – that will not be enough.

Encryption 55

Encryption Surveillance Government Technology 55

SecureList

NOVEMBER 14, 2023

However, instead of encrypting the data, it purposefully destroyed it in the affected systems. The threat actor used news about the Russo-Ukrainian conflict to trick targets into opening harmful emails that exploited the vulnerabilities (CVE-2020-35730, CVE-2020-12641 and CVE-2021-44026).

Hacking 141

Hacking Energy and Utilities Malware Media 141