Schneier on Security

SEPTEMBER 11, 2020

Harvard Kennedy School’s Belfer Center published the “ National Cyber Power Index 2020: Methodology and Analytical Considerations.” ” The rankings: US China UK Russia Netherlands France Germany Canada Japan Australia. The NCPI has identified seven national objectives that countries pursue using cyber means.

Surveillance 363

Surveillance Government 363

Security Affairs

APRIL 19, 2020

This post includes the details of the Coronavirus-themed attacks launched from April 12 to April 18, 2020. Consumer reports received since January 2020 revealed that that approximately $12 million were lost due to Coronavirus-related scams, FTC says. Coronavirus-themed attacks April 05 – April 11, 2020. Pierluigi Paganini.

Scams 141

Scams Malware Phishing Surveillance 141

Security Affairs

JUNE 24, 2022

Researchers from Google’s Threat Analysis Group (TAG) revealed that the Italian surveillance firm RCS Labs was helped by some Internet service providers (ISPs) in Italy and Kazakhstan to infect Android and iOS users with their spyware. CVE-2020-9907 internally referred to as AveCesare. Pierluigi Paganini.

Surveillance 137

Surveillance Mobile Spyware Telecommunications 137

SecureList

FEBRUARY 26, 2021

The state of stalkerware in 2020 (PDF). Kaspersky’s data shows that the scale of the stalkerware issue has not improved much in 2020 compared to the last year: The number of people affected is still high. In total, 53,870 of our mobile users were affected globally by stalkerware in 2020. Main findings.

Mobile 132

Mobile Surveillance Software Technology 132

Schneier on Security

JANUARY 5, 2021

The hackers managed their intrusion from servers inside the United States, exploiting legal prohibitions on the National Security Agency from engaging in domestic surveillance and eluding cyberdefenses deployed by the Department of Homeland Security. The October files, distributed to customers on Oct. We know at minimum they had access Oct.

Hacking 357

Hacking System Administration Software Surveillance 357

Malwarebytes

SEPTEMBER 24, 2021

Schools in the US have been using surveillance software to keep an eye on their students, and such software has grown significantly in popularity since the COVD-19 pandemic closed campuses nationwide. In fact, they worry that such surveillance could backfire. Source: The CDT).

Surveillance 108

Surveillance Risk Software Technology 108

Security Affairs

FEBRUARY 6, 2022

One of the Apple iOS zero-day flaws exploited by the NSO group was also used by another surveillance firm named QuaDream. One of the vulnerabilities in Apple iOS that was previously exploited by the spyware developed by the Israeli company NSO Group was also separately used by another surveillance firm named QuaDream. as a zero-day.

Surveillance 98

Surveillance Spyware Government Hacking 98

Security Affairs

SEPTEMBER 16, 2024

The IT giant fears that the disclosures of its threat intelligence related to commercial spyware operations could aid NSO and other surveillance firms. federal court for illegally targeting its customers with the surveillance spyware Pegasus. ” reads the court filing.

Surveillance 121

Surveillance Spyware Risk Hacking 121

Security Affairs

FEBRUARY 8, 2021

Iran-linked APT group Domestic Kitten, also tracked as APT-C-50, has been conducting widespread surveillance targeting over 1,000 individuals. Both groups have conducted long-running cyber-attacks and intrusive surveillance campaigns, which target both individuals’ mobile devices and personal computers.” Pierluigi Paganini.

Surveillance 116

Surveillance Mobile Malware Cyber Attacks 116

Thales Cloud Protection & Licensing

JANUARY 28, 2020

January 28, 2020 marks the 13th iteration of Data Privacy Day. The latter measure is especially important, as data-in-motion encryption helps shield an organization’s data, video, voice and metadata from eavesdropping, surveillance and other interception attempts. Its aim is to foster dialogue around the importance of privacy.

Data privacy 150

Data privacy Unstructured Data Encryption Identity Theft 150

Hot for Security

APRIL 5, 2021

Bitdefender this week has published its annual Consumer Threat Landscape Report for 2020 underscoring some of the most prevalent cyber threats targeting regular users today. A key stat: cybercrime in 2020 was marked by a visible and aggressive targeting of the human layer. Aligned efforts to capitalize on COVID-19.

Cybercrime 116

Cybercrime Ransomware Cyber threats Malware 116

SecureList

NOVEMBER 29, 2021

The victim was infected by PowerShell malware and we discovered evidence that the actor had already stolen data from the victim and had been surveilling this victim for several months. Additionally, we discovered older variants of the malware, delivered via HWP documents, dating back to mid-2020. Contact: intelreports@kaspersky.com.

Surveillance 144

Surveillance Malware Phishing Encryption 144

The Last Watchdog

DECEMBER 31, 2019

Muthukrishnan Access control, surveillance , and testing are the three major components that comprise the physical security of a system. Surveillance includes monitoring and detecting intruders into the network. Access control is the restricting of access to a system. There are several types of access control methods used.

Cyber Risk 173

Cyber Risk Risk Firewall Surveillance 173

Security Affairs

APRIL 26, 2022

An interesting article published by The Intercept reveals the secretive business of a US surveillance firm named Anomaly Six. While Russia was invading Ukraine in February, two unknown surveillance startups, Anomaly Six and Zignal Labs joined forces to provide powerful surveillance services. Motherboard reported that U.S.

Surveillance 98

Surveillance Mobile Government Media 98

Security Affairs

MAY 1, 2023

Researchers at the Lookout Threat Lab have discovered a new Android surveillance spyware, dubbed BouldSpy, that was used by the Law Enforcement Command of the Islamic Republic of Iran (FARAJA). The researchers are tracking the spyware since March 2020, starting in 2023, multiple security experts [ 1 , 2 ] started monitoring its activity. .

Surveillance 98

Surveillance Malware Spyware Accountability 98

Krebs on Security

MARCH 22, 2021

An ad for RedTorch’s “Cheetah” counter-surveillance tech. 2020 version of RedTorch.com. The Guy Fawkes mask/Anonymous threat featured prominently and often on RedTorch’s website. The Guy Fawkes mask/Anonymous threat featured prominently and often on RedTorch’s website. Now a cadre of former Norse Corp.

Surveillance 340

Surveillance Computers and Electronics Internet Internet 340

Security Affairs

JULY 28, 2022

The Microsoft Threat Intelligence Center (MSTIC) and the Microsoft Security Response Center (MSRC) researchers linked a threat group known as Knotweed to an Austrian surveillance firm named DSIRF, known for using multiple Windows and Adobe zero-day exploits. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Surveillance 100

Surveillance Malware Authentication Accountability 100

Malwarebytes

FEBRUARY 22, 2022

Bosch, known more for its line of refrigerators, ovens, and dishwashers, also develops and sells an entire suite of surveillance cameras. In 2020, for instance, Google implemented stricter controls against stalkerware-type applications. It shouldn’t. This is not innovation. It’s experimentation without foresight.

Surveillance 100

Surveillance Artificial Intelligence Technology Internet 100

The Last Watchdog

JANUARY 6, 2022

billion in 2020 and will grow to $16.1 Yet, according to the study by the Ponemon Institute, the number of insider leaks has increased by 47 percent in 2020 compared to 2018. In 2020, G-71 went through the Alchemist acceleration program and then launched a cloud-based solution. billion by 2025.

Marketing 279

Marketing Software Surveillance Information Security 279

SecureList

JUNE 16, 2021

Two suspicious documents that were uploaded to VirusTotal in July 2020 and March 2021, and which seem to be operated by the same attackers, caught our attention. In this report we aim to provide more details on these findings and our own analysis on the mechanics of the MarkiRAT malware. Background.

Surveillance 145

Surveillance Malware Password Management Passwords 145

Security Affairs

APRIL 13, 2021

The exploit code for a remote code execution vulnerability affecting QNAP network-attached storage (NAS) devices that run the Surveillance Station video management system is available online. “A stack-based buffer overflow vulnerability has been reported to affect QNAP NAS devices running Surveillance Station. . and 5.1.5.3.2.

Surveillance 134

Surveillance Hacking Information Security Malware 134

Security Affairs

MARCH 2, 2024

Court ordered surveillance firm NSO Group to hand over the source code for its Pegasus spyware and other products to Meta. Judge ordered the surveillance firm to hand over the source code for its Pegasus spyware and other products to the social network giant. from April 29, 2018, to May 10, 2020).

Spyware 144

Spyware Surveillance Architecture Software 144

Security Affairs

NOVEMBER 18, 2024

Privacy Shield framework in 2020. Privacy Shield in 2020, Meta continued transferring data under a framework that was deemed insufficient to protect European citizens from U.S. government surveillance. The company faced allegations of improperly transferring sensitive data about European drivers to the U.S. Billion ($1.4

Data privacy 130

Data privacy Risk Surveillance Government 130

Security Affairs

DECEMBER 21, 2020

The attackers used an exploit chain named Kismet that was part of the arsenal of the controversial Pegasus spyware that is sold by the surveillance firm NSO Group. In July 2020, KISMET was a zero-day against at least iOS 13.5.1 ” reads the report published by the researchers. and could hack Apple’s then-latest iPhone 11.

Hacking 143

Hacking Surveillance Spyware Government 143

SiteLock

AUGUST 27, 2021

We are excited to announce that SiteLock ® INFINITY™ has been recognized as a winner of the 2020 Cloud Computing Excellence Product of the Year Award by TMC’s Cloud Computing Magazine for the second year in a row!

eCommerce 98

eCommerce Surveillance Malware Technology 98

Thales Cloud Protection & Licensing

JANUARY 14, 2020

Along with innovation and technology proliferation, new challenges that will shape business during 2020. Last year brought a considerable shift in the global privacy legislation landscape and 2020 is going to be just as busy from a data protection standpoint. Unfortunately, privacy compliance is still lagging.

Data privacy 89

Data privacy IoT Data breaches Technology 89

Schneier on Security

JULY 28, 2021

The Pillar says it obtained 24 months’ worth of “commercially available records of app signal data” covering portions of 2018, 2019, and 2020, which included records of Grindr usage and locations where the app was used.

Mobile 363

Mobile Advertising Data collection Surveillance 363

The Last Watchdog

FEBRUARY 6, 2019

This week civil liberties groups in Europe won the right to challenge the UK’s bulk surveillance activities in the The Grand Chamber of the European Court of Human Rights. Related: Snowden on unrestrained surveillance. Ubiquitous surveillance. It’s a healthy thing that a captain of industry can see this. Advanced use cases.

Surveillance 157

Surveillance Technology Retail Authentication 157

Schneier on Security

NOVEMBER 13, 2018

California's new SB 327 law , which will take effect in January 2020, requires all "connected devices" to have a "reasonable security feature." Once this kind of sorting is possible, companies will, in all likelihood, return to their profitable surveillance capitalism practices on those who are still fair game.

IoT 258

IoT Manufacturing Internet Internet 258

Krebs on Security

OCTOBER 28, 2020

In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hackers had broken into its network and sold the access to a criminal group which specializes in deploying ransomware. The company has operations in 25 countries, more than 4,000 employees, and billions in revenue annually.

Hacking 358

Hacking Ransomware Banking Accountability 358

CyberSecurity Insiders

JANUARY 3, 2022

These astonishing facts were released by the Washington Post that even added in its report that a special military sized cyber army was dedicated to this sophisticated data surveillance program that started in early 2020.

Surveillance 136

Surveillance Government Software Marketing 136

Krebs on Security

JULY 9, 2021

The Texas Bankers Association documented at least 139 chain gang attacks against Texas financial institutions in the year ending November 2020. From surveillance camera footage examined by fraud investigators, the perpetrators have followed the same playbook in each incident.

Banking 359

Banking Insurance Surveillance Risk 359

Security Affairs

JANUARY 14, 2021

Security experts from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian government institutions and private companies. Malware researchers from ESET uncovered an ongoing surveillance campaign, dubbed Operation Spalax , against Colombian entities exclusively.

Malware 141

Malware Surveillance Phishing Government 141

Malwarebytes

MARCH 12, 2021

Hackers were able to gain access to camera feeds from Verkada, a tech company that specializes in video security and physical access control, to demonstrate how prevalent surveillance is, reports say. ” Kottmann was also credited for breaching Intel in August 2020 and Nissan Motors in January 2021. ” The fallout.

Hacking 116

Hacking Surveillance Computers and Electronics Accountability 116

Security Affairs

AUGUST 28, 2020

22, 2020, in Los Angeles and had his initial appearance before U.S. According to the complaint and statements made in court, from about July 15, 2020 to about Aug. 22, 2020, Kriuchkov conspired with associates to recruit an employee of a company to introduce malware.”. — Elon Musk (@elonmusk) August 27, 2020.

Malware 145

Malware Surveillance Hacking Spyware 145

Malwarebytes

MAY 1, 2025

Government-backed groups and customers of commercial surveillance vendors (that’s sanitized corporate-speak for spyware) were responsible for over half the attacks that the researchers were able to attribute. Spyware continues to be a much bigger factor in zero-day exploits today than it was before 2023.

Spyware 86

Spyware Mobile Technology Government 86

Security Affairs

OCTOBER 11, 2021

Their devices were targeted between December 2019 and January 2020, during a tense political climate ahead of the 2020 Togolese presidential election.” The company denied any involvement in the surveillance campaign attributed to the Donot Team APT. ” reads the post published by Amnesty.

Spyware 102

Spyware Surveillance Accountability Mobile 102