article thumbnail

NSA Over-surveillance

Schneier on Security

Here in 2022, we have a newly declassified 2016 Inspector General report—”Misuse of Sigint Systems”—about a 2013 NSA program that resulted in the unauthorized (that is, illegal) targeting of Americans. Given all we learned from Edward Snowden, this feels like a minor coda.

article thumbnail

Ring Gives Videos to Police without a Warrant or User Consent

Schneier on Security

confirming that there have been 11 cases in 2022 where Ring complied with police “emergency” requests. This raises many concerns about increased police reliance on private surveillance, a practice that has long gone unregulated. The Amazon company responded to an inquiry from US Senator Ed Markey (D-Mass.),

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Poland probes Pegasus spyware abuse under the PiS government

Security Affairs

According to rumors, the Polish special services are using surveillance software to spy on government opponents. In June 2022, the controversial Israeli surveillance vendor NSO Group told the European Union lawmakers that its Pegasus spyware was used by at least five countries in the region.

Spyware 116
article thumbnail

Surveillance firm’s leaked docs show the purchase of an $8M iOS RCE zero-day exploit?

Security Affairs

Leaked documents show the surveillance firm Intellexa offering exploits for iOS and Android devices for $8 Million. Intellexa is an Israeli surveillance firm founded by Israeli entrepreneur Tal Dilian, it offers surveillance and hacking solution to law enforcement and intelligence agencies. Pierluigi Paganini.

article thumbnail

Google Threat Intelligence Group (GTIG) tracked 75 actively exploited zero-day flaws in 2024

Security Affairs

In 2024, Google tracked 75 exploited zero-day vulnerabilities, down from 98 in 2023 but up from 63 in 2022. The report published by GTIG highlights evolving attacker tactics, better vendor defenses, and growing challenges in detecting commercial surveillance activity. ” continues the report. ” concludes the report.

article thumbnail

Worthwhile Books May 2022

Adam Shostack

These are the books that I read in the second quarter, 2022 that are worth your time. Non-fiction The Age of Surveillance Capitalism , Shoshana Zuboff. Books I've read lately that I think you might find enjoyable are the focus of this 100% foreshadowing-free edition of worthwhile books. Cyber Cyber Peace , edited by Scott J.

article thumbnail

China’s Olympics App Is Horribly Insecure

Schneier on Security

Key Findings: MY2022, an app mandated for use by all attendees of the 2022 Olympic Games in Beijing, has a simple but devastating flaw where encryption protecting users’ voice audio and file transfers can be trivially sidestepped. Citizen Lab examined the app and found it riddled with security holes.