Security Affairs

DECEMBER 14, 2022

Businesses and homeowners increasingly rely on internet protocol (IP) cameras for surveillance. All too often, this gives them a false sense of security: when in fact, threat actors can not only access and watch your camera feed but exploit the unsecured device to hack into your network. Surge in internet-facing cameras.

Surveillance 128

Surveillance Manufacturing Passwords Internet 128

Security Affairs

AUGUST 7, 2022

Every week the best security articles from Security Affairs free for you in your email box. Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% SecurityAffairs – hacking, newsletter). Pierluigi Paganini.

Spyware 122

Spyware Manufacturing Small Business Surveillance 122

Security Affairs

JULY 31, 2022

. “We’re publishing the details of a new vulnerability (tracked under CVE-2022-30563) affecting the implementation of the Open Network Video Interface Forum (ONVIF) WS-UsernameToken authentication mechanism in some IP cameras developed by Dahua, a very popular manufacturer of IP-based surveillance solutions.”

Surveillance 144

Surveillance Authentication Telecommunications Manufacturing 144

Security Affairs

MAY 29, 2023

Security researchers at Cisco Talos and the Citizen Lab have shared technical details about a commercial Android spyware named Predator that is sold by the surveillance firm Intellexa (formerly known as Cytrox). The attacks aimed at installing the surveillance spyware Predator, developed by the North Macedonian firm Cytrox.

Spyware 89

Spyware Surveillance Media Malware 89

Security Affairs

NOVEMBER 24, 2022

“The decision comes after a review of “current and future possible security risks associated with the installation of visual surveillance systems on the government estate,” cabinet office minister Oliver Dowden said in a written statement to parliament.” SecurityAffairs – hacking, security cameras).

Government 84

Government Surveillance Risk Manufacturing 84

Security Affairs

SEPTEMBER 12, 2019

The scary part of the story is that a private surveillance firm was aware of the zero-day flaw since at least two years and is actively exploiting the SimJacker vulnerability to spy on mobile users in several countries. The SIMalliance recommends implementing security for S@T push messages. SecurityAffairs – SimJacker, hacking).

Hacking 106

Hacking Mobile Spyware Manufacturing 106

Security Affairs

SEPTEMBER 23, 2023

The Royal group began reconnaissance activity in April 2023, and the analysis of system log data dates the beginning of the surveillance operations on April 7, 2023. Royal was then able to traverse the internal City infrastructure during the surveillance period using legitimate 3rd party remote management tools.”

Ransomware 104

Ransomware Surveillance Healthcare Accountability 104

Security Affairs

OCTOBER 4, 2023

Google Threat Analysis Group and Google Project Zero experts focus on attacks carried out by nation-state actors or surveillance firms, this means that one of these threat actors may be behind the exploitation of the Qualcomm flaws. Please contact your device manufacturer for more information on the patch status about specific devices.”

Firmware 99

Firmware Surveillance Authentication Manufacturing 99

Security Affairs

JANUARY 2, 2021

According to the alert issued by the FBI, the swatters have been hijacking smart devices such as video and audio capable home surveillance devices. “Recently, offenders have been using victims’ smart devices, including video and audio capable home surveillance devices, to carry out swatting attacks. Pierluigi Paganini.

Passwords 135

Passwords Surveillance Manufacturing Accountability 135

Security Affairs

FEBRUARY 11, 2021

Since 2018, the hackers started targeting mobile users with an Android surveillance malware ChatSpy. phone number, IMEI/Android ID, Model and Manufacturer, and Android version), Geolocation, Images stored on external storage, WhatsApp voice notes, if installed. . SecurityAffairs – hacking, Confucius). Pierluigi Paganini.

Spyware 111

Spyware Surveillance Malware Mobile 111

Security Affairs

NOVEMBER 19, 2019

“After disclosing these findings to Google, they shared the report with other Android manufacturers, and Samsung confirmed the vulnerabilities existed in their smartphones as well. The post CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance appeared first on Security Affairs.

Surveillance 59

Surveillance Manufacturing Advertising IoT 59

Security Affairs

FEBRUARY 9, 2023

The experts pointed out that also users that leave the country are exposed to surveillance, through the pre-installed software. Chinese manufacturers have yet to comment on the research. This malicious software puts users’ privacy at risk, it could be used to spy on users and unmasking of their identities.

Mobile 98

Mobile Malware Surveillance Spyware 98

Security Affairs

JULY 20, 2022

million vehicles can allow hackers to remotely hack them. Cybersecurity and Infrastructure Security Agency (CISA) published an advisory to warn of multiple security vulnerabilities in MiCODUS MV720 Global Positioning System (GPS) trackers which are used by over 1.5 SecurityAffairs – hacking, MiCODUS).

Manufacturing 99

Manufacturing Passwords Mobile Authentication 99

Security Affairs

OCTOBER 13, 2022

The Budworm cyber espionage group (aka APT27 , Bronze Union , Emissary Panda , Lucky Mouse , TG-3390 , and Red Phoenix) is behind a series attacks conducted over the past six months against a number of high-profile targets, including the government of a Middle Eastern country, a multinational electronics manufacturer, and a U.S.

Penetration Testing 128

Penetration Testing Financial Services Surveillance Manufacturing 128

Security Affairs

JUNE 12, 2022

Researchers from security firm Trellix discovered some critical vulnerabilities in HID Mercury Access Controllers that can be exploited by attackers to remotely unlock doors. The flaws impact products manufactured by LenelS2, a provider of advanced physical security solutions (i.e. ” reads the post published by Trellix.

Firmware 86

Firmware Penetration Testing Manufacturing Authentication 86

Security Affairs

NOVEMBER 1, 2021

Both Remcos and NanoCore are used for information gathering, data exfiltration, surveillance, and control of the victims’ computers. . The group focuses on Shipping/Logistics, Manufacturing, Business Services, Pharmaceutical, and Energy entities, among others. SecurityAffairs – hacking, Balikbayan Foxes).

Malware 92

Malware Government Surveillance Phishing 92

Security Affairs

FEBRUARY 13, 2020

. “Independent cybersecurity experts say the intelligence services of global powers including the United States routinely exploit vulnerabilities in networking equipment — regardless of the manufacturer — for espionage purposes.” ” reported the AP News.

Manufacturing 128

Manufacturing Advertising Surveillance Architecture 128

Security Affairs

MAY 26, 2019

Perceptics, a maker of vehicle license plate scanning solutions used in the US, has been hacked, attackers stole data and offered for free on the dark web. The company was hacked and attackers stole data and offered business plans, financial documents, and personal information for free on the dark web.

Data breaches 67

Data breaches Surveillance Advertising Hacking 67

Security Affairs

FEBRUARY 24, 2021

Since at least 2014, experts at FireEye have observed APT32 targeting foreign corporations with an interest in Vietnam’s manufacturing, consumer products, and hospitality sectors. The APT32 also targeted peripheral network security and technology infrastructure corporations, and security firms that may have connections with foreign investors.

Spyware 91

Spyware Surveillance Government Phishing 91

SC Magazine

MARCH 10, 2021

Pictured: a Dome Series security camera from Verkada. A hacking collective compromised roughly 150,000 internet-connected surveillance cameras from Verkada, Inc., When surveillance leads to spying. It is deeply invasive for anyone who’s captured on film.”.

Surveillance 129

Surveillance IoT Accountability Passwords 129

Security Affairs

AUGUST 30, 2019

A Russian security researcher has found that hardware wiretapping equipment composing Russia’s SORM surveillance system had been leaking user data. SORM is a mass surveillance system that allows the Government of Moscow to track online activities of single individuals thanks to the support of the Russian ISPs.

Surveillance 80

Surveillance Firmware Mobile Advertising 80

Security Affairs

OCTOBER 14, 2022

Over 80,000 drone IDs were exposed in the leak of a database containing information from airspace monitoring devices manufactured by DJI. The surveillance race. DJI was blacklisted by the Biden Administration in 2021 for its alleged involvement in the surveillance of the Uyghur Muslim minority in China. Troubling data.

Surveillance 123

Surveillance Marketing Manufacturing Risk 123

Security Affairs

NOVEMBER 27, 2022

Federal Communications Commission (FCC) announced the total ban for telecom and surveillance equipment from Chinese companies Huawei, ZTE, Hytera, Hikvision, and Dahua due to an “unacceptable” national security threat. SecurityAffairs – hacking, Federal Communications Commission). In September, the U.S.

Telecommunications 93

Telecommunications Surveillance Government Risk 93

Security Affairs

MAY 2, 2022

In March 2021, hackers gained access to a security company’s surveillance cameras and live-streamed those video feeds from hospitals, jails, schools, police stations, gyms, and even Tesla. The first is the very well-known lack of device security. Start Asking Questions About Data Privacy and Security.

IoT 126

IoT Cybersecurity VPN Internet 126

Security Affairs

JULY 15, 2021

Experts said that Israeli surveillance firm Candiru, tracked as Sourgum, exploited zero-days to deliver a new Windows spyware. Microsoft and Citizen Lab believe that the secretive Israel-based Israeli surveillance firm Candiru, tracked as Sourgum, used Windows zero-day exploits to deliver a new Windows spyware dubbed DevilsTongue.

Spyware 111

Spyware Surveillance Manufacturing Government 111