SecureWorld News

NOVEMBER 11, 2021

More than 600 hours of drone and helicopter surveillance footage from Dallas and Atlanta police departments was leaked last week. According to the article by Wired , two police departments were allegedly storing surveillance data in "an unsecured cloud infrastructure.". Dallas Police Department responds to surveillance data leak.

Surveillance 80

Surveillance Data breaches Government Manufacturing 80

Security Affairs

OCTOBER 10, 2018

Millions of Xiongmai video surveillance devices can be easily hacked via cloud feature, a gift for APT groups and cyber crime syndicates. Xiongmai hereinafter) that are open to hack. Security Affairs – Xiongmai, hacking ). The flaws could be exploited to spy on camera feeds of unaware users. Pierluigi Paganini.

Surveillance 82

Surveillance Hacking Firmware Manufacturing 82

Security Affairs

JUNE 17, 2022

Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.

Spyware 77

Spyware Surveillance Telecommunications Mobile 77

Security Affairs

MARCH 3, 2024

Camera doorbells manufactured by the Chinese company Eken Group Ltd under the brands EKEN and Tuck are affected by major vulnerabilities. Researchers from Consumer Reports (CR) discovered severe vulnerabilities in doorbell cameras manufactured by the Chinese company Eken Group Ltd. ” reads the report published by CR.

Manufacturing 122

Manufacturing Wireless Retail Surveillance 122

Krebs on Security

OCTOBER 28, 2020

In August, Gunnebo said it had successfully thwarted a ransomware attack, but this week it emerged that the intruders stole and published online tens of thousands of sensitive documents — including schematics of client bank vaults and surveillance systems.

Hacking 344

Hacking Ransomware Banking Accountability 344

Security Affairs

DECEMBER 14, 2022

Businesses and homeowners increasingly rely on internet protocol (IP) cameras for surveillance. All too often, this gives them a false sense of security: when in fact, threat actors can not only access and watch your camera feed but exploit the unsecured device to hack into your network. Surge in internet-facing cameras.

Surveillance 127

Surveillance Manufacturing Passwords Internet 127

Security Affairs

AUGUST 7, 2022

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% SecurityAffairs – hacking, newsletter). Pierluigi Paganini.

Spyware 122

Spyware Manufacturing Small Business Surveillance 122

Security Affairs

JULY 3, 2019

Chinese border guards are secretly installing a surveillance app on smartphones of tourists and people crossings in the Xinjiang region who are entering from Kyrgyzstan. The surveillance software allows operators to spy on victims, accessing emails, text messages, contacts, calendar entries, call records. ” continues the NYT.

Surveillance 66

Surveillance Spyware Advertising Government 66

Schneier on Security

SEPTEMBER 26, 2019

The reason these threats are so real is that it's not difficult to hide surveillance or control infrastructure in computer components, and if they're not turned on, they're very difficult to find. Even so, these examples illustrate an important point: there's no escaping the technology of inevitable surveillance. Our enemies do it.

Surveillance 218

Surveillance Wireless Government Internet 218

Security Affairs

JULY 31, 2022

. “We’re publishing the details of a new vulnerability (tracked under CVE-2022-30563) affecting the implementation of the Open Network Video Interface Forum (ONVIF) WS-UsernameToken authentication mechanism in some IP cameras developed by Dahua, a very popular manufacturer of IP-based surveillance solutions.”

Surveillance 144

Surveillance Authentication Telecommunications Manufacturing 144

Security Affairs

MAY 29, 2023

Security researchers at Cisco Talos and the Citizen Lab have shared technical details about a commercial Android spyware named Predator that is sold by the surveillance firm Intellexa (formerly known as Cytrox). The attacks aimed at installing the surveillance spyware Predator, developed by the North Macedonian firm Cytrox.

Spyware 89

Spyware Surveillance Media Malware 89

Security Affairs

NOVEMBER 24, 2022

“The decision comes after a review of “current and future possible security risks associated with the installation of visual surveillance systems on the government estate,” cabinet office minister Oliver Dowden said in a written statement to parliament.” SecurityAffairs – hacking, security cameras).

Government 84

Government Surveillance Risk Manufacturing 84

The Security Ledger

DECEMBER 19, 2023

Security researcher and IoT hacker Dennis Giese talks about his mission to liberate robot vacuums from the control of their manufacturers, letting owners tinker with their own devices and - importantly - control the data they collect about our most intimate surroundings. The post Episode 254: Dennis Giese’s Revolutionary Robot Vacuum.

IoT 75

IoT Manufacturing Internet Internet 75

Security Affairs

SEPTEMBER 12, 2019

The scary part of the story is that a private surveillance firm was aware of the zero-day flaw since at least two years and is actively exploiting the SimJacker vulnerability to spy on mobile users in several countries. SecurityAffairs – SimJacker, hacking). ” states the post. .” Pierluigi Paganini.

Hacking 106

Hacking Mobile Spyware Manufacturing 106

Security Affairs

SEPTEMBER 23, 2023

The Royal group began reconnaissance activity in April 2023, and the analysis of system log data dates the beginning of the surveillance operations on April 7, 2023. Royal was then able to traverse the internal City infrastructure during the surveillance period using legitimate 3rd party remote management tools.”

Ransomware 104

Ransomware Surveillance Healthcare Accountability 104

Security Affairs

FEBRUARY 11, 2021

Since 2018, the hackers started targeting mobile users with an Android surveillance malware ChatSpy. phone number, IMEI/Android ID, Model and Manufacturer, and Android version), Geolocation, Images stored on external storage, WhatsApp voice notes, if installed. . SecurityAffairs – hacking, Confucius). Pierluigi Paganini.

Spyware 111

Spyware Surveillance Malware Mobile 111

Security Affairs

JANUARY 2, 2021

According to the alert issued by the FBI, the swatters have been hijacking smart devices such as video and audio capable home surveillance devices. “Recently, offenders have been using victims’ smart devices, including video and audio capable home surveillance devices, to carry out swatting attacks. Pierluigi Paganini.

Passwords 135

Passwords Surveillance Manufacturing Accountability 135

Security Affairs

OCTOBER 4, 2023

Google Threat Analysis Group and Google Project Zero experts focus on attacks carried out by nation-state actors or surveillance firms, this means that one of these threat actors may be behind the exploitation of the Qualcomm flaws. Please contact your device manufacturer for more information on the patch status about specific devices.”

Firmware 99

Firmware Surveillance Authentication Manufacturing 99

Security Affairs

NOVEMBER 19, 2019

“After disclosing these findings to Google, they shared the report with other Android manufacturers, and Samsung confirmed the vulnerabilities existed in their smartphones as well. The post CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance appeared first on Security Affairs. Pierluigi Paganini.

Surveillance 59

Surveillance Manufacturing Advertising IoT 59

Schneier on Security

FEBRUARY 13, 2021

Bloomberg News has a major story about the Chinese hacking computer motherboards made by Supermicro, Levono, and others. US-only design and manufacturing isn’t an option; the tech world is far too internationally interdependent for that. It’s been going on since at least 2008.

Surveillance 361

Surveillance Government Internet Internet 361

Security Affairs

MARCH 23, 2020

Experts observed multiple botnets exploiting zero-day vulnerabilities in DVRs for surveillance systems manufactured by Taiwan-based LILIN. Botnet operators are exploiting several zero-day vulnerabilities in digital video recorders (DVRs) for surveillance systems manufactured by Taiwan-based LILIN-. Pierluigi Paganini.

Firmware 105

Firmware Surveillance Manufacturing Advertising 105

Security Affairs

FEBRUARY 9, 2023

The experts pointed out that also users that leave the country are exposed to surveillance, through the pre-installed software. Chinese manufacturers have yet to comment on the research. This malicious software puts users’ privacy at risk, it could be used to spy on users and unmasking of their identities.

Mobile 98

Mobile Malware Surveillance Spyware 98

Security Affairs

JULY 20, 2022

million vehicles can allow hackers to remotely hack them. “These vulnerabilities could impact access to a vehicle fuel supply, vehicle control, or allow locational surveillance of vehicles in which the device is installed.” SecurityAffairs – hacking, MiCODUS). million vehicles. . Pierluigi Paganini.

Manufacturing 99

Manufacturing Passwords Mobile Authentication 99

Security Affairs

JUNE 12, 2022

The flaws impact products manufactured by LenelS2, a provider of advanced physical security solutions (i.e. access control, video surveillance and mobile credentialing) owned by HVAC giant Carrier. The experts focused on Carrier’s LenelS2 access control panels, manufactured by HID Mercury. ” continues the post.

Firmware 86

Firmware Penetration Testing Manufacturing Authentication 86

Security Affairs

OCTOBER 13, 2022

The Budworm cyber espionage group (aka APT27 , Bronze Union , Emissary Panda , Lucky Mouse , TG-3390 , and Red Phoenix) is behind a series attacks conducted over the past six months against a number of high-profile targets, including the government of a Middle Eastern country, a multinational electronics manufacturer, and a U.S.

Penetration Testing 128

Penetration Testing Financial Services Surveillance Manufacturing 128

Security Affairs

NOVEMBER 1, 2021

Both Remcos and NanoCore are used for information gathering, data exfiltration, surveillance, and control of the victims’ computers. . The group focuses on Shipping/Logistics, Manufacturing, Business Services, Pharmaceutical, and Energy entities, among others. SecurityAffairs – hacking, Balikbayan Foxes).

Malware 92

Malware Government Surveillance Phishing 92

ForAllSecure

MARCH 14, 2022

Can you hack an airplane? Vamosi: Maybe you remember this: In 2014, researchers Charlie Miller and Chris Valasek succeeded in hacking a Jeep Cherokee while a reporter was driving it on a freeway during rush hour in St Louis, Missouri. So, given that we can now hack into cars remotely, could we hack into other systems as well?

Hacking 52

Hacking Computers and Electronics Government Media 52

ForAllSecure

APRIL 22, 2021

In this episode of The Hacker Mind , Beau Woods and Paulino Calderon discuss their book, Practical IoT Hacking, and talk about IoT threat models, the technologies being used today, and what tools and knowledge you need to get started successfully hacking IoT devices. Vamosi: I once lived near a large urban park.

IoT 52

IoT Hacking Internet Internet 52

ForAllSecure

APRIL 22, 2021

In this episode of The Hacker Mind , Beau Woods and Paulino Calderon discuss their book, Practical IoT Hacking, and talk about IoT threat models, the technologies being used today, and what tools and knowledge you need to get started successfully hacking IoT devices. Vamosi: I once lived near a large urban park.

IoT 52

IoT Hacking Internet Internet 52

SecureWorld News

JANUARY 8, 2024

Surveillance and monitoring risks: The integration of AI into everyday computing could lead to increased surveillance capabilities. This constant monitoring can be perceived as intrusive, especially if users are not fully aware or have not consented to such surveillance.

Artificial Intelligence 75

Artificial Intelligence Surveillance Technology Risk 75

Security Affairs

FEBRUARY 13, 2020

. “Independent cybersecurity experts say the intelligence services of global powers including the United States routinely exploit vulnerabilities in networking equipment — regardless of the manufacturer — for espionage purposes.” ” reported the AP News.

Manufacturing 128

Manufacturing Advertising Surveillance Architecture 128

CyberSecurity Insiders

FEBRUARY 15, 2023

Second is the news that seems to be more interesting as a new hacking group from India has been discovered by the security researchers of Group-IB and the threat actors gang is named as “Side Winder”. Third is the news related to CLOP ransomware gang that has mass attacked 130 organizations in January this year.

Cyber Attacks 101

Cyber Attacks Government Hacking Ransomware 101

Security Affairs

MAY 26, 2019

Perceptics, a maker of vehicle license plate scanning solutions used in the US, has been hacked, attackers stole data and offered for free on the dark web. The company was hacked and attackers stole data and offered business plans, financial documents, and personal information for free on the dark web.

Data breaches 67

Data breaches Surveillance Advertising Hacking 67

Security Affairs

OCTOBER 4, 2018

China used tiny chips implanted on computer equipment manufactured for US companies and government agencies to steal secret information. Elemental manufactured equipment for Department of Defense data centers, the CIA’s drone operations, and onboard networks of Navy warships.

Manufacturing 102

Manufacturing Government Advertising Surveillance 102

Security Affairs

FEBRUARY 24, 2021

Since at least 2014, experts at FireEye have observed APT32 targeting foreign corporations with an interest in Vietnam’s manufacturing, consumer products, and hospitality sectors. “This unlawful surveillance violates the right to privacy and stifles freedom of expression.” SecurityAffairs – hacking, APT32).

Spyware 91

Spyware Surveillance Government Phishing 91

Pen Test

OCTOBER 12, 2023

Criminals may use hijacked drones for illegal surveillance, smuggling, or even as weapons. Countermeasures: To prevent drone signal hijacking, drone manufacturers and operators can implement encryption and authentication mechanisms for RF communication. However, all of these can be vulnerable to hacking. MHz and L2 1227.60

Encryption 52

Encryption Firmware Surveillance Technology 52

eSecurity Planet

JULY 21, 2021

Amnesty International and Forbidden Stories – a Paris-based nonprofit media group that works with journalists – said earlier this week that users of the Israeli-developed spyware were able to hack into iPhone 11 and iPhone 12 devices, as well as Android devices, of tens of thousands of people – including a number of world leaders.

Spyware 124

Spyware Mobile Government Surveillance 124