Security Affairs

DECEMBER 14, 2022

Businesses and homeowners increasingly rely on internet protocol (IP) cameras for surveillance. All too often, this gives them a false sense of security: when in fact, threat actors can not only access and watch your camera feed but exploit the unsecured device to hack into your network. This time, the Cybernews research team found 3.5

Surveillance 130

Surveillance Manufacturing Passwords Internet 130

Security Affairs

MAY 22, 2024

The digital imaging products manufacturer OmniVision disclosed a data breach after the 2023 ransomware attack. The company designs and develops digital imaging products for use in mobile phones, laptops, netbooks and webcams, security and surveillance cameras, entertainment, automotive and medical imaging systems.

Data breaches 107

Data breaches Ransomware Manufacturing Encryption 107

Security Affairs

MAY 29, 2023

Security researchers at Cisco Talos and the Citizen Lab have shared technical details about a commercial Android spyware named Predator that is sold by the surveillance firm Intellexa (formerly known as Cytrox). The attacks aimed at installing the surveillance spyware Predator, developed by the North Macedonian firm Cytrox.

Spyware 92

Spyware Surveillance Media Malware 92

Security Affairs

AUGUST 7, 2022

Every week the best security articles from Security Affairs free for you in your email box. Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% If you want to also receive for free the newsletter with the international press subscribe here.

Spyware 124

Spyware Manufacturing Small Business Surveillance 124

Security Affairs

NOVEMBER 19, 2019

“After disclosing these findings to Google, they shared the report with other Android manufacturers, and Samsung confirmed the vulnerabilities existed in their smartphones as well. The post CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance appeared first on Security Affairs.

Surveillance 60

Surveillance Manufacturing Advertising IoT 60

Security Affairs

NOVEMBER 24, 2022

“The decision comes after a review of “current and future possible security risks associated with the installation of visual surveillance systems on the government estate,” cabinet office minister Oliver Dowden said in a written statement to parliament.” ” states Reuters.

Government 88

Government Surveillance Manufacturing Risk 88

Duo's Security Blog

FEBRUARY 1, 2021

Ever wondered how a screw manufactured in the United States has the same screw threads as a screw manufactured in Lithuania? An ISO 27000 series certification is valid for three years and requires an annual surveillance audit to ensure continued compliance for the lifespan of the certification. You can thank ISO for that!

Manufacturing 100

Manufacturing Surveillance CISO Information Security 100

Security Affairs

JULY 31, 2022

. “We’re publishing the details of a new vulnerability (tracked under CVE-2022-30563) affecting the implementation of the Open Network Video Interface Forum (ONVIF) WS-UsernameToken authentication mechanism in some IP cameras developed by Dahua, a very popular manufacturer of IP-based surveillance solutions.”

Surveillance 143

Surveillance Authentication Telecommunications Manufacturing 143

Security Affairs

SEPTEMBER 23, 2023

The Royal group began reconnaissance activity in April 2023, and the analysis of system log data dates the beginning of the surveillance operations on April 7, 2023. Royal was then able to traverse the internal City infrastructure during the surveillance period using legitimate 3rd party remote management tools.”

Ransomware 106

Ransomware Surveillance Healthcare Accountability 106

Security Affairs

FEBRUARY 11, 2021

Since 2018, the hackers started targeting mobile users with an Android surveillance malware ChatSpy. phone number, IMEI/Android ID, Model and Manufacturer, and Android version), Geolocation, Images stored on external storage, WhatsApp voice notes, if installed. . ” reads the report published by Lookout. Pierluigi Paganini.

Spyware 113

Spyware Surveillance Malware Mobile 113

Security Affairs

JANUARY 2, 2021

According to the alert issued by the FBI, the swatters have been hijacking smart devices such as video and audio capable home surveillance devices. “Recently, offenders have been using victims’ smart devices, including video and audio capable home surveillance devices, to carry out swatting attacks.

Passwords 136

Passwords Surveillance Manufacturing Accountability 136

Security Affairs

OCTOBER 4, 2023

Google Threat Analysis Group and Google Project Zero experts focus on attacks carried out by nation-state actors or surveillance firms, this means that one of these threat actors may be behind the exploitation of the Qualcomm flaws. Please contact your device manufacturer for more information on the patch status about specific devices.”

Firmware 101

Firmware Surveillance Authentication Manufacturing 101

Duo's Security Blog

FEBRUARY 1, 2021

Ever wondered how a screw manufactured in the United States has the same screw threads as a screw manufactured in Lithuania? An ISO 27000 series certification is valid for three years and requires an annual surveillance audit to ensure continued compliance for the lifespan of the certification. You can thank ISO for that!

Manufacturing 70

Manufacturing Surveillance Information Security 70

SC Magazine

APRIL 9, 2021

A screenshot from a music video of hte Evan Greer song, “Surveillance Capitalism,” which tackles the dangers of commercial surveillance technology. Sometimes fighting the excesses of the creeping surveillance economy is done through position papers, coalition building and lawsuits. Our concern is not ‘Hey patch this up.’

Surveillance 106

Surveillance Artificial Intelligence Technology Media 106

Security Affairs

FEBRUARY 9, 2023

The experts pointed out that also users that leave the country are exposed to surveillance, through the pre-installed software. Chinese manufacturers have yet to comment on the research. This malicious software puts users’ privacy at risk, it could be used to spy on users and unmasking of their identities.

Mobile 98

Mobile Malware Surveillance Spyware 98

Duo's Security Blog

FEBRUARY 1, 2021

Ever wondered how a screw manufactured in the United States has the same screw threads as a screw manufactured in Lithuania? An ISO 27000 series certification is valid for three years and requires an annual surveillance audit to ensure continued compliance for the lifespan of the certification. You can thank ISO for that!

Manufacturing 52

Manufacturing Surveillance CISO Information Security 52

Krebs on Security

OCTOBER 28, 2020

In August, Gunnebo said it had successfully thwarted a ransomware attack, but this week it emerged that the intruders stole and published online tens of thousands of sensitive documents — including schematics of client bank vaults and surveillance systems.

Hacking 344

Hacking Ransomware Banking Accountability 344

Security Affairs

FEBRUARY 13, 2020

. “Independent cybersecurity experts say the intelligence services of global powers including the United States routinely exploit vulnerabilities in networking equipment — regardless of the manufacturer — for espionage purposes.” ” reported the AP News.

Manufacturing 132

Manufacturing Advertising Surveillance Architecture 132

Security Affairs

OCTOBER 13, 2022

The Budworm cyber espionage group (aka APT27 , Bronze Union , Emissary Panda , Lucky Mouse , TG-3390 , and Red Phoenix) is behind a series attacks conducted over the past six months against a number of high-profile targets, including the government of a Middle Eastern country, a multinational electronics manufacturer, and a U.S.

Penetration Testing 130

Penetration Testing Financial Services Surveillance Manufacturing 130

Security Affairs

JULY 20, 2022

. “These vulnerabilities could impact access to a vehicle fuel supply, vehicle control, or allow locational surveillance of vehicles in which the device is installed.” Most North American organizations using flawed MiCODUS devices are in the manufacturing sector, while those in South America are government entities.

Manufacturing 99

Manufacturing Passwords Mobile Authentication 99

Security Affairs

NOVEMBER 1, 2021

Both Remcos and NanoCore are used for information gathering, data exfiltration, surveillance, and control of the victims’ computers. . The group focuses on Shipping/Logistics, Manufacturing, Business Services, Pharmaceutical, and Energy entities, among others. ” reads the analysis published by the experts.

Malware 95

Malware Government Surveillance Phishing 95

Security Affairs

JUNE 12, 2022

Researchers from security firm Trellix discovered some critical vulnerabilities in HID Mercury Access Controllers that can be exploited by attackers to remotely unlock doors. The flaws impact products manufactured by LenelS2, a provider of advanced physical security solutions (i.e. ” reads the post published by Trellix.

Firmware 89

Firmware Penetration Testing Manufacturing Authentication 89

Security Affairs

FEBRUARY 24, 2021

Since at least 2014, experts at FireEye have observed APT32 targeting foreign corporations with an interest in Vietnam’s manufacturing, consumer products, and hospitality sectors. The APT32 also targeted peripheral network security and technology infrastructure corporations, and security firms that may have connections with foreign investors.

Spyware 90

Spyware Government Surveillance Phishing 90

SC Magazine

MARCH 10, 2021

Pictured: a Dome Series security camera from Verkada. A hacking collective compromised roughly 150,000 internet-connected surveillance cameras from Verkada, Inc., granting them access to live and archived video feeds across multiple organizations, including manufacturing facilities, hospitals, schools, police departments and prisons.

Surveillance 129

Surveillance IoT Accountability Passwords 129

Security Affairs

MAY 26, 2019

The company was hacked and attackers stole data and offered business plans, financial documents, and personal information for free on the dark web. LPRs manufactured by Perceptics are installed at all land border crossing lanes for privately owned vehicle traffic (POV) in the United States, Canada, and for the most critical lanes in Mexico.

Data breaches 70

Data breaches Surveillance Advertising Hacking 70

Security Affairs

SEPTEMBER 12, 2019

The scary part of the story is that a private surveillance firm was aware of the zero-day flaw since at least two years and is actively exploiting the SimJacker vulnerability to spy on mobile users in several countries. The SIMalliance recommends implementing security for S@T push messages. ” states the post. .”

Hacking 108

Hacking Mobile Spyware Manufacturing 108

SiteLock

AUGUST 27, 2021

The FDA also mentioned that the devices were no longer being manufactured or distributed, recommending that healthcare facilities transition to other infusion systems as soon as possible. expected to increase spending on cyber security in the upcoming years, accelerating its initial timeline of the spending growth in information security.

Cybersecurity 52

Cybersecurity Internet Internet Banking 52

Security Affairs

AUGUST 30, 2019

A Russian security researcher has found that hardware wiretapping equipment composing Russia’s SORM surveillance system had been leaking user data. SORM is a mass surveillance system that allows the Government of Moscow to track online activities of single individuals thanks to the support of the Russian ISPs.

Surveillance 80

Surveillance Firmware Mobile Advertising 80

Security Affairs

OCTOBER 14, 2022

Over 80,000 drone IDs were exposed in the leak of a database containing information from airspace monitoring devices manufactured by DJI. The surveillance race. DJI was blacklisted by the Biden Administration in 2021 for its alleged involvement in the surveillance of the Uyghur Muslim minority in China. Troubling data.

Surveillance 124

Surveillance Marketing Manufacturing Risk 124

Security Affairs

NOVEMBER 27, 2022

Federal Communications Commission (FCC) announced the total ban for telecom and surveillance equipment from Chinese companies Huawei, ZTE, Hytera, Hikvision, and Dahua due to an “unacceptable” national security threat. In September, the U.S. Follow me on Twitter: @securityaffairs and Facebook and Mastodon.

Telecommunications 96

Telecommunications Surveillance Government Risk 96

Security Affairs

MAY 2, 2022

In March 2021, hackers gained access to a security company’s surveillance cameras and live-streamed those video feeds from hospitals, jails, schools, police stations, gyms, and even Tesla. The first is the very well-known lack of device security. Start Asking Questions About Data Privacy and Security.

IoT 130

IoT Cybersecurity VPN Internet 130

Security Affairs

JULY 15, 2021

Experts said that Israeli surveillance firm Candiru, tracked as Sourgum, exploited zero-days to deliver a new Windows spyware. Microsoft and Citizen Lab believe that the secretive Israel-based Israeli surveillance firm Candiru, tracked as Sourgum, used Windows zero-day exploits to deliver a new Windows spyware dubbed DevilsTongue.

Spyware 110

Spyware Surveillance Manufacturing Government 110

The Last Watchdog

SEPTEMBER 7, 2021

In President Xi’s April 2020 speech to the Party’s Central Economic and Financial Working Group, he called for building “independent, controllable, secure, and reliable supply chains to ensure industrial and national security…”. Deepening that global dependence occurs through partnerships.

Government 201

Government Internet Internet Marketing 201