Information Security and Surveillance - Cyber Security Informer

Apple Guidance on Intimate Partner Surveillance

Adam Shostack

MAY 6, 2021

Defending against attackers who are both authorized and “interface-bound” is a weird problem for information security, as traditionally defined. If you want to make sure no one else can see your location. We object with phrases like, “of course people can do the things you’ve authorized them to do.”

Surveillance

Surveillance Information Security Accountability Technology

Ukraine’s SBU said that Russia’s intelligence hacked surveillance cameras to direct a missile strike on Kyiv

Security Affairs

JANUARY 2, 2024

Ukraine’s SBU revealed that Russia-linked threat actors hacked surveillance cameras to spy on air defense forces and critical infrastructure in Kyiv. Ukraine’s SBU announced they shut down two surveillance cameras that were allegedly hacked by the Russian intelligence services to spy on air defense forces and critical infrastructure in Kyiv.

Surveillance

Surveillance Hacking Media Software

France’s government is giving the police more surveillance power

Security Affairs

JULY 9, 2023

“”We’re far away from the totalitarianism of 1984,” George Orwell’s novel about a society under total surveillance, Dupond-Moretti said. The digital rights group believes that the proposal is a significant step towards excessive security measures, signaling a troubling trend.

Surveillance

Surveillance Government Spyware IoT

Surveillance firm’s leaked docs show the purchase of an $8M iOS RCE zero-day exploit?

Security Affairs

AUGUST 28, 2022

Leaked documents show the surveillance firm Intellexa offering exploits for iOS and Android devices for $8 Million. Intellexa is an Israeli surveillance firm founded by Israeli entrepreneur Tal Dilian, it offers surveillance and hacking solution to law enforcement and intelligence agencies. Pierluigi Paganini.

Surveillance

Surveillance Spyware Mobile Hacking

Sickness Monitoring is the Opening Video Surveillance Has Been Waiting For

Daniel Miessler

MARCH 22, 2020

Just yesterday I tweeted that the COVID-19 situation was going to finally make large-scale video surveillance endemic to our society. But when people remember the Great Depression of 2020, caused by a pandemic, nobody will lift a finger to stop video surveillance tech that claims to be able to spot sick people.

Surveillance

Surveillance Government Education Engineering

Surveillance vendor exploited Samsung phone zero-days

Security Affairs

NOVEMBER 9, 2022

Google Project Zero researchers reported that a surveillance vendor is using three Samsung phone zero-day exploits. Google Project Zero disclosed three Samsung phone vulnerabilities, tracked as CVE-2021-25337, CVE-2021-25369 and CVE-2021-25370, that have been exploited by a surveillance company. Pierluigi Paganini.

Surveillance

Surveillance Spyware Mobile Manufacturing

Israeli surveillance firm QuaDream is shutting down amidst spyware accusations

Security Affairs

APRIL 17, 2023

The Israeli surveillance firm QuaDream is allegedly shutting down its operations after Citizen Lab and Microsoft uncovered their spyware. Last week Citizen Lab researchers reported that at least five civil society members were victims of spyware and exploits developed by the Israeli surveillance firm QuaDream. and 14.4.2,

Surveillance

Surveillance Spyware Education Media

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports

Security Affairs

AUGUST 6, 2022

Greek intelligence admitted it had spied on a journalist, while citizens ask the government to reveal the use of surveillance malware. The head of the Greek intelligence told a parliamentary committee that they had spied on a journalist with surveillance malware , Reuters reported citing two sources present. ” reported Reuters.

Surveillance

Surveillance Malware Spyware Government

Israeli surveillance firm QuaDream emerges from the dark

Security Affairs

FEBRUARY 6, 2022

One of the Apple iOS zero-day flaws exploited by the NSO group was also used by another surveillance firm named QuaDream. One of the vulnerabilities in Apple iOS that was previously exploited by the spyware developed by the Israeli company NSO Group was also separately used by another surveillance firm named QuaDream.

Surveillance

Surveillance Spyware Government Hacking

Australian Defense Department will replace surveillance cameras from Chinese firms Hikvision and Dahua

Security Affairs

FEBRUARY 12, 2023

Australia’s Defense Department announced that they will remove surveillance cameras made by Chinese firms linked to the government of Beijing. Australia’s Defense Department is going to replace surveillance cameras made by Chinese firms Hikvision and Dahua, who are linked to the government of Beijing.

Surveillance

Surveillance Government Manufacturing Risk

White hat hackers gained access more than 150,000 surveillance cameras

Security Affairs

MARCH 10, 2021

A group of hackers claimed to have compromised more than 150,000 surveillance cameras at banks, jails, schools, and prominent companies like Tesla and Equinox. A group of US hackers claimed to have gained access to footage from 150,000 security cameras at banks, jails, schools, healthcare clinics, and prominent organizations.

Surveillance

Surveillance Hacking Banking Firmware

Anomaly Six, a US surveillance firm that tracks roughly 3 billion devices in real-time

Security Affairs

APRIL 26, 2022

An interesting article published by The Intercept reveals the secretive business of a US surveillance firm named Anomaly Six. While Russia was invading Ukraine in February, two unknown surveillance startups, Anomaly Six and Zignal Labs joined forces to provide powerful surveillance services.

Surveillance

Surveillance Mobile Government Media

Iranian govt uses BouldSpy Android malware for internal surveillance operations

Security Affairs

MAY 1, 2023

Researchers at the Lookout Threat Lab have discovered a new Android surveillance spyware, dubbed BouldSpy, that was used by the Law Enforcement Command of the Islamic Republic of Iran (FARAJA). The researchers are tracking the spyware since March 2020, starting in 2023, multiple security experts [ 1 , 2 ] started monitoring its activity. .

Surveillance

Surveillance Malware Spyware Education

EU officials were targeted with Israeli surveillance software

Security Affairs

APRIL 13, 2022

According to a report published by Reuters, an Israeli surveillance software was used to spy on senior officials in the European Commission. The report did not attribute the attacks to a specific threat actor or did not reveal what information was obtained following the compromise of the victims’ devices. .”

Surveillance

Surveillance Software Spyware Hacking

German authorities raid the offices of the FinFisher surveillance firm

Security Affairs

OCTOBER 14, 2020

Earlier this month, German authorities have raided the offices of FinFisher, the German surveillance software firm, accused of providing its software to oppressive regimes. The post German authorities raid the offices of the FinFisher surveillance firm appeared first on Security Affairs. Pierluigi Paganini.

Surveillance

Surveillance Spyware Software Advertising

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

Security Affairs

NOVEMBER 11, 2022

Lookout researchers discovered two long-running surveillance campaigns targeting the ethnic minority Uyghurs. Researchers from mobile security firm Lookout uncovered two long-running surveillance campaigns targeting the Uyghurs minority. List of installed packages. Call logs and geocoded location associated with the call. .”

Surveillance

Surveillance Spyware Malware Mobile

Netflix Cracks Down on Password Sharing, AI Legal Research Gone Wrong, Fake Identities and Surveillance Firms

Security Boulevard

JUNE 4, 2023

We investigate the consequences of referencing non-existent legal cases, the lawyer’s claim of […] The post Netflix Cracks Down on Password Sharing, AI Legal Research Gone Wrong, Fake Identities and Surveillance Firms appeared first on Shared Security Podcast.

Surveillance

Surveillance Passwords Data privacy Technology

Google updates policies to ban any ads for surveillance solutions and services

Security Affairs

JULY 12, 2020

Google announced that starting from August it will update its policies to reject ads proposed by organizations offering surveillance software. The move aims at fighting the advertising of any form of surveillance. The tech giant announced that the update will be effective starting from August 11, 2020. Pierluigi Paganini.

Surveillance

Surveillance Spyware Advertising Marketing

An RCE in Annke video surveillance product allows hacking the device

Security Affairs

AUGUST 27, 2021

Researchers from Nozomi Networks discovered a critical vulnerability that can be exploited to hack a video surveillance product made by Annke. The vulnerability, tracked as CVE-2021-32941 can be exploited by an attacker to hack a video surveillance product made by Annke, a provider of home and business security solutions.

Surveillance

Surveillance Hacking Firmware Manufacturing

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

Security Affairs

JUNE 24, 2022

Researchers from Google’s Threat Analysis Group (TAG) revealed that the Italian surveillance firm RCS Labs was helped by some Internet service providers (ISPs) in Italy and Kazakhstan to infect Android and iOS users with their spyware. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Surveillance

Surveillance Mobile Spyware Telecommunications

EDRi PrivacyCamp22 – Panel: ‘Surveillance Tech As Misclassification 2.0 For The Gig Economy?’

Security Boulevard

FEBRUARY 28, 2022

The post EDRi PrivacyCamp22 – Panel: ‘Surveillance Tech As Misclassification 2.0 ’ appeared first on Security Boulevard. Sincere thanks to EDRi (European Digital Rights) for publishing their phenomenal videos from the EDRi PrivacyCamp22 Conference on the organization’s YouTube channel. For The Gig Economy?’

Surveillance

Surveillance Education InfoSec Information Security

USENIX Security ’23 – ‘Sneaky Spy Devices And Defective Detectors: The Ecosystem Of Intimate Partner Surveillance With Covert Devices’

Security Boulevard

DECEMBER 24, 2023

Permalink The post USENIX Security ’23 – ‘Sneaky Spy Devices And Defective Detectors: The Ecosystem Of Intimate Partner Surveillance With Covert Devices’ appeared first on Security Boulevard. Originating from the conference’s events situated at the Anaheim Marriott ; and via the organizations YouTube channel.

Surveillance

Surveillance Architecture Education Information Security

EDRi PrivacyCamp22 – Panel: ‘Regulating Surveillance Ads Across The Atlantic’

Security Boulevard

MARCH 4, 2022

The post EDRi PrivacyCamp22 – Panel: ‘Regulating Surveillance Ads Across The Atlantic’ appeared first on Security Boulevard. Sincere thanks to EDRi (European Digital Rights) for publishing their phenomenal videos from the EDRi PrivacyCamp22 Conference on the organization’s YouTube channel.

Surveillance

Surveillance Education InfoSec Information Security

Domestic Kitten has been conducting surveillance targeting over 1,000 individuals

Security Affairs

FEBRUARY 8, 2021

Iran-linked APT group Domestic Kitten, also tracked as APT-C-50, has been conducting widespread surveillance targeting over 1,000 individuals. Both groups have conducted long-running cyber-attacks and intrusive surveillance campaigns, which target both individuals’ mobile devices and personal computers.” Pierluigi Paganini.

Surveillance

Surveillance Mobile Malware Cyber Attacks

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Security Affairs

JUNE 17, 2022

Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.

Spyware

Spyware Surveillance Telecommunications Mobile

NSO CEO claims Facebook wanted NSO surveillance tool to spy on users

Security Affairs

APRIL 8, 2020

In October 2019, WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks against its users. According to the NSO CEO, Facebook was interested in improving surveillance capabilities on iOS devices of the Onavo Protect. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Surveillance

Surveillance Spyware Advertising Government

CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 1, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added nine new vulnerabilities to its Known Exploited Vulnerabilities Catalog.

Spyware

Spyware Surveillance Mobile Education

U.S. Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp

Security Affairs

MARCH 2, 2024

Court ordered surveillance firm NSO Group to hand over the source code for its Pegasus spyware and other products to Meta. Judge ordered the surveillance firm to hand over the source code for its Pegasus spyware and other products to the social network giant. from April 29, 2018, to May 10, 2020).

Spyware

Spyware Surveillance Architecture Software

US Gov sanctioned Intellexa Consortium individuals and entities behind Predator spyware attacks

Security Affairs

MARCH 5, 2024

The surveillance software was also used to spy on U.S. Surveillance software was misused by foreign actors in attacks aimed at dissidents and journalists around the world. Predator spyware is known for its extensive data-stealing and surveillance capabilities. government officials, journalists, and policy experts.

Spyware

Spyware Surveillance Government Technology

The US Gov is testing high-altitude balloons for surveillance

Security Affairs

AUGUST 4, 2019

The US government is testing high-altitude balloons manufactured by Sierra Nevada to conduct surveillance over American soil. The US government is planning to use high-altitude balloons to conduct surveillance over Americans. SecurityAffairs – high-altitude balloons, surveillance). ” states The Guardian.

Surveillance

Surveillance Manufacturing Advertising Government

UAE government denies using ToTok for mass surveillance

Security Affairs

DECEMBER 30, 2019

The United Arab Emirates denied reports that the popular mobile app ToTok was used as part of a government massive surveillance program. According to a report recently published by the New York Times , the popular app ToTok was used by the UAE government as a surveillance tool. SecurityAffairs – ToTok, surveillance).

Surveillance

Surveillance Government Telecommunications Advertising

Google Responds to Warrants for “About” Searches

Schneier on Security

OCTOBER 13, 2020

.” These searches are legal when conducted for the purpose of foreign surveillance, but the worry about using them domestically is that they are unconstitutionally broad. The very nature of these searches requires mass surveillance. The FBI does not conduct mass surveillance. The FBI does not conduct mass surveillance.

Surveillance

Surveillance Wireless Accountability Architecture

DEF CON 31 – Corynne McSherry’s, India McKinney’s, Daly Barnett’s, Kate Bertash’s ‘Reproductive Justice In The Age of Digital Surveillance’

Security Boulevard

OCTOBER 21, 2023

Permalink The post DEF CON 31 – Corynne McSherry’s, India McKinney’s, Daly Barnett’s, Kate Bertash’s ‘Reproductive Justice In The Age of Digital Surveillance’ appeared first on Security Boulevard.

Surveillance

Surveillance Architecture Education Information Security

Is the Belarusian government behind the surveillance Android app banned by Google?

Security Affairs

SEPTEMBER 3, 2020

According to an anonymous Belarusian security researcher the app was designed for surveillance purposes, it collects info on the device owner and geolocation data, then periodically sends the data back to a remote server. The post Is the Belarusian government behind the surveillance Android app banned by Google?

Surveillance

Surveillance Government Advertising Malware

Cisco to pay $8.6 million fine for selling flawed surveillance technology to the US Gov

Security Affairs

AUGUST 1, 2019

Back in 2008, a whistle-blower identifies a vulnerability in Cisco video surveillance software, but the tech giant continued to sell the software to US agencies until July 2013. Cisco finally addressed the flaws in 2013 and stopped selling Cisco Video Surveillance Manager (VSM) in 2014. Cisco is going to pay $8.6 Pierluigi Paganini.

Surveillance

Surveillance Technology Government Software

CPDP 2021 – Moderator: Eleni Kosta ‘The Use Of Ai In State Surveillance: Challenges For Privacy’

Security Boulevard

MAY 14, 2021

The post CPDP 2021 – Moderator: Eleni Kosta ‘The Use Of Ai In State Surveillance: Challenges For Privacy’ appeared first on Security Boulevard. Our sincere thanks to CPDP 2021 - Computers, Privacy & Data Protection Conference for publishing their well-crafted videos on the organization's YouTube channel.

Surveillance

Surveillance Education InfoSec Information Security

Commercial spyware vendors are behind most zero-day exploits discovered by Google TAG

Security Affairs

FEBRUARY 6, 2024

The latest report published by Google Threat Analysis Group (TAG), titled “ Buying Spying, an in-depth report with our insights into Commercial Surveillance Vendors (CSVs )”, warns of the rise of commercial spyware vendors and the risks to free speech, the free press, and the open internet. ” concludes Google.

Spyware

Spyware Surveillance Government Software

US pharmacy Rite Aid banned from operating facial recognition systems

Malwarebytes

DECEMBER 21, 2023

The regulator found so many flaws in the retailer’s surveillance program that it concluded Rite Aid had failed to implement reasonable procedures and prevent harm to consumers in its use of facial recognition technology in hundreds of stores. The company also failed to inform consumers that it was using the technology in its stores.

Surveillance

Surveillance Technology Retail Artificial Intelligence

CPDP 2021 – Moderator: John Davisson ‘Student Privacy At Risk Under Covid-19: Online Test Proctoring Brings AI And Surveillance Into Students’ Homes’

Security Boulevard

MAY 2, 2021

The post CPDP 2021 – Moderator: John Davisson ‘Student Privacy At Risk Under Covid-19: Online Test Proctoring Brings AI And Surveillance Into Students’ Homes’ appeared first on Security Boulevard.

Surveillance

Surveillance Risk Education InfoSec

Ukraine’s SBU arrested a member of Pro-Russia hackers group ‘Cyber Army of Russia’

Security Affairs

JANUARY 29, 2024

In early December, Ukraine’s SBU announced they shut down two surveillance cameras that were allegedly hacked by the Russian intelligence services to spy on air defense forces and critical infrastructure in Kyiv. The surveillance cameras were located in residential buildings and were used to monitor the surrounding area and a parking lot.

Surveillance

Surveillance DDOS Mobile Hacking

Researchers analyzed the PREDATOR spyware and its loader Alien

Security Affairs

MAY 29, 2023

Security researchers at Cisco Talos and the Citizen Lab have shared technical details about a commercial Android spyware named Predator that is sold by the surveillance firm Intellexa (formerly known as Cytrox). The attacks aimed at installing the surveillance spyware Predator, developed by the North Macedonian firm Cytrox.

Spyware

Spyware Surveillance Media Malware

Snowden Ten Years Later

Schneier on Security

JUNE 6, 2023

In 2013 and 2014, I wrote extensively about new revelations regarding NSA surveillance based on the documents provided by Edward Snowden. Those of us in the information security community had long assumed that the NSA was doing things like this. Many have written about how being under constant surveillance changes a person.

Surveillance

Surveillance Computers and Electronics Encryption Government

CPDP 2021 – Moderator: Chloé Berthélémy ‘New Police Surveillance Technologies: Combatting The Science Fiction Collectively – A Civil Society Perspective’

Security Boulevard

MAY 21, 2021

The post CPDP 2021 – Moderator: Chloé Berthélémy ‘New Police Surveillance Technologies: Combatting The Science Fiction Collectively – A Civil Society Perspective’ appeared first on Security Boulevard.

Surveillance

Surveillance Technology Education InfoSec

French court indicted Nexa Technologies for complicity in acts of torture

Security Affairs

NOVEMBER 28, 2021

Nexa Technologies was indicted for complicity in acts of torture, the French firm is accused of having sold surveillance equipment to the Egypt. Nexa Technologies offers a range of solutions for homeland security, including surveillance solutions. “In short, Cerebro can suck up any data that is not encrypted.

Technology

Technology Surveillance Software Government

Apple Guidance on Intimate Partner Surveillance

Ukraine’s SBU said that Russia’s intelligence hacked surveillance cameras to direct a missile strike on Kyiv

Trending Sources

France’s government is giving the police more surveillance power

Surveillance firm’s leaked docs show the purchase of an $8M iOS RCE zero-day exploit?

Sickness Monitoring is the Opening Video Surveillance Has Been Waiting For

Surveillance vendor exploited Samsung phone zero-days

Israeli surveillance firm QuaDream is shutting down amidst spyware accusations

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports

Israeli surveillance firm QuaDream emerges from the dark

Australian Defense Department will replace surveillance cameras from Chinese firms Hikvision and Dahua

White hat hackers gained access more than 150,000 surveillance cameras

Anomaly Six, a US surveillance firm that tracks roughly 3 billion devices in real-time

Iranian govt uses BouldSpy Android malware for internal surveillance operations

EU officials were targeted with Israeli surveillance software

German authorities raid the offices of the FinFisher surveillance firm

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

Netflix Cracks Down on Password Sharing, AI Legal Research Gone Wrong, Fake Identities and Surveillance Firms

Google updates policies to ban any ads for surveillance solutions and services

An RCE in Annke video surveillance product allows hacking the device

Google TAG argues surveillance firm RCS Labs was helped by ISPs to infect mobile users

EDRi PrivacyCamp22 – Panel: ‘Surveillance Tech As Misclassification 2.0 For The Gig Economy?’

USENIX Security ’23 – ‘Sneaky Spy Devices And Defective Detectors: The Ecosystem Of Intimate Partner Surveillance With Covert Devices’

EDRi PrivacyCamp22 – Panel: ‘Regulating Surveillance Ads Across The Atlantic’

Domestic Kitten has been conducting surveillance targeting over 1,000 individuals

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

NSO CEO claims Facebook wanted NSO surveillance tool to spy on users

CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog

U.S. Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp

US Gov sanctioned Intellexa Consortium individuals and entities behind Predator spyware attacks

The US Gov is testing high-altitude balloons for surveillance

UAE government denies using ToTok for mass surveillance

Google Responds to Warrants for “About” Searches

DEF CON 31 – Corynne McSherry’s, India McKinney’s, Daly Barnett’s, Kate Bertash’s ‘Reproductive Justice In The Age of Digital Surveillance’

Is the Belarusian government behind the surveillance Android app banned by Google?

Cisco to pay $8.6 million fine for selling flawed surveillance technology to the US Gov

CPDP 2021 – Moderator: Eleni Kosta ‘The Use Of Ai In State Surveillance: Challenges For Privacy’

Commercial spyware vendors are behind most zero-day exploits discovered by Google TAG

US pharmacy Rite Aid banned from operating facial recognition systems

CPDP 2021 – Moderator: John Davisson ‘Student Privacy At Risk Under Covid-19: Online Test Proctoring Brings AI And Surveillance Into Students’ Homes’

Ukraine’s SBU arrested a member of Pro-Russia hackers group ‘Cyber Army of Russia’

Researchers analyzed the PREDATOR spyware and its loader Alien

Snowden Ten Years Later

CPDP 2021 – Moderator: Chloé Berthélémy ‘New Police Surveillance Technologies: Combatting The Science Fiction Collectively – A Civil Society Perspective’

French court indicted Nexa Technologies for complicity in acts of torture

Stay Connected