Schneier on Security

FEBRUARY 13, 2021

That included an FBI counterintelligence investigation that began around 2012, when agents started monitoring the communications of a small group of Supermicro workers, using warrants obtained under the Foreign Intelligence Surveillance Act , or FISA, according to five of the officials.

Surveillance 363

Surveillance Internet Internet Government 363

Security Affairs

MARCH 13, 2025

North Korea-linked threat actor ScarCruft (aka APT37 , Reaper, and Group123) is behind a previously undetected Android surveillance tool namedKoSpythat was used to target Korean and English-speaking users. ” KoSpy collects SMS, calls, location, files, audio, and screenshots via plugins.

Spyware 78

Spyware Surveillance Encryption Malware 78

Security Affairs

MARCH 1, 2020

The Register reports that the secret structures of GCHQ are part of the surveillance programme codenamed “CIRCUIT” and also refers to an Overseas Processing Centre 1 (OPC-1), while another centre, OPC-2, has been planned, according to documents leaked by Snowden. In the documents, the company is referred to as a “partner” codenamed Gerontic.

Wireless 145

Wireless Surveillance Telecommunications Advertising 145

Security Affairs

AUGUST 1, 2018

An employee at Amnesty International has been targeted with Israeli surveillance malware, the news was revealed by the human rights group. Amnesty International revealed that one of its employees was targeted with a surveillance malware developed by an Israeli firm. com , pine-sales[.]com com , and ecommerce-ads[.]org.”

Surveillance 67

Surveillance Malware Spyware Mobile 67

Schneier on Security

APRIL 10, 2023

In 2012, researcher Cormac Herley offered an answer : It weeded out all but the most gullible. This is due not only to AI advances, but to the business model of the internet—surveillance capitalism—which produces troves of data about all of us, available for purchase from data brokers.

Phishing 343

Phishing Scams Internet Internet 343

Schneier on Security

DECEMBER 4, 2023

I wrote about this in 2012 in a book called Liars and Outliers. We are both under constant surveillance and are competing for star rankings. Surveillance is the business model of the Internet. Data brokers buy that surveillance data from the smaller companies, and assemble detailed dossiers on us. This is nothing new.

Government 363

Government Surveillance Artificial Intelligence Marketing 363

Schneier on Security

JULY 24, 2019

This is exactly the policy debate we should be having­not the fake one about whether or not we can have both security and surveillance. Moreover, in 2012 every CALEA-enabled switch sold to the Defense Department had security vulnerabilities. (I I wrote about all this, and more, in 2013.).

Encryption 279

Encryption Telecommunications Risk Government 279

Schneier on Security

AUGUST 14, 2019

This is exactly the policy debate we should be having -- not the fake one about whether or not we can have both security and surveillance. Moreover, in 2012 every CALEA-enabled switch sold to the Defense Department had security vulnerabilities. (I I wrote about all this, and more, in 2013.).

Encryption 273

Encryption Telecommunications Risk Government 273

CyberSecurity Insiders

JANUARY 10, 2023

Surveillance is prevailing at its peak in China as it keeps a track of every move made by its populace in its provinces. So, all senior MPs have raised their voice against the surveillance and are urging the public using Chinese products to handle them with care, as they might be capable of gathering a pool of personal data.

Government 95

Government Surveillance Cybersecurity 95

Security Affairs

FEBRUARY 14, 2020

According to the media, these are the largest penalties imposed by the Kremlin on Western IT firms under internet use laws since 2012. ” reported the Associated Press.

Telecommunications 145

Telecommunications Advertising Government Media 145

Security Affairs

JANUARY 31, 2021

Last year, the group published a detailed analysis on how the Chinese government has improved its surveillance system to detect and block the popular circumvention tools Shadowsocks and its variants. ” reads the paper published by the experts.

Firewall 144

Firewall Surveillance Internet Internet 144

Malwarebytes

DECEMBER 21, 2023

The regulator found so many flaws in the retailer’s surveillance program that it concluded Rite Aid had failed to implement reasonable procedures and prevent harm to consumers in its use of facial recognition technology in hundreds of stores. Notify consumers when their biometric information is used.

Surveillance 111

Surveillance Technology Retail Artificial Intelligence 111

Security Affairs

DECEMBER 4, 2022

Recently security the security expert researcher Sam Curry warned of vulnerabilities in mobile apps that exposed Hyundai and Genesis car models after 2012 to remote attacks. ” Privacy advocates are raising the alarm on surveillance activities operated by law enforcement by collecting data from connected systems in modern cars.

Surveillance 110

Surveillance Technology Mobile Hacking 110

Security Affairs

FEBRUARY 24, 2021

The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. “This unlawful surveillance violates the right to privacy and stifles freedom of expression.” ” reads the post published by Amnesty International.

Spyware 128

Spyware Government Surveillance Phishing 128

CyberSecurity Insiders

FEBRUARY 13, 2022

A report published by Sentinel One states that a hacking group named “Modified Elephant” was seen carrying out such criminal activities since 2012 and has started the game of planting criminal evidence on devices of innocent online users.

Surveillance 94

Surveillance Passwords Malware Hacking 94

SC Magazine

FEBRUARY 24, 2021

in 2012 to smooth the process of notifying government. A second thread through the hearing was lawmakers suggesting that, given the National Security Agency is unable to do domestic surveillance, that some other agency should be able to step up. Joe Lieberman, I-Conn., Though the hackers used U.S.

Surveillance 106

Surveillance Government Hacking Software 106

Malwarebytes

JULY 12, 2024

Without getting consent from a child, these surveillance capabilities represent serious invasions of privacy. ” In an earlier archived version of mSpy’s website from 2012 , the company touts that its app can help you “discover if your partner is cheating on you.”

Data breaches 124

Data breaches Mobile Surveillance Advertising 124

eSecurity Planet

APRIL 26, 2022

Company Sector Year Status Isovalent Cloud security 2020 Private Illumio Cloud security 2015 Private SignalFx Monitoring 2015 Acquired: Splunk CipherCloud Cloud security 2012 Acquired: Lookout Lookout Mobile security 2011 Private. Mimecast Email security 2012 Nasdaq: MIME. a16z Investments. Bessemer Venture Partners. Greylock Partners.

Cybersecurity 129

Cybersecurity Technology Marketing Healthcare 129

Security Affairs

JANUARY 7, 2020

According to Stone, the CVE-2019-2215 vulnerability was being used or sold by the controversial surveillance firm NSO Group , it was exploited by its surveillance software Pegasus. SideWinder, a group that has been active since 2012, is a known threat and has reportedly targeted military entities’ Windows machines.

Surveillance 98

Surveillance Advertising Marketing Encryption 98

Malwarebytes

DECEMBER 1, 2021

User activity on WeChat has been known to be analyzed, tracked and shared with Chinese authorities upon request as part of the mass surveillance network in China. Wickr was founded in 2012 by a group of security experts and privacy advocates but was acquired by Amazon Web Services. The FBI notes: No message content.

Encryption 145

Encryption Computers and Electronics Accountability Backups 145

SecureList

NOVEMBER 14, 2022

The cyber-offense ecosystem still appears to be shaken by the sudden demise of NSO Group; at the same time, these activities indicate to us that we’ve only seen the tip of the iceberg when it comes to commercial-grade mobile surveillance tooling. More APT groups will move from CobaltStrike to other alternatives. Drone hacking!

Firmware 128

Firmware Surveillance Mobile Telecommunications 128

SiteLock

AUGUST 27, 2021

According to Wikileaks, the whistleblower website, the US National Security Agency (NSA) has been spying on French President Jacques Chirac, Nicolas Sarkozy and Francois Hollande in 2006-2012, Wikileaks says. These files were said to derive from directly targeted NSA surveillance of the communications of multiple French leaders.

Cybersecurity 52

Cybersecurity Surveillance Government Software 52

Adam Levin

APRIL 8, 2019

A week after it landed with a curious (and most likely spurious) thud, Zuckerberg’s announcement about a new tack on consumer privacy still has the feel of an unexpected message from some parallel universe where surveillance (commercial and/or spycraft) isn’t the new normal.

Hacking 100

Hacking Data privacy Artificial Intelligence System Administration 100

SiteLock

AUGUST 27, 2021

Department of Justice released a report that revealed some weaknesses in Next Gen Cyber, The Federal Bureau of Investigation’s cyber security program begun in 2012. Last week, the U.S. Next Gen Cyber originally has a budget of $314 million and a total of 1,333 full-time jobs (including 756 agents), while the DOJ also asked for an $86.6

Cybersecurity 52

Cybersecurity Internet Internet Banking 52

ForAllSecure

APRIL 27, 2021

ForAllSecure began exploring the answer to these questions in 2012 at Carnegie Mellon University when Professor David Brumley and his graduate students, Thanassis Avgerinos and Alex Rebert, created Mayhem for Code (formally Mayhem) as an advanced fuzz testing solution. If development is made to be continuous, why shouldn’t security?

Software 52

Software Technology Surveillance Hacking 52

ForAllSecure

APRIL 27, 2021

ForAllSecure began exploring the answer to these questions in 2012 at Carnegie Mellon University when Professor David Brumley and his graduate students, Thanassis Avgerinos and Alex Rebert, created Mayhem for Code (formally Mayhem) as an advanced fuzz testing solution. If development is made to be continuous, why shouldn’t security?

Software 52

Software Technology Surveillance Hacking 52

Architect Security

SEPTEMBER 24, 2020

And when thousands of protesters are out on the street, the opportunity is ripe for law enforcement to not only surveil the scene but to collect personal information that it can then hold on to for a long time. So your experience will depend on where you are.

Surveillance 40

Surveillance Data collection Media Software 40

Elie

DECEMBER 2, 2017

What’s remarkable about these record-breaking attacks is they were carried out via small, innocuous Internet-of-Things (IoT) devices like home routers, air-quality monitors, and personal surveillance cameras. his blog suffered 269 DDOS attacks between July 2012 and September 2016.

IoT 107

IoT DDOS Internet Internet 107

SecureList

DECEMBER 18, 2020

While the newer actors are filling the skills gap quickly, the most advanced parties are scaling to obtain global surveillance capabilities through technological supremacy. When it was first used in 2012, it disabled over 30,000 computers.

Government 75

Government Technology Malware Hacking 75

Schneier on Security

JUNE 6, 2023

In 2013 and 2014, I wrote extensively about new revelations regarding NSA surveillance based on the documents provided by Edward Snowden. Many have written about how being under constant surveillance changes a person. They were leaked in 2013, but most of them were from 2012 or before.) I wrote the essay below in September 2013.

Surveillance 353

Surveillance Computers and Electronics Government Encryption 353

CyberSecurity Insiders

SEPTEMBER 8, 2021

Philip Zimmermann’s stance on human rights and privacy closely aligns with my core belief that technology should enhance one's life and enable private channels to exchange and develop ideas without surveillance and censorship. What do you think people considering a career in cybersecurity should know?

Computers and Electronics 40

Computers and Electronics Architecture Education Encryption 40

Schneier on Security

DECEMBER 28, 2020

In the interests of surveillance, the NSA has pushed for an insecure cell phone encryption standard and a backdoor in random number generators (important for secure encryption). In 2012, Iran attacked the Saudi national oil company. If anything, the US’s prioritization of offense over defense makes us less safe.

Hacking 363

Hacking Government Internet Internet 363

Krebs on Security

SEPTEMBER 30, 2024

KrebsOnSecurity has learned that many of the man’s alleged targets were members of UGNazi , a hacker group behind multiple high-profile breaches and cyberattacks back in 2012. ” who said Iza hired him to surveil Zelocchi but ultimately refused to pay him for much of the work.

Cryptocurrency 308

Cryptocurrency Government Internet Internet 308

Security Affairs

SEPTEMBER 18, 2018

Pegasus is a surveillance malware developed by the Israeli surveillance NSO Group that could infect both iPhones and Android devices, it is sold exclusively to the governments and law enforcement agencies. Our technique identified a total of 45 countries where Pegasus operators may be conducting surveillance operations.

Spyware 108

Spyware Mobile Surveillance DNS 108

CyberSecurity Insiders

MAY 24, 2023

Adding to the concerns, the Five Eyes intelligence alliance has also issued an alert regarding a stealth surveillance campaign backed by China. It is important to note that while Western nations often attribute such incidents to countries like China and Russia, they remain relatively silent about their own surveillance campaigns.

Cyber Attacks 114

Cyber Attacks Surveillance Wireless Cybersecurity 114

Security Affairs

MAY 31, 2021

The NSA and the Danish intelligence signed a secret pact that allowed the cyberspies to eavesdrop on sensitive communications between 2012 and 2014. .” The spying operation, Operation Dunhammer, was uncovered by a joint investigation conducted by some of Europe’s biggest news agencies.

Telecommunications 140

Telecommunications Surveillance Internet Internet 140

SecureList

OCTOBER 17, 2023

This strategic shift signals its intent to intensify its surveillance capabilities and expand its range of targets. StrongyPity (aka PROMETHIUM) is a Turkish-speaking threat actor known to have been active since at least 2012.

Malware 140

Malware Government VPN Manufacturing 140