Duo's Security Blog

FEBRUARY 1, 2021

We are proud to announce the Duo has achieved ISO 27001:2013, 27017:2015, and 27018:2019 certification! What is ISO 27001:2013, 27017:2015 and 27018:2019? An ISO 27000 series certification is valid for three years and requires an annual surveillance audit to ensure continued compliance for the lifespan of the certification.

Manufacturing 52

Manufacturing Surveillance CISO Information Security 52

Schneier on Security

JANUARY 28, 2020

Sometimes it's hard to tell the corporate surveillance operations from the government ones: Google reportedly has a database called Sensorvault in which it stores location data for millions of devices going back almost a decade. In 2013, we learned from Edward Snowden that the NSA does this worldwide.

Surveillance 295

Surveillance Government 295

Threatpost

JULY 1, 2020

Never-before-seen Android spyware tools have been used in a widespread APT campaign to spy on the Uyghur ethnic minority group - since 2013.

Spyware 115

Spyware Surveillance Malware Hacking 115

Schneier on Security

JUNE 6, 2023

In 2013 and 2014, I wrote extensively about new revelations regarding NSA surveillance based on the documents provided by Edward Snowden. I wrote the essay below in September 2013. Many have written about how being under constant surveillance changes a person. But I had a more personal involvement as well.

Surveillance 351

Surveillance Computers and Electronics Encryption Government 351

Security Boulevard

DECEMBER 1, 2023

| [link] Introduction In 2013, Edward Snowden leaked over 200,000 classified National Security Agency documents concerning widespread government surveillance practices. This Article Navigating Rogue Waves; Balancing Privacy and Security was first published on Signpost Six. |

Surveillance 58

Surveillance Government Media Risk 58

Security Boulevard

JANUARY 10, 2022

After Snowden leaked documents from the NSA and left their employment in 2013, he has been living in Moscow and since charged with violating the Espionage Act.

Surveillance 127

Surveillance Government 127

SecureList

JUNE 16, 2021

From 2015 to February 2018, the malware was compiled with Visual Studio 2013 and 2015, whereas in February 2018, the developers moved to Visual Studio 2017 and embedded the malware’s logic within Microsoft Foundation Class (MFC) classes.

Surveillance 141

Surveillance Malware Password Management Passwords 141

Krebs on Security

SEPTEMBER 30, 2024

Islam also pleaded guilty to reporting dozens of phony bomb threats and fake hostage situations at the homes of celebrities and public officials (Islam participated in a swatting attack against this author in 2013 ). ” who said Iza hired him to surveil Zelocchi but ultimately refused to pay him for much of the work.

Cryptocurrency 251

Cryptocurrency Government Internet Internet 251

CyberSecurity Insiders

MAY 3, 2021

As per the report on CNN, this public surveillance program will be carried out by Department of Homeland Security and will be done by collaborating with private companies, mainly those belonging to technology sector.

Data privacy 102

Data privacy Government Surveillance Media 102

Security Affairs

FEBRUARY 11, 2021

Confucius is a pro-India APT group that has been active since 2013, it mainly focused on Pakistani and other South Asian targets. Since 2018, the hackers started targeting mobile users with an Android surveillance malware ChatSpy. ” reads the report published by Lookout. ” concludes the report. Pierluigi Paganini.

Spyware 121

Spyware Surveillance Malware Mobile 121

Schneier on Security

NOVEMBER 30, 2017

The disk image, when unpacked and loaded, is a snapshot of a hard drive dating back to May 2013 from a Linux-based server that forms part of a cloud-based intelligence sharing system, known as Red Disk.

Surveillance 170

Surveillance Cyber Risk Government Risk 170

NopSec

JULY 18, 2013

The post Recommended sessions at Black Hat 2013 Conference appeared first on NopSec. A choice of “OPTIROP: Hunting for ROP Gadgets in Style” or “Hacking like in the movies: ” Have a great conference and see you around there!

Surveillance 40

Surveillance Hacking Software 40

Security Affairs

MARCH 1, 2020

The Register reports that the secret structures of GCHQ are part of the surveillance programme codenamed “CIRCUIT” and also refers to an Overseas Processing Centre 1 (OPC-1), while another centre, OPC-2, has been planned, according to documents leaked by Snowden. In the documents, the company is referred to as a “partner” codenamed Gerontic.

Wireless 136

Wireless Surveillance Telecommunications Advertising 136

Security Affairs

DECEMBER 16, 2020

The campaign has been active since at least 2013, but the Goontact malware samples were first observed by Lookout in November 2018. ” conclude the experts.

Spyware 123

Spyware Mobile Surveillance Malware 123

CyberSecurity Insiders

MAY 31, 2021

However, unless it is done under strict surveillance, none of the benefits could reach the populace. . Note- In the year 2013, NHS was involved in a similar data-sharing program called ‘Care Data’ where all the patient data belonging to the Govt backed healthcare services provide was being stored in a central repository.

Data privacy 94

Data privacy Surveillance Healthcare Technology 94

Security Affairs

MARCH 14, 2020

The feature that prevent s the execution of JavaScript code on specific sites is essential for the privacy-friendly Tor Browser that uses it to prevent online surveillance. Malicious JavaScrip codes could reveal the real IP addresses of Tor users if executed.

Advertising 130

Advertising Surveillance Hacking Information Security 130

Security Affairs

SEPTEMBER 17, 2019

Edward Snowden’s book includes details of the author’s life, including the description of his activity at the US intelligence agencies while they were buiding the Prism surveillance system. The government of the United States has just announced a lawsuit over my memoir, which was just released today worldwide.

Government 71

Government Surveillance Advertising Hacking 71

Security Affairs

MAY 22, 2023

The battle had roots in the past, precisely in 2013 when the privacy activist and NOYB founder, Max Schrems, filed a complaint about Facebook’s handling of his data following the revelations of Edward Snowden about the global surveillance program operated by the US.

Surveillance 88

Surveillance Data privacy Media Hacking 88

Schneier on Security

JULY 24, 2019

This is exactly the policy debate we should be having­not the fake one about whether or not we can have both security and surveillance. I wrote about all this, and more, in 2013.). But adding that backdoor also decreases our collective security because the bad guys can eavesdrop on everyone.

Encryption 277

Encryption Telecommunications Risk Government 277

Identity IQ

FEBRUARY 8, 2024

From 2011 to 2013, the Silk Road hosted 1.2 2013: The End of the Silk Road Authorities were able to trace the pseudonym back to Ulbricht thanks to the efforts of an IRS investigator who was working with the DEA on the Silk Road case in mid-2013. The FBI shut down the Silk Road in October 2013. billion in value.

Identity Theft 98

Identity Theft Cryptocurrency Government Engineering 98

Schneier on Security

AUGUST 14, 2019

This is exactly the policy debate we should be having -- not the fake one about whether or not we can have both security and surveillance. I wrote about all this, and more, in 2013.). But adding that backdoor also decreases our collective security because the bad guys can eavesdrop on everyone.

Encryption 259

Encryption Telecommunications Risk Government 259

BH Consulting

DECEMBER 1, 2020

It dates back to 2013 when Edward Snowden revealed the PRISM programme (where the US NSA accessed data from big tech e.g. Facebook, Apple, Google, and Microsoft among others). surveillance law in Section 702 FISA and EO 12333 , which can give the US authorities access to any transferred data. The court ruling has not changed that.

Surveillance 52

Surveillance Encryption Government Risk 52

Security Affairs

MARCH 25, 2020

The feature that prevents the execution of JavaScript code on specific sites is essential for the privacy-friendly Tor Browser that uses it to prevent online surveillance. Malicious JavaScrip codes could reveal the real IP addresses of Tor users if executed.

Surveillance 67

Surveillance Information Security Hacking 67

Security Affairs

OCTOBER 28, 2018

Back to September 2013, Belgacom (now Proximus), the largest telecommunications company in Belgium and primarily state-owned, announced its IT infrastructure had suffered a malware-based attack. Belgian newspaper reported that investigators had found proof that the Belgacom hack was the work of the UK GCHQ intelligence agency.

Hacking 88

Hacking Spyware Telecommunications Malware 88

Security Affairs

AUGUST 23, 2020

Transparent Tribe has been active since at least 2013, it targeted entities across 27 countries, most of them in Afghanistan, Germany, India, Iran and Pakistan. These RATs are capable of exfiltrate information, take screenshot, and record webcam streams.

Malware 127

Malware Media Advertising Surveillance 127

CyberSecurity Insiders

APRIL 29, 2021

On July 16 2020, the Court of Justice of the European Union (EU) issued a verdict that ruled that the EU-US Data Protection Shield, on which many companies relied on to transfer their data between the US and the EU, was invalidated due to concerns around surveillance by US state and law enforcement agencies.

Encryption 98

Encryption Surveillance Data privacy Cybersecurity 98

SecureWorld News

MARCH 10, 2022

And it might have been prepared for this moment, years ago, as a surveillance tool. It's easy to put surveillance on telecoms if you have a foothold," Kubecka said. In 2013, the Russian security agency, FSB, demanded that I provide them the private data of the Ukrainian users of VK who were protesting against a pro-Russian President.

Technology 81

Technology Internet Internet Telecommunications 81

Scary Beasts Security

MARCH 21, 2014

Whilst it's true that Flash 0-days have seen a resurgence in Dec 2013 - Feb 2014, this does not invalidate the data that the whitehat community made a difference in 2010 - 2011 onwards. (You should also call Mateusz Jurczyk, Gynvael Coldwind and Fermin Serna heroes too.

Surveillance 50

Surveillance Software Internet Internet 50

Schneier on Security

MAY 20, 2020

Bart Gellman's long-awaited (at least by me) book on Edward Snowden, Dark Mirror: Edward Snowden and the American Surveillance State , will finally be published in a couple of weeks. It's an interesting read, mostly about the government surveillance of him and other journalists. There is an adapted excerpt in the Atlantic.

Surveillance 332

Surveillance Encryption Government Media 332

Security Affairs

MARCH 31, 2019

Booz Allen Hamilton is the same defense contractor that employed the notorious Edward Snowden at the time the whistleblower when he disclosed the mass surveillance program conducted by the NSA on a global scale. The DoJ’s chief national security prosecutor John Carlin revealed that Martin was employed by Booz Allen Hamilton.

Computers and Electronics 61

Computers and Electronics Government Advertising Surveillance 61

Krebs on Security

AUGUST 16, 2018

The claims come in a lawsuit filed this week in Los Angeles on behalf of Michael Terpin , who co-founded the first angel investor group for bitcoin enthusiasts in 2013. Investigators in that case say they have surveillance logs that show the group discussed working directly with mobile store employees to complete the phone number heists.

Mobile 229

Mobile Cryptocurrency Accountability Authentication 229

Malwarebytes

JULY 4, 2022

In 2013, Edward Snowden’s revelations about pervasive Internet surveillance triggered a huge gobal effort to make encrypted web traffic the norm, rather than the exception. In all likelihood, it will take something quite dramatic to change that, but that doesn’t mean it can’t happen.

Internet 110

Internet Internet Technology DNS 110

CyberSecurity Insiders

MAY 24, 2023

Adding to the concerns, the Five Eyes intelligence alliance has also issued an alert regarding a stealth surveillance campaign backed by China. It is important to note that while Western nations often attribute such incidents to countries like China and Russia, they remain relatively silent about their own surveillance campaigns.

Cyber Attacks 114

Cyber Attacks Surveillance Wireless Cybersecurity 114

Security Affairs

SEPTEMBER 11, 2022

The campaigns have been conducted since 2015 and are aimed at conducting information collection and surveillance operations against individuals and organizations of strategic interest to Teheran. ” The surveillance operations conducted by the APT group involved the distribution of Android malware such as VINETHORN and PINEFLOWER.

Surveillance 98

Surveillance Social Engineering Phishing Government 98

Malwarebytes

APRIL 17, 2024

There are new relationships in which the rules around privacy and sharing are still being agreed upon, old relationships in which power imbalances are deeply entrenched, and, of course, abusive relationships in which non-consensual tracking and surveillance are used as levers of control. The man murdered his two children.

Risk 115

Risk Spyware Surveillance Cybersecurity 115

SecureWorld News

AUGUST 10, 2021

Amazon has a history of winning government contracts, dating back to 2013 when it was awarded a $600 million contract, C2S, providing cloud services to CIA and other agencies. In 2020, Amazon was able to get a portion of the CIA's C2E contract, which is potentially worth up to tens of billions of dollars.

Government 95

Government Surveillance Accountability Cybersecurity 95

Schneier on Security

FEBRUARY 21, 2020

He didn't become a senator until 2013.) My most recent two books, Data and Goliath -- about surveillance -- and Click Here to Kill Everybody -- about IoT security -- are really about the policy implications of technology. Matt Blaze and Ron Rivest were with me; I don't remember who else. They still are.

Technology 339

Technology Encryption Surveillance Government 339