Schneier on Security

SEPTEMBER 26, 2019

The reason these threats are so real is that it's not difficult to hide surveillance or control infrastructure in computer components, and if they're not turned on, they're very difficult to find. Even so, these examples illustrate an important point: there's no escaping the technology of inevitable surveillance. Our enemies do it.

Surveillance 257

Surveillance Wireless Government Internet 257

Security Affairs

SEPTEMBER 16, 2024

The IT giant fears that the disclosures of its threat intelligence related to commercial spyware operations could aid NSO and other surveillance firms. ” The officials requested an Israeli court to keep this action secret, even from parties involved in Meta’s ongoing WhatsApp hacking lawsuit against NSO. .

Surveillance 117

Surveillance Spyware Risk Hacking 117

Schneier on Security

NOVEMBER 13, 2018

Due to ever-evolving technological advances, manufacturers are connecting consumer goods­ -- from toys to lightbulbs to major appliances­ -- to the internet at breakneck speeds. By developing more advanced security features and building them into these products, hacks can be avoided. But software is different.

IoT 267

IoT Manufacturing Internet Internet 267

SC Magazine

MARCH 10, 2021

A hacking collective compromised roughly 150,000 internet-connected surveillance cameras from Verkada, Inc., granting them access to live and archived video feeds across multiple organizations, including manufacturing facilities, hospitals, schools, police departments and prisons. When surveillance leads to spying.

Surveillance 129

Surveillance IoT Accountability Passwords 129

Security Affairs

AUGUST 30, 2019

A Russian security researcher has found that hardware wiretapping equipment composing Russia’s SORM surveillance system had been leaking user data. SORM is a mass surveillance system that allows the Government of Moscow to track online activities of single individuals thanks to the support of the Russian ISPs. Pierluigi Paganini.

Surveillance 105

Surveillance Firmware Advertising Mobile 105

Security Affairs

FEBRUARY 12, 2023

Australia’s Defense Department announced that they will remove surveillance cameras made by Chinese firms linked to the government of Beijing. Australia’s Defense Department is going to replace surveillance cameras made by Chinese firms Hikvision and Dahua, who are linked to the government of Beijing.

Surveillance 98

Surveillance Government Manufacturing Risk 98

Schneier on Security

FEBRUARY 13, 2021

Bloomberg News has a major story about the Chinese hacking computer motherboards made by Supermicro, Levono, and others. US-only design and manufacturing isn’t an option; the tech world is far too internationally interdependent for that. It’s been going on since at least 2008.

Surveillance 363

Surveillance Internet Internet Government 363

Security Affairs

JUNE 17, 2022

Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country.

Spyware 104

Spyware Surveillance Telecommunications Mobile 104

SecureWorld News

NOVEMBER 11, 2021

More than 600 hours of drone and helicopter surveillance footage from Dallas and Atlanta police departments was leaked last week. According to the article by Wired , two police departments were allegedly storing surveillance data in "an unsecured cloud infrastructure.". Dallas Police Department responds to surveillance data leak.

Surveillance 96

Surveillance Data breaches Government Manufacturing 96

Security Affairs

NOVEMBER 11, 2022

Lookout researchers discovered two long-running surveillance campaigns targeting the ethnic minority Uyghurs. Researchers from mobile security firm Lookout uncovered two long-running surveillance campaigns targeting the Uyghurs minority. List of installed packages. Call logs and geocoded location associated with the call.

Surveillance 98

Surveillance Spyware Malware Mobile 98

Security Affairs

JULY 3, 2019

Chinese border guards are secretly installing a surveillance app on smartphones of tourists and people crossings in the Xinjiang region who are entering from Kyrgyzstan. The surveillance software allows operators to spy on victims, accessing emails, text messages, contacts, calendar entries, call records. ” continues the NYT.

Surveillance 93

Surveillance Spyware Advertising Government 93

Security Affairs

DECEMBER 14, 2022

Businesses and homeowners increasingly rely on internet protocol (IP) cameras for surveillance. All too often, this gives them a false sense of security: when in fact, threat actors can not only access and watch your camera feed but exploit the unsecured device to hack into your network. Surge in internet-facing cameras.

Surveillance 145

Surveillance Manufacturing Internet Internet 145

Security Affairs

AUGUST 7, 2022

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% SecurityAffairs – hacking, newsletter). Pierluigi Paganini.

Spyware 140

Spyware Manufacturing Small Business Surveillance 140

Security Affairs

FEBRUARY 11, 2021

Since 2018, the hackers started targeting mobile users with an Android surveillance malware ChatSpy. phone number, IMEI/Android ID, Model and Manufacturer, and Android version), Geolocation, Images stored on external storage, WhatsApp voice notes, if installed. . SecurityAffairs – hacking, Confucius). Pierluigi Paganini.

Spyware 142

Spyware Surveillance Malware Mobile 142

Security Affairs

MARCH 23, 2020

Experts observed multiple botnets exploiting zero-day vulnerabilities in DVRs for surveillance systems manufactured by Taiwan-based LILIN. Botnet operators are exploiting several zero-day vulnerabilities in digital video recorders (DVRs) for surveillance systems manufactured by Taiwan-based LILIN-. Pierluigi Paganini.

Firmware 139

Firmware Surveillance Manufacturing Advertising 139

Security Affairs

MARCH 3, 2024

Camera doorbells manufactured by the Chinese company Eken Group Ltd under the brands EKEN and Tuck are affected by major vulnerabilities. Researchers from Consumer Reports (CR) discovered severe vulnerabilities in doorbell cameras manufactured by the Chinese company Eken Group Ltd. ” reads the report published by CR.

Manufacturing 141

Manufacturing Wireless Surveillance Retail 141

Security Affairs

SEPTEMBER 12, 2019

The scary part of the story is that a private surveillance firm was aware of the zero-day flaw since at least two years and is actively exploiting the SimJacker vulnerability to spy on mobile users in several countries. SecurityAffairs – SimJacker, hacking). ” states the post. .” Pierluigi Paganini.

Hacking 112

Hacking Mobile Spyware Manufacturing 112

Security Affairs

JULY 31, 2022

. “We’re publishing the details of a new vulnerability (tracked under CVE-2022-30563) affecting the implementation of the Open Network Video Interface Forum (ONVIF) WS-UsernameToken authentication mechanism in some IP cameras developed by Dahua, a very popular manufacturer of IP-based surveillance solutions.”

Surveillance 145

Surveillance Authentication Telecommunications Manufacturing 145

Security Affairs

JANUARY 2, 2021

According to the alert issued by the FBI, the swatters have been hijacking smart devices such as video and audio capable home surveillance devices. “Recently, offenders have been using victims’ smart devices, including video and audio capable home surveillance devices, to carry out swatting attacks. Pierluigi Paganini.

Passwords 144

Passwords Surveillance Manufacturing Accountability 144

Security Affairs

NOVEMBER 19, 2019

“After disclosing these findings to Google, they shared the report with other Android manufacturers, and Samsung confirmed the vulnerabilities existed in their smartphones as well. The post CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance appeared first on Security Affairs. Pierluigi Paganini.

Surveillance 88

Surveillance Manufacturing Advertising IoT 88

Security Affairs

MAY 22, 2024

The digital imaging products manufacturer OmniVision disclosed a data breach after the 2023 ransomware attack. The company designs and develops digital imaging products for use in mobile phones, laptops, netbooks and webcams, security and surveillance cameras, entertainment, automotive and medical imaging systems.

Data breaches 131

Data breaches Ransomware Manufacturing Encryption 131

Security Boulevard

MARCH 3, 2025

Surveillance Tech in the News This section covers surveillance technology and methods in the news. The surveillance tech waiting for workers as they return to the office ArsTechnica RTO continues to pick up steam. In pursuit of "more productivity," some employers are leaning heavily into surveillance tech.

Surveillance 52

Surveillance Data breaches Firmware Encryption 52

Security Affairs

NOVEMBER 24, 2022

“The decision comes after a review of “current and future possible security risks associated with the installation of visual surveillance systems on the government estate,” cabinet office minister Oliver Dowden said in a written statement to parliament.” SecurityAffairs – hacking, security cameras).

Government 98

Government Surveillance Risk Manufacturing 98

Security Affairs

FEBRUARY 13, 2020

. “Independent cybersecurity experts say the intelligence services of global powers including the United States routinely exploit vulnerabilities in networking equipment — regardless of the manufacturer — for espionage purposes.” ” reported the AP News.

Manufacturing 145

Manufacturing Advertising Surveillance Architecture 145

Joseph Steinberg

JANUARY 28, 2021

Anyone wishing to protect the contents of his or her car (and, perhaps, the vehicle itself) might want to act. Walls and the like may sometimes interfere with a thief’s attempts – but they often don’t; there are enough reports of successful break-ins to undermine any claim that they are a sufficient defense.

Artificial Intelligence 246

Artificial Intelligence Wireless Surveillance Retail 246

Security Affairs

SEPTEMBER 23, 2023

The Royal group began reconnaissance activity in April 2023, and the analysis of system log data dates the beginning of the surveillance operations on April 7, 2023. Royal was then able to traverse the internal City infrastructure during the surveillance period using legitimate 3rd party remote management tools.”

Ransomware 131

Ransomware Surveillance Healthcare Accountability 131

Security Affairs

OCTOBER 4, 2018

China used tiny chips implanted on computer equipment manufactured for US companies and government agencies to steal secret information. Elemental manufactured equipment for Department of Defense data centers, the CIA’s drone operations, and onboard networks of Navy warships.

Manufacturing 111

Manufacturing Government Advertising Surveillance 111

Security Affairs

MAY 29, 2023

Security researchers at Cisco Talos and the Citizen Lab have shared technical details about a commercial Android spyware named Predator that is sold by the surveillance firm Intellexa (formerly known as Cytrox). The attacks aimed at installing the surveillance spyware Predator, developed by the North Macedonian firm Cytrox.

Spyware 98

Spyware Surveillance Media Malware 98

Security Affairs

OCTOBER 4, 2023

Google Threat Analysis Group and Google Project Zero experts focus on attacks carried out by nation-state actors or surveillance firms, this means that one of these threat actors may be behind the exploitation of the Qualcomm flaws. Please contact your device manufacturer for more information on the patch status about specific devices.”

Firmware 123

Firmware Surveillance Authentication Manufacturing 123

Security Affairs

FEBRUARY 24, 2021

Since at least 2014, experts at FireEye have observed APT32 targeting foreign corporations with an interest in Vietnam’s manufacturing, consumer products, and hospitality sectors. “This unlawful surveillance violates the right to privacy and stifles freedom of expression.” SecurityAffairs – hacking, APT32).

Spyware 127

Spyware Government Surveillance Phishing 127

Security Affairs

OCTOBER 13, 2022

The Budworm cyber espionage group (aka APT27 , Bronze Union , Emissary Panda , Lucky Mouse , TG-3390 , and Red Phoenix) is behind a series attacks conducted over the past six months against a number of high-profile targets, including the government of a Middle Eastern country, a multinational electronics manufacturer, and a U.S.

Penetration Testing 144

Penetration Testing Financial Services Surveillance Manufacturing 144

Security Affairs

NOVEMBER 1, 2021

Both Remcos and NanoCore are used for information gathering, data exfiltration, surveillance, and control of the victims’ computers. . The group focuses on Shipping/Logistics, Manufacturing, Business Services, Pharmaceutical, and Energy entities, among others. SecurityAffairs – hacking, Balikbayan Foxes).

Malware 109

Malware Government Surveillance Phishing 109

Security Affairs

JUNE 12, 2022

The flaws impact products manufactured by LenelS2, a provider of advanced physical security solutions (i.e. access control, video surveillance and mobile credentialing) owned by HVAC giant Carrier. The experts focused on Carrier’s LenelS2 access control panels, manufactured by HID Mercury. ” continues the post.

Firmware 108

Firmware Penetration Testing Manufacturing Authentication 108

Security Affairs

MAY 26, 2019

Perceptics, a maker of vehicle license plate scanning solutions used in the US, has been hacked, attackers stole data and offered for free on the dark web. The company was hacked and attackers stole data and offered business plans, financial documents, and personal information for free on the dark web.

Data breaches 83

Data breaches Advertising Surveillance Hacking 83

Security Affairs

FEBRUARY 9, 2023

The experts pointed out that also users that leave the country are exposed to surveillance, through the pre-installed software. Chinese manufacturers have yet to comment on the research. This malicious software puts users’ privacy at risk, it could be used to spy on users and unmasking of their identities.

Mobile 98

Mobile Malware Surveillance Spyware 98

Security Affairs

JULY 20, 2022

million vehicles can allow hackers to remotely hack them. “These vulnerabilities could impact access to a vehicle fuel supply, vehicle control, or allow locational surveillance of vehicles in which the device is installed.” SecurityAffairs – hacking, MiCODUS). million vehicles. . Pierluigi Paganini.

Manufacturing 100

Manufacturing Passwords Mobile Authentication 100

eSecurity Planet

JULY 21, 2021

Amnesty International and Forbidden Stories – a Paris-based nonprofit media group that works with journalists – said earlier this week that users of the Israeli-developed spyware were able to hack into iPhone 11 and iPhone 12 devices, as well as Android devices, of tens of thousands of people – including a number of world leaders.

Spyware 126

Spyware Mobile Government Surveillance 126