#Spyware
In che modo i giornalisti investigativi possono reagire contro nuove minacce di sorveglianza potenziate?
Negli ultimi anni, numerosi scandali hanno rivelato che i giornalisti di tutto il mondo sono stati oggetto di sorveglianza, spesso tramite #spyware. Ma i giornalisti devono essere vigili su altre forme di sorveglianza sempre più diffuse come i sistmi di tracciamento COVID19.
https://gijn.org/2023/06/07/investigative-journalists-fight-new-enhanced-surveillance-threats/
⎧ Enigma software group has won a crucial case in the U.S. Court of Appeals for the Ninth Circuit, allowing it to proceed with its lawsuit against Malwarebytes for flagging its anti-spyware software as a 'potentially unwanted program.' The lawsuit alleges that Malwarebytes has engaged in anti-competitive conduct under the Lanham Act and tortious interference with Enigma's business ⎭ ➥ @techspot
#Malwarebytes #Spyware #CyberSecurity
https://www.techspot.com/news/98976-malwarebytes-faces-lawsuit-classifying-rival-anti-spyware-program.html
Ahead of next week’s #EPlenary vote on the use of #spyware in the EU, keep up to date with current developments with this briefing by the European Parliament Reserch Servive: https://shorturl.at/hqtC8 @EP_ThinkTank
🐦🔗: https://n.respublicae.eu/EP_Technology/status/1666797839048151041
📨 The Newsletter for next week's June #EPlenary session in Strasbourg is online, featuring:
- #NovaKakhovka dam attack🇺🇦
- #AI Act🤖
- Pegasus #spyware🕵️
- June #euco 🇪🇺
- Battery technology 🔋
- 2024 EU elections 🗳️
- #Poland 🇵🇱
And more, details here: http://eptwitter.eu/qCB3
🐦🔗: https://n.respublicae.eu/EuroParlPress/status/1666800386194419712
Paragon Solutions Spyware: Graphite
Paragon Solutions is yet another Israeli spyware company. Their product is called “Graphite,” and is a lot like NSO Group’s Pegasus. And Paragon is wor... https://www.schneier.com/blog/archives/2023/06/paragon-solutions-spyware-graphite.html
Paragon Solutions Spyware: Graphite https://www.schneier.com/blog/archives/2023/06/paragon-solutions-spyware-graphite.html #nationalsecuritypolicy #Uncategorized #spyware #Israel
تطبيق لتسجيل الشاشة في متجر #غوغل_بلاي مفخخ ببرمجية خبيثة لسرقة بيانات المستخدمين.و ما هي العلامات الثلاث التي تشير إلى أن جهاز هاتف #أندرويد مخترق. مع تحيات #نايلةالصليبي
#android
#Spyware
#IT_Security
#Google
#Apps
US govt banned NSO’s #Pegasus, but said to buy rival #spyware Paragon #Graphite https://9to5mac.com/2023/05/30/paragon-graphite/ "Graphite is, like Pegasus, malware designed to break Apple’s security and allow governments to remotely access and control phones belonging to their own citizens. Using Graphite may not be quite as bad as using Pegasus, but it is still unethical and unacceptable." The monstrous war on #ChronicPain patients and their doctors continues unabated.
Concerning Operation #Triangulation: Although the #security #review of the newly found #triangle #spyware is still running, #kaspersky created a python script that checks if your #apple device is compromised. triangle_check can be installed via #pip.
#HumanRights #CyberSecurity #Spyware: "Ahead of today’s opening of RightsCon, a summit on human rights in the digital age, which takes place in San José, Costa Rica, Rasha Abdul Rahim, Director of Amnesty Tech, said:
“The spyware crisis has massive implications for the future of human rights, and the time has come for the world to move beyond simply putting a plaster over this pervasive and covert digital intrusion into peoples’ lives. There must be an immediate global ban on highly invasive spyware."
📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #22/2023 is out! It includes, but not only:
➝ 🇺🇸 🪖 Air Force denies running simulation where AI drone “killed” its operator
➝ 🇺🇸 🏂 #Burton Snowboards discloses #databreach after February attack
➝ 🇺🇸 🧪 Enzo Biochem #Ransomware Attack Exposes Information of 2.5M Individuals
➝ 🧠 🤖 Introducing Charlotte AI, #CrowdStrike’s Generative AI Security Analyst
➝ 🐍 🦠 Malicious #PyPI Packages Using Compiled #Python Code to Bypass Detection
➝ 🇰🇵 🎠 N. Korean ScarCruft Hackers Exploit LNK Files to Spread #RokRAT
➝ 🦠 📱 New Zero-Click Hack Targets #iOS Users with Stealthy Root-Privilege #Malware
➝ 🇷🇺 🇺🇸 #Russia says U.S. accessed thousands of #Apple phones in spy plot
➝ 🇯🇵 🚗 #Toyota Discloses New Data Breach Involving Vehicle, Customer Information
➝ ☁️ 👻 Organizations Warned of #Salesforce ‘Ghost Sites’ Exposing Sensitive Information
➝ 🔐 👀 #Amazon faces $30 million fine over Ring, Alexa #privacy violations
➝ 🔐 🧱 Active Mirai Botnet Variant Exploiting #Zyxel Devices for #DDoS Attacks
➝ 🇷🇺 🇺🇦 Russia’s ‘Silicon Valley’ hit by cyberattack; Ukrainian group claims deep access
➝ 🦠 🤖 #Spyware Found in #GooglePlay Apps With Over 420 Million Downloads
➝ 🦠 🚪 #RomCom malware spread via Google Ads for #ChatGPT, GIMP, more
➝ 👛 Southeast Asian hacking crew racks up victims, rapidly expands criminal campaign
➝ 🍏 #Microsoft finds #macOS bug that lets hackers bypass SIP root restrictions
➝ 🦠 🚪 #Barracuda zero-day abused since 2022 to drop new malware, steal data
➝ 🇬🇷 Worst cyberattack in #Greece disrupts high school exams, causes political spat
➝ 🇮🇳 🎠 Sneaky DogeRAT Trojan Poses as Popular Apps, Targets Indian #Android Users
➝ 🇺🇸 U.S. Department of Defense releases 2023 Cyber Strategy
➝ 📱☝🏻 New BrutePrint Attack Lets Attackers Unlock Smartphones with Fingerprint Brute-Force
➝ 🇯🇵 🎠 New GobRAT Remote Access #Trojan Targeting #Linux Routers in #Japan
➝ 🦠 📂 Clever ‘File Archiver In The Browser’ phishing trick uses #ZIP domains
#cyberattack #ai #security #google #cyber
📚 This week's recommended reading is: "Fancy Bear Goes Phishing: The Dark History of the Information Age, in Five Extraordinary Hacks" by Scott J. Shapiro
Subscribe to the #newsletter to have it piping hot in your inbox every Sunday ⬇️
Angriff auf iPhones: Kaspersky macht ausgeklügelte Attacke publik
Kaspersky hat nach eigenen Angaben in iPhone-Backups Spuren eines komplexen Angriffs entdeckt. Gegenwehr sei nur mit rabiaten Mitteln möglich.
#Kaspersky #Malware #MalwareAnalyse #OperationTriangulation #Spyware #iOS #iPhone
‼️ ‼️ ‼️ ‼️ ‼️ ‼️ ‼️ ‼️ ‼️ ‼️ ‼️ ‼️ ‼️ ‼️ ‼️ ‼️ ‼️
"Android-Spyware SpinOk kommt auf mehr als 421 Millionen Installationen"
"Android apps containing SpinOk module with spyware features installed over 421,000,000 times — indicators of compromise"
https://github.com/DoctorWebLtd/malware-iocs/blob/master/Android.Spy.SpinOk/README.adoc
Apparently it is news that #AmazonRing and Apple #iPhones are #malware?
Amazon #Ring (but its just a few bad employees targetting #women though):
https://www.rt.com/news/577252-amazon-spying-lawsuit-settled/
Dodgy #Apple phones (its just #CIA targetting #Russians, right?)
https://www.rt.com/russia/577273-cia-hack-iphone-diplomats/
See gnu.org/malware for more.
Podcast Ep4 Video just uploaded! We discuss a potential Android supply-chain attack, crazy spying techniques, and are advertisers listening to you.
#podcast #tech #cybersecurity #spyware #infosec
https://youtu.be/wc8T_RcwOkY
Angriff auf iPhones: #Kaspersky macht ausgeklügelte Attacke publik | heise online https://www.heise.de/news/Operation-Triangulation-Kaspersky-angeblich-mit-iOS-Spyware-attackiert-9159301.html #Malware #spyware #Tracking #iOS #iPhone #Apple
NEW: heard about #Triangulation #spyware? Something about #Kaspersky?
Or the #FSB waxing paranoid about #Apple?
What does it all mean?
Well, my @citizenlab colleague Bill Marczak has an deliciously spicy take on the unfolding saga.
Plus some tips for defenders.
#Android-#Spyware #SpinOk kommt auf mehr als 421 Millionen Installationen | Security https://www.heise.de/news/Android-Spyware-SpinOk-kommt-auf-mehr-als-421-Millionen-Installationen-9069832.html #Malware #Tracking #GooglePlay #GooglePlayStore #PlayStore
More malicious extensions in #Chrome Web Store
At least 18 different malicious extensions (as of 30 MAY and this post) identified by @WPalant
Remember extensions have privileged access to the browser (and data in the browser). Choose your extensions wisely... they could be #spyware or #malware in disguise.
#cybersecurity #infosec #security #opsec #privacy
https://palant.info/2023/05/31/more-malicious-extensions-in-chrome-web-store/
“Clickless” iOS exploits infect Kaspersky iPhones with never-before-seen malware - Enlarge
Moscow-based security firm Kaspersky has been hit by ... - https://arstechnica.com/?p=1943622 #kaspersky #security #iphones #spyware #biz #ios
Ars Technica: “Clickless” iOS exploits infect Kaspersky iPhones with never-before-seen malware https://arstechnica.com/?p=1943622 #Tech #arstechnica #IT #Technology #Kaspersky #Security #iPhones #spyware #Biz&IT #iOS
#DAAM è un #virus reale, e unisce #spyware e #ransomware. Alcuni titoli #clickbait? Li avremmo evitati
https://www.bufale.net/no-non-esiste-un-virus-che-spacca-lo-smartphone-ma-daam-fa-altro/
Operation Triangulation: Kaspersky angeblich mit iOS-Spyware attackiert
Kaspersky hat nach eigenen Angaben in iPhone-Backups Spuren eines komplexen Angriffs entdeckt. Gegenwehr sei nur mit rabiaten Mitteln möglich.
Kurz informiert: KI-Schulcloud, Spionage, Amazon, Robotermöbel
Unser werktäglicher News-Überblick fasst die wichtigsten Nachrichten des Tages kurz und knapp zusammen.
Android-Spyware SpinOk kommt auf mehr als 421 Millionen Installationen | heise online
https://heise.de/-9069832 #Cybercrime #Malware #Spyware #SpinOk
Yay...more gross misuse of customer data.
"FTC says Ring deceived its customers by failing to restrict employees’ and contractors’ access to its customers’ videos, using customer videos to train algorithms, among other purposes, without consent, and failing to implement security safeguards"
---
#Ring #RingDoorbell #Spyware #DataPrivacy #Privacy #Security #FTC #Breach
A technical analysis of Pegasus for Android – Part 1 – https://cybergeeks.tech/a-technical-analysis-of-pegasus-for-android-part-1/
A technical analysis of Pegasus for Android – Part 2 – https://cybergeeks.tech/a-technical-analysis-of-pegasus-for-android-part-2/
A technical analysis of Pegasus for Android – Part 3 – https://cybergeeks.tech/a-technical-analysis-of-pegasus-for-android-part-3/
Project Zero: A deep dive into an NSO zero-click iMessage exploit: Remote Code Execution – https://googleprojectzero.blogspot.com/2021/12/a-deep-dive-into-nso-zero-click.html
#Pegasus #NSO #Israel #Spyware #LogicieEspion #espionage #exploit #Analysis
Wie unangenehm. Kistenschieber-Programmierung ist prinzipiell gefährlich. Aber doch so einfach... https://www.heise.de/news/Android-Spyware-SpinOk-kommt-auf-mehr-als-421-Millionen-Installationen-9069832.html #spyware #android
#Spyware Found in #Google Play Apps With Over 420 Million Downloads
Just because it is in the app store doesn't make it de facto "safe"
It greatly helps to verify source/authenticity of an app prior to download. You can start by researching the project developer, evaluating their official channels for distribution.
#android #cybersecurity #infosec #security #opsec
https://www.securityweek.com/spyware-found-in-google-play-apps-with-over-420-million-downloads/
Kurz informiert: SpinOk, Spionagesatellit, Beton, Exoplaneten
Unser werktäglicher News-Überblick fasst die wichtigsten Nachrichten des Tages kurz und knapp zusammen.
Wenn wir ehrlich sind, sehr viele #Entwickler & #Programmierung nutzen die nächstes aufzufindente #Tools um es nicht selber zu #Entwicklung aufzusetzen und merken erst später was die für #Shit die witklich anpreisen oder sehe ich da was #falsch?
«Android-Spyware SpinOk kommt auf mehr als 421 Millionen Installationen»
Android-Spyware SpinOk kommt auf mehr als 421 Millionen Installationen
Ein Android-Software-Modul mit Spyware-Funktionen hat Doctor Web in Apps auf Google Play mit mehr als 421 Millionen Downloads aufgespürt. Google ist informiert.
#Android #Cybercrime #GooglePlayStore #Malware #Security #Spyware #news
Paragon Graphite is a Pegasus spyware clone used in the US. – https://www.gamingdeputy.com/paragon-graphite-is-a-pegasus-spyware-clone-used-in-the-us/
iPhone-Spyware Pegasus erstmals in militärischem Konflikt eingesetzt | heise online
https://heise.de/-9067624 #Spyware #Pegasus
Even #AIPAC Would Struggle to Love the Israel Seen in
If you’ve been following the Pegasus story closely over the past few years, there’s probably not that much to be gleaned from this documentary – but there will definitely be something, writes @AdrianHennigan1
A new documentary about the #NSO Group and its #Pegasus spyware whets the appetite for a fictional recreation that might capture the true behind-the-scenes drama. It's also a bleak reminder that Israel is a world leader in exporting #spyware to governments that don’t give a rat’s ass about human rights.
www.haaretz.com/life/televisio…
#palestine #Israel #Occupation #Apartheid #Politics #Tecgnology #Software
📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #21/2023 is out! It includes, but not only:
‣ 🇬🇧 🇺🇸 #NHS data breach: trusts shared patient details with #Facebook without consent
‣ ☁️ Severe Flaw in #Google Cloud's Cloud #SQL Service Exposed Confidential Data
‣ 🇨🇭 💰 US govt contractor #ABB confirms #ransomware attack, data theft
‣ 🦠 🤖 #Predator: Looking under the hood of Intellexa’s #Android spyware
‣ 🇦🇿 🇦🇲 Hacking in a war zone: #Pegasus #spyware in the Azerbaijan-Armenia conflict
‣ 🦠 🎮 Dark Frost #Botnet Launches Devastating #DDoS Attacks on Gaming Industry
‣ 🇷🇺 🦠 Mysterious #malware designed to cripple industrial systems linked to #Russia
‣ 🇧🇷 🇵🇹 ‘Operation Magalenha’ targets credentials of 30 Portuguese #banks
‣ 🩹 #GitLab 'strongly recommends' patching max severity flaw ASAP
‣ 🇮🇷 🇮🇱 Iranian hackers use new #Moneybird ransomware to attack Israeli orgs
‣ 🇺🇦 Cyber Attacks Strike #Ukraine's State Bodies in Espionage Operation
‣ 🇨🇳 🇺🇸 Chinese state hackers infect critical infrastructure throughout the US and Guam
‣ 🐍 👨🏻⚖️ #PyPI was subpoenaed
‣ 🇰🇵 🦠 N. Korean #Lazarus Group Targets #Microsoft IIS Servers to Deploy Espionage Malware
‣ 🦠 🤖 Data Stealing Malware Discovered in Popular Android Screen Recorder App
‣ 🇩🇪 Arms maker Rheinmetall confirms #BlackBasta ransomware attack
‣ 🦠 New ‘GoldenJackal’ APT Targets Middle East, South Asia Governments
‣ 🇺🇸 🇰🇵 Treasury Department sanctions entities tied to North Korean IT scams, hacking
‣ 🇺🇸 📰 Cuba ransomware claims #cyberattack on Philadelphia Inquirer
‣ 🇺🇸 🏥 After ransomware attack, state’s second-largest health insurer says patient data stolen
‣ 🇯🇵 🇮🇳 🏍️ #Suzuki motorcycle plant shut down by cyber attack
‣ 🇺🇸 🪖 #Pentagon explosion hoax goes viral after verified #Twitter accounts push
‣ 🇺🇸 🇪🇺 #Meta Fined Record $1.3 Billion and Ordered to Stop Sending European User Data to US
‣ 🦠 🎬 Cloned #CapCut websites push information stealing malware
‣ 🇰🇷 🇺🇸 Warning: #Samsung Devices Under Attack! New Security Flaw Exposed
‣ 🍏 #Apple fixes three new zero-days exploited to hack iPhones, Macs
#hacking #cyber #cyberdefense #security #health #cloud #infrastructure #OT #ICS
📚 This week's recommended reading is: "Cyber Defense Matrix: The Essential Guide to Navigating the Cybersecurity Landscape" by Sounil Yu
Subscribe to the #newsletter to have it piping hot in your inbox every Sunday ⬇️
Whenever I see #BorisJohnson
I wonder: anybody check that phone for #Pegasus etc. lately?
“The company sought a list of allied nations that the US wouldn’t object to seeing deploy [#spyware]. People with knowledge of the matter suggested 35 countries are on that list, though the exact nations involved could not be determined. Most were in the EU and some in Asia, the people said.” https://on.ft.com/3OJc2Ou
Inner workings revealed for “Predator,” the Android malware that exploited 5 0-days
Kurz informiert: Multiresistente Keime, Tesla-Files, Spyware, Prime Video
Unser werktäglicher News-Überblick fasst die wichtigsten Nachrichten des Tages kurz und knapp zusammen.
#AmazonPrimeVideo #KünstlicheIntelligenz #kurzinformiert #Medizin #Spyware #Tesla #news
Android-Malware: Vom nützlichen Tool zu Spyware in einem Jahr
Die IT-Forscher von Eset haben eine Android-App entdeckt, die als nützliches Tool startete, rund ein Jahr später jedoch Spionagefunktionen nachgerüstet bekam.
#Android #Cybercrime #GooglePlay #GooglePlayStore #Malware #Security #Spyware #news
They just made it up.
The #VPN industry is a scourge.
Not content with tricking people into paying for security talismans by misrepresenting what VPNs do..., they are SEO-optimizing fake #cybersecurity advice to drive signups.
The perverse thing is that the high risk people like dissidents & journalists that need to get safer from Predator not only won't be.helped, but real advice is getting drowned out.
Glad to see @maldr0id call it out. #hacking #spyware #Predator #malware #security
EU Council advances on source protection, fund transparency in media law https://www.euractiv.com/section/media/news/eu-council-advances-on-source-protection-fund-transparency-in-media-law/?utm_source=dlvr.it&utm_medium=mastodon #EuropeanMediaFreedomAct #mediafreedom #spyware
This continues a trend of these types of "mercenary" #spyware spreading. If you suspect your system(s) may have been compromised by commercial spyware, please consider notifying Talos’ research team at talos-mercenary-spyware-help@external.cisco.com
Talos has new technical details on a #spyware called #Preadtor, and it's loader, #Alien. Read our blog post for more on this threat that's actively being sold and used to unknowingly track users https://blog.talosintelligence.com/mercenary-intellexa-predator/
Donnerstag: Ex-Google-Chef warnt vor KI, Nvidia profitiert von KI-Beschleunigern
Warnung von Eric Schmidt + Nvidia-Aktie springt + Regeln für Lieferdrohnen + Sonys neue Mobilkonsole + Cyberspione gegen US-Infrastruktur + #heiseshow heute
#Amazon #Cyberwar #Datenschutz #Drohnen #DSGVO #Facebook #Gaming #Google #KünstlicheIntelligenz #Luftfahrt #Nvidia #Playstation #Sony #Spielkonsolen #Spionage #Spyware #Verkehrssicherheit #Verschlüsselung #news
Microsoft warnt vor chinesischer Cyberspionage gegen kritische US-Infrastruktur
Seit Mitte 2021 aktive Gruppe "Volt Typhoon" sammelt Informationen und Zugangsdaten in der US-Pazifikinsel Guam. Doch ist Taiwan das eigentliche Ziel?
#Cybersecurity #Cyberspionage #Cyberwar #Hacking #Internet #Microsoft #Security #Spionage #Spyware #news
If you've ever used the #Android app "iRecorder - Screen Recorder", it's apparently now #spyware.
Pegasus-Spyware: Mexikanischer Spitzenbeamter ausspioniert
In Mexiko ist ein enger Verbündeter des Präsidenten mit Pegasus ausgespäht worden. Es ist der erste bestätigte Fall eines so hochrangigen Regierungsbeamten.
‘German prosecutors have charged four people with the unauthorised sale of #spyware to Turkish security services, alleging just days before a pivotal election that it was used in an attempt to spy on the country’s opposition.’ https://on.ft.com/45oVCAI
Spying in Mexico Strikes a New Victim: the President’s Ally
While looking into abuses by the armed forces, the country’s top human rights official was targeted with Pegasus, the world’s most notorious spyware.
https://www.nytimes.com/2023/05/22/world/americas/mexico-spying-pegasus-israel.html
‘the “open question” over #Mitsotakis remained his commitment to the rule of law. The 🇬🇷 prime minister has been embroiled in a #spyware scandal in which the security services, overseen by Mitsotakis’s chief of staff and nephew, spied on politicians and journalists’
https://on.ft.com/3q1Uxyr
Empfehlenswerter #Pegasus Artikel und 6 teiler #Podcast in @zeit #ZeitOnline
""Der Spion in unseren Handys" ist ein Podcast über die mächtigste Spyware der Welt und wie sie enttarnt wurde. In sechs Folgen erzählen Reporterinnen und #Reporter aus dem Investigativ-Ressort von ZEIT und ZEIT ONLINE von ihren Recherchen zur #Spähsoftware Pegasus. Die Opfer der #Spyware kommen ebenso zu Wort, wie ihre Erfinder und deren Gegenspieler."
#Überwachung #Cyber #staatstrojaner
https://www.zeit.de/serie/pegasus-der-spion-in-unseren-handys
Malware turns home routers into proxies for Chinese state-sponsored hackers
"malicious firmware that can wrangle a wide range of residential and small office routers into a network that stealthily relays traffic to command-and-control servers maintained by Chinese state-sponsored hackers."
@rmondello I never used Chrome much, but the few times I did, it immediately began to scrape all my hard disks for "suspicious files" using their bundled "software reporter" and increased the recording volume of my primary audio input device, both without my consent.
Chrome is literally #spyware, but most people don't seem to care about these things at all.
Anyone who cares about privacy should remove this piece of #Google crap from their system ASAP.
There are plenty of alternatives using the same browser engine, but without the spyware parts.
Pegasus - Der Feind liest mit
https://www.arte.tv/de/videos/106169-001-A/pegasus-der-feind-liest-mit/
Läuft gerade auf #arte, in der #Mediathek verfügbar bis 18.11.2023
3/ As the fox, NSO says they are uniquely positioned to get all the hens together to craft #spyware regulation.
In case any #law folks are wondering, these "key:" stakeholders NSO is talking about:
- won't take NSO's meetings (most of congress)
- have sanctioned them (USG)
- have sued them (Industry, civil society)
2/ NSO's Russia & China claims didn't sway the Biden Admin / NSC.
Because they are silly.
Countries that don't buy Chinese fighters won't suddenly buy their secret #spyware. For the same obvious #natsec, #cybersecurity & #counterintelligence reasons.
Still, NSO apparently warmed these canards up & served them to the American Bar Association.
On @CBC Ideas now.
Nobel Peace Prize recipient Maria Ressa believes online #disinformation could pose an existential threat to democracy — and she's not alone. Ressa joins Citizen Lab founder Ron Deibert for a conversation about how online impunity is eroding civil society and how we can fight back.
https://www.cbc.ca/radio/ideas/disinformation-democracy-ressa-deibert-1.6837181
#canada #Tech #cdnpoli #ai #CitizenLab #thailand
#democracy #journalism #philipines #infosec #usa #news #algorithms #data #spyware
#citizenlab #autocracy #toronto
QR codes used in fake parking tickets, surveys to steal your money
Careful what QR codes you are scanning... never a good idea to scan random QR codes.
Be extra warry of QR codes that lead you to install a third-party app - could be #malware or #spyware designed to give threat actors access to your phone.
☣️ This is why you should never trust your important information (like passwords!) to proprietary software like @1password.
#OpenSource #FreeSoftware #privacy #security #infosec
🤡 #1Password becomes #spyware:
https://blog.1password.com/privacy-preserving-app-telemetry/
5/ Coda: as ever, none of our work or investigations would happen without brave #spyware and #Hacking victims that choose to come forward, get #Forensics done, and tell their stories.
These people are my absolute heroes.
And so are the #NGOs that regularly partner with us in @citizenlab investigations.
This is what an accountability ecosystem looks like.
3/ Some details about the #zeroclick #zeroday exploits in #Pegasus #spyware that we found evidence of.
*THREE* #zeroclick #0day chains used by NSO's #Pegasus #spyware in 2022.
First: #PWNYOURHOME: worked against #homekit even if you didn't set up a home.
Apple's changes in iOS 16.3.1 address this.
We also observed #LockdownMode kneecapping it.
Usually when you hear about #mercenary #spyware it's in the context of hacked dissidents.
But now is a good time to remember that #Predator spyware was flown to the #RSF militia in #Sudan
At some point we'll get to a consensus realization that unchecked proliferation of this tech doesn't just fuel abuses & harm democracies... it is geopolitically destabilizing.
Israeli #spyware vendor QuaDream is reportedly shutting down its operations after its REIGN #hacking toolset was exposed by Citizen Lab and #Microsoft.
https://thehackernews.com/2023/04/israeli-spyware-vendor-quadream-to-shut.html
Zero-Click-Exploit: Israelischer Spyware-Hersteller QuaDream macht dicht
Erst vorige Woche exponierten Sicherheitsforscher den mächtigen Staatstrojaner Reign von QuaDream. Jetzt stellt die Firma ihre Aktivitäten in Israel ein.
Kurz informiert: Klimaschutz, ICT-Kompetenz, Spyware, Innogames
Unser werktäglicher News-Überblick fasst die wichtigsten Nachrichten des Tages kurz und knapp zusammen.
#iPhone #kurzinformiert #SocialMedia #Spyware #Verkehrswende #news
Another Israeli spyware company has been exposed and they've been using a seriously sneaky trick to infect Apple phones.
They'd send an infected iCloud calendar invitation to users, set for a date in the past. This made them invisible to targeted users -- primarily journalists & government clients.
Reign-infected phones give full access to their mic & recorder, messages on encrypted apps, phone conversations & track locations.
5/ There's a basic takeaway here:
#mercenary #spyware #proliferation is an uncontrolled problem.
Yes there are some high profile companies like #NSO with #Pegasus, but alongside are much more discreet players.
Yet typically, when we are actually able to figure out what they are up to... we find the same victimology.
The underline here should be: the industry is just going to keep causing harm until radically curtailed & regulated, at minimum.
@mconley
Or just stop using the #spyware called #windows and start using #freeasinfreedom operative systems 😁
@mhoye
Anti-Spyware-Erklärung: Bundesregierung hat noch Abstimmungsbedarf
Die USA und zehn weitere westliche Staaten wollen gemeinsam die Verbreitung und den Missbrauch kommerzieller Spionagesoftware bekämpfen. Deutschland fehlt.
#Geheimdienste #Datenschutz #Spionage #Spyware #Trojaner #Überwachung #news
Dienstag: Spyware-Kauf durch Scheinfirma, Cyber-Angriff bei Western Digital
USA kaufen Spyware per Scheinfirma + Western Digital meldet "Sicherheitsvorfall" + Tim Cook für Mixed Reality + Drohenprogramm der Ukraine + Grundgesetzänderung
#Apple #Cybercrime #Cyberwar #Drohnen #JoeBiden #VirtualReality #Pegasus #Spyware #TimCook #UkraineKrieg #WesternDigital #news
Last week, the Biden Administration put out an executive order prohibiting certain uses of spyware by the US Government. I wrote some thoughts on it but in summary, it feels more about reigning in the industry rather than concern around civil rights. 🧵 #TechPolicy #Spyware https://codeandconsequence.substack.com/p/deep-diving-into-president-bidens
USA nutzten Scheinfirma, um Spionagesoftware zu kaufen
Laut einem New York Times-Bericht nutzt die US-Regierung eine Software, die von den Pegasus-Entwicklern stammt, um den Standort von Mobiltelefonen zu ermitteln.
Donnerstag: Internationale Spyware-Kampagnen, Kryptofirma verliert Millionen
Spyware per SMS-Link + Safemoon nicht safe + Telegram gegen DSGVO + Polizei mit Passfoto-Zugriff + Datenschutz von Parksündern + heiseshow zu drei neuen Themen
#Blockchain #Coronavirus #Cybercrime #Datenschutz #DSGVO #elektronischerPersonalausweis #HomeOffice #Kryptowährung #Messaging #Sicherheitslücken #SMS #Spyware #Telegram #Twitter #Überwachung #news
Google und Amnesty International decken internationale Spyware-Kampagnen auf
Android, iOS, Chrome und Samsungs Internet-Browser seien zunehmend Angriffen kommerzieller Spyware ausgesetzt. Die Attacken nutzen per SMS verschickte Links.
#Android #Apple #Cybercrime #Google #iOS #Phishing #Samsung #Sicherheitslücken #SMS #Spyware #Tracking #news
Dienstag: Microsoft Teams ganz neu, USA reduzieren Spyware
Microsoft Teams doppelt so schnell + US-Regierung schränkt Spyware ein + iOS 16.4 mit Neuerungen + EU-Rat zum Data Act + Kommentar zum geplatzten Verbrenner-Aus
#Apple #Datenschutz #EU #iOS #Microsoft #MicrosoftTeams #Pegasus #Security #Spyware #news
US-Präsident Biden verbietet den Einsatz kommerzieller Spionageprogramme
Spyware ist oft verheerend für die Menschenrechte. Das Weiße Haus schränkt nun den Einsatz durch US-Bundesbehörden ein. Es gibt allerdings Ausnahmen.
Today, President Biden signed an executive order prohibiting operational use by the US government of commercial #spyware "that poses risks to national security or has been misused by foreign actors to enable human rights abuses around the world." https://www.whitehouse.gov/briefing-room/presidential-actions/2023/03/27/executive-order-on-prohibition-on-use-by-the-united-states-government-of-commercial-spyware-that-poses-risks-to-national-security/
now *this* is the way to kick off a week on #democracy. White House issues order on commercial #spyware --> https://www.whitehouse.gov/briefing-room/presidential-actions/2023/03/27/executive-order-on-prohibition-on-use-by-the-united-states-government-of-commercial-spyware-that-poses-risks-to-national-security/
Obst und Malware: Google suspendiert die Onlineshopping-App Pinduoduo
Eine der größten chinesischen Shopping-Dienste steht im Verdacht, in seinen Apps Malware zu schmuggeln. Google suspendiert und blockiert die Android-Apps.
Predator scandal: the European surveillance market is a black hole: They call it the Greek Watergate, but the case of illegal wiretapping concerns all of Europe. And Italy is the leading exporter of surveillance systems in the EU https://irpimedia.irpi.eu/en-predator-scandal-european-surveillance-market-black-hole/ #italy #spyware
.@W_Wiewiorowski@twitter.com and @sophieintveld@twitter.com meeting for a quick catch up on #spyware technologies, national #security and #enforcement of the #GDPR.
Anti-Terror-Kampf: Neue Technologien beschränken laut UN-Bericht Grundrechte
Der Einsatz von Drohnen, biometrischer Überwachung, KI und Staatstrojanern gegen Terrorismus gestaltet sich laut einem UN-Bericht verheerend für Menschenrechte.
#Biometrie #Datenschutz #Drohnen #Roboter #KünstlicheIntelligenz #Spyware #Terrorbekämpfung #Internetfilter #news
One year has passed since the #EDPS paper - Preliminary Remarks on Modern #Spyware - where we proposed 8 recommendations - 8 actions for the policy makers. @W_Wiewiorowski@twitter.com at @EP_ScienceTech@twitter.com workshop on #Pegasus Spyware
Read the paper: https://europa.eu/!khnXj4
This report is great. Not good for my mood though.
Committee of Inquiry to investigate the use of Pegasus and equivalent surveillance spyware - draft report. Rapporteur @sophieintveld https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf
#tech #security #spyware #humanrights #eu #law