"citizen lab"

Hacking firm in India spied on 10K+ email accounts over 7 years: Report

• One of the largest spy-for-hire operations ever exposed Read the rest

Zoom transmits your info through China, and uses non-standard encryption, researchers say

“Researchers conclude that Zoom uses non-industry-standard cryptographic techniques with identifiable weaknesses and is not suitable for sensitive communications.”

Facebook sues notorious spyware company NSO Group for 1,400 attacks on diplomats, journalists, dissidents, and government officials

[Addendum 2/20/2020: Following a legal complaint, the Guardian removed its article of 14 June 2019 and apologised to Mrs Peel. We are happy to clarify that Yana Peel is not, and was not, personally involved in the operation or decisions of the regulated Novalpina Capital investment fund, which is managed by her husband Stephen Peel, and others. Mrs Peel was not involved in any decision-making relating to the fund’s acquisition of NSO. Mrs Peel only has a small, indirect and passive interest in the fund. She does not own, whether directly or indirectly, any Novalpina Capital entity or any stake in NSO Group.] The NSO Group is one of the world's most notorious cyber-arms dealers, selling hacking tools to some of the world's most oppressive regimes that are used to identify targets for arrest, torture and even murder. The Israeli company went through a series of buyouts and buybacks, ending up in the hands of the European private equity fund Novalpina. Novalpina has pledged to rehabilitate the NSO Group's reputation by reforming its practices and limiting the sale of its spying tools to legitimate actors (whomever they may be). But research from the world-leading Citizen Lab (previously) revealed that NSO was behind a string of attacks on Whatsapp users last may, which was used to target human rights campaigners, journalists, and political dissidents. Facebook has filed a lawsuit against the NSO Group, accusing the company of being behind Whatsapp attacks in 20 countries (Whatsapp is a division of Facebook); Facebook claims that the attacks swept up at least 100 members of civil society groups. The suit seeks an injunction against future NSO Group attacks on Whatsapp and unspecified monetary damages. NSO is also being sued in Israel for allegedly helping to entrap the Saudi journalist Jamal Khashoggi, who was kidnapped, murdered and dismembered at the direction of the Saudi Crown Prince Mohammed Bin Salman. Facebook's suit presents a mixed bag of legal theories: they accuse NSO Group of violating California contract and property law, but also of violating the tremendously flawed Computer Fraud and Abuse Act, a 1986 federal anti-hacking law that Facebook drastically expanded when it sued a competitor called Power Ventures in 2008 (the CFAA was also the law used to hound Aaron Swartz to death). Read the rest

Son of Ghostnet: the mobile malware that targets Tibetans abroad

Citizen Lab (previously) is one of the world's top research institutions documenting cyber-attacks against citizen groups, human rights activists, journalists and others; ten years ago, they made their reputation by breaking a giant story about "Ghostnet," malicious software that the Chinese state used to convert the computers of the world's Tibetan embassies into spying devices. Read the rest

How Wechat censors images in private chats

Citizen Lab has expanded its analysis of how censorship and filtering work on Chinese social media (previously). In (Can’t) Picture This 2 An Analysis of WeChat’s Realtime Image Filtering in Chats , researchers probe and document how Wechat complies with Chinese state censorship policies in private chats. Read the rest

Insiders claim that Google's internet-fixing Jigsaw is a toxic vanity project for its founder, where women keep a secret post-crying touchup kit in the bathroom

In 2016, Google announced that it was renaming its small Google Ideas unit to "Jigsaw," giving the new unit a much broader, "wildly ambitious" mandate: to tackle "surveillance, extremist indoctrination, and censorship." Read the rest

Cult of the Dead Cow: the untold story of the hacktivist group that presaged everything great and terrible about the internet

Back in 1984, a lonely, weird kid calling himself Grandmaster Ratte' formed a hacker group in Lubbock, Texas. called the Cult of the Dead Cow, a name inspired by a nearby slaughterhouse. In the decades to come, cDc would become one of the dominant forces on the BBS scene and then the internet -- endlessly inventive, funny and prankish, savvy and clever, and sometimes reckless and foolish -- like punk-rock on a floppy disk. Read the rest

A deep dive into stalkerware's creepy marketing, illegal privacy invasions, and terrible security

Stalkerware -- spyware sold to people as a means of keeping tabs on their romantic partners, kids, employees, etc -- is a dumpster fire of terrible security (compounded by absentee management), sleazy business practices, and gross marketing targeted at abusive men who want to spy on women. Read the rest

Lawyer involved in suits against Israel's most notorious cyber-arms dealer targeted by its weapons, delivered through a terrifying Whatsapp vulnerability

NSO Group is a notorious Israeli cyber-arms dealer whose long trail of sleaze has been thoroughly documented by the University of Toronto's Citizen Lab (which may or may not be related to an attempt to infiltrate Citizen Lab undertaken by a retired Israeli spy); NSO has been implicated in the murder and dismemberment of the dissident Saudi journalist Jamal Khashoggi (just one of the brutal dictatorships who've availed themselves of NSO tools), and there seems to be no cause too petty for their clients, which is why their malware has been used to target anti-soda activists in Mexico. Read the rest

Israeli spyware firm NSO Group 're-acquired' by founders

The NSO Group is an Israeli firm that has long marketed itself as a "cyber warfare" company, selling mobile surveillance technology to governments that include notoriously corrupt human rights abusers. One of these is Mexico, where NSO spyware played a key role in targeting teachers and journalists, and missing students.

On Thursday, NSO Group announced it has been “re-acquired” by its founders. Read the rest

Ex-NSA whistleblower says she and other US ex-spooks targeted Americans on behalf of UAE

Lori Stroud is an ex-NSA spy who also contracted with the NSA through Booz Allen, who says that after she left the NSA, she was recruited to work on Project Raven, a secret, offensive surveillance and digital attack squad working for the autocratic United Arab Emirates regime alongside other ex-US intelligence operatives, working with the knowledge and approval of the NSA. Read the rest

Undercover who targeted Citizen Lab over Israeli cyber-arms dealer is an ex-Israeli spook linked to black ops firm used by Harvey Weinstein

Last week, Citizen Lab and the AP published a blockbuster story revealing that Citizen Lab had been targeted by undercover operatives who pumped Lab employees for information on the group's work uncovering illegal surveillance operations undertaken by authoritarian governments using tools made by the notorious Israeli cyber-arms dealer NSO Group. Read the rest

Spies tried to infiltrate Citizen Lab and trick them into talking about their research on Israeli spytech company NSO Group

Citizen Lab (previously) is a world-renowned research group that specializes in deep, careful investigations into the nexus of state and private surveillance, outing everything from the Chinese spies who took over computers in Tibetan embassies around the world to the bizarre deployments of state-level cyberweapons against Mexicans who campaigned for limits on sugary sodas. Read the rest

Evidence of NSO Group surveillance products found in 45 countries, including notorious human-rights abusers

Researchers from the University of Toronto's outstanding Citizen Lab (previously) have published their latest research on the notorious and prolific Israeli cyber-arms-dealer The NSO Group (previously), one of the world's go-to suppliers for tools used by despots to spy on dissidents and opposition figures, often as a prelude to their imprisonment, torture and murder. Read the rest

Wanting It Badly Is Not Enough: Real Problems For Creators Deserve Real Solutions

As the European Parliament prepares for tomorrow's vote on the new Copyright Directive with its provisions requiring mass-scale filtering of all public communications to check for copyright infringement (Article 13) and its provisions requiring paid permission to link to the news if you include as little as two words from the headline in your link text (Article 11), a dismaying number of "creators groups" are supporting it, telling their members that this will be good for them and their flagging financial fortunes. Read the rest

How to: beat Chinese social media image-filtering

Researchers from the University of Toronto's Citizen Lab (previously) have published an extensive report on the image filtering systems used by Chinese messaging giant Wechat to prevent the posting of banned political messages and other "sensitive" topics that are censored in China. Read the rest

Wickr announces a firewall-circumventing tool to help beat national censorship regimes

Wickr, a private, secure messaging company, has teamed up with Psiphon (previously), a spinout from Citizen Lab (previously) to allow its users to communicate even when they are behind national firewalls. Read the rest

Next page

:)