"citizenlab"

Hacking firm in India spied on 10K+ email accounts over 7 years: Report

• One of the largest spy-for-hire operations ever exposed Read the rest

Zoom transmits your info through China, and uses non-standard encryption, researchers say

“Researchers conclude that Zoom uses non-industry-standard cryptographic techniques with identifiable weaknesses and is not suitable for sensitive communications.”

NSO Group employees kicked off Facebook for spying for brutal dictators are suing Facebook for violating their privacy

The NSO Group (previously) is an Israeli spyware company that sells tools to autocratic states that are used to spy on democratic opposition movements, journalists, and so on (the company's tools were used by the Saudi government to spy on Jamal Khashoggi in the runup to his kidnap and grisly murder). Read the rest

After suing NSO Group for hacking Whatsapp, Facebook kicks NSO employees off its services

This week, Facebook filed suit against the NSO Group, a cyber-arms dealer that supplies some of the world's most oppressive regimes with spying tools used to attack dissidents, journalists, human rights activists, and democratic opposition figures; Facebook alleges that NSO Group was behind more than 1,400 attacks on Whatsapp users. Read the rest

Facebook sues notorious spyware company NSO Group for 1,400 attacks on diplomats, journalists, dissidents, and government officials

[Addendum 2/20/2020: Following a legal complaint, the Guardian removed its article of 14 June 2019 and apologised to Mrs Peel. We are happy to clarify that Yana Peel is not, and was not, personally involved in the operation or decisions of the regulated Novalpina Capital investment fund, which is managed by her husband Stephen Peel, and others. Mrs Peel was not involved in any decision-making relating to the fund’s acquisition of NSO. Mrs Peel only has a small, indirect and passive interest in the fund. She does not own, whether directly or indirectly, any Novalpina Capital entity or any stake in NSO Group.] The NSO Group is one of the world's most notorious cyber-arms dealers, selling hacking tools to some of the world's most oppressive regimes that are used to identify targets for arrest, torture and even murder. The Israeli company went through a series of buyouts and buybacks, ending up in the hands of the European private equity fund Novalpina. Novalpina has pledged to rehabilitate the NSO Group's reputation by reforming its practices and limiting the sale of its spying tools to legitimate actors (whomever they may be). But research from the world-leading Citizen Lab (previously) revealed that NSO was behind a string of attacks on Whatsapp users last may, which was used to target human rights campaigners, journalists, and political dissidents. Facebook has filed a lawsuit against the NSO Group, accusing the company of being behind Whatsapp attacks in 20 countries (Whatsapp is a division of Facebook); Facebook claims that the attacks swept up at least 100 members of civil society groups. Read the rest

Son of Ghostnet: the mobile malware that targets Tibetans abroad

Citizen Lab (previously) is one of the world's top research institutions documenting cyber-attacks against citizen groups, human rights activists, journalists and others; ten years ago, they made their reputation by breaking a giant story about "Ghostnet," malicious software that the Chinese state used to convert the computers of the world's Tibetan embassies into spying devices. Read the rest

How Wechat censors images in private chats

Citizen Lab has expanded its analysis of how censorship and filtering work on Chinese social media (previously). In (Can’t) Picture This 2 An Analysis of WeChat’s Realtime Image Filtering in Chats , researchers probe and document how Wechat complies with Chinese state censorship policies in private chats. Read the rest

A deep dive into stalkerware's creepy marketing, illegal privacy invasions, and terrible security

Stalkerware -- spyware sold to people as a means of keeping tabs on their romantic partners, kids, employees, etc -- is a dumpster fire of terrible security (compounded by absentee management), sleazy business practices, and gross marketing targeted at abusive men who want to spy on women. Read the rest

Israeli spyware firm NSO Group 're-acquired' by founders

The NSO Group is an Israeli firm that has long marketed itself as a "cyber warfare" company, selling mobile surveillance technology to governments that include notoriously corrupt human rights abusers. One of these is Mexico, where NSO spyware played a key role in targeting teachers and journalists, and missing students.

On Thursday, NSO Group announced it has been “re-acquired” by its founders. Read the rest

Spies tried to infiltrate Citizen Lab and trick them into talking about their research on Israeli spytech company NSO Group

Citizen Lab (previously) is a world-renowned research group that specializes in deep, careful investigations into the nexus of state and private surveillance, outing everything from the Chinese spies who took over computers in Tibetan embassies around the world to the bizarre deployments of state-level cyberweapons against Mexicans who campaigned for limits on sugary sodas. Read the rest

Hate-speech detection algorithms are trivial to fool

In All You Need is “Love”: Evading Hate Speech Detection, a Finnish-Italian computer science research team describe their research on evading hate-speech detection algorithms; their work will be presented next month in Toronto at the ACM Workshop on Artificial Intelligence and Security. Read the rest

Evidence of NSO Group surveillance products found in 45 countries, including notorious human-rights abusers

Researchers from the University of Toronto's outstanding Citizen Lab (previously) have published their latest research on the notorious and prolific Israeli cyber-arms-dealer The NSO Group (previously), one of the world's go-to suppliers for tools used by despots to spy on dissidents and opposition figures, often as a prelude to their imprisonment, torture and murder. Read the rest

Wanting It Badly Is Not Enough: Real Problems For Creators Deserve Real Solutions

As the European Parliament prepares for tomorrow's vote on the new Copyright Directive with its provisions requiring mass-scale filtering of all public communications to check for copyright infringement (Article 13) and its provisions requiring paid permission to link to the news if you include as little as two words from the headline in your link text (Article 11), a dismaying number of "creators groups" are supporting it, telling their members that this will be good for them and their flagging financial fortunes. Read the rest

How to: beat Chinese social media image-filtering

Researchers from the University of Toronto's Citizen Lab (previously) have published an extensive report on the image filtering systems used by Chinese messaging giant Wechat to prevent the posting of banned political messages and other "sensitive" topics that are censored in China. Read the rest

A vital guide to the Canadian encryption debate

Canada's two leading digital rights groups, CIPPIC (previously) and Citizen Lab (previously) have issued a joint report called Shining a Light on the Encryption Debate: A Canadian Field Guide , and every Canadian should read it. Read the rest

When Justin Trudeau was in opposition, he voted for Canada's PATRIOT Act but promised to fix it; instead he's making it much, much worse

Back in 2015, Canada's failing, doomed Conservative government introduced Bill C-51, a far-reaching mass surveillance bill that read like PATRIOT Act fanfic; Justin Trudeau, leader of what was then a minority opposition party, whipped his MPs to vote for it, allowing it to pass, and cynically admitting that he was only turning this into law because he didn't want to give the Conservatives a rhetorical stick to beat him with in the next election -- he promised that once he was Prime Minister, he'd fix it. Read the rest

Security Planner: a peer-reviewed tool to help you figure out your personal digital security plan

The University of Toronto's Citizen Lab (previously) is one of the most effective, most trustworthy expert groups when it comes to investigating the abuse of computers to effect surveillance and sabotage, so the launch of Security Planner, the Lab's peer-reviewed tool that guides you through the creation of a personal security plan, is a game-changing event. Read the rest

Next page