Dutch left-leaning daily de Volkskrant has published a remarkable — but thinly sourced — report claiming that a Dutch spy agency called the General Intelligence and Security Service of the Netherlands (AIVD) hacked into the network of a notorious Russian spy group called "Cozy Bear" or APT29, thought to be an arm of the Russian spy apparatus, and obtained direct evidence of Russian state involvement in the hacking of the DNC during the 2016 US election campaign.
A new research report from Kaspersky Labs details their analysis of Skygofree, a newly discovered strain of malware that offers some of the most comprehensive and invasive surveillance tools ever seen for Android. — Read the rest
Researchers from the University of Toronto's amazing Citizen Lab (previously) have published a new report detailing the latest tactics from the autocratic government of Ethiopia, "the world's first turnkey surveillance state" whose human rights abuses have been entirely enabled with software and expertise purchased on the open market, largely from companies in western countries like Finfisher and Hacking Team.
Before Equifax changed its name in 1976 — in the midst of a Congressional investigation and a national scandal — it was the Retail Credit Company, founded in Atlanta in 1899.
Two hackers supplied Motherboard with 130,000 account details hacked from Retina-X and FlexiSpy, who market covert surveillance tools to jealous spouses and nervous parents — tools that are intended to be covertly installed on their laptops and mobile devices in order to tap into their keystrokes, mics, calls, stored photos and other capabilities.
Belurusian leader Alexander Lukashenko calls himself "Europe's last dictator": he's a thug who steals elections and sends opposition politicians to forced labor camps, the kind of guy who can get away with arresting a one-armed man for clapping — but when he imposed a "social parasite tax" on unemployed people in the recession-devastated country, it proved too much.
NSO is an Israel cyberarms dealer, which buys or researches vulnerabilities in software and then weaponizes them; claiming that these cyberweapons will only be used by democratic governments and their police forces to attacks serious criminals and terrorists — a claim repeated by its competitors, such as Italy's Hacking Team and Gamma Group.
Opponents of Ecuadoran president Rafael Correa — himself a prolific and shrewd social media campaigner — have had their social media accounts hacked and used to dump embarrassing transcripts purporting to show their party in disarray and romantic scandals in their personal lives.
Bernard Barbier presided over DGSE, France's answer to NSA, during the agency's period of fast growth, spending €500M and adding 800 new staffers; in a recent speech to a French engineering university Ecole Centrale Paris, Barbier spilled a ton of secrets, apparently without authorisation.
Earlier this month, Wikileaks published a database of six years' of email from AKP, Turkey's ruling party — but as outside experts have plumbed that database, all they can find is archives from public mailing lists, old spam, and some sensitive personal information from private citizens.
Netsweeper sells "internet filtering technology" — a tool that spies on users' internet traffic and censors some of what they see — that is used by governments to control their populations, including the government of Yemen, which uses it to block its citizens' access to material critical of its policies.
Insecure desktop operating systems (and even server/CMS vulnerabilities) has led to the creation of enormous, powerful botnets comprised of thousands, hundreds of thousands, or even millions of machines — and thanks to the law of supply and demand, it's remarkably cheap and easy to rent time on a botnet and blast any site of your choosing off the Internet.
The UK police and security services have frequently touted the necessity of "equipment interference" techniques — cyberweapons used to infect suspects' computers — in their investigations, but they have refused to release any information about their use in response to 40 Freedom of Information requests from Motherboard.
The nonprofit foundation that oversees development on Tor, the anonymity and privacy tool, has launched its first ever major cash fundraiser, seeking support for its crucial work.
My new Locus column is What If People Were Sensors, Not Things to be Sensed?
The Washington Post editorial board lost its mind and called on the National Academy of Sciences to examine "the conflict" over whether crypto backdoors can be made safe: the problem is, there's no conflict.