Legal & Security

19 May 2019

The WhatsApp spyware story tells us that nothing is secure The Observer

When Edward Snowden broke cover in the summer of 2013 and a team of Guardian journalists met up with him in his Hong Kong hotel, he insisted not only that they switch off their mobile phones but also that they put the devices into a fridge. This precaution suggested that Snowden had some special insight into the hacking powers of the NSA, specifically that the agency had developed techniques for covertly taking over a mobile phone and using it as a tracking and recording device. To anyone familiar with the capabilities of agencies such as the NSA or GCHQ, this seemed plausible. And in fact, some years later, such capabilities were explicitly deemed necessary and permissible (as “equipment interference”) in the Investigatory Powers Act 2016.

Read full article

15 May 2019

WhatsApp spyware attack was attempt to hack human rights data, says lawyer The Guardian

The UK lawyer whose phone was targeted by spyware that exploits a WhatsApp vulnerability said it appeared to be a desperate attempt by someone to covertly find out the details of his human rights work.

Read full article

14 May 2019

WhatsApp discovers 'targeted' surveillance attack BBC News

Hackers were able to remotely install surveillance software on phones and other devices using a major vulnerability in messaging app WhatsApp, it has been confirmed.

Read full article

12 May 2019

G7 countries to simulate cross-border cyber attack next month: France Reuters

Leading Western industrial powers will for the first time jointly simulate a major cross-border cybersecurity attack on the financial sector next month, French officials said on Friday.

Read full article

05 May 2019

Double blow to dark web marketplaces Europol

The German Federal Criminal Police (Bundeskriminalamt) shut down the Wall Street Market, under the authority of the German Public Prosecutor’s office. They were supported by the Dutch National Police (Politie), Europol, Eurojust and various US government agencies (Drug Enforcement Administration, Federal Bureau of Investigation, Internal Revenue Service, Homeland Security Investigations, US Postal Inspection Service, and the US Department of Justice). The Silkkitie (known as the Valhalla Marketplace) and its contents was also seized by Finnish Customs (Tulli) in close cooperation with the French National Police (La Police Nationale Française).

Read full article

26 April 2019

Dark web blamed for rise in drugs sent by post from Netherlands The Guardian

The rise of the dark web has led to a huge increase in the amount of illegal drugs being sent from the Netherlands, one of the world’s largest drug producers, via letters and packages in the post.

Read full article

03 April 2019

Kiwis lose $33M in 2018 - new approach needed in the fight against online scams Netsafe

Online safety organisation Netsafe says that Kiwis reported losing more to online scams and fraud in 2018 than any other year in its 20-year history, with losses tripling from 2017.

Read full article

31 March 2019

Global law enforcement action against vendors and buyers on the dark web Europol

Law enforcement from Europe, Canada and the United States joined forces early 2019 to target vendors and buyers of illegal goods on dark web marketplaces. During the course of this operation, international law enforcement agencies made 61 arrests and shut down 50 dark web accounts used for illegal activity. Law enforcement executed 65 search warrants, seizing 299,5 kg of drugs, 51 firearms, and over €6,2 million (almost €4 million in cryptocurrency, €2,2 million in cash, and €35 000 in gold). They also conducted 122 interviews.

Read full article

22 March 2019

In New Zealand, Spreading the Mosque Shooting Video Is a Crime New York Times

A lone white supremacist is the suspect in the Christchurch mosque killings. But under New Zealand law, many others could face charges for spreading or perhaps even possessing all or part of the 17-minute Facebook Live video streamed by the killer as he methodically shot the victims.

Read full article

07 March 2019

Two-factor authentication SMS codes aren't your best option for cyber security The Conversation

When it comes to personal cybersecurity, you might think you're doing alright.

Read full article

03 March 2019

McAfee Mobile Threat Report Unveils 550% Increase in Consumer Security Risks Connected to Fake and Malicious Apps in Second Half of 2018 McAfee

... McAfee also unveiled its latest Mobile Threat Report, reporting backdoors, malicious cryptomining, fake apps and banking Trojans all increased substantially in 2018, propelled by cybercriminals quest for illicit profits. Most notably, the number of fake app detections by McAfee’s Global Threat Intelligence increased from around 10,000 in June 2018 to nearly 65,000 in December 2018.

Read full article

27 January 2019

Cybercrime Could Cost Companies US$5.2 Trillion Over Next Five Years, According to New Research from Accenture Accenture

Companies globally could incur US$5.2 trillion in additional costs and lost revenue over the next five years due to cyberattacks, as dependency on complex internet-enabled business models outpaces the ability to introduce adequate safeguards that protect critical assets, according to a new report from Accenture.

Read full article

21 January 2019

Cyber-Jackpot: 773M Credentials Dumped on the Dark Web ThreatPost

A database of breached emails totaling 773 million unique addresses has turned up on a popular underground hacking forum, giving cybercriminals one of the largest jackpots ever seen when it comes to account-compromise efforts.

Read full article

17 January 2019

ThreatList: $1.7M is the Average Cost of a Cyber-Attack ThreatPost

The average cost estimate for cleaning up a cyberattack comes in at around $1.1 million, according to a recent survey. But this is actually a rosy view: For those organizations that actually calculate (versus estimate) the real cost of an attack, that number increases significantly to $1.67 million.

Read full article

10 January 2019

German data breach: agencies 'failing to take security seriously' The Guardian

The German government and security agencies have been accused of not taking internet security seriously, following a huge data breach that affected hundreds of politicians and celebrities.

Read full article

07 January 2019

Hackers Leak Details of German Lawmakers, Except Those on Far Right New York Times

After hackers, later determined to be working for Russia, broke into Parliament’s main computer network three years ago, the government vowed to fortify its cybersecurity. The authorities schooled lawmakers about changing passwords, using two-step identification and other measures to protect online data.

Read full article

03 January 2019

Social Media's Path Forward: Why It Has A Responsibility To Uphold Security Forbes

Recently, Facebook CEO Mark Zuckerberg announced that his social media company is intending to establish an independent oversight group to help aid the struggling social media company in addressing the growing tension between free speech and censorship. In the article he wrote, Zuckerberg noted, "As I've thought about these content issues, I've increasingly come to believe that Facebook should not make so many important decisions about free expression and safety on our own."

Read full article

Fake-porn videos are being weaponized to harass and humiliate women: 'Everybody is a potential target' Washington Post

"Deepfake" creators target both celebrities and everyday women with photos taken from the Web. Even Scarlett Johansson says she's powerless to fight them.

Read full article

Securing New Devices US-CERT

During the holidays, internet-connected devices also known as Internet of Things (IoT) are often popular gifts—such as smart TVs, watches, toys, phones, and tablets. This technology provides a level of convenience to our lives, but it requires that we share more information than ever. The security of this information, and the security of these devices, is not always guaranteed.

Read full article

31 December 2018

Fake-porn videos are being weaponized to harass and humiliate women: 'Everybody is a potential target' Washington Post

“Deepfake” creators are making disturbingly realistic, computer-generated videos with photos taken from the Web, and ordinary women are suffering the damage.

Read full article

27 December 2018

Our Cellphones Aren't Safe: Security flaws threaten our privacy and bank accounts. So why aren't we fixing them? by Cooper Quintin, senior staff technologist at the Electronic Frontier Foundation New York Times

America’s cellular network is as vital to society as the highway system and power grids. Vulnerabilities in the mobile phone infrastructure threaten not only personal privacy and security, but also the country’s. According to intelligence reports, spies are eavesdropping on President Trump’s cellphone conversations and using fake cellular towers in Washington to intercept phone calls. Cellular communication infrastructure, the system at the heart of modern communication, commerce and governance, is woefully insecure. And we are doing nothing to fix it.

Read full article

23 December 2018

McAfee Report Examines Cybercriminal Underground McAfee Labs

McAfee, the device-to-cloud cybersecurity company, today released its McAfee Labs Threats Report: December 2018 , examining activity in the cybercriminal underground and the evolution of cyber threats in Q3 2018. McAfee Labs saw an average of 480 new threats per minute and a sharp increase in malware targeting IoT devices. The ripple effect of the 2017 takedowns of Hansa and AlphaBay dark web markets continued as entrepreneurial cybercriminals took new measures to evade law enforcement.

Read full article

11 December 2018

High-Level Cybersecurity Meeting Warns of Dire Effects of Cyberattacks on Prosperity, Innovation and Global Collaboration World Economic Forum

Cyberattacks are increasing in volume and sophistication, affecting an ever-greater number of people and institutions. Through artificial intelligence (AI), the Internet of Things (IoT) and other new technologies, the threat surface and vulnerability are growing, spinning out in new threat areas facing citizens, consumers, companies and countries. To fight increasing cybercrime, the global community needs to overcome three major challenges: lack of trust, lack of cooperation and a lack of adequate skills.

Read full article

03 December 2018

Apple has always been a control freak. But is it guilty of abusing its monopoly power? The Observer

If a seven-year-old antitrust case finds Apple guilty of misusing its position in the apps market, the ramifications could be huge

Read full article

27 November 2018

Half of all Phishing Sites Now Have the Padlock Krebs On Security

Maybe you were once advised to “look for the padlock” as a means of telling legitimate e-commerce sites from phishing or malware traps. Unfortunately, this has never been more useless advice. New research indicates that half of all phishing scams are now hosted on Web sites whose Internet address includes the padlock and begins with “https://”.

Read full article

Registrar Solutions