runasand

runasand, 4 days ago to random

In January 2020, I asked the U.S. Air Force for records concerning the creation of the Space Force logo. The agency just released 122 pages on the topic: the drafts have been redacted, but there's a cute shout-out to r/SpaceForce. https://www.documentcloud.org/documents/24682194-2020-01582-f

runasand, 13 days ago to random

TASS, the Russian state-owned news agency founded in 1904, has been a clearing house for undercover spies for a long, long time. Here's a blurb about the practice in 1940 and 1941.

runasand, 15 days ago to random

I’ve focused on security for at-risk civil society groups for over a decade now (🙀), including human rights defenders, lawyers, and journalists. I've got some availability these next few months, please get in touch for collaboration, consulting, training, presenting, etc!

runasand, 1 month ago to random

Last week, I looked at NCSC’s cybersecurity guidance for high-risk individuals. The agency suggested using a social media service for shared accounts. Here, I say more about how delegating access to email, social media may make your accounts less secure. https://www.glitchcat.xyz/p/delegating-access-to-email-social

runasand, 1 month ago to random

Since Apple is now notifying even more victims of spyware, let me resurface this article about Apple's Lockdown Mode, an opt-in iOS/iPadOS/macOS feature to defend against such attacks. https://www.glitchcat.xyz/p/four-things-to-know-about-lockdown

runasand, 1 month ago to random

The UK recently published cybersecurity guidance for high-risk individuals, so I took a look. Here’s what’s good and what’s missing. 👇 https://www.glitchcat.xyz/p/a-look-at-the-uks-cybersecurity-guidance

runasand, 1 month ago to random

This year’s Norwegian threat and risk assessments state that activists, dissidents, and refugees in Norway are likely to be targeted by authoritarian regimes in 2024. I wrote about what else high-risk communities should take away from the three reports. https://www.glitchcat.xyz/p/what-high-risk-communities-should

runasand, 2 months ago to random

In 2021, two Norwegian journalists covering conditions for migrant workers in Qatar were detained for 30+ hours. Their equipment was seized, photos and videos deleted. I wrote about what this can teach us about digital security and source protection. https://www.glitchcat.xyz/p/lessons-learned-from-the-2021-arrest

runasand, 2 months ago to random

Google created the Advanced Protection Program to help high-risk individuals keep their accounts secure. The program is great (I’ve used it for years!), it’s just a shame the company rarely mentions it. https://www.glitchcat.xyz/p/googles-advanced-protection-program

runasand, 3 months ago to random

Last year I contributed to a report with recommendations for @cisagov’s High-Risk Community Protection initiative with @thedarktangent, @racheltobac, and others on the Technical Advisory Council. You can read that report here. https://www.cisa.gov/sites/default/files/2023-09/CSAC_TAC-Recommendations_20230913_508_0.pdf

runasand, 3 months ago to random

In 2022, NRK published a series of articles about a Kazakh doctor with a long history of botched surgeries in a small town in Norway. After losing his authorization to operate there, Jerlan Omarchanov moved to Germany where he still operates today. https://www.nrk.no/sorlandet/xl/feiloperasjonene-i-flekkefjord_-legen-jerlan-omarchanov-opererer-fortsatt-i-utlandet-1.15769946

runasand, 3 months ago to random

I wrote about how the Norwegian National Security Authority has supported elected officials, political parties, and non-profit organizations since early 2017. Operation Pro Bono convinced a non-profit board to approve the implementation of two-factor auth. https://www.glitchcat.xyz/p/norway-stands-up-for-high-risk-communities

runasand, 3 months ago to random

A woman was found dead in Isdalen, Norway in 1970. No one knows who she is. Last month, I obtained records through the Freedom of Information Act which show how the FBI tried to assist with identifying the unmarked cosmetics found in the woman’s luggage. https://www.glitchcat.xyz/p/death-in-ice-valley-an-unidentified

runasand, 3 months ago to random

Thanks to Splunk's @audrastreetman and Madeleine Tauber for hosting me on The Security Detail podcast! We talked a lot about digital threats against civil society and at-risk people, including defending against attacks w/spyware w/Apple’s Lockdown Mode. https://thesecuritydetail.podbean.com/e/media/

runasand, 4 months ago to random

ICYMI @adfichter has published a three-part series on surveillance and spyware in Switzerland. For her third and final article, we talked about NSO Group's Pegasus tool and how victims, such as journalists and lawyers, have no recourse, even in Europe. https://www.republik.ch/2024/01/18/der-staat-als-hacker

runasand, 4 months ago to random

This interview with SecurityWeek was done almost two years ago, but just published last week. We talked about different aspects of security research, including my goal to have fun with the projects I take on — like the gun hack in 2015. https://www.securityweek.com/hacker-conversations-runa-sandvik/

runasand, 4 months ago to random

An unidentified woman was found dead in Isdalen near Bergen, Norway in November 1970. Police found a notebook with her belongings. Maybe something for the @defcon Crypto Village next year? Anyone else interested in this? (See “The Isdal Woman,” “Death in Ice Valley.”) https://www.bbc.co.uk/programmes/articles/1DWWslfP8RKW5TpBfXg67q2/the-coded-notepad

runasand, 5 months ago to random

I’ve focused on security for at-risk civil society groups for over a decade now (🙀), including human rights defenders, lawyers, and journalists. I’m available for collaboration, consulting, and presenting next year, please get in touch if you’d like to work together!

runasand, 6 months ago to random

Since Citizen Lab, Amnesty, Access Now, and the SHARE Foundation reported on use of spyware against two members of civil society in Serbia today, let me resurface this article about Apple's Lockdown Mode, an opt-in iOS feature to defend against such attacks. https://www.glitchcat.xyz/p/four-things-to-know-about-lockdown

runasand, 6 months ago to random

I wrote a piece for Binding Hook on the many ways journalists and civil society organizations have sounded the alarm on spyware this last decade, and how very little is done to counter the growing threat. https://bindinghook.com/articles-hooked-on-trends/spyware-are-still-having-a-ball-despite-a-decade-of-warnings/

runasand, 6 months ago to random

In “Nadia Comăneci and the Secret Police: A Cold War Escape,” historian Stejărel Olaru details the relationship between sports and politics in Communist Romania. The book mentions a journalist and informant named Aurel Neagu, code name 'Constantin.' https://www.journalistandspy.com/p/aurel-neagu

runasand, 6 months ago to random

I wrote about U.S. efforts to counter the misuse and proliferation of commercial spyware, and NSO’s continued outreach to government officials. https://www.glitchcat.xyz/p/nso-continues-its-outreach-to-us