According to the last draft compromise, dated 7 June 2023, of the European Media Freedom Act, there is an exception to the general ban on deploying spyware against journalists without guarantees for the protection of sources, for safeguarding national security.
In short, governments are free to put surveillance spyware on journalists' devices.
"Robert Simonds, a US financier whose credits include producing several Adam Sandler films, has been engaged in talks to acquire the blacklisted spyware company’s assets, according to multiple sources familiar with the matter.
A firm owned by Simonds’s friend, William “Beau” Wrigley – who was an heir to his family’s chewing gum fortune and has since become involved in the cannabis industry... "
It is 'reverse-proxied' by an #Amazon service called #CloudFront*. Reverse-proxy means it unencrypts all traffic to "ensure quality of service". Back when encryption of sites was a basic priority this would be called #spyware, or a #ManInTheMiddleAttack.
Consider #DFCA to block the dot-'cons' and their spyware.
not to be confused with #CloudFlare, which does the same and is equally bad.
Holy fuck. Minister Yeşilgöz wil verplicht #spyware op iedereen zijn telefoon & computer installeren.
Het gaat om 'client side scanning' (Css) die alles wat je doet zal scannen, en automatisch de autoriteiten waarschuwt als een tekst, plaatje of bestand volgens de software illegaal zou zijn.
Css zou om te beginnen kinderporno tegen moeten gaan.
Negli ultimi anni, numerosi scandali hanno rivelato che i giornalisti di tutto il mondo sono stati oggetto di sorveglianza, spesso tramite #spyware. Ma i giornalisti devono essere vigili su altre forme di sorveglianza sempre più diffuse come i sistmi di tracciamento COVID19.
With the Apollo app for Reddit shutting down soon, I’m going to need to start relying on Mastodon for all of my cute animal photo, gif, and story needs. #Apollo#Reddit#Animals#SmallTalk
⎧ Enigma software group has won a crucial case in the U.S. Court of Appeals for the Ninth Circuit, allowing it to proceed with its lawsuit against Malwarebytes for flagging its anti-spyware software as a 'potentially unwanted program.' The lawsuit alleges that Malwarebytes has engaged in anti-competitive conduct under the Lanham Act and tortious interference with Enigma's business ⎭ ➥ @techspot
📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #22/2023 is out! It includes, but not only:
➝ 🇺🇸 🪖 Air Force denies running simulation where AI drone “killed” its operator
➝ 🇺🇸 🏂 #Burton Snowboards discloses #databreach after February attack
➝ 🇺🇸 🧪 Enzo Biochem #Ransomware Attack Exposes Information of 2.5M Individuals
➝ 🧠 🤖 Introducing Charlotte AI, #CrowdStrike’s Generative AI Security Analyst
➝ 🐍 🦠 Malicious #PyPI Packages Using Compiled #Python Code to Bypass Detection
➝ 🇰🇵 🎠 N. Korean ScarCruft Hackers Exploit LNK Files to Spread #RokRAT
➝ 🦠 📱 New Zero-Click Hack Targets #iOS Users with Stealthy Root-Privilege #Malware
➝ 🇷🇺 🇺🇸 #Russia says U.S. accessed thousands of #Apple phones in spy plot
➝ 🇯🇵 🚗 #Toyota Discloses New Data Breach Involving Vehicle, Customer Information
➝ ☁️ 👻 Organizations Warned of #Salesforce ‘Ghost Sites’ Exposing Sensitive Information
➝ 🔐 👀 #Amazon faces $30 million fine over Ring, Alexa #privacy violations
➝ 🔐 🧱 Active Mirai Botnet Variant Exploiting #Zyxel Devices for #DDoS Attacks
➝ 🇷🇺 🇺🇦 Russia’s ‘Silicon Valley’ hit by cyberattack; Ukrainian group claims deep access
➝ 🦠 🤖 #Spyware Found in #GooglePlay Apps With Over 420 Million Downloads
➝ 🦠 🚪 #RomCom malware spread via Google Ads for #ChatGPT, GIMP, more
➝ 👛 Southeast Asian hacking crew racks up victims, rapidly expands criminal campaign
➝ 🍏 #Microsoft finds #macOS bug that lets hackers bypass SIP root restrictions
➝ 🦠 🚪 #Barracuda zero-day abused since 2022 to drop new malware, steal data
➝ 🇬🇷 Worst cyberattack in #Greece disrupts high school exams, causes political spat
➝ 🇮🇳 🎠 Sneaky DogeRAT Trojan Poses as Popular Apps, Targets Indian #Android Users
➝ 🇺🇸 U.S. Department of Defense releases 2023 Cyber Strategy
➝ 📱☝🏻 New BrutePrint Attack Lets Attackers Unlock Smartphones with Fingerprint Brute-Force
➝ 🇯🇵 🎠 New GobRAT Remote Access #Trojan Targeting #Linux Routers in #Japan
➝ 🦠 📂 Clever ‘File Archiver In The Browser’ phishing trick uses #ZIP domains
📚 This week's recommended reading is: "Fancy Bear Goes Phishing: The Dark History of the Information Age, in Five Extraordinary Hacks" by Scott J. Shapiro
Subscribe to the #newsletter to have it piping hot in your inbox every Sunday ⬇️
At least 18 different malicious extensions (as of 30 MAY and this post) identified by @WPalant
Remember extensions have privileged access to the browser (and data in the browser). Choose your extensions wisely... they could be #spyware or #malware in disguise.
Wenn wir ehrlich sind, sehr viele #Entwickler & #Programmierung nutzen die nächstes aufzufindente #Tools um es nicht selber zu #Entwicklung aufzusetzen und merken erst später was die für #Shit die witklich anpreisen oder sehe ich da was #falsch?
«Android-Spyware SpinOk kommt auf mehr als 421 Millionen Installationen»
📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #21/2023 is out! It includes, but not only:
‣ 🇬🇧 🇺🇸 #NHS data breach: trusts shared patient details with #Facebook without consent
‣ ☁️ Severe Flaw in #Google Cloud's Cloud #SQL Service Exposed Confidential Data
‣ 🇨🇭 💰 US govt contractor #ABB confirms #ransomware attack, data theft
‣ 🦠 🤖 #Predator: Looking under the hood of Intellexa’s #Android spyware
‣ 🇦🇿 🇦🇲 Hacking in a war zone: #Pegasus#spyware in the Azerbaijan-Armenia conflict
‣ 🦠 🎮 Dark Frost #Botnet Launches Devastating #DDoS Attacks on Gaming Industry
‣ 🇷🇺 🦠 Mysterious #malware designed to cripple industrial systems linked to #Russia
‣ 🇧🇷 🇵🇹 ‘Operation Magalenha’ targets credentials of 30 Portuguese #banks
‣ 🩹 #GitLab 'strongly recommends' patching max severity flaw ASAP
‣ 🇮🇷 🇮🇱 Iranian hackers use new #Moneybird ransomware to attack Israeli orgs
‣ 🇺🇦 Cyber Attacks Strike #Ukraine's State Bodies in Espionage Operation
‣ 🇨🇳 🇺🇸 Chinese state hackers infect critical infrastructure throughout the US and Guam
‣ 🐍 👨🏻⚖️ #PyPI was subpoenaed
‣ 🇰🇵 🦠 N. Korean #Lazarus Group Targets #Microsoft IIS Servers to Deploy Espionage Malware
‣ 🦠 🤖 Data Stealing Malware Discovered in Popular Android Screen Recorder App
‣ 🇩🇪 Arms maker Rheinmetall confirms #BlackBasta ransomware attack
‣ 🦠 New ‘GoldenJackal’ APT Targets Middle East, South Asia Governments
‣ 🇺🇸 🇰🇵 Treasury Department sanctions entities tied to North Korean IT scams, hacking
‣ 🇺🇸 📰 Cuba ransomware claims #cyberattack on Philadelphia Inquirer
‣ 🇺🇸 🏥 After ransomware attack, state’s second-largest health insurer says patient data stolen
‣ 🇯🇵 🇮🇳 🏍️ #Suzuki motorcycle plant shut down by cyber attack
‣ 🇺🇸 🪖 #Pentagon explosion hoax goes viral after verified #Twitter accounts push
‣ 🇺🇸 🇪🇺 #Meta Fined Record $1.3 Billion and Ordered to Stop Sending European User Data to US
‣ 🦠 🎬 Cloned #CapCut websites push information stealing malware
‣ 🇰🇷 🇺🇸 Warning: #Samsung Devices Under Attack! New Security Flaw Exposed
‣ 🍏 #Apple fixes three new zero-days exploited to hack iPhones, Macs
Not content with tricking people into paying for security talismans by misrepresenting what VPNs do..., they are SEO-optimizing fake #cybersecurity advice to drive signups.
The perverse thing is that the high risk people like dissidents & journalists that need to get safer from Predator not only won't be.helped, but real advice is getting drowned out.
The #PEGA Committee report is a slap on the wrist of EU member states elbow-deep in #spyware scandals. The recommendations that have surfaced thus far are a farce. There are no repercussions to member states abusing spyware, only recommendation that they play nice and involve Europol. @edri has written an article summarizing the outcome of the report: https://edri.org/our-work/pega-committee-does-not-go-all-the-way-on-spyware-regulation/
Das waren die #BBA23 … Wie versprochen haben wir eine Woche nach den #BigBrotherAwards eine kleine Presseschau gemacht und über einige der vielen Publikums-Kommentare gesprochen.
»Die geplante A3-Version von Microsoft 365 wird als datenschutzsichere Lösung verkauft. Das ist sie nicht. Sie lässt mehr Einstellungsmöglichkeiten zur Unterbindung von Datenflüssen zu als die „niedrigere“ A1-Version, doch die „wesentlichen Dienste“, wie Microsoft sie nennt (und das sind ziemlich viele) können nicht abgestellt werden. Dies zu ändern ist nicht im Interesse des Geschäftsmodells von Microsoft, denn unsere Daten sind eine große Einnahmequelle für das Unternehmen.«