Posts filtered by tags: Citizen Lab[x]


Apple's iOS 14.8 Update Fixes Zero-Click Exploit Used to Distribute Pegasus Spyware (mac rumors)

Today's iOS 14.8 update addresses a critical vulnerability that Apple engineers have been working around the clock to fix, reports The New York Times. Last week, The Citizen Lab informed Apple about a new zero-click iMessage exploit targeting Apple's image rendering library. Called FORCEDENTRY, the exploit could infect an iPhone, iPad, Apple Watch, or Mac with the Pegasus spyware, providing access to the camera and microphone in addition to allowing access to text messages, phone calls, and...
Tags: Apple, News, Israel, Pegasus, The New York Times, Juli Clover, NSO, Citizen Lab, New York Times Last, NSO Group, John Scott Railton

Apple Patches a NSO Zero-Day Flaw Affecting All Devices

Apple has released security updates for a newly discovered zero-day vulnerability that affects every iPhone, iPad, Mac and Apple Watch. Citizen Lab, which discovered the vulnerability and was credited with the find, urges users to immediately update their devices. From a report: The technology giant said iOS 14.8 for iPhones and iPads, as well as new updates for Apple Watch and macOS, will fix at least one vulnerability that it said "may have been actively exploited." Citizen Lab said it has now...
Tags: Apple, Tech, Pegasus, Apple Watch, Citizen Lab, NSO Group

Israeli spyware firm targeted Apple devices via iMessage, researchers say

Discovery was shared with Apple, which on Monday released a patch to fix the vulnerabilitySecurity researchers at Citizen Lab have discovered an exploit that they believe has been used by government clients of NSO Group, the Israeli spyware company, to silently hack into iPhones and other Apple devices since February 2021.The discovery, which was made as the researchers were examining the mobile phone of a Saudi activist, was shared with Apple, which on Monday released a patch to fix the vulnera...
Tags: Iphone, Apple, Technology, Surveillance, Software, Hacking, Computing, Citizen Lab, NSO Group

Apple wants you to update your iPhone, Mac, and Apple Watch after it fixed a software flaw that let hackers spy without anyone clicking a link

Morsa Images/Getty Images Apple has fixed a flaw that was letting hackers spy on devices without users even clicking a link. The zero-click hack gave access to device cameras, microphones, and messages without users knowing. Apple is telling users to update their iPhones, Macs, and Apple Watches immediately to protect them. See more stories on Insider's business page. Apple is warning users to update their devices as soon as possible after it fixed a major spyware flaw. The company ha...
Tags: Iphone, Apple, Trends, Spyware, New York Times, Amnesty International, Times, Software Updates, Apple Watches, Citizen Lab, Tech Insider, Sarah Jackson, NSO Group, John Scott Railton, Apple Products, Morsa Images Getty Images Apple

Apple Security Update Closes Spyware Flaw in iPhones, Macs and iWatches

Researchers at Citizen Lab found that NSO Group, an Israeli spyware company, had infected Apple products without so much as a click.
Tags: Apple, Citizen Lab, NSO Group

Apple patches an NSO zero-day flaw affecting all devices

Apple has released security updates for a newly discovered zero-day vulnerability that affects every iPhone, iPad, Mac and Apple Watch. Citizen Lab, which discovered the vulnerability and was credited with the find, urges users to immediately update their devices. The technology giant said iOS 14.8 for iPhones and iPads, as well as new updates for Apple Watch and macOS, will fix at least one vulnerability that it said “may have been actively exploited.” Citizen Lab said it has now discovered new...
Tags: Iphone, Apple, Ios, Security, Ipad, Technology, Imessage, Tech, Smartphones, Ipads, Spyware, Mobile Phones, Pegasus, Apple Watch, Operating Systems, NSO

Zero-Click iPhone Exploits

Citizen Lab is reporting on two zero-click iMessage exploits, in spyware sold by the cyberweapons arms manufacturer NSO Group to the Bahraini government. These are particularly scary exploits, since they don’t require to victim to do anything, like click on a link or open a file. The victim receives a text message, and then they are hacked. More on this here. [Author: Bruce Schneier]
Tags: Iphone, Apple, Uncategorized, Malware, Exploits, Bruce Schneier, Citizen Lab, NSO Group, Cyberweapons

A new NSO zero-click attack evades Apple’s iPhone security protections, says Citizen Lab

A Bahraini human rights activist’s iPhone was silently hacked earlier this year by a powerful spyware sold to nation-states, defeating new security protections that Apple designed to withstand covert compromises, say researchers at Citizen Lab. The activist, who remains in Bahrain and asked not to be named, is a member of the Bahrain Center for Human Rights, an award-winning nonprofit organization that promotes human rights in the Gulf state. The group continues to operate despite a ban imposed ...
Tags: Iphone, Apple, Security, London, Privacy, North Korea, Mexico, Imessage, Government, Tech, Qatar, Spyware, United Arab Emirates, Pegasus, Espionage, Bahrain

Citizen Lab accuses Apple of censorship in product engravings

A new report by public policy research organization Citizen Lab has highlighted Apple‘s censorship in regions such as China, Hong Kong, and Taiwan. The company offers engraving services to let customers personalize Apple products they’re buying with emojis, names, or other characters. The investigation says that Apple has a huge list of disallowed phrases — some of them being arbitrary — that it doesn’t engrave on iPhones, iPads, and AirTags sold in these regions. It also noted that in regions l...
Tags: Apple, Startups, Hong Kong, Taiwan, China Hong Kong, Citizen Lab, Plugged

This tool tells you if NSO’s Pegasus spyware targeted your phone

Over the weekend, an international consortium of news outlets reported that several authoritarian governments — including Mexico, Morocco and the United Arab Emirates — used spyware developed by NSO Group to hack into the phones of thousands of their most vocal critics, including journalists, activists, politicians and business executives. A leaked list of 50,000 phone numbers of potential surveillance targets was obtained by Paris-based journalism nonprofit Forbidden Stories and Amnesty Interna...
Tags: Iphone, Android, Security, Microsoft, Mexico, Government, Tech, Cisco, European Union, Smartphones, Whatsapp, Spyware, Software, Hungary, Morocco, Paris

What the latest Pegasus spyware leaks tell us

Over the weekend, a consortium of international news outlets published their findings from an investigation into the use of Pegasus, the marquee spyware product of the secretive billion-dollar Israeli surveillance company NSO Group.  The reports from the Guardian, the Washington Post, and 15 other media organizations are based on a leak of tens of thousands of phone numbers that appear to have been targeted by Pegasus. While the devices associated with the numbers on the list were not neces...
Tags: Apple, Facebook, Post, Washington Post, Mexico, Innovation, Pegasus, MIT Technology Review, NSO, Citizen Lab, NSO Group, Shalev Hulio, Bill Marczak, Jamal Khashoggi, Patrick Howell O'Neill

Mysterious Israeli Spyware Vendor's Windows Zero-Days Caught in the Wild

Government hackers from several countries used spyware made by an Israeli company to target victims all over the world, according to new research by digital rights watchdog Citizen Lab and Microsoft. From a report: The spyware leveraged two unknown vulnerabilities -- also known as zero-day exploits -- in Windows. Citizen Lab, which is housed at the University of Toronto's Munk School, and Microsoft worked together on the research, and published reports detailing their findings on Thursday. The c...
Tags: Microsoft, Israel, Tech, Kaspersky Lab, Citizen Lab, Bill Marczak, University of Toronto s Munk School, Palestine Israel Iran Lebanon Spain UK, Haaretz Candiru

NSO used real people’s location data to pitch its contact-tracing tech, researchers say

Spyware maker NSO Group used real phone location data on thousands of unsuspecting people when it demonstrated its new COVID-19 contact-tracing system to governments and journalists, researchers have concluded. NSO, a private intelligence company best known for developing and selling governments access to its Pegasus spyware, went on the charm offensive earlier this year to pitch its contact-tracing system, dubbed Fleming, aimed at helping governments track the spread of COVID-19. Fleming is ...
Tags: Health, Security, Facebook, Privacy, Saudi Arabia, Government, Tech, Spyware, United States, Telecommunications, United Arab Emirates, Pegasus, Espionage, Simulation, Bahrain, Mobile Phone

Dozens of Al Jazeera journalists' iPhones were hacked using spyware from Israeli security company NSO Group, report claims

Majdi Fathi/NurPhoto via Getty Images Sophisticated spyware was used to hack the phones of 36 Al Jazeera journalists, Citizen Lab said in a new report. Citizen Lab said the hack, which it dubbed "Kismet," could be traced back to software made by Israeli security company NSO Group. NSO Group denied any involvement. Citizen Lab said it believed the hack was ineffective against iPhones with the iOS 14 update, but that the scale of the hack prior to that update could be worryingly large. Visi...
Tags: Apple, Facebook, Saudi Arabia, Trends, Hack, United Arab Emirates, Amnesty International, Pegasus, Iphones, Al Jazeera, NSO, Citizen Lab, University of Toronto s Citizen Lab, Tech Insider, NSO Group, NSO Group Citizen Lab

Dozens of Al Jazeera journalists allegedly hacked using Israeli firm's spyware

Citizen Lab researchers say cyber-attack using NSO Group software likely ordered by Saudia Arabia and UAEiPhones vulnerable to hacking tool for months, researchers saySpyware sold by an Israeli private intelligence firm was allegedly used to hack the phones of dozens of Al Jazeera journalists in an unprecedented cyber-attack that is likely to have been ordered by Saudi Arabia and the United Arab Emirates, according to leading researchers.In a stunning new report, researchers at Citizen Lab at th...
Tags: Technology, Internet, Saudi Arabia, Qatar, World news, Hacking, Middle East and North Africa, United Arab Emirates, Al Jazeera, University of Toronto, Cyberwar, Saudia Arabia, Citizen Lab, NSO Group

Iranian-American businessman accuses two Indian firms of hacking, stealing his data

An Iranian-American businessman has accused two Indian companies — Gurugram-based CyberRoot Risk Advisory and Delhi-based BellTroX Info — of hacking into his email accounts and publishing his email on the internet, according to a filed in a federal court in North Carolina. Reuters first reported the story. In his suit, Farhad Azima, an American airline operator of Iranian origin, has alleged that CyberRoot Risk Advisory hired BellTroX to hack-and-leak his emails at the behest of Vital Manageme...
Tags: Travel, Google, Facebook, Europe, UK, London, News, India, US, Iran, Afghanistan, Hacking, Bittorrent, Delhi, Bahamas, University of Toronto

Trump just banned WeChat for US users. Here's how the company behind the popular app became a $69 billion behemoth that has a stake in everything from 'Fortnite' to Hollywood blockbusters.

WeChat mascots are displayed inside Tencent office in Guangzhou, China. Reuters The Trump administration has beginning on Sunday. The ban follows an executive order against the app in August that barred US companies and individuals from making any transactions with WeChat.  WeChat is owned by Tencent, which isn't a household name in the US, but is one of the most valuable companies in the world. Tencent has a stake in everything from blockbuster films to gaming.  In fact, Tencent is the ...
Tags: Facebook, Asia, Hollywood, China, Softbank, US, Los Angeles, Trends, Social Media, Tech, Bloomberg, Features, Ben Thompson, Beijing, Facebook Messenger, Alibaba

WhatsApp reveals six previously undisclosed vulnerabilities on new security site

Facebook-owned WhatsApp has revealed six previously undisclosed vulnerabilities, which the company has now fixed. The vulnerabilities are being reported on a dedicated security advisory website that will serve as the new resource providing a comprehensive list of WhatsApp security updates and associated Common Vulnerabilities and Exposures (CVE). WhatsApp said five of the six vulnerabilities were fixed in the same day, while the remaining bug took a couple of days to remediate. Although so...
Tags: Security, Facebook, Apps, Social Media, Tech, Vulnerability, Whatsapp, Pegasus, Bug Bounty Program, Computer Security, NSO, Citizen Lab, NSO Group, John Scott Railton, NSO Group WhatsApp

How WeChat Censored the Coronavirus Pandemic

In China, the messaging platform blocked thousands of keywords related to the virus, a new report reveals. From a report: When the novel coronavirus was first discovered in China last winter, the country responded aggressively, placing tens of millions of people into strict lockdown. As Covid-19 spread from Wuhan to the rest of the world, the Chinese government was just as forceful in controlling how the health crisis was portrayed and discussed among its own people. Politically sensitive materi...
Tags: China, US, Tech, United States, Tencent, Wuhan, Tiananmen Square, Citizen Lab, University of Toronto s Citizen Lab, Masashi Crete Nishihata, Crete Nishihata

Interview: How Amnesty investigated the spying campaign against Bhima Koregaon activists

On June 16, MediaNama conducted a telephonic interview with Etienne Maynier, a technologist at Amnesty International, who was part of the team that investigated the coordinated spyware attack against at least nine human rights activists in India, eight of whom have called for the release of eleven activists arrested in the Bhima Koregaon case. Maynier had previously been a research fellow with Citizen Lab, the University of Toronto-based research lab that was also involved in this investigation....
Tags: Travel, Google, UK, News, Interview, India, Surveillance, Amnesty International, Pegasus, Delhi, Freedom Of The Press Foundation, Amnesty, Nagpur, Micah Lee, Citizen Lab, Rathod

Obscure Indian Cyber Firm Spied On Politicians, Investors Worldwide

An anonymous reader quotes a report from Reuters: A little-known Indian IT firm offered its hacking services to help clients spy on more than 10,000 email accounts over a period of seven years. New Delhi-based BellTroX InfoTech Services targeted government officials in Europe, gambling tycoons in the Bahamas, and well-known investors in the United States including private equity giant KKR and short seller Muddy Waters, according to three former employees, outside researchers, and a trail of onli...
Tags: Europe, Mexico, France, Tech, United States, South Africa, New Delhi, KKR, Bahamas, Reuters, Citizen Lab, BellTroX InfoTech Services, John Scott Railton Reuters

Hacking firm in India spied on 10K+ email accounts over 7 years: Report

• One of the largest spy-for-hire operations ever exposed An Indian cyber firm that few people have ever heard of, BellTroX InfoTech Services, is reported to have been serving as an international hacking shop for surveillance jobs, helping clients spy on at least 10,000 email accounts belonging to politicians, investors, journalists and activists around the world. The news comes from this report published Monday night by Citizen Lab: Dark Basin Uncovering a Massive Hack-For-Hire Operation By ...
Tags: Security, Europe, Post, Technology, News, India, Tech News, United States, Hacking, New York Times, Manhattan, Hackers, New Delhi, KKR, Bahamas, Reuters

WeChat Surveils International Accounts To Decide What To Censor for Chinese Users, Study Says

WeChat, the Chinese messaging app, is systematically monitoring the content sent by international users to build up its censorship algorithms applied against accounts registered in China, a new study has found. From a report: Researchers at Citizen Lab, an academic research lab at the University of Toronto, determined that WeChat screens images and documents shared by accounts registered outside China after they are sent, then adds the digital signature -- or "hash" -- of any files deemed sensit...
Tags: Washington, China, Tech, University of Toronto, Citizen Lab

Will Cellphone Tracing Bring a Tolerance of Surveillance?

An anonymous reader quotes the Washington Post: In a matter of months, tens of millions of people in dozens of countries have been placed under surveillance. Governments, private companies and researchers observe the health, habits and movements of citizens, often without their consent. It is a massive effort, aimed at enforcing quarantine rules or tracing the spread of the coronavirus, that has sprung up pell-mell in country after country. "This is a Manhattan Project-level problem that is be...
Tags: Apple, Google, South Korea, Washington Post, Tech, Manhattan, Privacy International, Citizen Lab, University of Toronto He, Washington Post University of Maryland, John Scott Railton, Edin Omanovic

WhatsApp: Israeli Firm 'Deeply Involved' In Hacking Our Users

WhatsApp has alleged in new court filings that an Israeli spyware company used US-based servers and was "deeply involved" in carrying out mobile phone hacks of 1,400 WhatsApp users, including senior government officials, journalists, and human rights activists. The Guardian reports: The new claims about NSO Group allege that the Israeli company bears responsibility in serious human rights violations, including the hacking of more than a dozen Indian journalists and Rwandan dissidents. For years,...
Tags: Mexico, Saudi Arabia, US, Tech, Pegasus, NSO, Citizen Lab, NSO Group, John Scott Railton, Pegasus NSO

Taiwan’s government bars its agencies from using Zoom over security concerns

Taiwan’s Executive Yuan issued an advisory on Tuesday barring the country’s government agencies from using Zoom and other video software with “associated security or privacy concerns.” Instead, the government said alternatives, including software from Google and Microsoft, should be considered. Many organizations have been relying on Zoom to holding meetings during the COVID-19 pandemic, but the video conferencing app has also been criticized for security and privacy issues. Maybe we should...
Tags: Google, Security, TC, Asia, Microsoft, Australia, China, New York City, Tech, Taiwan, Zoom, Executive Yuan, Defence Force, Citizen Lab, Eric Yuan, Coronavirus

Zoom admits some calls were routed through China by mistake

Hours after security researchers at Citizen Lab reported that some Zoom calls were routed through China, the video conferencing platform has offered an apology and a partial explanation. To recap, Zoom has faced a barrage of headlines this week over its security policies and privacy practices, as hundreds of millions forced to work from home during the coronavirus pandemic still need to communicate with each other. The latest findings landed earlier today when Citizen Lab researchers said tha...
Tags: Security, Europe, New York, China, Tech, Encryption, Cryptography, Beijing, Data Protection, North America, Video Conferencing, Zoom, Citizen Lab, Eric Yuan, Bill Marczak, Coronavirus

Surprise! WeChat is censoring messages about coronavirus in China

As the Chinese government responds to the coronavirus epidemic, it’s also worked to control what information on the virus is available. Since the beginning of January, WeChat — China’s most popular messaging platform — has been censoring keywords relating to the recent coronavirus outbreak . This is according to Citizen Lab, a research group based in Toronto, who scripted group chat conversations and sent them to three test WeChat accounts — two based in Canada, and the other in China. The scrip...
Tags: Startups, Apps, China, Toronto, Tech, Canada, Citizen Lab

Reporter who wrote book on Saudi crown prince was allegedly targeted by hackers

New York Times journalist Ben Hubbard says hackers targeted his phone in 2018, about six weeks after Jeff Bezos was hackedA New York Times reporter was allegedly targeted with spyware linked to Saudi Arabia in 2018, at a time when the kingdom was targeting several Saudi dissidents around the world.A new report by Citizen Lab at the University of Toronto’s Munk School found that Ben Hubbard, who has written a book about Mohammed bin Salman, the Saudi crown prince, was targeted by spyware known as...
Tags: Technology, Media, Saudi Arabia, Israel, Newspapers, Hacking, Middle East and North Africa, New York Times, United Nations, Jeff Bezos, US press and publishing, Mohammed bin Salman, Citizen Lab, Ben Hubbard, University of Toronto 's Munk School, NSO Group Continue

'Police Tracked a Terror Suspect on WhatsApp -- Until His Phone Went Dark After a Warning From Facebook'

"A team of European law-enforcement officials was hot on the trail of a potential terror plot in October, fearing an attack during Christmas season, when their keyhole into a suspect's phone went dark," reports the Wall Street Journal: WhatsApp, Facebook Inc.'s popular messaging tool, had just notified about 1,400 users -- among them the suspected terrorist -- that their phones had been hacked by an "advanced cyber actor." An elite surveillance team was using spyware from NSO Group, an Israel...
Tags: Facebook, Europe, India, Israel, Tech, Wall Street Journal, University of Toronto, Journal, Western Europe, Facebook Inc, Ronald Deibert, Munk School of Global Affairs, NSO, Citizen Lab, NSO Group, Middle East Mexico

show more filters
July - 2021
August - 2021
September - 2021