Wednesday, April 7, 2010

Meet the Canadians who busted GhostNet

A team of Canadian researchers revealed this weekend a network, dubbed GhostNet, of more than 1,200 infected computers worldwide that includes such "high-value targets" as Indonesia's Ministry of Foreign Affairs and the Indian Embassy in Kuwait, as well as a dozen computers in Canada.

The revelation left government bodies around the world scrambling to determine what sensitive files may have been compromised by the cyber-spy network, which even now continues to spread and infect, its authors apparently undaunted by all the extra attention. (more)

The Smallest SpyCam in the World

Muvi by VEHO – Smaller than the average thumb!

2" x ¾" x ¾" It's the smallest spycam in the world. You can even wear it around your neck and use it as a webcam.

Muvi has a special VOX mode that lets you start/stop recording using your voice
Inserting the 2GB Micro SD card Micro SD card slot
Despite its size the Muvi records in VGA quality (640x480). Incredible! Videos are stored on the included 2GB Micro SD card (1 hour of recording!), but for those of you who prefer real epics the Muvi can handle cards up to 8GB. (more) (sample videos)

Tuesday, April 6, 2010

Wiretapping + Blackmail = $$$

Turkey - Former Fenerbahçe soccer player Rıdvan Dilmen was arrested on Tuesday as part of a suspected organized crime group that allegedly wiretapped prominent figures, the Anatolia news agency has reported.

Thirty-six people, including Fenerbahçe's legendary player, were arrested in four different provinces in simultaneous operations conducted by the National Police Department.

These detainees allegedly wiretapped prominent figures such as businessmen, celebrities and soccer players. Police have also taken the testimony of another legendary soccer player, Tanju Çolak, under the scope of the operation. (more)

Spybusters' Tip - High profile individuals and prominent executives - Hire a reputable specialist to check for bugs, taps and spycams on a regularly scheduled basis. Be sure to investigate the specialist's background and credentials. You really don't want to hire an organized crime "front company" to conduct your sweep.

Keeping up with privacy news...

Privacy Journal specializes in reporting on the individual's right to privacy.

The monthly newsletter was founded in 1974, before there was an Internet, before there was e-mail, and before there was automated telemarketing. Thus, it's the oldest publication on privacy in the world.

It is always full of news on new technology and its impact on privacy, tips for protecting your privacy, and the latest on court decisions, legislation, professional conferences, and corporate practices.

Robert Ellis Smith, who is recognized as the leading expert on the right to privacy in the U.S., is the publisher. (more

In addition to the journal, PJ is an exceelnt source for specialized privacy information...
Compilation of State and Federal Privacy Laws
Ben Franklin's Web Site. A book about privacy in American history - from our founding to the present.
The Directory of Privacy Professionals
and more.

"I'm gonna super-size your butt, clown!"

NJ - Police have charged a man who they say climbed in a drive-thru at a New Jersey McDonald's because he was tired of waiting for his Filet-O-Fish sandwich.

Rashon East was charged with simple assault and making terroristic threats after he turned himself in to South Brunswick police on Monday. East paid for the sandwich at the first window. Surveillance video then showed the man climbed out of the back seat and into the pickup window.

Police say East felt intense pressure to surrender because of media attention from videotape and pictures that were released. (more
 
Spybusters' Tip - Never underestimate the power of pro-active video surveillance. Logging entry / exit activity at your doors is one good counterespionage deterrent.

Friday, April 2, 2010

21 Technical Secrets (and their solutions)

via pcworld.com  
Here are 21 dangers that the industry is hiding from you--and what you can do about them. 

Don't despair. For every dirty little secret revealed herein, we describe a fix or a way to work around it (if any exists). You don't have to be a victim, if you know what to do.
  • Your Webcam May Be Watching You
  • Your Cell Phone Is a Homing Beacon
  • Your Facebook Apps Are Spying on You
  • Cell Phones Don't Crash Airplanes
  • Your Boss Can (and Probably Does) Monitor Your Computer
  • Your Geolocation Data Is Not Private
  • Your Passport Could Make You a Target for Crime--Wirelessly
  • The Social Web Never Forgets
  • Antivirus Software Won't Protect You 
  • The Cyberwar Is Heating Up (and Uncle Sam Is Losing) 
  • Google Could Rat You Out
  • You Can Escape Almost Any Service Contract Without Penalties
  • Your ISP Is a Copyright CopYou Can Fight the RIAA and Win
  • A 'Cheap' Smartphone Is a Rip-Off
  • The NSA Is Tapping Your Data Stream
  • Pacemakers and Other Implants Can Be Hacked
  • Your PC May Be Killing YouYou're Spending Too Much on Printer Ink
  • End User License Agreements May Not Be Enforceable
  • 'Private' or 'Incognito' Browsing...Isn't
When not polishing his tin-foil hat, Contributing Editor Dan Tynan tends his geek-humor empire at eSarcasm.

Stare Bear "I don't want him daddy, he's creepy."

via ThinkGeek...
"The Tell Me Your Secrets Bear is an adorable plush that will be your wee geek's closest confidante. When hugged, he'll profess his love for your child, and stress that friends always share their secrets. He'll ask, "Do you have a secret, best friend? You can tell me anything." When the bear completes a trigger phrase, the audio and video turns on, recording your child's secrets, which are then wirelessly transmitted to you via email (or Twitter). Of course, mostly you'll hear things like, "I really wish Mommy would cook more bacon" or "Is this real life?" but every once in a while, you'll get valuable intelligence that will help you become a more casually despotic parent. We guarantee it." (more) (funny video)

Wednesday, March 31, 2010

Poll Results - Would you sell your employer's secret information? (assume you would not be caught)

Apparently, our readership is pretty honest. Not surprising, you're not the typical employee. You have an interest in security.

However... considering the makeup of the group, the dishonest results are alarming — 29% admit they do, or might, commit espionage! 

Numbers lie. I suspect many who answered "Heck, I do that now" have a sense of humor like mine.

But what about that 8%? And, would that number be higher in the general (non-security minded) population? 

Thought... If your organization doesn't have a counterespionage strategy yet, you had better visit your local strategy shop.

GPS Tracker (with audio eavesdropping) Update

About 3 years ago the Security Scrapbook alerted you to a tracking device with eavesdropping capabilities

The folks at GoPass Technology Corp. have been really busy since then...

Their latest real time GPS trackers – with eavesdropping capabilities – can now...
  • Store data when out of cell range, and burst it back when it comes back in range.
  • Can send to two different computers. (Convenient home and office surveillance.)
  • Automatically snitch when the vehicle is moved.
  • Locate with assisted GPS. (Garage parking won't save you.)
  • Remotely immobilize the vehicle. (By killing the ignition... or the oil pump, which they suggest, but "don't recommend" in an Eddie Izzard sort of way.)
  • Send back data based on the preset time internal or based on the distance driven.
  • Read the voltage data by SMS message inquiry.
  • Get position data via a phone call. 
  • Set a timetable to send back data automatically. 
  • Snitch mode. (Teens will hate this.) Only sends data when a preset speed limit is exceeded.
  • And, a remote Sleep Mode. 
Need a "personal" tracker (with eavesdropping capabilities)? GoPass has you covered. "Don't leave home without it."

Why do I mention these things?
So you will know what you are up against.
P.S. Suspect you have something like this on your corporate vehicle (car, plane or boat)? Give me a call. I can help.

Saturday, March 27, 2010

Contest - You vs. the Swiss Army (USB)

Carl Elsener Jr, the current president of the Swiss army knife maker Victorinox and grandson of the company's founder, was in London this morning to promote the company's latest product: a secure USB flash drive.

And when he says secure, he doesn't appear to be mucking around. Victorinox is so confident of the combination of encryption and fingerprint security built into the drive that it has offered a reward to anyone who can crack it.

Think you've got what it takes to crack the Victorinox code? If you succeed, be prepared to walk away $100,000 richer. It's that simple.
Click here to to send us your registration by email!
View Rules and Regulations (PDF)

PS - If you screw it up, the data self-destructs!

Print Center Blues

Want to know what expenses your boss claimed last month? How much your colleague makes? What the co-worker down the hall is really working on? 

Forget about hacking their computers – you might want to hit the nearest photocopier instead... copy machines in your office keep a wealth of copied data on a hard drive that anyone can hack. 

In the age of everything digital, the photocopier is probably the one workplace item you never thought to worry about. It's just making a copy of a document, right? How risky could that be?

Very risky, as it turns out. (more)

Most print center manufacturers have add-on security software; one option worth opting for.

FutureWatch - "It's just our new 'know yer customer' policy, mate."

Australia - Somewhere in Perth's central business district is a building containing the names, ages, addresses, photographs and unique fingerprint codes of thousands of revellers who danced and drank at Sydney's Home nightclub last year.
 
Home, in Darling Harbour, began trialling a biometric ID scanning entry system nine months ago. Patrons lined up before six large terminals to have their photo taken, and their driver's licence and right index fingerprint scanned. The information was copied and sent to Western Australia, where it is stored on a secured central database by the system developers.

While Home is the only NSW venue to use fingerprint technology at present - there are 13 nationwide - various forms of ID scanning are being quietly rolled out at other nightspots. (more)

"Sheila, if we didn't do this you might get carried off by an alien. It's for your own good, you know, not to mention limiting our liability."  

It may take a decade or so, but once this generation has been privacy desensitized the concept of a business 'knowing the customer' as they enter the establishment will become more commonplace. 

Personal security won't be the only reason. Think about the counter-shoplifting possibilities. When businesses network their customer knowledge, mobile shoplifting gangs will find it harder to operate. 

The marketing mantra... "This enhances and customizes your experience with us."

Friday, March 26, 2010

I Spied (We'll miss you.)

Robert Culp, the veteran actor best known for starring with Bill Cosby in the classic 1960s espionage-adventure series "I Spy" and for playing Bob in the 1969 movie "Bob & Carol & Ted & Alice," died Wednesday morning. He was 79.

Culp fell and hit his head while taking a walk outside his Hollywood Hills home. He was found by a jogger who called 911 and was pronounced dead at Hollywood Presbyterian Medical Center in Los Angeles, said Lt. Bob Binder of the Los Angeles Police Department. An autopsy is pending.

"My mind wants to flow into sadness, but I want to stay above that," Cosby told The Times on Wednesday. (more)

Wednesday, March 24, 2010

Australia Week at KSS continues...

The Queensland government has tipped $14 million into wiretapping capabilities to support new phone interception powers handed to police last year. (more)

Tuesday, March 23, 2010

Plant a bug, grow a business? You decide.

Australia - A Sunshine Coast jury will decide the fate today of two women and a son who placed a fake bug in the home of a Nambour woman with mental health issues.

In each of their recorded police interviews, which were shown during a Maroochydore District Court trial over the past two days, they said they thought planting the bug would “help” the woman, who believed someone was monitoring her.

They took $100 from the woman’s daughter for removing the bug, which was a circuit board and wiring they obtained from a Mooloolaba surveillance store.

Kathleen Joan Kitchner, 54, and Corinne Martell, 47, from Private Eyes007, and Ms Martell’s son, Shane Robert Martell, 26, have pleaded not guilty to attempted fraud.

Their defence barrister has told the jury that “the reason the bug was placed there” should be the issue in their deliberations.

He said while the Crown argued the women planted the fake listening device with a view to getting further business through installation of a surveillance system and possibly security patrols, they had other motives.

The women were hired after Cheryl Metcalf called them to sweep her mother’s home for cameras and bugs in June, 2008. (more)