Tuesday, June 29, 2010

Meanwhile, in the Ivory Towers...

The Netherlands' three Universities of Technology have no plans to take extra steps to prevent spying by foreign delegations, the Nederlands Dagblad reports on Tuesday.

The paper say in April the security service AIVD warned that foreign secret services are sending students to Dutch universities to gather information. In one case, half a delegation was made up of security officials, the AIVD said. 

Delft, Twente and Eindhoven Universities of Technology are most vulnerable to spying because of their focus on nuclear science, biotechnology and nano technology, the paper said.

University officials told the paper combating spying is not a task for academics. (more)

Sunday, June 27, 2010

Corporate Espionage... There's an app for that.

A new report from SMobile Systems who specializes in security issues on mobile phones and in the wireless infrastructure, 20% of the available applications on Android Market allow third parties access to personal information of users.

The report says that 20% of Android applications enable third parties to access private or sensitive information that could be used by crooks for malicious purposes including identity theft, mobile banking fraud and corporate espionage. (more)

The SpyCam & Computer Tapping Neighbor

NY - A North Syracuse man was indicted today on charges he spied on one neighbor and illegally used the computer access of another neighbor.

Jesse Reed, 29, of 115 Crystal Drive, was indicted on a felony charge of second-degree unlawful surveillance and a misdemeanor count of unauthorized use of a computer.

Assistant District Attorney Geoffrey Ciereck said the investigation began with Syracuse police looking into the downloading of child pornography. The person initially under scrutiny turned out to have been the victim of someone using his computer access to obtain the pornography, the prosecutor said.

That led authorities to Reed, Ciereck said. While police were investigating the child pornography matter, they also discovered equipment had been set up in Reed’s home to spy into the bedroom window of a female neighbor, the prosecutor said. (more)

Proof DIY TSCM Doesn't Work

Former Detroit Mayor Kwame Kilpatrick was charged Wednesday with fraud and tax crimes as the government accused him of enriching himself and others by milking $640,000 from the Civic Fund, a tax-exempt charity that he created as a good-works effort to enhance Detroit and improve the city's image.

Kilpatrick instead used it to pay for yoga, golf, camp for his kids, travel, a video about his family's history, cars, polling, college tuition for relatives and much more, including "counter-surveillance and anti-bugging equipment," according to the indictment. (more)

Tuesday, June 22, 2010

SpyCam Story #580 - The Cardial Infarction

NY - A North Hills cardiologist has been convicted of illegally installing a hidden camera in the office bathroom of his Manhasset practice to secretly spy on patients and employees, Nassau County District Attorney Kathleen Rice announced on Monday.

Vincent Pacienza, 54, was found guilty of unlawful surveillance in the second degree, a felony. He will face up to four years in prison in his July 30 sentencing...

...Pacienza told his female employees that he would be installing an air purifier in the office restroom shared by employees and patients. However, the air purifier, which faced the toilet, contained a hidden wireless camera with a direct video feed to a monitor under Pacienza’s desk.

He was caught later that same month when an employee opening the office mail discovered a receipt for the camera and purifier from a website specializing in surveillance equipment... (more)

Dammit Jan...

Transsexual who waged five-year spying campaign on neighbors faces jail...

UK - Jan Krause, 44, videotaped the family and posted the recordings on YouTube, crashed into their cars and erected a roof-mounted device which emitted a high-pitched whine in their direction. One Christmas morning, nurse Carol Story opened the curtains to find Krause sitting outside dressed all in black and wearing a balaclava while taking notes. 

The campaign left 53-year-old Miss Story, a mother of three, upset and angry and she even put the family home on the market.

But she hopes her ordeal is over after Krause, a transsexual, was convicted of harassment at Chester Magistrates' Court. She was remanded on bail for sentence and banned from keeping cameras or recording equipment. (more) (cap)

Monday, June 21, 2010

How To Make a Cell Phone a Spy Phone For Free

In the early days of cell phones simply turning off the ringer and activating an auto-answer feature turned mobile phones into a spyphones.  
Times changed. Manufacturers adjusted the software to counter criticism. Now, as a publicity stunt to sell Internet speedup software, a Scottish firm created this work-around...
1st: You will need the 'Spy' ringtone: Click on the type of ringtone you want and then upload the ringtone to your phone just as normal.

1. Download the Spy.mp3 Ringtone

2. Download the Spy.wav Ringtone

3. Download the Spy.rtx Ringtone

2nd: On your phone select the Spy ringtone, turn off call alert lights (if you can), turn off vibration alert and set your phone to auto-answer; (note - some phones are set up in such a way that you must attach the 'handsfree' wire to allow auto-answer to work.)

That's it! You're done! You now have a top quality, undetectable, spy bugging / listening device that equals the quality of the best and most secret on the market. (more) 

Why mention it?
So you will know what you're up against.
The old auto-answer spyphone trick is back!

Hot Kid Spy Gear

This spy-kid toy is getting rave reviews

via thingiemajig.com
"The Ultimate Spy Watch is equipped with 8 thrill seeking features. First is the motion sensor with alarm and date stamp to protect your valuables and to alert intruders whenever they might come. Second is the message decoder to read messages from your fellow spies. For sending messages, it can drop message capsules with a spy paper. A night vision light is included to gain an advantage against your enemies during night time covert operations. A crosshair can definitely make a shot hit or miss, making it an indespensable tool for a spy, is built in too. Of course, watch functions are also a must such as world time for some international missions, stopwatch for time critical missions up to the last mili second, and a wake up alarm which can be very handy for some early morning operations or training. As for an added feature, this 10 inch watch is protected by a locking armor for increased durability - a must for tough agents."

Need more Paper for your Capsules? 
Download and Print Spy Messaging Paper Here." 

Blagojevich Wiretaps in PDF

The federal government's case against Rod Blagojevich centers on recorded conversations involving the former Illinois governor and his associates. Prosecutors are also making those recordings available to the public.

The FBI wiretaps are being played in federal court but anyone with an internet connection can also listen (PDF transcipts at this point in time). Prosecution evidence is posted on the U.S. Attorney's website. (more)

Friday, June 18, 2010

Some things just can't be covered-up.

France's convoluted L'Oréal family fraud scandal became even more convoluted and even more gripping yesterday. Tapes of bugged conversations involving the L'Oréal owner, Liliane Bettencourt, 87, implied that President Nicolas Sarkozy had meddled in legal proceedings in which a society photographer is accused of defrauding France's richest woman of almost a billion euros.

The tapes, leaked to a French investigative website, also suggest that the supposedly senile billionairess was involved in elaborate schemes to hide some of her money abroad. There are cryptic references to campaign payments to ensure the "friendship" of two cabinet ministers, including the employment minister, Eric Woerth.

Ms Bettencourt's former butler was arrested yesterday and faces charges of "invasion of privacy", for allegedly bugging conversations between the L'Oréal heiress and her financial adviser. He has not been named. Tapes of the conversations were sent last week to Ms Bettencourt's only daughter, Françoise, who sent them to the police. (more)

SpyCam Story #579 - "Step right this way."

AL - Shocking allegations against the tourism director for the Eastern Shore Chamber of Commerce. Police say Justin Hasting set up a hidden camera in a public restroom and video taped women.

Police say the crime happened in the employee restroom at the scenic overlook in Daphne.

Investigators say they were tipped off when two women went in to use the restroom, but Hastings stopped them and told them it was out of order and they would have to use the employee restroom...

Hasting is charged with two counts of criminal eavesdropping and installing an eavesdropping device, which is a federal offense. Hasting is a former radio-host. (more)

Thursday, June 17, 2010

Bug Building is Back in Style

As seen on TV...
Building homemade bugs is back in style.
YouTube

Why mention it?
So you will know what you're up against.

Keep those TSCM bug sweeps current.

NSFW OSS FUBARs

The OSS Simple Sabotage Field Manual from 1944
 "The purpose of this paper is to characterize simple sabotage, to outline its possible effects, and to present suggestions for inciting and executing it."

Sample Tips
"Fuel lines to gasoline and oil engines frequently pass over the exhaust pipe. When the machine is at rest, you can stab a small hole in the fuel line and plug the hole with wax. As the engine runs and the exhaust tube becomes hot, the wax will be melted; fuel will drip onto the exhaust and a blaze will start."

"Jam paper, bits of wood, hairpins, and anything else that will fit, into the locks of all unguarded entrances to public buildings."

And, every teen's favorite... "'Misunderstand' orders. Ask endless questions or engage in long correspondence about such orders. Quibble over them when you can." (more)

So, who's minding your intellectual property store?

More than half of Fortune 1000 companies lack a full-time chief information security officer, only 38% have a chief security officer, and just 20% have a chief privacy officer. As a result, a majority of companies are failing to adequately assess and manage the risks that information security and privacy issues pose to their business. 

Those findings come from "Governance of Enterprise Security," a new study released yesterday by Carnegie Mellon University's CyLab. The report is based on a survey of 66 board directors or senior executives who work at Fortune 1000 companies. Nearly half of respondents work at critical infrastructure companies. CyLab conducted a similar survey in 2008. (more)

If you business does not have a C-level IP warden in the watchtower, at least engage a good counterespionage consultant. You can find one here, or at one of the several URLs which hosts Kevin's Security Scrapbook.

Wednesday, June 16, 2010

Employee monitoring: When IT is asked to spy

With staff surveillance on the rise, high-tech types can be put in the awkward position of having to squeal on their fellow workers.

As corporate functions, including voice and video, converge onto IP-based networks, more corporate infractions are happening online. Employees leak intellectual property or trade secrets, either on purpose or inadvertently; violate laws against sexual harassment or child pornography; and waste time while looking like they are hard at work.

In response -- spurred in part by stricter regulatory, legal and compliance requirements -- organizations are not only filtering and blocking Web sites and scanning e-mail. Many are also watching what employees post on social networks and blogs, even if it's done from home using noncompany equipment.

They are collecting and retaining mobile phone calls and text messages. They can even track employees' physical locations using the GPS feature on smartphones. 

 Long story, but here is the bottom line...
It's more common that the IT manager doesn't know how to correctly preserve evidence, and probably doesn't even know what information might be legally relevant, says Jason M. Shinn, an attorney with Lipson, Neilson, Cole, Seltzer & Garin PC who specializes in electronic discovery and technology issues in employment law. (more)