Congressional Republicans gathered behind closed doors in a Philadelphia hotel Thursday to discuss their plans to tackle national security, health care and more. Now you, too, can listen in.
The recordings below were first provided to The Washington Post and other news outlets through an anonymous email sent Friday evening.
The author of that message asked that the recipients not publish the audio files out of concern that the author could lose his or her job.
On Saturday afternoon, the person wrote again and granted permission to publish the files, explaining that he or she had more closely reviewed the recordings and had concluded that they could not be used to identify him or her.
Washington Post reporters who reviewed the files on Thursday and Friday found revealing details within. more
Sunday, January 29, 2017
Saturday, January 28, 2017
More Bad Security News for Android
A team from CSIRO's Data 61, University of NSW (Australia) and UC Berkley in the US found a whole bunch of Android VPN apps contain viruses, spyware and other adware.
Researchers analyzed the apps available for Android to look for nasties like trojans, spyware and adware — giving each an "anti-virus rank (AV)" based on what they found. The lower the rank, the better.
They found of the 283 apps they analyzed, 38 per cent contained malware or malvertising (malicious advertising containing viruses). more
Charger was found embedded in an app called EnergyRescue. The infected app steals contacts and SMS messages from the user’s device and asks for admin permissions. If granted, the ransomware locks the device and displays a message demanding payment. more
A tip of the hat to our Blue Blaze Irregulars who submitted these news items. ~Kevin
Researchers analyzed the apps available for Android to look for nasties like trojans, spyware and adware — giving each an "anti-virus rank (AV)" based on what they found. The lower the rank, the better.
They found of the 283 apps they analyzed, 38 per cent contained malware or malvertising (malicious advertising containing viruses). more
-----
Check Point’s mobile security researchers have discovered a new ransomware in Google Play, dubbed Charger. Charger was found embedded in an app called EnergyRescue. The infected app steals contacts and SMS messages from the user’s device and asks for admin permissions. If granted, the ransomware locks the device and displays a message demanding payment. more
A tip of the hat to our Blue Blaze Irregulars who submitted these news items. ~Kevin
Friday, January 27, 2017
Android Phone's Pattern Lock - Easy to Guess
Android's pattern lock, which lets you unlock your phone by swiping a
specific pattern across the screen, may seem more secure than a
password, but that's not always the case...
A study in 2015 suggested that 44 percent of lock patterns start in the upper left (and 77 percent start in one of the corners), and most moved left to right and up to down, just like we'd read a book. The end result? Our pattern lock patterns are pretty predictable.
A new attack makes use of that predictability: there's now an algorithm that can guess 95% of pattern locks within five attempts. This bit of code analyzes video of people using pattern lock to unlock their phones, taken from about 8 feet away with a smartphone camera (or over 29 feet away using a high-quality SLR or DSLR camera). Even without being able to see the screen, the algorithm can watch your hand movements and predict your pattern. more
A study in 2015 suggested that 44 percent of lock patterns start in the upper left (and 77 percent start in one of the corners), and most moved left to right and up to down, just like we'd read a book. The end result? Our pattern lock patterns are pretty predictable.
A new attack makes use of that predictability: there's now an algorithm that can guess 95% of pattern locks within five attempts. This bit of code analyzes video of people using pattern lock to unlock their phones, taken from about 8 feet away with a smartphone camera (or over 29 feet away using a high-quality SLR or DSLR camera). Even without being able to see the screen, the algorithm can watch your hand movements and predict your pattern. more
Riddle: The Spies With Stamps on Their Heads
Problem
Three
super spies are caught sending sensitive information to an enemy state.
These three double agents are apprehended and taken out to a remote
spot in the woods. They are told that one of them will be part of a
prisoner exchange, and the other two will be executed.
To
decide who lives, the guards decide to play a game. They show the
captives eight stamps: four red, and four green. They then blindfold the
three men and stick two stamps to each of their foreheads. One of the
guards puts the remaining two stamps in his pocket.
The
guards then take the blindfolds off the captives, who can each see the
stamps on the other two men's heads, but not the two stamps on their own
head, and not the two stamps in the guard's pocket. These spies are
highly intelligent—they're perfect logicians who know they can count on
each other to correctly and quickly interpret the information they have.
The
guard captain tells them that the first man to figure out the color of
the stamps on his own head will be used for the prisoner exchange, and
the other two will be executed. If anyone guesses wrong, they will be
shot dead on the spot.
The captain then asks the spies in order if they know what color stamps they have on their head. The answers are as follows:
- A: "No."
- B: "No."
- C: "No."
- A: "No."
- B: "Yes."
Spy B answers correctly. What color are the stamps on his head, and how does he know?
Hint
Don't forget about the stamps in the guard's pocket. solution
Technical Surveillance Countermeasures To Prevent Corporate Espionage
via Veteran Investigation Services
You're at an important company board meeting discussing a top secret product development project. If this unique product idea gets leaked to your competitors, the consequences could be dire. The key stakeholders are in the conference room or participating via conference call. The meeting goes well and later you find out your competitor has beat you to market with the same product idea. How could this have happened?
Your business or organization could be the victim of corporate espionage. Someone could be collecting competitive intelligence through unethical means, such as listening devices, video surveillance, or even something as basic as rummaging through your trash. Whether the threat comes from bugging devices at a one-time event, or ongoing surveillance at your corporate site, make sure you are aware of surveillance techniques, find the threats, determine who is behind the intelligence gathering and put systems in place to prevent future breaches.
COMPETITIVE INTELLIGENCE GATHERING
Your competitors and corporate enemies want to know what is said at meetings with shareholders, new business partners or clients or new product development teams. They may be seeking information about your financial outlook, or access to your intellectual property. Some companies will stop at nothing to gain that information and for many reasons, it's easier than ever for them to get it.
Today, surveillance is easier than ever. Advanced wireless devices such as covert listening devices, miniature cameras, concealed, wearable recording devices or hidden micro-cameras are just a click away online and can be very inexpensive. Employees or someone on the cleaning crew could be paid to place a device in a conference room or collect paper trash afterwards, or look for computer passwords left on desks or taped under keyboards. Safeguarding your company secrets requires a preventative approach.
The most common surveillance targets are CEO offices, their private conference rooms, and assistant's work area, since these spaces are the most likely locations for strategic meetings where valuable company information is discussed. These areas should be swept for bugging devices before critical meetings and at regular intervals, based on the level of risk.
TECHNICAL SURVEILLANCE COUNTERMEASURES
If you suspect that someone is obtaining company secrets or you've already experienced a damaging leak of information, we recommend screening for potential threats to prevent further leaks. A TSCM (technical surveillance countermeasure) examination can be performed to look for surveillance equipment or detect other risks. These can be done before an important meeting, at an off-site event, or at your site at regular intervals.
A TSCM examination may include such counter surveillance tactics as:
Important business meetings held off-site at hotel convention centers can be easy opportunities for surveillance. Sweeps of the meeting rooms, guest rooms, or bathrooms can be done, and then security staff should maintain custody of the room to ensure the room stays free of bugs until after the meeting. Executive cars can be targeted and especially at risk if using valet parking, as well as executive phones which are susceptible to Trojan horse software that can allow someone to listen in on all the conversations or steal data from email or text messaging.
AFTER THE TSCM EXAMINATION
What happens if listening devices are found during a sweep? If surveillance equipment is found during the TSCM examination, it should not be removed immediately because it can be used as a trap to find out who put it there. The TSCM examination is just the stepping off point for a full analysis and investigation. Suspects need to be interviewed. A full security assessment may be necessary if many problems are found. Systems should be established to prevent this kind of activity. Embedded and dedicated security personnel may be needed to keep security at the forefront of executives' minds, staff who can be there to watch, learn, listen and report on surveillance threats. Everyone in the organization can contribute to prevent leaks. Policies and procedures should be developed and communicated to employees regarding the handling of passwords, access, and confidentiality agreements.
ARE YOU AT RISK OF CORPORATE SURVEILLANCE?
Companies are hungry for that competitive edge that will help crush their competition. They may hire corporate surveillance companies to gather company secrets from their competitors, often through unethical means. Low level employees with low moral or low paid personnel from external maintenance services can be paid off to gather intelligence or plant bugs. Most companies are naive and feel that industrial espionage and surveillance does not happen in real life, it only happens in the movies and "cannot happen here." They feel they can trust all of their employees like family. But all it takes is a hungry competitor and a disgruntled employee passed over for a promotion to initiate the leaking of your company secrets that could be devastating to your business. Then, with the preponderance of equipment easily available, your company's most important information and conversations could get into competitors hands in an instant.
What proprietary business information could cause damage to your company if your competitor was able to listen in on your meetings? Have you done all that you can to protect that information? more
You're at an important company board meeting discussing a top secret product development project. If this unique product idea gets leaked to your competitors, the consequences could be dire. The key stakeholders are in the conference room or participating via conference call. The meeting goes well and later you find out your competitor has beat you to market with the same product idea. How could this have happened?
Your business or organization could be the victim of corporate espionage. Someone could be collecting competitive intelligence through unethical means, such as listening devices, video surveillance, or even something as basic as rummaging through your trash. Whether the threat comes from bugging devices at a one-time event, or ongoing surveillance at your corporate site, make sure you are aware of surveillance techniques, find the threats, determine who is behind the intelligence gathering and put systems in place to prevent future breaches.
COMPETITIVE INTELLIGENCE GATHERING
Your competitors and corporate enemies want to know what is said at meetings with shareholders, new business partners or clients or new product development teams. They may be seeking information about your financial outlook, or access to your intellectual property. Some companies will stop at nothing to gain that information and for many reasons, it's easier than ever for them to get it.
Today, surveillance is easier than ever. Advanced wireless devices such as covert listening devices, miniature cameras, concealed, wearable recording devices or hidden micro-cameras are just a click away online and can be very inexpensive. Employees or someone on the cleaning crew could be paid to place a device in a conference room or collect paper trash afterwards, or look for computer passwords left on desks or taped under keyboards. Safeguarding your company secrets requires a preventative approach.
The most common surveillance targets are CEO offices, their private conference rooms, and assistant's work area, since these spaces are the most likely locations for strategic meetings where valuable company information is discussed. These areas should be swept for bugging devices before critical meetings and at regular intervals, based on the level of risk.
TECHNICAL SURVEILLANCE COUNTERMEASURES
If you suspect that someone is obtaining company secrets or you've already experienced a damaging leak of information, we recommend screening for potential threats to prevent further leaks. A TSCM (technical surveillance countermeasure) examination can be performed to look for surveillance equipment or detect other risks. These can be done before an important meeting, at an off-site event, or at your site at regular intervals.
A TSCM examination may include such counter surveillance tactics as:
- Full Radio Frequency (RF) Spectrum Analysis
- Infrared Spectrum Analysis (IR)
- Detecting transmitting devices in the electrical system/wiring
- Computer forensics (for example, searching for emails that mention a sensitive topic after a meeting has taken place to look for leaks).
- Disrupting laser frequencies with static "white noise" and or window coatings to prevent laser listening systems from gathering micro-vibrations from the surface of a window to listen in on conversations from outside of a room.
- Conducting a physical search looking for:
- Idle surveillance equipment that may be turned off or out of batteries.
- Cameras or microphones in the ceiling.
- Reflections from camera lenses.
- Radio transmitters that could broadcast to an external radio.
- Bugged telephones. Polycom phone systems are easy to turn into listening devices.
- Easily found passwords left on desks or under keyboards.
- Computers left on and logged in.
- Document disposal and inadequate document shredders.
Important business meetings held off-site at hotel convention centers can be easy opportunities for surveillance. Sweeps of the meeting rooms, guest rooms, or bathrooms can be done, and then security staff should maintain custody of the room to ensure the room stays free of bugs until after the meeting. Executive cars can be targeted and especially at risk if using valet parking, as well as executive phones which are susceptible to Trojan horse software that can allow someone to listen in on all the conversations or steal data from email or text messaging.
AFTER THE TSCM EXAMINATION
What happens if listening devices are found during a sweep? If surveillance equipment is found during the TSCM examination, it should not be removed immediately because it can be used as a trap to find out who put it there. The TSCM examination is just the stepping off point for a full analysis and investigation. Suspects need to be interviewed. A full security assessment may be necessary if many problems are found. Systems should be established to prevent this kind of activity. Embedded and dedicated security personnel may be needed to keep security at the forefront of executives' minds, staff who can be there to watch, learn, listen and report on surveillance threats. Everyone in the organization can contribute to prevent leaks. Policies and procedures should be developed and communicated to employees regarding the handling of passwords, access, and confidentiality agreements.
ARE YOU AT RISK OF CORPORATE SURVEILLANCE?
Companies are hungry for that competitive edge that will help crush their competition. They may hire corporate surveillance companies to gather company secrets from their competitors, often through unethical means. Low level employees with low moral or low paid personnel from external maintenance services can be paid off to gather intelligence or plant bugs. Most companies are naive and feel that industrial espionage and surveillance does not happen in real life, it only happens in the movies and "cannot happen here." They feel they can trust all of their employees like family. But all it takes is a hungry competitor and a disgruntled employee passed over for a promotion to initiate the leaking of your company secrets that could be devastating to your business. Then, with the preponderance of equipment easily available, your company's most important information and conversations could get into competitors hands in an instant.
What proprietary business information could cause damage to your company if your competitor was able to listen in on your meetings? Have you done all that you can to protect that information? more
Monday, January 23, 2017
Special TSCM Offer for Executive Protection Professionals and their Clients
Executive Protection Professionals are talented and skilled. They handle:
They are not to be confused with bouncers or scary-looking bodyguard types.
Protection of inside information, and communications privacy, is obviously an important part of the overall EP security strategy.
Founded in 1978, Murray Associates provides these elements of security by being the adjunct technical security consultant.
If you are an Executive Protection Professional, investigate this special get-acquainted offer. Your principal will thank you.
- Physical security
- Intelligence analysis
- Family office security
- Transportation security
- Communications security
- Advance travel preparation
- Estate employee background checks
- Vetting external vendors and contractors
They are not to be confused with bouncers or scary-looking bodyguard types.
Protection of inside information, and communications privacy, is obviously an important part of the overall EP security strategy.
Founded in 1978, Murray Associates provides these elements of security by being the adjunct technical security consultant.
If you are an Executive Protection Professional, investigate this special get-acquainted offer. Your principal will thank you.
Why the Spy Trade is Such a Booming Industry
The alleged Russian plot that targeted the U.S. presidential election has raised concerns we're headed for Cold War levels of spying, but there's actually plenty of evidence the world soared past that point years ago...
There are now an estimated 120 countries involved in espionage, each trying to infiltrate military, political and economic targets all over the world...
And those are just the official spy operations. Non-state and corporate spies have become much more active, not to mention rogue cyber warriors who sell their wares as independents and major organized crime and terror groups.
More threats, bigger budgets... more
There are now an estimated 120 countries involved in espionage, each trying to infiltrate military, political and economic targets all over the world...
And those are just the official spy operations. Non-state and corporate spies have become much more active, not to mention rogue cyber warriors who sell their wares as independents and major organized crime and terror groups.
More threats, bigger budgets... more
GCHQ Spy Master Quits UK’s Eavesdropping Nerve Centre
UK - GCHQ boss Robert Hannigan only took on the post in April 2014, but on Monday—in a surprise move—
he quit the job, citing "personal reasons."
He won't be handing in his (encryption) keys until a successor is found, GCHQ said.
In a letter to the UK's foreign secretary, Boris Johnson, Hannigan said that he was "proud" of the work he has overseen at the eavesdropping concrete doughnut.
He flagged up the National Cyber Security Centre as one of GCHQ's "achievements" under his tenure.
"While this work must remain secret, you will know how many lives have been saved in this country and overseas by the work of GCHQ," he added in his missive to Johnson. more
he quit the job, citing "personal reasons."
He won't be handing in his (encryption) keys until a successor is found, GCHQ said.
In a letter to the UK's foreign secretary, Boris Johnson, Hannigan said that he was "proud" of the work he has overseen at the eavesdropping concrete doughnut.
He flagged up the National Cyber Security Centre as one of GCHQ's "achievements" under his tenure.
"While this work must remain secret, you will know how many lives have been saved in this country and overseas by the work of GCHQ," he added in his missive to Johnson. more
Friday, January 20, 2017
"Make Your Phone as Private as a Phone Booth"
A voice silencer designed for confidential conversation, clear transmission and office quite. Not a permanent attachment. Slips right on and off the mouthpiece of any phone.
Office quite during phone talks is also assured. The Hush-A-Phone does not allow your voice to escape into the room. It excludes noises from the transmitter, giving a quiet wire and clearer transmission.
Prominent business firms are using it and recommend it as an efficiency promoter.
Tear this (ad) out and mail with your letterhead for free booklet "How to make your phone as private as a booth."
Agents and Salesmen—Write for particulars of our attractive proposition to General Agents and Salesmen.
HUSH-A-PHONE CORPORATION
19 Madison Ave.,
New York City
CIA Divulges Procedures for Information on Citizens
via The Wall Street Journal...
In a rare act of transparency, the Central Intelligence Agency for the first time has published a fully declassified version of its procedures for handling information on “U.S. persons,” a category that includes American citizens in the country or overseas.
The new guidelines, which were published in full on the agency’s website on Wednesday, are meant to address the fact that large amounts of communications and other data are collected when spying on foreigners. The previous guidelines date to 1982 and had been updated through a patchwork of policies, but hadn’t been overhauled for the digital age, CIA officials said.
In the past, intelligence officers could promptly review reports that might contain references to U.S. persons or the contents of their communications, and then decide how to handle that information in line with privacy rules. But today, it’s not always feasible to do that in short order because the CIA is collecting information in far larger volumes. A digital storage device, for instance, can hold thousands of pages of material, which a CIA officer has to review.
The new guidelines require the CIA to purge any especially sensitive information it has stored after five years if it hasn’t been evaluated to see if it contains information about U.S. persons. Such sensitive information includes the contents of any communications, officials said. Information that’s deemed less sensitive, like the business records of a foreign company that aren’t expected to contain information about U.S. persons, must be purged after 25 years if it hasn’t been evaluated. more
In a rare act of transparency, the Central Intelligence Agency for the first time has published a fully declassified version of its procedures for handling information on “U.S. persons,” a category that includes American citizens in the country or overseas.
The new guidelines, which were published in full on the agency’s website on Wednesday, are meant to address the fact that large amounts of communications and other data are collected when spying on foreigners. The previous guidelines date to 1982 and had been updated through a patchwork of policies, but hadn’t been overhauled for the digital age, CIA officials said.
In the past, intelligence officers could promptly review reports that might contain references to U.S. persons or the contents of their communications, and then decide how to handle that information in line with privacy rules. But today, it’s not always feasible to do that in short order because the CIA is collecting information in far larger volumes. A digital storage device, for instance, can hold thousands of pages of material, which a CIA officer has to review.
The new guidelines require the CIA to purge any especially sensitive information it has stored after five years if it hasn’t been evaluated to see if it contains information about U.S. persons. Such sensitive information includes the contents of any communications, officials said. Information that’s deemed less sensitive, like the business records of a foreign company that aren’t expected to contain information about U.S. persons, must be purged after 25 years if it hasn’t been evaluated. more
Some Days No One Wants to be a Spy
via Kickstarter.com
About this project
Let me ask you…
What if you could actually be the main character in your favorite action or spy movie?
Maybe you always wanted to be James Bond, Ethan Hunt from Mission Impossible, Jason Bourne and or any other “spy”?
What if there was a way you could actually become your favorite action star in a real life-role playing experience?
I’m not talking about going with all the other “adventure companies” who charge you to…
Sit around in some garage, property or warehouse , drive around a track, “train” to be a spy, climb walls and shoot some targets. Or…
Some boring adventure where you sit around and pretend you’re in a mission, with some instructors by your side the whole time. You See…
I am talking about a totally unique experience…
Become The Action Star of Your Own Real Life-Fast Paced Spy Adventure…
Eliminating the “bad guys”…Saving the “girl”, and or Rescuing the “world” by completing a mission only you can do. This Is You…
Being Involved In Heart-Pumping Thrills… more
This has to be a joke, or a scam. Can you imagine the liability for letting customers run across airplane wings? ~Kevin
About this project
Let me ask you…
What if you could actually be the main character in your favorite action or spy movie?
Maybe you always wanted to be James Bond, Ethan Hunt from Mission Impossible, Jason Bourne and or any other “spy”?
What if there was a way you could actually become your favorite action star in a real life-role playing experience?
I’m not talking about going with all the other “adventure companies” who charge you to…
Sit around in some garage, property or warehouse , drive around a track, “train” to be a spy, climb walls and shoot some targets. Or…
Some boring adventure where you sit around and pretend you’re in a mission, with some instructors by your side the whole time. You See…
I am talking about a totally unique experience…
Become The Action Star of Your Own Real Life-Fast Paced Spy Adventure…
Eliminating the “bad guys”…Saving the “girl”, and or Rescuing the “world” by completing a mission only you can do. This Is You…
Being Involved In Heart-Pumping Thrills… more
This has to be a joke, or a scam. Can you imagine the liability for letting customers run across airplane wings? ~Kevin
Corporate Espionage: Chinese v. Chinese
Police have arrested Huawei’s six top executives for allegedly leaking vital information to its rival company, LeEco.
Huawei is one of the major phone makers in China...
Back in September 2013, HTC’s top executives had been arrested for stealing next generation software interface and were accused of selling them to the Chengdu city government. Those executives were jailed, and it was clearly one of the worst years for HTC.
Corporate espionage looks exciting in movies, but is certainly not pleasing when it is between leading companies. more
Huawei is one of the major phone makers in China...
Back in September 2013, HTC’s top executives had been arrested for stealing next generation software interface and were accused of selling them to the Chengdu city government. Those executives were jailed, and it was clearly one of the worst years for HTC.
Corporate espionage looks exciting in movies, but is certainly not pleasing when it is between leading companies. more
Wednesday, January 18, 2017
Cautionary Tale - Why You Need an Industrial Espionage Protection Strategy
by Rhiannon Williams
The world of good business has always been driven by rivalry...
Razer's hefty three-screened gaming laptop is still at large is still at large. Chief executive Min-Liang Tan called the theft “industrial espionage”, and proffered a $25,000 reward for information to secure the arrest and conviction of the culprit(s)...
As for the Razer laptops, they’re still at large. Knock-off versions have already surfaced online, and several auctions claiming to list the stolen items have started in China and Singapore, which, if real, should lead authorities straight to the thieves. Maybe Razer should spend the reward money on new security. more
The world of good business has always been driven by rivalry...
As for the Razer laptops, they’re still at large. Knock-off versions have already surfaced online, and several auctions claiming to list the stolen items have started in China and Singapore, which, if real, should lead authorities straight to the thieves. Maybe Razer should spend the reward money on new security. more
Quick, Call Guinness - “Most Wiretapped Individual” on Earth
Philippines - Senator Leila de Lima on Wednesday earned a new title as the “most wiretapped individual” on earth.
This title was given to her in jest by Senator Panfilo “Ping” Lacson before she interpellated him on the floor on the proposed Expanded Anti-Wiretapping Act.
Lacson made the remark when De Lima asked permission if he would yield to some of her questions about the measure.
Responding to De Lima’s query, Lacson said: “Gladly and willingly to probably the most wiretapped individual on planet earth.”
“Thank you for acknowledging that,” De Lima answered. more
Now zipped lipped. |
Lacson made the remark when De Lima asked permission if he would yield to some of her questions about the measure.
Responding to De Lima’s query, Lacson said: “Gladly and willingly to probably the most wiretapped individual on planet earth.”
“Thank you for acknowledging that,” De Lima answered. more
Ex-Boyfried Charged - Common Smartphone Eavesdropping
NY - A Rome man has been charged with felony eavesdropping,
according to the Oneida County Sheriff's Office.
Deputies charged Anthony Swancot, 33, after an investigation revealed he installed an app on his ex-girlfriend's cell phone that tracked her location and forwarded copies to his cell phone of each text message she sent from her phone, authorities said.
The app was allegedly installed on Nov. 3, without the victim's knowledge, officials said. more
according to the Oneida County Sheriff's Office.
Deputies charged Anthony Swancot, 33, after an investigation revealed he installed an app on his ex-girlfriend's cell phone that tracked her location and forwarded copies to his cell phone of each text message she sent from her phone, authorities said.
The app was allegedly installed on Nov. 3, without the victim's knowledge, officials said. more
Subscribe to:
Posts (Atom)