Wednesday, May 27, 2020

Data Breach Report: 28% Involved Small Businesses

Almost a third or 28% of data breaches involved small businesses. The data comes from one of the most acclaimed cybersecurity reports in the industry, the Verizon Business 2020 Data Breach Investigations Report (2020 DBIR).

Currently, in its 13th year, the DBIR is an industry-standard when it comes to gauging the state of cybersecurity around the world...

Click to Enlarge
With small businesses making up 28% of the breaches, owners have to be more proactive in protecting their digital presence. Whether it is an eCommerce site, blog, V-log, podcast, or other digital assets, you have to protect your domain. This not only ensures your data is safe, but it is one more tool you can use to attract new customers; robust security. more

Spy Pigeon Arrested... again

A pigeon suspected of being trained to “spy” by Pakistan has been captured in India along the Kashmir border. Indian officials say the bird was carrying a “coded message” which they are trying to decipher. In 2016, police in India found a bird with a note attached to it inscribed with an alleged threat to Indian prime minister Narendra Modi. more

UPDATE 6/8/2020 — Indian police have released a pigeon belonging to a Pakistani fisherman after a probe found that the bird, which had flown across the contentious border between the nuclear-armed nations, was not a spy, two officials said on Friday. more

Sheriff’s Office Communications Specialist Charged with Spying on Roommate

A Florida sheriff’s office employee hid a camera in his roommate’s bedroom to spy on her, authorities said.

Llewellyn Berkheiser III, a 28-year-old communication specialist for the Orange County Sheriff’s Office, was busted Saturday after his roommate found a GoPro camera in a vent in her bedroom, according to an arrest report obtained by the Orlando Sentinel.

Berkheiser’s roommate, who was not identified, told deputies she discovered the recording device Friday when she noticed she couldn’t see light in the vent from an adjoining kitchen that was usually visible, deputies said. more

The Man Who Hacked Former President Francois Mitterrand's Phone

One of the richest men in France claims to be a former spy who once hacked former President Francois Mitterrand.

The billionaire co-owner of Le Monde newspaper, Xavier Niel, 52, told the Parliamentary Channel that as a teen in the 1980s he worked undercover for the Directorate of Territorial Surveillance after he was caught hacking the French channel Canal+...

Niel claims he was tasked with hacking into the mobile telephone of President Mitterrand in 1986 as well as the car company Renault. In the process he found that Renault was being hacked by people from Australia who were downloading large chunks of data.

“We were doing all this for ourselves as a game and we would pass on the information,” Niel said. “It was just fun. It was thrilling to get around the system. They told us it was impossible.” more

Yet Another Spy Movie List

The 58 Best Spy Movies of All Time

Were this a year like any other, we’d already have seen the year’s two most-anticipated spy movies: the 25th James Bond film No Time to Die and Marvel’s Black Widow solo film.

Both were scheduled for spring releases and will now open in theaters in November…if theaters are, in fact, open.

Fortunately, there’s no shortage of great spy movies to keep us occupied while we wait... The List

Sunday, May 24, 2020

From The Very Practical News (VPN) File...

Hong Kong saw a spike in downloads of VPN software designed to mask internet usage Thursday after Beijing signaled plans to usher in a new national security law that could tighten its grip... more

Bosnian Leader Brags He Illegally Wiretapped - (WWHT)

Opposition parties and Transparency International in Bosnia and Herzegovina (TIBiH) have filed criminal charges against the Serb member of the tripartite Bosnian state presidency member Milorad Dodik, whom they accuse of illegal wiretapping based on his own statements.

The charges were filed after Dodik told the parliament in the mainly Serb entity of Bosnia, Republika Srpska, on May 20 that he often listened in to telephone conversations between representatives of the opposition parties, saying it was normal practice.

Dodik stated that he was eavesdropping on the representatives of the opposition by phone, that every government was eavesdropping on the opposition, and he recounted the content of telephone conversations of opposition members...  more

Proposed Bill: Anti-Espionage Theft in Airports

U.S. Rep. Ross Spano (R-FL) signed on to co-sponsor a bill designed to protect the transportation infrastructure from espionage and intellectual property theft. 

The bill, HR 6917, the Airport Infrastructure Resources (AIR) Security Act, would prohibit federal airport improvement funds from being used in the purchase of passenger boarding bridges made by companies that have violated the intellectual property rights of the United States.

Introduced by Reps. Ron Wright (R-TX) and Marc Veasey (R-TX), the bill is intended to keep the Chinese Communist Party from spying on American airline passengers, and to prevent China from any further power grab, Wright said. more

Amsterdam School Bugging Incident

The director of the Cornelius Haga Lyceum in Amsterdam planted eavesdropping equipment in the office assigned to the Education Inspectorate for its investigation into the school...

This is not Soner Atasoy.
During the investigation, the school made an office available to the inspectors, where they had sensitive conversations with each other, with pupils, and with staff. These conversations were recorded and eavesdropped on multiple times...

NRC's sources said that school director Soner Atasoy wanted to keep an eye on the Inspectorate's investigation and on what employees of the school said about him and the school...

The Education Inspectorate told NRC that there was a "suspicion" that the room given to inspectors to use was being tapped. After that, the inspectors slightly adjusted their working methods at the school, switching rooms "with some regularity" and conducting confidential conversation by phone or outside.

The office in question was never searched for eavesdropping equipment because there was "insufficient cause" for it and it would have led to "unnecessary unrest", the Inspectorate said. more

Cheap TV Equipment Eavesdrops on Sensitive Satellite

An Oxford University-based security researcher says he used £270 ($300) of home television equipment to capture terabytes of real-world satellite traffic — including sensitive data from “some of the world’s largest organisations.”

James Pavur, a Rhodes Scholar and DPhil student at Oxford, will detail the attack in a session at the Black Hat security conference in early August...

It appears to boil down in large part to the absence of encryption-in-transit for satellite-based broadband communications.

It also reveals how some of the eavesdropping was conducted using a “75 cm, flat-panel satellite receiver dish and a TBS-6983 DVB-S receiver… configured to receive Ku-band transmissions between 10,700 MHz and 12,750 MHz. A set of 14 geostationary satellites were selected [and from them] over 350 transponders were identified using existing “Blind Scan” tools. more

Wednesday, May 20, 2020

German Intelligence Gets Wiener Schnitzel'ed

In the world of online spying, great power lies with those who can get their hands on the data flowing through the world’s Internet infrastructure.

So the fact that Germany is home to one of the world’s biggest Internet exchange points—where data crosses between the networks that make up the Internet—has given a lot of power to the country’s equivalent of the U.S. National Security Agency.

The Bundesnachrichtendienst, or BND, gets to freely sift through all the foreign traffic passing through that exchange junction in search of nuggets that can be shared with overseas partners such as the NSA. But now that power is in jeopardy, thanks to a Tuesday ruling from Germany’s constitutional court...

“With its decision, the Federal Constitutional Court has clarified for the first time that the protection afforded by fundamental rights vis-à-vis German state authority is not restricted to the German territory,” the court said in a statement.

The German chapter of Reporters Without Borders, which brought the case in partnership with the Berlin-based Society for Civil Rights (GFF) and a few other journalists’ associations, is overjoyed. more

Alliance Trust Savings Censured After Whistleblower’s ‘Spying’ Concerns

A Dundee-based financial firm has been censured by the Information Commissioner over the use of a mobile app which allowed it to access an “excessive amount” of employees’ sensitive personal data...

Alex Forootan, 36, began investigating after receiving an unexpected text message from Microsoft saying someone had attempted to access his email account.

Mr Forootan worked as a database administrator at ATS’s Dundee headquarters between October 2017 and October last year and is set to take the company to an employment tribunal next month.

He recently rejected a £10,000 pay out from ATS over the issue, citing concerns about his ability to raise it to public attention should he accept. more

Regulator Ask for Credit Suisse Directors' Mobile Data in Spy Inquiry

Swiss regulators have requested electronic messaging data from the mobile phones of several Credit Suisse managers and supervisory board directors as part of a probe into spying at the bank, three people familiar with the matter said. more

ADT Employee Had Access to Hundreds of Home Security Camera Streams, Lawsuit Alleges

Hundreds of ADT customers are suing the home-security firm after it admitted that a former employee gained unauthorized access to their systems over the last several years—including the live video streams of their in-home cameras. 


Two federal class-action lawsuits have been filed on behalf of the customers, The Dallas Morning News reports.

The employee was able to add his email address to customers’ accounts during home-service visits, according to the company. With his email address added to the accounts, he was then able to use the company’s mobile app to snoop on in-home security cameras. 

“Moments once believed to be private and inside the sanctity of the home are now voyeuristic entertainment for a third party,” the lawsuits state. “And worse, those moments could have been captured, shared with others, or even posted to the internet.”

ADT reportedly fired the employee after discovering the abuse, and said it brought in measures to prevent a similar incident from taking place in the future. more

Monday, May 18, 2020

Leaked Phone Call Uncovers Possibly Moldy Marijuana | Fact or Business Espionage Trick?

An audio recording of a detailed phone conversation between two people in the Alaska marijuana industry surfaced on YouTube this week, posted by an account that goes by the name of “Bobb Dogg.”

The conversation cannot be confirmed as legitimate, and could even be business espionage...

In the audio, a person who appears to be a manager of one of Anchorage’s largest marijuana stores admits that his company sold 100 pounds of possibly moldy marijuana, and that CBD oil that was supposed to have a low psychoactive level of THC was found to, in fact, contain high amounts...

The video can be viewed by searching for Bobb Dogg on YouTube. The audio is labeled “Weedileaks.” more