Sunday, January 9, 2022

Ex-Monsanto Employee Pleads Guilty to Corporate Spying

A former Monsanto employee pleaded guilty to espionage charges Thursday for stealing trade secrets from the U.S. agriculture behemoth for the benefit of China, prosecutors said.

Xiang Haitao, 44, a Chinese national who resided in Chesterfield, Mo., worked as an imaging scientist for Monsanto and its subsidiary The Climate Corporation from 2008, and was arrested a day after leaving his company in June of 2017 while awaiting to board a flight to China in possession of a one-way ticket and electronic devices...

The Justice Department has said that Xiang had applied for and was ultimately recruited into a Chinese government program that seeks to enlist Chinese academics and scientists working abroad to illegally transfer technology and intellectual property to Beijing. more

iPhone Malware Tactic Causes Fake Shutdowns: Enables Spying

The ‘NoReboot’ technique is the ultimate in persistence for iPhone malware, preventing reboots and enabling remote attackers to do anything on the device while remaining completely unseen.

In the world of mobile malware, simply shutting down a device can often wipe out any bad code, given that persistence after rebooting is a challenge for traditional malicious activity. But a new iPhone technique can hijack and prevent any shut-down process that a user initiates, simulating a real power-off while allowing malware to remain active in the background.

The stealthy technique, dubbed “NoReboot” by researchers, is “the ultimate persistence bug,” according to a ZecOps analysis this week... 

Is There a Patch for NoReboot?

ZecOps researchers noted that even though they call the issue a “persistence bug,” it can’t actually be patched because “it’s not exploiting any…bugs at all — only playing tricks with the human mind.” Via Twitter, the firm said that the technique works on every version of iPhone, and to prevent it, Apple would need to build in a hardware-based indicator for iPhone sleep/wake/off status.

To protect themselves, iPhone users should run standard checks for malware and trojanized apps, and take the usual vetting precautions when downloading and installing new apps. more

'Leaked' Chinese Spy-Spoof Mocking US Draws Response From MI6

A British intelligence official has thanked China for "free publicity" after state media posted a James Bond spoof in a misguided attempt to mock western intelligence agencies. 

Beijing-backed Xinhua news posted a spoof video on Twitter with a tongue-in-cheek caption claiming to have found a "leaked video" of a "secret meeting" between MI6 - the organization that employs famous fictional spy James Bond - and CIA agents after British Chief of Secret Intelligence Service Richard Moore announced that the UK considered China its "single greatest priority." 

The video drew a rare response from Moore... more

From Those Wonderful Folks Who Gave Us...

"Gloworm" Eavesdropping and Air-Gaped Computer Hacks

After a long day at work, the modern goldfish no longer has to take public transportation home—it can drive via a fish-operated vehicle (FOV), according to new research published in Behavioural Brain Research.

Documented in a report published in the February 2022 issue of the peer-reviewed journal, researchers at Ben-Gurion University of the Negev in Beersheba, Israel, set out to unpack how well goldfish can navigate terrestrial environments when tasked with the right tools. They created a small camera-equipped fish tank on wheels, which they call an FOV, and put six goldfish in it, one at a time. 

The fish managed to avoid dead ends and correct inaccuracies... Goldfish navigate land very well, it turns out. more 

(Next up, Exocoetidaes in airplanes.) 

Thursday, December 23, 2021

The Chatter Phone Eavesdropping Bug, or Santa's Latest Spy Trick

Ken Munro, founder of the cybersecurity company Pen Test Partners, told TechCrunch that chief among the concerns are that the Chatter does not have a secure pairing process to stop unauthorized phones in Bluetooth range from connecting to it...

First, we switched on the Chatter phone, which activates its Bluetooth connection, paired a phone over Bluetooth, then switched off Bluetooth to simulate someone walking the phone out of range. We then paired another phone with the Chatter without hindrance, allowing us to remotely control the Chatter’s audio.

Mattel, which makes the Chatter phone, said the phone “will time out if no connection is made or once the pairing occurs — it is only discoverable within a narrow window of time and requires physical access to the device.” We left the Chatter on and found the Bluetooth pairing process did not time out after more than an hour.

Then, Munro asked what would happen if we called the phone connected to the Chatter. Sure enough, the Chatter rang — loudly — as expected. Then we called the Chatter again, this time without properly replacing its receiver. With the handset off the hook, the Chatter automatically answered the call, immediately activating the handset’s microphone and allowing us to hear ambient background audio. more

 

 

Wednesday, December 22, 2021

Khashoggi's Wife's Phone Bugged With Spyware Before Killing


The mobile phone of Hanan Elatr, the wife of Saudi dissident and journalist Jamal Khashoggi was reportedly bugged by United Arab Emirates agents.
 

The cell phone of Hanan Elatr was infected several months before he was killed in 2018. 

Jamal Khashoggi was killed in Saudi Arabia’s consulate in Istanbul, reported Sputnik citing The Washington Post. The phone of Elatr was reportedly infected when she was questioned by UAE officials.  more

Coach Banned Over Spying Scandal

Australia - Capitals coach Paul Goriss has been banned after obtaining leaked training footage of the Sydney Uni Flames. video

Fake Italian Gynaecologist Snares 400 Women in Webcam Scam

Italian police Friday searched the house of suspected serial sexual predator believed to have posed as a gynaecologist to persuade dozens of women to undergo vaginal exams via weblink. more

Millions of Android Phones Vulnerable Over ‘Eavesdropping’ Scare

MILLIONS of people around the world have been exposed to snoopers by dodgy microchips loaded into Android smartphones.

According to security experts, vulnerabilities in processors produced by Taiwanese firm MediaTek could have allowed malicious apps to spy on their users.

MediaTek, one of the world's leading chip-makers, last month issued a fix for four bugs disclosed by researchers at cyber firm Check Point.

Its circuitry is found in one in three of the world’s smartphones, including high-end handsets from Xiaomi, Oppo, Realme, Vivo and more.

Check Point detailed the vulnerabilities exposed by its crack team of cyber buffs in a blog post last week. more

 

Tuesday, December 7, 2021

Spy Trick # 712 - The Memory Card Ring (Make Your Own!)

Honus, a former bicycle industry designer turned professional jeweler can teach you how to make your own spy ring.  

This is how spies (and corrupt employees) can sneak file cabinets of documentation out of companies, no matter how good their security is. more  
more spy rings

Secret Message Decoder Ring Great Christmas gift



Thursday, December 2, 2021

A New "Mobile" Phone - Complete with No Apps

Ever wish you had a mobile phone that would really turn heads?
One where you could call your friends, real or imaginary?
One that would look at you with loving eyes? 

Your past is now your future...  



Wednesday, December 1, 2021

FutureWatch: Yet Another World's Smallest Camera


Micro-sized cameras have great potential to spot problems in the human body and enable sensing for super-small robots
, but past approaches captured fuzzy, distorted images with limited fields of view.

Now, researchers at Princeton University and the University of Washington have overcome these obstacles with an ultracompact the size of a coarse grain of salt. The new system can produce crisp, on par with a conventional compound camera lens 500,000 times larger in volume, the researchers reported in a paper published Nov. 29 in Nature Communications... 

Heide (Felix Heide, the study's senior author and an assistant professor of computer science at Princeton) and his colleagues are now working to add more computational abilities to the camera itself. Beyond optimizing image quality, they would like to add capabilities for object detection and other sensing modalities relevant for medicine and robotics.

Heide also envisions using ultracompact imagers to create "surfaces as sensors." "We could turn individual surfaces into cameras that have ultra-high resolution, so you wouldn't need three cameras on the back of your phone anymore, but the whole back of your phone would become one giant camera. We can think of completely different ways to build devices in the future," he said. more

Wednesday, November 24, 2021

Apple Sues Israeli Spyware Maker

Apple sued the NSO Group, the Israeli surveillance company, in federal court on Tuesday, another setback for the beleaguered firm and the unregulated spyware industry.

The lawsuit is the second of its kind — Facebook sued NSO in 2019 for targeting its WhatsApp users — and another consequential move by a private company to curb invasive spyware by governments and the companies that provide their spy tools.

Apple, for the first time, seeks to hold NSO accountable for what it says was the surveillance and targeting of Apple users. more

Tuesday, November 23, 2021

FutureWatch - Spycam Detection using Phone Time-of-Flight Sensors

via theregister.com
"Sriram Sami, Bangjie Sun, and Sean Rui Xiang Tan, from National University of Singapore, and Jun Han from Yonsei University, describe how this might be done in a paper [PDF] titled "LAPD: Hidden Spy Camera Detection using Smartphone Time-of-Flight Sensors"... 

...smartphones are commonplace these days, so adding an app like LAPD is likely to be more convenient than carrying a dedicated bug or signal detector at all times. LAPD's goal is to be accessible, usable, and accurate, and to judge by the results reported in the paper, it hits those marks...

"The 'attackers' have all the power to place hidden cameras anywhere, and the public is, in contrast, generally defenseless," he explained. "That's why we're doing this work, and why we hope hidden camera detection can become more commonplace." Sami said he intends to release the source code for LAPD but has to coordinate that with his colleagues." more

3G Cell Phone Service - The End is Near


All of the major cellphone carriers — AT&T, Verizon and T-Mobile — are planning to shut their older 3G networks in 2022. Like millions of people in the United States who use 3G phones and other 3G devices, you will have to buy a new device if you want to text, make calls or even reach 911...

The shutdown dates start in January 2022 and are spread out throughout the year. more

  • Sprint’s 3G: Jan. 1, 2022
  • AT&T’s 3G: Feb. 22, 2022
  • Sprint’s LTE: June 30, 2022
  • Verizon’s 3G: Dec. 31, 2022
  • T-Mobile’s 2G and 3G: Not yet announced
 Also a bummer for all those folks that are using 2G & 3G cellular bugging devices.