The Government Will Pay for Your Bug Sweep... if you're an Australian

Domestic violence survivors to get government support to scan for spyware and hidden cameras.

Mobile phones will be checked for spyware and homes will be swept for cameras under a government plan to expand support for people who have experienced abuse by a current or former partner...

Nearly $55m will be invested in a program that provides technology checks to ensure people who have experienced domestic violence are not subjected to further abuse.

It includes checking a person's phone and computer to see if any GPS tracking programs or bugs have been installed, as well as searching for cameras hidden in toys, vents or lights in homes. more

Don't live in Australia? Want to check for spycams yourself? Learn how to do it.

Some Thoughts on Mobile Spyware

It really is a great time to be a mobile threat. As mobile devices become ever more critical in our daily lives, hackers are seizing on a vulnerable blindspot in the enterprise attack surface...

Mobile threats often emanate from app stores, where many types of mobile malware hide as legitimate apps...

As Sun Tzu once said, “There is no place where espionage is not possible.” Spyware exemplifies that statement perfectly. Spyware turns a personal mobile device into a corporate espionage bug just by entering an office, nestled in someone’s pocket...

To secure this largely-unrecognized vector, enterprises can look to mobile threat defense. When incorporated as part of a zero trust approach, MTD technology can examine the security of individual mobile devices, alerting the enterprise to threats and blocking access. It can ensure the device hasn’t been infected, jailbroken or compromised and act to protect corporate data if a threat arises. more

Aerospace Company Accuses California Aviation Start-Up of Stealing Trade Secrets

Aerospace supplier Moog Inc. said stolen trade secrets and an all-out raid of its flight software employees by an aviation startup in California have jeopardized its foray into unmanned helicopter aviation.

The Elma company called the data allegedly stolen by a former employee "breathtaking in its scope."

Moog, in a federal lawsuit filed this week in Buffalo, said a software engineer who quit the company's Los Angeles-area office in December took more than 136,000 digital files related to flight control software to her new employer, Skyryse, a six-year-old startup.

Moog accuses Misook Kim, a former employee, of copying to an external hard drive files that contained the source code of Moog's proprietary software programs, which it said took more than 15 years to develop by dozens of Moog engineers at a cost of hundreds of millions of dollars.

Moog said it is not aware of any other instance where a Moog employee copied to an external hard drive even a fraction of the data it said Kim did in November.

According to the lawsuit, "What Kim did is entirely without precedent at Moog." more

How Apple's FaceTime Glitch Allowed Eavesdropping

It's the bug taking a bite out of Apple. A flaw in the FaceTime app allowed eavesdropping. Here's how the glitch worked:

Users swiped up while calling someone then tapped add person. By adding their own number, it created a group FaceTime call and then...

"Just like magic that other phone number picked up automatically and you're able at that point to hear everything that's acquirable from an audio perspective from that phone without the other person picking up,” said Jonathan S. Weissman, Senior Lecturer in the Department of Computing Security at RIT.

Weissman says the glitch went even further... more

Ex-Russian Spy who fell in love with target blasts Putin:

‘He’ll stop at nothing’

A former Russian spy who says she was trained in the same grueling military program as Vladimir Putin is speaking against her country’s president, claiming he will stop at nothing to win the war in Ukraine.

Aliia Roza, 37, hit headlines last year after it was revealed she had fallen in love with a target she had been trained to honeytrap.

The brunette beauty — who fled Russia after barely escaping with her life — says Putin is used to getting exactly what he wants and won’t take kindly to any kind of loss. more

Industrial Espionage Movie: A 30 Minute Wake-Up Call

The FBI's Office of Private Sector, Counterintelligence Division and Training Division present this 30-minute film entitled Made in Beijing: The Plan for Global Market Domination. In the world of global adversaries, the People’s Republic of China stands at the forefront with its sustained and brazen campaign of industrial espionage, posing the single greatest threat to our freedom, national security, and economic vitality.  Made in Beijing: The Plan for Global Market Domination sounds the alarm, helping private sector partners recognize the urgent need to protect their crown jewels against industrial espionage. more

Shocking Security Discovery: Fake Surveillance Cameras Don't Deter Crime

TX - Mount Bonnell is known for its spectacular views of Austin, but it’s also getting a reputation as a hot spot for car break-ins... 

From Jan. 1 – March 7, there have been 100 car burglaries within 2,000 feet of the park according to the Austin Police Department’s Crime map... 

Austin Parks and Recreation told KXAN after a rash of incidents in July, August and September, it installed dummy cameras at Mount Bonnell as a theft deterrent... 

The department told us the fake cameras were later removed since crime did not decrease. more

Spybuster Tip # 712: How to Thwart Off-Site Meeting Spies

The National Executive Council of the Academic Staff Union of Universities, on Sunday, changed the venue of the meeting... A reliable source said the venue was changed due to the fear of bugging of the auditorium by secret agents of the Nigerian government. more

RIP: Peter Earnest

Peter Earnest, a veteran of the CIA’s Cold War clandestine operations who ran agents in Eastern Europe and the Middle East, then helped promote and preserve the history of espionage while serving as the founding executive director of the International Spy Museum in Washington, died Feb. 13 at a hospital in Arlington, Va. He was 88...

Mr. Earnest acknowledged that his personality sometimes made it difficult to spend years working undercover. “It’s hard when you’re an open person by nature,” he told Washingtonian magazine in 2013. “In some cases, people say, ‘You don’t seem like a spy.’

“The best spies don’t seem like spies.” 

In a video interview for the Spy Museum, Mr. Earnest described what he called “my Bond moment” at the CIA, in which he slipped out of a black-tie reception at the home of an asset and bugged the person’s office. Lying on his back, with a handkerchief positioned on his chest to catch the shavings, he drilled small holes in the bottom of the target’s desk and installed a recording device. more

 

US Football Team Settles Video Voyeurism Suit for $2.4 Million

THE DALLAS COWBOYS paid a confidential settlement of $2.4 million after four members of their iconic cheerleading squad accused a senior team executive of voyeurism in their locker room as they undressed...

Each of the women received $399,523.27 after the incident. One of the cheerleaders alleged that she clearly saw Richard Dalrymple, the Cowboys' longtime senior vice president for public relations and communications, standing behind a partial wall in their locker room with his iPhone extended toward them while they were changing their clothes... Dalrymple gained entry to the back door of the cheerleaders' locked dressing room by using a security key card.
more

What Could be the Penalty for Posting a Spycam Video to the Net?

WV - A former Logan County resident pleaded guilty today to a federal wiretapping charge. According to court documents and statements made in court, Randall Dwight Holden II, 33, admitted to secretly recording a video of a woman engaged in sexually explicit conduct in her Logan County home on November 25, 2017. The video was later uploaded to the internet without the victim’s knowledge. The video was one of several secretly recorded videos that Holden had created and posted online depicting the victim. Holden is scheduled to be sentenced on June 2, 2022 and he faces up to five years in prison. more

An Update on AirTag and Unwanted Tracking

APPLE - We’ve become aware that individuals can receive unwanted tracking alerts for benign reasons, such as when borrowing someone’s keys with an AirTag attached, or when traveling in a car with a family member’s AirPods left inside. We also have seen reports of bad actors attempting to misuse AirTag for malicious or criminal purposes.

Apple has been working closely with various safety groups and law enforcement agencies. Through our own evaluations and these discussions, we have identified even more ways we can update AirTag safety warnings and help guard against further unwanted tracking...

Advancements Coming to AirTag and the Find My Network
The following updates represent important steps Apple is taking... more

Why You Rarely Hear About Corporate Espionage

Corporations really hate publicity about their information security failures.
The smart ones sweep to mitigate the chances of failures.
The others just sweep the failures under the rug. 

Case in point...

Spanish power company Iberdrola is suing the holding company of business news site El Confidencial over coverage of an industrial espionage case, a move the site's director says threatens its survival.

The multinational energy firm, which is seeking $20 million in damages, said that for more than two years up to November 2021, El Confidencial published 225 stories on the espionage case, including 68 that harmed the company and 12 that were untrue.

The company contends the reports were a "violation of its right to honour," a term that in Spanish law refers to reputational damage. more

VR Headset Hacks Could Steal Sensitive Information

Researchers at Rutgers University-New Brunswick have published “Face-Mic,” the first work examining how voice command features on virtual reality headsets could lead to major privacy leakages, known as “eavesdropping attacks.”  

The research shows that hackers could use popular virtual reality (AR/VR) headsets with built in motion sensors to record subtle, speech-associated facial dynamics to steal sensitive information communicated via voice-command, including credit card data and passwords.

To demonstrate the existence of security vulnerabilities, Chen and her fellow WINLAB researchers developed an eavesdropping attack targeting AR/VR headsets, known as “Face-Mic.” more

Foreign Spies Use Dating Apps... to access government secrets

Foreign spies are using Tinder and other dating apps to recruit Australians with access to sensitive government secrets. ASIO boss Mike Burgess made the alarming revelation while delivering his annual threat assessment, in which he also warned identifying anti-vaccine activists who could turn violent was proving difficult. more

---

The National Security Service of Armenia (HAAT) has detained 19 people suspected of being members of an "espionage network" in the South Caucasus nation. The HAAT said on February 10 that dozens of servicemen in different units of the the armed forces may have been involved in the activities of the spy network, which worked for an unspecified nation.

According to the security agency, recruitment took place via an online dating service through which Armenian servicemen who possessed classified data and documents would eventually join the spy ring. more