1. A slip of the finger reveals the company secret.
- Turn off that auto-fill feature.
2. People give away passwords and other secrets without thinking.
- Engage brain. Shut mouth.
3. A trusted partner ends up not being so trustworthy with your data.
- Share sparingly.
4. Web-based apps can be portals to leaks and thieves.
- VPN it instead.
5. Hoping the worse doesn’t happen only makes it worse.
- Plan for disasters.
6. Avoiding or diluting response leadership makes breaches worse.
- Designate a buck-stopper.
7. Handling breach details sloppily tips off the perp.
- Practice 'need-to-know'.
8. Trusting "silver bullet" technology hides real threats.
- There ain't no Lone Ranger.
9. Spending unthinkingly wastes resources you might need for important threats.
- Gauge threats.
10. Don't save the wrong data.
- Only store what you need.
(more)
Tuesday, April 15, 2008
"Afghanistan banana-stand!"
Police in Italy have issued footage of a man who is suspected of hypnotising supermarket checkout staff to hand over money from their cash registers.
In every case, the last thing staff reportedly remember is the thief leaning over and saying: "Look into my eyes", before finding the till empty. (more) (video)
('SNAP' of fingers)
Wake up!
In every case, the last thing staff reportedly remember is the thief leaning over and saying: "Look into my eyes", before finding the till empty. (more) (video)
('SNAP' of fingers)
Wake up!
Sunday, April 13, 2008
...and, 85% declined to answer.
"Me, My Spouse and the Internet"Oxford Internet Institute, University of Oxford,
Survey Results...
• 20% of married Internet users admitted to reading their partner’s emails and text messages; and
• 13% to having checked their partner’s browser history.
More than 6,000 married people were invited to take part in the study. The final sample involved 929 couples, with both partners completing a questionnaire. (more) (Project website.)
Surveillance Desensitization Continues
Hal Niedzviecki writes...
I ask (Ursula) Lebana how things have changed since she opened Canada’s first spy store back in 1991.
“People who came into the store at that time were quite shocked,” she tells me. “They never realized cameras were that small. They said, ‘Oh my God, that’s scary. And isn’t it terrible to monitor the nanny? Where’s the trust?’”
Sixteen years later, business is booming. “Now people say, ‘Oh, I want a hidden camera,’” says Lebana, who has since opened SpyTech locations in Ottawa and London, Ontario. “They are more willing to use them now. They’re more familiar with it. I’m even getting repeat customers... (more)
I ask (Ursula) Lebana how things have changed since she opened Canada’s first spy store back in 1991.
“People who came into the store at that time were quite shocked,” she tells me. “They never realized cameras were that small. They said, ‘Oh my God, that’s scary. And isn’t it terrible to monitor the nanny? Where’s the trust?’”
Sixteen years later, business is booming. “Now people say, ‘Oh, I want a hidden camera,’” says Lebana, who has since opened SpyTech locations in Ottawa and London, Ontario. “They are more willing to use them now. They’re more familiar with it. I’m even getting repeat customers... (more)
"Youz gotta problem with dat?!?!"
from The Bay City Times Opinion page...
MI - When The Times looked into the money that road commissioners lavished on themselves, we found a board besotted with inflated retirement benefits and fancy junkets.
We also found that one commissioner, now retired, had used a Road Commission credit card to give himself quick loans at casinos. In another instance, the commission's former finance director was caught using a tape recorder to eavesdrop on employees.
In the lives of private citizens, both incidents might have resulted in felony charges. But in the buddy-buddy world of government, no charges stuck. (more)
MI - When The Times looked into the money that road commissioners lavished on themselves, we found a board besotted with inflated retirement benefits and fancy junkets.
We also found that one commissioner, now retired, had used a Road Commission credit card to give himself quick loans at casinos. In another instance, the commission's former finance director was caught using a tape recorder to eavesdrop on employees.
In the lives of private citizens, both incidents might have resulted in felony charges. But in the buddy-buddy world of government, no charges stuck. (more)
Saturday, April 12, 2008
Wireless Color SpyCam Pen
from the seller's web site..."Our covert Wireless Spy Cam Pen is ideal for undercover assignments, wear it innocently on your shirt pocket, place it on a desk, attach it to an organizer, or just start writing with it like you would a normal pen — all while transmitting live high-quality color video images. It’s the size of a regular pen, so you can bring it with you anywhere.
The Pen Camera cleverly conceals a quality color video camera inside a working pen. Minimal illumination makes it difficult to detect that you’re using it for anything more than writing.
To start transmitting, simply click the top of the pen, yeah it’s pretty cool. Just attach the receiver to any TV or VCR for easy recording, or even a security monitor.
This little hidden camera in a pen has a transmission range of more than 300 ft." (more)
Why do I mention it?
So you will know what you are up against.
SpyCam Story #440 - The Dentist
TX - An Ennis dentist accused of videotaping his female employees in their changing room with a hidden camera pleaded guilty...The employees went to authorities in August after finding a video camera in a room where they changed into and out of medical scrubs at Durbin's dental office. According to an affidavit, the women confronted Durbin, who admitted making video recordings.
Stephen C. Durbin, also a city commissioner in Ennis, got five years of community supervision with deferred adjudication in the plea agreement on a state jail felony charge of improper photography or video recording. (more)
"She said my boy I think someday
You'll find a way
To make your nat-u-ral tendencies pay!
Yooou'llll be a Den-tist!"
SpyCam Story #439 - Action Jackson (update)
CA - Three more victims have come forward in the Jackson spying case that began in October when a woman alerted police she saw a camera lingering above an uncovered opening of a changing room at Holiday Cleaners.Alex Ko, a 35-year-old Pine Grove resident, allegedly recorded digital videos and photographs of women as they undressed in the cleaner's changing room from May to August 2007. Ko runs the business with his parents and siblings. (more) (original story)
Crime Does Not Pay! (No, really, it doesn't.)
According to a new study dug up by Secrecy News, modern-day spies -- at least the ones who get caught -- don't appear to be making much money.The study (.pdf), conducted for the Defense Personnel Security Research Center based on its Espionage Database, concludes that "Two thirds of American spies since 1990 have volunteered. Since 1990, spying has not paid well: 80% of spies received no payment for espionage, and since 2000 it appears no one was paid.” (more)
Well... sometimes crime pays.
PA - A Pennsylvania state police trooper who claimed a phone conversation with a supervisor was illegally recorded without his permission has been awarded more than $500,000 in damages by a federal jury.
Mario J. Diana was awarded $262,126 in compensatory damages for invasion of privacy and unlawful seizure, and $238,878 in punitive damages against Carmen Altavilla, former commander of Troop P in Wyoming, and Lt. Willard Oliphant. The jury rendered the verdict late Thursday afternoon following a four-day trial before U.S. District Judge A. Richard Caputo in Wilkes-Barre.
Diana filed suit in 2005, alleging Altavilla ordered Oliphant to tape a phone conversation in which Oliphant advised Diana, who was off on a workers’ compensation claim, that he was being ordered to return to work. (more)
Mario J. Diana was awarded $262,126 in compensatory damages for invasion of privacy and unlawful seizure, and $238,878 in punitive damages against Carmen Altavilla, former commander of Troop P in Wyoming, and Lt. Willard Oliphant. The jury rendered the verdict late Thursday afternoon following a four-day trial before U.S. District Judge A. Richard Caputo in Wilkes-Barre.
Diana filed suit in 2005, alleging Altavilla ordered Oliphant to tape a phone conversation in which Oliphant advised Diana, who was off on a workers’ compensation claim, that he was being ordered to return to work. (more)
Thursday, April 10, 2008
Blackemail, Espionage or Just Coincidence?
MA - Two staff members in the school superintendent’s office spied on e-mails sent to Cambridge School Committee members over the span of one month. (more)
...administration officials did not tell the School Committee they were receiving committee e-mails from parents and others. A School Committee member only found out the two school officials were copied into School Committee e-mails after they hit “reply all” and found the duo copied in the e-mail. 14 days after it was discovered, School Committee members voted to enter contract negotiations with Superintendent Thomas Fowler-Finn. (more)
...administration officials did not tell the School Committee they were receiving committee e-mails from parents and others. A School Committee member only found out the two school officials were copied into School Committee e-mails after they hit “reply all” and found the duo copied in the e-mail. 14 days after it was discovered, School Committee members voted to enter contract negotiations with Superintendent Thomas Fowler-Finn. (more)
News Flash? "Covert video surveillance becomes widespread in Russian offices"
from Pravda...
"Most of you work in companies equipped with video surveillance systems. As it turns out, video surveillance affects employee’s work more significantly than other control methods (wiretapping, looking through emails and reading the most frequently visited websites)." (more)
"Most of you work in companies equipped with video surveillance systems. As it turns out, video surveillance affects employee’s work more significantly than other control methods (wiretapping, looking through emails and reading the most frequently visited websites)." (more)
Search Engine with Reduced Squeal
Ixquick.com deletes its users' search data (including IP addresses) within 48 hours... Furthermore Ixquick does not set any uniquely identifying cookies or share your privacy details with 3rd parties.
UPDATE - NEW URL. Startpage.com
UPDATE - NEW URL. Startpage.com
More Animal Eavesdropping
Climate change may be predicted by fish who "eavesdrop" their way to healthy food sources using chemical cues given off by ocean organisms. This research, conducted by the University of North Carolina Wilmington assistant professor Sean Lema and collaborators, was published in the March edition of the journal Science in the article "Dimethylsulfoniopropionate as a Foraging Cue for Reef Fishes." (more)
There's something kinky going on in the world of Barbary macaques. Researchers have found the males eavesdrop on their mates having sex in order to make sure they don't miss out on the fun... (more)
There's something kinky going on in the world of Barbary macaques. Researchers have found the males eavesdrop on their mates having sex in order to make sure they don't miss out on the fun... (more)
"Arrivederci Roma"
"I continue to use the mobile phone with greater freedom, but if there is any news which comes out about my telephone calls being recorded I will leave this country". ~ Silvio Berlusconi, Italian politician, entrepreneur, and media proprietor.
Berlusconi said this when he explained that he had a plan to deal with the indiscriminate use of bugs. "We should only allow the bugging for crimes such as terrorism and organized crime". (more)
Berlusconi said this when he explained that he had a plan to deal with the indiscriminate use of bugs. "We should only allow the bugging for crimes such as terrorism and organized crime". (more)
"Pick-up in aisle Ten."
Supermarket chain Lidl has apologised to staff after being accused of systematically spying on them.
It took out of series of newspaper adverts in Germany saying: "We regret it profoundly and apologise explicitly if co-workers feel discredited and personally hurt by the described procedures."
Earlier German magazine Stern reported that Lidl had hired detectives who installed surveillance cameras to monitor the staff's work performance, and even to find out how often they used the toilets and whether they had affairs with co-workers. (more)
But wait! There's more!
Germany was shocked to learn that Stasi-like techniques were used to spy on employees of supermarket giant Lidl. Now a report has emerged showing that the chains Plus and Edeka may have done the same... (more)
And, more!
BT has admitted that it secretly monitored customers' internet surfing activities in trials of new software in 2006 and 2007. (more)
It took out of series of newspaper adverts in Germany saying: "We regret it profoundly and apologise explicitly if co-workers feel discredited and personally hurt by the described procedures."
Earlier German magazine Stern reported that Lidl had hired detectives who installed surveillance cameras to monitor the staff's work performance, and even to find out how often they used the toilets and whether they had affairs with co-workers. (more)
But wait! There's more!
Germany was shocked to learn that Stasi-like techniques were used to spy on employees of supermarket giant Lidl. Now a report has emerged showing that the chains Plus and Edeka may have done the same... (more)
And, more!
BT has admitted that it secretly monitored customers' internet surfing activities in trials of new software in 2006 and 2007. (more)
Idea for new sitcom... Plain Stupid! - "Should you be caught, we will disavow any..."
A spy who infiltrated a direct action anti-aviation group has been exposed after making a series of elementary errors that aroused the suspicions of genuine activists. Toby Kendall joined Plane Stupid, the group that occupied the roof of the Houses of Parliament last month, after graduating from Oxford last year. He told the activists that his name was “Ken Tobias” and said that he was deeply concerned by the impact of the aviation industry on climate change and that he wanted to help to organise protests.
But his habit of wearing a Palestinian scarf with his Armani jeans and designer shirt made some members question his identity. He was also the only member to turn up early to every meeting but had no friends in the activist community...
Plane Stupid began a mole hunt and, after feeding him false information that found its way within two days to the aviation industry, discovered his real name and employer.
Mr. Kendall, 24, works for C2i International, a counter-intelligence company run by former special forces officers. It claims that its agents are “hand-picked from Special Operations at New Scotland Yard”...
Justin King, C2i’s managing director, claimed to have been unaware of Mr. Kendall’s infiltration of Plane Stupid. He said Mr. Kendall was employed to carry out counter-surveillance such as “debugging company offices”. (D'oh!) (more)
This is a cautionary tale for corporations and protest groups alike.
1. Espionage is multifaceted - eavesdropping, wiretapping, dumpster diving, moles, etc.
2. Failed attempts end up in the newspapers. Successes go unnoticed.
3. Attacks fail when people start looking.
4. Start looking.
In this case, "...a contact at Oxford University recognised a photo we'd taken. Our spy wasn't called 'Ken Tobias', but Toby Kendall - an Oriental Studies student from Wadham College. A quick google search revealed a Bebo page with a photo. Snap! It also took us to Linked In, a high-flying corporate networking site, where 'Ken' claimed to be an analyst at C2i International, working in "Security and Investigations".
Note: Even Austin Powers had a better cover story. Don't expect your mole to be as obvious.
From Alligator Clips to Data Rips
The digitization of information has made wiretapping incredibly easy, while at the same time making legislation around warrants and civil liberties exponentially more complex, said experts during an afternoon panel at RSA yesterday.
“Two and a half years ago, me and my partners at the New York Times exposed a national wiretapping program and we still can't tell what it's all about,” said Eric Lichtblau, investigative reporter, who officiated the panel. (more)
“Two and a half years ago, me and my partners at the New York Times exposed a national wiretapping program and we still can't tell what it's all about,” said Eric Lichtblau, investigative reporter, who officiated the panel. (more)
Tuesday, April 8, 2008
"What's in your IT department?"
by Naomi Grossman, bmighty.comCaught up in the high profile case of Anthony Pellicano -- the detective on trial for racketeering and wiretapping in a case that involves lots of big names in Hollywood -- is the manager of IT security for Conde Nast publications. How exactly did that guy get his job?...
On Gawker, Ryan Tate asks the second most obvious question: "The guy who runs tech security for Condé Nast has admitted lying to the FBI and lending his services to private detective Anthony Pellicano even though he knew Pellicano was tapping people's phones. He's also been accused, in the course of Pellicano's racketeering and wiretap trial, of leaking a pre-publication copy of Vanity Fair that Pellicano mysteriously obtained, and of bragging about bugging the office of his Condé Nast supervisor. So why does he still have a job?"...
...the lessons here go beyond the need to move decisively in hiring and firing. If Reynolds could do that stuff in a huge company like Conde Nast, imagine the damage your IT guy could do in your smaller business -- where there aren't the same resources to weather a disaster. Put the time and effort into checking your IT guys out. Each one could mean the difference between life and death for your company. (more)
Well said!
You've been warned.
Monday, April 7, 2008
India Wants to Eavesdrop on BlackBerrys
BlackBerry users, beware of the snoops. India's Telecommunications Dept. told telecom carriers, Internet service providers, and officials at Research In Motion (RIM), the Canadian company that makes BlackBerrys, that it wants to eavesdrop on transmissions from every BlackBerry phone in the country. To comply, RIM might have to route calls and e-mails through government computer servers based in India. (more)
FutureWatch... Look for other countries to jump on this bandwagon.
FutureWatch... Look for other countries to jump on this bandwagon.
Hot Boardroom Topic - Counterespionage
Security is becoming a board-level issue as the number of cyber-attacks and corporate espionage incidents are growing significantly each year...
Few people would dispute the mystique that surrounds the boardroom. This allure has been around for some time, but it was recently heightened by the popular TV series "The Apprentice" with business icon Donald Trump. Boards of directors deal with sensitive issues and handle privileged information, and board meetings themselves call to mind strategy discussion, stock discussions and major contracts.
Taking advantaged of privileged information is illegal. As you can imagine, access to privileged financial and stock information could easily be used for insider trading. The sensitive information and financial data must be controlled in order to comply with Securities and Exchange Commission disclosure requirements.
What you may not think of are the discussions around information security, which has become a board-level issue. Cyber-attacks and corporate espionage are growing significantly year-over-year. In a training program developed by Spy-Ops, the company notes that corporate espionage worldwide is now more than a trillion-dollar problem annually and growing. Data breaches, theft of intellectual property, insider trading and other criminal acts now demand the attention of the board of directors.
"Enterprise risk management discussions and strategies have moved into the executive suites and boardrooms. This is due primarily to the significant implications associated with security breaches," said Paula Cordaro of Spy-Ops. (more)
Few people would dispute the mystique that surrounds the boardroom. This allure has been around for some time, but it was recently heightened by the popular TV series "The Apprentice" with business icon Donald Trump. Boards of directors deal with sensitive issues and handle privileged information, and board meetings themselves call to mind strategy discussion, stock discussions and major contracts.
Taking advantaged of privileged information is illegal. As you can imagine, access to privileged financial and stock information could easily be used for insider trading. The sensitive information and financial data must be controlled in order to comply with Securities and Exchange Commission disclosure requirements.
What you may not think of are the discussions around information security, which has become a board-level issue. Cyber-attacks and corporate espionage are growing significantly year-over-year. In a training program developed by Spy-Ops, the company notes that corporate espionage worldwide is now more than a trillion-dollar problem annually and growing. Data breaches, theft of intellectual property, insider trading and other criminal acts now demand the attention of the board of directors.
"Enterprise risk management discussions and strategies have moved into the executive suites and boardrooms. This is due primarily to the significant implications associated with security breaches," said Paula Cordaro of Spy-Ops. (more)
S(he) M(aybe) E(arliest) R(ussian) S(py) H(ero) - B. Badenov
Russia’s oldest counter-intelligence officer is 100 years young. And although she's long retired, Maria Lyovina is still barred from revealing sensitive details about her work in the past. She may not look like your archetypal secret agent but Maria Lyovina was catching spies long before the world had ever heard of James Bond.
A great grandmother three times over, her Ulanovsk flat is filled with family photographs. One is a striking image of the young woman German agents came to fear.
Maria was working as a secretary in a Leningrad factory when the Soviet Union entered the Second World War.
She was recruited by Army officers looking for an experienced typist.
She joined SMERSH, a counter intelligence group dedicated to catching traitors and undercover Germans. Its name literally meant ‘death to spies’. (more) (video)
Sunday, April 6, 2008
"Blank Reg! Is that you?"
UK - Yobs wrecked CCTV cameras outside a Preston community centre just 48 hours after they were installed. But pictures of the vandals have been captured on the cameras they tried to destroy.The community of Tanterton won government funding to put up four cameras at a notorious troublespot near the row of shops and community centre in Village Green Lane. (more) (video)
Wristwatch SpyCam
from the manufacturer's press release...This Watch Spy Camera and Receiver is the ultimate covert operations kit, the camera in the watch is so small it's practically undetectable and looks absolutely normal.
Smart mounting of the camera results in the image being correctly orientated when the watch is upside down, for example when naturally resting your arm on a table. With stylish brushed aluminum and black a face no one will ever suspect they're being watch by such a well dressed person. The receiver unit comes with a 2.5 inch LCD and the capability of monitoring 4 wireless cameras at a time, playing music and even MPEG 4 movies if the mood takes you. The is quite simply the most covert spy camera we have seen yet and is now available direct to you at Wholesale-Star's excellent wholesale prices. Easily sell this to your eBay customers for great profits and take advantage of Wholesale-Star's drop shipping service. (more)
Yes, the watch keeps time.
Yes, the watch transmits audio, too.
Price Drop!!! GSM Bugs now on sale - $35.00
Alert - The hottest new bugging devices are now among the least expensive. GSM SIM bugs are like cell phones, but without the keypad. Eavesdroppers call and listen from anywhere in the world.At one time these devices sold for $250.-$500. The price has plummeted to $35.-$55. Why? The same reason their sister product (the cell phone) is often a give-away item... Economy of scale; thus proving consumer demand is fueling mass production.
Corporate Concern...
At these prices, "salting" offices with bugs becomes practical. Imagine... Buy in bulk and get custom silk screening - "Air Quality Monitor - Do Not Disturb." Even if accidentally seen, it might be accepted - "Every office has one of these."
Corporate Solution...
Periodic Eavesdropping Detection Audits are now an integral part of corporate security. Not having an eavesdropping detection program is negligence.
from a seller's web site...
"The GSM SIM Bugs are advanced audio surveillance devices. The SIM spy ear comes with compact design and embedded microphone system. This audio surveillance listening system no need software and no configuration required. Very easy to use. The only one thing you need to do is insert a pre-paid GSM SIM card into SIM card slot of the spy sim bug. Then you could hide it in an inconspicuous location and starts excellent listening surveillance." (more)
Update: The seller has stopped selling this; claiming, "Because they are incompetent." This is likely as early models did not work well, hence the big price drop. Newer models seem to be selling very well, however.
"Sunlight is the best disinfectant."
Trinidad & Tobago - Sweeping legislative changes, including a proposal to regulate the practice of wiretapping in the entire region, are among a series of recommendations agreed to by Caricom Heads of States, Bharrat Jagdeo, the Guyanese president, revealed yesterday.
Speaking to reporters outside of the Grand Ballroom of the Hilton Trinidad where a special security meeting of the Caricom Heads of Government was concluded. Jagdeo disclosed that he had personal knowledge that wiretapping is done throughout the region and revealed that it was agreed by heads of government that the practice should be regulated by legislation.
“People wiretap now,” he said, “but they can’t use it for evidence because it’s done illegally.” (more)
Bet you never heard of CARICOM.
Guess how many countries we are talking about here...
Full Members
Antigua and Barbuda
Bahamas
Barbados
Belize
Dominica
Grenada
Guyana
Haiti
Jamaica
Montserrat
Saint Kitts and Nevis
Saint Lucia
Saint Vincent and the Grenadines
Suriname
Trinidad and Tobago
Associate Members
Anguilla
Bermuda
British Virgin Islands
Cayman Islands
Turks and Caicos Islands
Observers
Aruba
Colombia
Dominican Republic
Mexico
Netherlands Antilles
Puerto Rico (U.S.)
Venezuela
That's a lot of wiretappers who will soon be able to present their evidence in court!
It may also change some old saws...
"Sunny places attract shady characters."
may now become...
"Sunlight is the best disinfectant."
Speaking to reporters outside of the Grand Ballroom of the Hilton Trinidad where a special security meeting of the Caricom Heads of Government was concluded. Jagdeo disclosed that he had personal knowledge that wiretapping is done throughout the region and revealed that it was agreed by heads of government that the practice should be regulated by legislation.
“People wiretap now,” he said, “but they can’t use it for evidence because it’s done illegally.” (more)
Bet you never heard of CARICOM.
Guess how many countries we are talking about here...
Full Members
Antigua and Barbuda
Bahamas
Barbados
Belize
Dominica
Grenada
Guyana
Haiti
Jamaica
Montserrat
Saint Kitts and Nevis
Saint Lucia
Saint Vincent and the Grenadines
Suriname
Trinidad and Tobago
Associate Members
Anguilla
Bermuda
British Virgin Islands
Cayman Islands
Turks and Caicos Islands
Observers
Aruba
Colombia
Dominican Republic
Mexico
Netherlands Antilles
Puerto Rico (U.S.)
Venezuela
That's a lot of wiretappers who will soon be able to present their evidence in court!
It may also change some old saws...
"Sunny places attract shady characters."
may now become...
"Sunlight is the best disinfectant."
Thursday, April 3, 2008
Spy Buster Locates Sophisticated Wireless Eavesdropping Devices
According to the Freedonia Group, a market research group in Cleveland, Ohio, companies spend over $95 billion annually on corporate security.One of the fastest growing areas for this spending is corporate espionage prevention.
Factors in this growth include everything from globalization to decreased employee loyalty and the fact that the most valuable asset of a corporation these days is information, which can be easier to steal than a piece of machinery.
So what’s a worried executive or security professional to do?
Increasingly, companies and government agencies are turning to firms that specialize in detecting and removing eavesdropping and other surveillance devices... (more)
Wednesday, April 2, 2008
Track My Treads - The TPMS Privacy Blowout
via hexview.comNew technologies always come with privacy issues.
Tire Pressure Monitoring Systems (TPMS) is one of those technologies.
What is TPMS?
TPMS lets on-board vehicle computers measure air pressure in the tires.
How does TPMS work?
In a typical TPMS, each wheel of the vehicle contains a device (TPMS sensor) - usually attached to the inflation valve - that measures air pressure and, optionally, temperature, vehicle state (moving or not), and the health of the sensor's battery. Each sensor transmits this information (either periodically or upon request) to the on-board computer in the vehicle. To differentiate between its own wheels and wheels of the vehicle in the next lane, each TPMS sensor contains a unique id.
TPMS transmits data that uniquely identifies your car!
Here is where privacy problems become obvious: Each wheel of the vehicle transmits a unique ID, easily readable using off-the-shelf receiver. Although the transmitter’s power is very low, the signal is still readable from a fair distance using a good directional antenna.
Why is this a problem?
If you live in the United States, chances are, you have heard about the “traffic-improving” ideas where transportation authorities looked for the possibility to track all vehicles in nearly real time in order to issue speeding tickets or impose mileage-adjusted taxes... Guess what? With minor limitations, TPMS can be used for the very purpose of tracking your vehicle in real time with no substantial investments! TPMS can also be used to measure the speed of your vehicle... (remember) car manufacturers know serial numbers of every part in your vehicle, including unique IDs of TPMS sensors.
("Your ticket is in the mail.")
Now, no article is complete unless it mentions terrorists...
It is now super easy to blow up someone's car. There's no need to fix the explosive to the vehicle. No more wires and buttons. No human factor. A high-school kid with passion for electronics can assemble a device that will trigger the detonator when the right vehicle passes by. (more)
"See anything, dude?" (crash!!!) "April Fool"
17-year-old accused of trying to spy
WI - Michael Q. Ruby (17) of Omro, Wisconsin was with two others who were trying to see into a Larrabee Street apartment when Ruby pushed one of the others through the window, damaging the screen. Ruby told police he and his friends went to the Larrabee Street residence to see if they could find an acquaintance there with underage girls... (more)
WI - Michael Q. Ruby (17) of Omro, Wisconsin was with two others who were trying to see into a Larrabee Street apartment when Ruby pushed one of the others through the window, damaging the screen. Ruby told police he and his friends went to the Larrabee Street residence to see if they could find an acquaintance there with underage girls... (more)
Offer of a Murder Surfaces at Wiretap Trial
A hedge fund manager and art collector from New York testified under immunity Tuesday that Anthony Pellicano, the Hollywood private detective accused of wiretapping and racketeering, had once offered to have a movie producer killed for him. (more)
Everything You Wanted to Know About the Wiretap Debate in Congress
via wired.com
If you've been having trouble tracking what the various surveillance bills are all about, don't blame yourself -- there's been plenty of misinformation going around. Here's Wired.com's definitive guide to the congressional surveillance debate.
Why is Congress expanding the government's spying authority?
After 9/11, or possibly before, President Bush instructed the nation's spies to begin a secret spying program that reportedly includes data-mining records of U.S. residents' phones, travels and purchases in order to find targets to wiretap. The administration says its warrantless eavesdropping only listened in on international phone calls and e-mails... (more)
If you've been having trouble tracking what the various surveillance bills are all about, don't blame yourself -- there's been plenty of misinformation going around. Here's Wired.com's definitive guide to the congressional surveillance debate.
Why is Congress expanding the government's spying authority?
After 9/11, or possibly before, President Bush instructed the nation's spies to begin a secret spying program that reportedly includes data-mining records of U.S. residents' phones, travels and purchases in order to find targets to wiretap. The administration says its warrantless eavesdropping only listened in on international phone calls and e-mails... (more)
Congressman Ordered to Pay in Wiretap Case
A federal judge has ordered Rep. Jim McDermott (D-Wash.) to pay nearly $1.2 million to House Minority Leader John A. Boehner (R-Ohio), settling a legal dispute over McDermott's actions in leaking the contents of an intercepted 1996 conference call involving Boehner and other Republican leaders.
Chief Judge Thomas F. Hogan of the U.S. District Court for the District of Columbia,... had already levied a $60,000 civil fine against McDermott in 2004 for violating federal wiretapping statutes by receiving the intercepted audiotape of the conference call and releasing its contents to several members of the media....
Boehner was speaking on a cellphone in Florida, where his conversation was illegally recorded by a couple who heard it on a radio scanner. (more)
Chief Judge Thomas F. Hogan of the U.S. District Court for the District of Columbia,... had already levied a $60,000 civil fine against McDermott in 2004 for violating federal wiretapping statutes by receiving the intercepted audiotape of the conference call and releasing its contents to several members of the media....
Boehner was speaking on a cellphone in Florida, where his conversation was illegally recorded by a couple who heard it on a radio scanner. (more)
The Case of the Telepathic Ray Gun, or...
..."Does that ringing in my ears bother you?"via Discovery.com
I know some of you may not want to believe this, but the U.S. government may well already have the ability to beam secret commands to you through the fillings in your teeth. Well, not exactly. But close. A recently declassified 1998 U.S. Army report, “Bioeffects of Selected Nonlethal Weapons,” describes government plans for a microwave weapon that would transmit voice communication that seems to emanate from within a human target’s own brain. (It was obtained and posted on the Web by Freedom From Covert Harassment & Surveillance, a Cincinnati-based organization that advocates on behalf of people who believe they are being stalked and subjected to “electromagnetic harassment.”)
To quote the report:
Because the frequency of the sound heard is dependent upon the pulse characteristics of the RF energy, it seems possible that this technology could be developed to the point where words could be transmitted to be heard like the spoken word, except that it could only be heard within a person’s head.
This is possible because of something called the Microwave Auditory Effect, which was first discovered during World War II, when people working in the vicinity of radar transponders complained of hearing strange clicking noises that other people nearby didn’t notice. The effect is caused by thermal expansion of the region around the cochlea. In the 1960s, neuroscientist Allan H. Frey, who was the first to publish research on the effect, was able to induce it in human subjects with pulsed microwaves from a transmitter 100 meters away.
It’s unclear just how far the government’s microwave auditory research and development efforts have progressed since 1993, when the report was written... (more)
Tuesday, April 1, 2008
Corporate Espionage Arrest - AMX Corp. V.P.
Short version: AMX Corporation's Vice President, David Goldenberg, was "arrested for allegedly participating in corporate espionage practices against a competing manufacturer's representative firm."
The following is from the Bergen County (NJ) Prosecutor's press release...
NJ - Bergen County Prosecutor John L. Molinelli announced the arrest of David A. Goldenberg, D.O.B. 05/18/1962, of 432 Golf Dr., Oceanside NY. Goldenberg was arrested on March 28, 2008, on charges of Unlawful Access of a Computer System / Network (2C:20-25b); Unlawful Access of Computer Data / Theft of Data (2C:20-25c); and Conducting an Illegal Wiretap (2A:156A-27)...
The arrest stemmed from an investigation concerning the following: The Paramus Police Department received a complaint from a Paramus based corporation known as Sapphire Marketing, who specializes in high-end audio/visual systems. Representatives of Sapphire reported that they were being suspiciously and consistently underbid for contracts by a competitor for whom David Goldenberg works. They expressed suspicion of corporate espionage. Based on anomalies that the complainant noticed within their computer network and more specifically their electronic mail (e-mail) system, they suspected that the company’s e-mail system had been compromised and that e-mail was being intercepted. The Paramus Police Department (a member of the Computer Crimes Task Force) and the Bergen County Prosecutor’s Office Computer Crimes Unit initiated an investigation.
The investigation revealed that Mr. Goldenberg had engineered the passwords protecting several of the complainant’s e-mail accounts. For a period of time, Mr. Goldenberg was intercepting and reading e-mails that related to potential contracts. Mr. Goldenberg then established a free e-mail account that he had control over, and created an automatic forward of the victim’s e-mail so that they would be sent to him directly. This afforded Mr. Goldenberg advanced knowledge of Sapphire’s customers and bid prices, thus further affording him an opportunity to underbid Sapphire. Sapphire Marketing estimates the loss in revenue from Mr. Goldenberg’s actions to exceed one-million dollars. Mr. Goldenberg was arrested without incident on this date. (more) (more - scroll down)
Goldenberg was hired by AMX June 11, 2007...
“David has a proven track record of satisfying the needs of his customers while boosting sales and profitability. He is also an aggressive marketer focused on value creation,” said Rashid Skaf, AMX president and CEO. “David is a dynamic leader who has proven that he can successfully manage and motivate a diverse team of individuals. I am confident that he will fit well into the AMX culture and accomplish great things with our company.” (more)
The following is from the Bergen County (NJ) Prosecutor's press release...
NJ - Bergen County Prosecutor John L. Molinelli announced the arrest of David A. Goldenberg, D.O.B. 05/18/1962, of 432 Golf Dr., Oceanside NY. Goldenberg was arrested on March 28, 2008, on charges of Unlawful Access of a Computer System / Network (2C:20-25b); Unlawful Access of Computer Data / Theft of Data (2C:20-25c); and Conducting an Illegal Wiretap (2A:156A-27)...
The arrest stemmed from an investigation concerning the following: The Paramus Police Department received a complaint from a Paramus based corporation known as Sapphire Marketing, who specializes in high-end audio/visual systems. Representatives of Sapphire reported that they were being suspiciously and consistently underbid for contracts by a competitor for whom David Goldenberg works. They expressed suspicion of corporate espionage. Based on anomalies that the complainant noticed within their computer network and more specifically their electronic mail (e-mail) system, they suspected that the company’s e-mail system had been compromised and that e-mail was being intercepted. The Paramus Police Department (a member of the Computer Crimes Task Force) and the Bergen County Prosecutor’s Office Computer Crimes Unit initiated an investigation.
The investigation revealed that Mr. Goldenberg had engineered the passwords protecting several of the complainant’s e-mail accounts. For a period of time, Mr. Goldenberg was intercepting and reading e-mails that related to potential contracts. Mr. Goldenberg then established a free e-mail account that he had control over, and created an automatic forward of the victim’s e-mail so that they would be sent to him directly. This afforded Mr. Goldenberg advanced knowledge of Sapphire’s customers and bid prices, thus further affording him an opportunity to underbid Sapphire. Sapphire Marketing estimates the loss in revenue from Mr. Goldenberg’s actions to exceed one-million dollars. Mr. Goldenberg was arrested without incident on this date. (more) (more - scroll down)
Goldenberg was hired by AMX June 11, 2007...
“David has a proven track record of satisfying the needs of his customers while boosting sales and profitability. He is also an aggressive marketer focused on value creation,” said Rashid Skaf, AMX president and CEO. “David is a dynamic leader who has proven that he can successfully manage and motivate a diverse team of individuals. I am confident that he will fit well into the AMX culture and accomplish great things with our company.” (more)
The Original Hollywood Wiretapper
By Will Vaus The trial of private detective Anthony Pellicano, who is charged with 110 counts of racketeering, wiretapping, conspiracy and other federal charges, has been capturing headlines for quite some time. No wonder. Its connections to the mob, eavesdropping on Hollywood conversations and the revolving door of movie industry personalities make for a good read. However, for me and my family, it is déjà vu.
Why? Because my father, "Big Jim" Vaus, was the original Hollywood wiretapper. He launched the practice of listening in on the stars in the 1940s and gained the same sort of notoriety then that surrounds Pellicano now. He was written up in the L.A. papers, and his story has been featured in Time, Life, Reader's Digest and in a 1955 movie, "Wiretapper." (more)
Will Vaus, author of My Father Was a Gangster: The Jim Vaus Story
Recordings of Jim Vaus talking about his life.
More stories about Jim Vaus...
The Hollywood Vice Queen (1948)
Wiretapping in Hollywood (1955)
Why Jim Vaus Quit Wiretapping (1946)
Monday, March 31, 2008
"But, IT said our data was secure."
Data Theft Carried Out On Network Thought Secure
Criminals involved in a massive data breach at the Hannaford Bros. and Sweetbay grocery chains stole the customer information from a part of a computer-network system that security experts had believed was secure.
As many as 4.2 million credit- and debit-card numbers were exposed in the breach.
The Hannaford data, which included customer account numbers and card expiration dates, was stolen between Dec. 7 and March 10. ...it has resulted in at least 1,800 cases of fraud.
A malicious software program, written by the thieves, intercepted the information as it went back and forth over a cable to a transaction processor in Denver. It was then transmitted to an Internet service provider somewhere outside the U.S. The software, known as malware, was planted on computer systems in every store in the two chains, the company says.
...it took a team of about 30 forensics experts and information technologists more than 10 days of round-the-clock troubleshooting to discover the malware. (more) (recent data theft list)
Criminals involved in a massive data breach at the Hannaford Bros. and Sweetbay grocery chains stole the customer information from a part of a computer-network system that security experts had believed was secure.
As many as 4.2 million credit- and debit-card numbers were exposed in the breach.
The Hannaford data, which included customer account numbers and card expiration dates, was stolen between Dec. 7 and March 10. ...it has resulted in at least 1,800 cases of fraud.
A malicious software program, written by the thieves, intercepted the information as it went back and forth over a cable to a transaction processor in Denver. It was then transmitted to an Internet service provider somewhere outside the U.S. The software, known as malware, was planted on computer systems in every store in the two chains, the company says.
...it took a team of about 30 forensics experts and information technologists more than 10 days of round-the-clock troubleshooting to discover the malware. (more) (recent data theft list)
Investigative Techniques for the Trial Lawyer - Wiretapping: Part I
...we have probably all wondered if our conversations via phone were being taped.
There are federal and state (all 50 and DC) statutes governing the use of electronic recording equipment. The unlawful use of recording equipment may not only give authority for civil proceedings against the perpetrator of illegal taping, but may also give rise to criminal charges.
Today’s Bulletin gets right into the meat of how and where the taping of private telephone conversations is allowed...
Interesting exceptions to the rules...
In California, generally an all party consent state, one party alone can record if criminal activity (e.g. extortion) is anticipated or involved.
In Arizona, the subscriber to a telephone service can record telephone conversations with no party consent when criminal activity is involved. (more)
There are federal and state (all 50 and DC) statutes governing the use of electronic recording equipment. The unlawful use of recording equipment may not only give authority for civil proceedings against the perpetrator of illegal taping, but may also give rise to criminal charges.
Today’s Bulletin gets right into the meat of how and where the taping of private telephone conversations is allowed...
Interesting exceptions to the rules...
In California, generally an all party consent state, one party alone can record if criminal activity (e.g. extortion) is anticipated or involved.
In Arizona, the subscriber to a telephone service can record telephone conversations with no party consent when criminal activity is involved. (more)
The Case of the Flacid Fob
Researchers from Ruhr University Bochum, Germany, presented a complete break of remote keyless entry systems based on the KeeLoq RFID technology. The shown vulnerability applies to all known car and building access control systems that rely on the KeeLoq cipher. "The security hole allows illegitimate parties to access buildings and cars after remote eavesdropping from a distance of up to 100 meters" says Prof. Christof Paar. "Eavesdropping on as little as two messages enables illegitimate parties to duplicate your key..."
A KeeLoq system consists of an active Radio Frequency Identification (RFID) transponders (e.g., embedded in a car key) and a receiver (e.g., embedded in the car door). Both the receiver and transponder use KeeLoq as encryption method for securing the over-the-air communication.
KeeLoq has been used for access control since the mid-1990s. By some estimates, it is the most popular of such systems in Europe and the US. Besides the frequent use of KeeLoq for garage door openers and other building access applications, it is also known that several automotive manufacturers like Toyota/Lexus (Chrysler, Daewoo, Fiat, GM, Honda, Volvo, VW, Clifford, Shurlok, Jaguar, etc.) base their anti-theft protection on assumed secure devices featuring KeeLoq.
(more)
(Hacker video explaining KeeLoq. Minutes: 36:18 - 41:35)
(How to Steal Cars - A Practical Attack on KeeLoq)
A KeeLoq system consists of an active Radio Frequency Identification (RFID) transponders (e.g., embedded in a car key) and a receiver (e.g., embedded in the car door). Both the receiver and transponder use KeeLoq as encryption method for securing the over-the-air communication.
KeeLoq has been used for access control since the mid-1990s. By some estimates, it is the most popular of such systems in Europe and the US. Besides the frequent use of KeeLoq for garage door openers and other building access applications, it is also known that several automotive manufacturers like Toyota/Lexus (Chrysler, Daewoo, Fiat, GM, Honda, Volvo, VW, Clifford, Shurlok, Jaguar, etc.) base their anti-theft protection on assumed secure devices featuring KeeLoq.
(more)
(Hacker video explaining KeeLoq. Minutes: 36:18 - 41:35)
(How to Steal Cars - A Practical Attack on KeeLoq)
Sunday, March 30, 2008
Mama Hari
...a mother writes...
"It’s a tough call knowing when to spy and when to trust. Though my own children, 4 and 7, are too young for me to be going through pockets looking for drugs, turning up mattresses looking for porno, etc., I plan on doing those things in their teen years.
In my own childhood, my parents were way too hands-off. Both of my brothers were doing serious drugs in high school and my parents didn’t find out until it was way too late. They wanted harmony in the house and took the path of least resistance. That meant my brothers were allowed privacy, didn’t have an enforced curfew, were given car keys before they could handle that responsibility. My parents prayed maturity would come soon.
With my own children, I’ve learned that I have to stay on top of things. On the computer, my son has tried to order things online. He even asked my mom for her credit card so he could buy a Ben 10 shirt. We’ve found that we need to set the rules for which Web sites he can look at. Anything not on the ‘Kids’ section of our Web browser’s bookmarks is off limits. Still, we walk by often while he’s online, and we remind him he needs to ask if it’s a new site." (more)
"It’s a tough call knowing when to spy and when to trust. Though my own children, 4 and 7, are too young for me to be going through pockets looking for drugs, turning up mattresses looking for porno, etc., I plan on doing those things in their teen years.
In my own childhood, my parents were way too hands-off. Both of my brothers were doing serious drugs in high school and my parents didn’t find out until it was way too late. They wanted harmony in the house and took the path of least resistance. That meant my brothers were allowed privacy, didn’t have an enforced curfew, were given car keys before they could handle that responsibility. My parents prayed maturity would come soon.
With my own children, I’ve learned that I have to stay on top of things. On the computer, my son has tried to order things online. He even asked my mom for her credit card so he could buy a Ben 10 shirt. We’ve found that we need to set the rules for which Web sites he can look at. Anything not on the ‘Kids’ section of our Web browser’s bookmarks is off limits. Still, we walk by often while he’s online, and we remind him he needs to ask if it’s a new site." (more)
Money Talks - Cell Phones Squawk
Spying programs for mobile phones are likely to grow in sophistication and stealth as the business around selling the tools grows, according to a mobile analyst at the Black Hat conference on Friday.
Many of the spy programs on the market are powerful, but aren't very sophisticated code, said Jarno Niemela, a senior antivirus researchers for Finnish security vendor F-Secure, which makes security products for PCs and mobile phones...
One of the latest tools on the market is Mobile SpySuite, which Niemela believes is the first spy tool generator for mobiles. It sells for US$12,500 and would let a hacker custom-build a spy tool aimed at several models of Nokia phones, Niemela said. (more)
Many of the spy programs on the market are powerful, but aren't very sophisticated code, said Jarno Niemela, a senior antivirus researchers for Finnish security vendor F-Secure, which makes security products for PCs and mobile phones...
One of the latest tools on the market is Mobile SpySuite, which Niemela believes is the first spy tool generator for mobiles. It sells for US$12,500 and would let a hacker custom-build a spy tool aimed at several models of Nokia phones, Niemela said. (more)
Money Talks - Spies Walk
UK - Thousands of Chinese spies are infiltrating Britain in the run-up to the Beijing Olympics.
They are hellbent on stealing scientific, military and industrial secrets in a bid to make China the world's No1 superpower. The spies are recruited from the 90,000 Chinese who visit Britain each year. Forty per cent of them are on business and a third are students.
A Whitehall source said: "They are told to hoover up everything they can get their hands on. "It can be anything from the results of university lab experiments to secret industrial technology." China's targets include banks, power and water companies, telecom firms and even Parliament.
But Foreign Secretary David Miliband fears any crackdown would upset China and jeopardise trade deals worth £20billion. (more)
They are hellbent on stealing scientific, military and industrial secrets in a bid to make China the world's No1 superpower. The spies are recruited from the 90,000 Chinese who visit Britain each year. Forty per cent of them are on business and a third are students.
A Whitehall source said: "They are told to hoover up everything they can get their hands on. "It can be anything from the results of university lab experiments to secret industrial technology." China's targets include banks, power and water companies, telecom firms and even Parliament.
But Foreign Secretary David Miliband fears any crackdown would upset China and jeopardise trade deals worth £20billion. (more)
Saturday, March 29, 2008
"Make a periscope" science class experiment gone horribly wrong?
Wales - A peeping Tom attached a mirror to the end of a piece of wood to spy on his next-door neighbour as she undressed, a court heard...
During the hearing, prosecutor Ian Kolvin produced the home-made spying device which consisted of a strip of wood with a broken piece of glass fastened to one end... "The defendant denied any sexual motivation," said Mr. Kolvin. (more)
During the hearing, prosecutor Ian Kolvin produced the home-made spying device which consisted of a strip of wood with a broken piece of glass fastened to one end... "The defendant denied any sexual motivation," said Mr. Kolvin. (more)
"Whatever satisfies the soul is truth." W.W.
NJ/PA - The man who led police on a chase that eventually forced the closure of the Walt Whitman Bridge last Thursday was convinced that someone was bugging his phone and that his family was in danger, according to authorities. (more)
Thursday, March 27, 2008
Jury finds against Providence in wiretapping lawsuit
RI - A federal jury has returned a verdict against city of Providence authorities for illegally recording the phone calls of their employees at a public safety complex. City officials say the jury on Wednesday awarded compensatory and punitive damages of about $525,000... (more)
Wednesday, March 26, 2008
Details emerge about futuristic spy tech
The intelligence agencies have renamed their MASINT program and will now refer to the recondite spy discipline as the Advanced Technical Exploitation Program (ATEP). The name change surfaced in documents that describe a pending acquisition for contractor assistance in merging information from various types of sensors and systems to create cross-disciplinary intelligence...
The acquisition notice asked companies to describe their capabilities in working with the following types of sensors:
• Overhead non-imaging radar.
• Synthetic aperture radar.
• Spectral detectors.
• Thermal infrared.
• Ground-moving target indicator forensics.
• Line-of-sight radar.
• Over-the-horizon radar.
• Airborne electro-optical sensors, known as Cobra Ball.
• Laser intelligence.
• Radio frequency MASINT.
(more)
The acquisition notice asked companies to describe their capabilities in working with the following types of sensors:
• Overhead non-imaging radar.
• Synthetic aperture radar.
• Spectral detectors.
• Thermal infrared.
• Ground-moving target indicator forensics.
• Line-of-sight radar.
• Over-the-horizon radar.
• Airborne electro-optical sensors, known as Cobra Ball.
• Laser intelligence.
• Radio frequency MASINT.
(more)
Spybusters Selects Tektronix to Aid in Fight Against Corporate Espionage
Tektronix Inc., a provider of test, measurement and monitoring instrumentation, announced that Murray Associates, registered as Spybusters LLC, has selected a Tektronix Real-Time Spectrum Analyzer (RTSA) with DPX™ live RF display technology to help the security consultancy identify wireless eavesdropping devices that may be located in clients’ facilities including boardrooms and security trading floors. The RTSA instrument enables the firm to quickly and efficiently spot sophisticated listening devices, even in challenging environments where there are many competing signals.
Corporate espionage is on the rise due to such factors as globalization,
decreased employee loyalty and the increasing value of information. In some parts of the world espionage is a common business practice in competitive industries. At the same time, new technologies are making it easier and more affordable than ever to steal information by tapping into private conversations. Given the potential reward, spies are employing increasingly sophisticated technology that can be difficult to detect.
To fight back against this espionage, companies as well as government agencies are turning to firms that specialize in detecting and removing eavesdropping and other surveillance devices. One of the leaders in the segment is Murray Associates. Based in Oldwick, New Jersey, the 30-year-old company, which is registered as Spybusters LLC, is seeing heightened demand for its services. The majority of the firm’s clients schedule regular inspections or sweeps for any form of electronic surveillance technology in sensitive areas such as executive suites, boardrooms, trading floors, vehicles and aircraft as well as executive homes and off-site meeting locations.
Corporate espionage is on the rise due to such factors as globalization,
decreased employee loyalty and the increasing value of information. In some parts of the world espionage is a common business practice in competitive industries. At the same time, new technologies are making it easier and more affordable than ever to steal information by tapping into private conversations. Given the potential reward, spies are employing increasingly sophisticated technology that can be difficult to detect.To fight back against this espionage, companies as well as government agencies are turning to firms that specialize in detecting and removing eavesdropping and other surveillance devices. One of the leaders in the segment is Murray Associates. Based in Oldwick, New Jersey, the 30-year-old company, which is registered as Spybusters LLC, is seeing heightened demand for its services. The majority of the firm’s clients schedule regular inspections or sweeps for any form of electronic surveillance technology in sensitive areas such as executive suites, boardrooms, trading floors, vehicles and aircraft as well as executive homes and off-site meeting locations.
Tuesday, March 25, 2008
Make Caller ID Lie For You
Keep your phone number private whenever you make or receive calls. A new service called Vumber does it for you.In addition to privacy you can get anonymity, too. Vumber is like Kleenex, disposable. Change numbers whenever you want. Be in any Area Code you like.
"It’s your anyphone, anytime, anywhere phone number that keeps your identity private – until you decide it not to be.
A Vumber is a number from any area code you want, linked to your home, cell, or work phone. When someone calls your Vumber, Vumber lets you control how you handle the call: you can a) answer it; b) send them to VumberMail; c) give them a busy signal; d) tell them the number is out of service; or e) play them a custom message you create.
It provides unequaled privacy protection when anyone calls your Vumber, and when you call anyone. And it’s not limited to a pre-defined one-to-one calling relationship like you sometimes see out there – it is as simple as having another phone number. Even simpler.
You can call “from” your Vumber, too..." (more)
The flip side... Your Caller ID display is no longer trustworthy. But hey, it never was anyway.
How to hack RFID-enabled credit cards for $8
...via tv.boingboing.net
A number of credit card companies now issue credit cards with embedded RFIDs (radio frequency ID tags), with promises of enhanced security and speedy transactions.
But on today's episode of Boing Boing tv, hacker and inventor Pablos Holman shows Xeni how you can use about $8 worth of gear bought on eBay to read personal data from those credit cards -- cardholder name, credit card number, and whatever else your bank embeds in this manner.
Fears over data leaks from RFID-enabled cards aren't new, and some argue they're overblown -- but this demo shows just how cheap and easy the "sniffing" can be.
Forget the tin foil hat.
Wrap it around your wallet and watch where you sit.
There may be an antenna under that chair.
A number of credit card companies now issue credit cards with embedded RFIDs (radio frequency ID tags), with promises of enhanced security and speedy transactions.
But on today's episode of Boing Boing tv, hacker and inventor Pablos Holman shows Xeni how you can use about $8 worth of gear bought on eBay to read personal data from those credit cards -- cardholder name, credit card number, and whatever else your bank embeds in this manner.
Fears over data leaks from RFID-enabled cards aren't new, and some argue they're overblown -- but this demo shows just how cheap and easy the "sniffing" can be.
Forget the tin foil hat.
Wrap it around your wallet and watch where you sit.
There may be an antenna under that chair.
"Bugging Device Found"
Ireland - "A sophisticated bugging and tracking device has been unearthed in the vehicle of a member of the Dublin 32 County Sovereignty Movement. The device was secreted internally into the dashboard of the vehicle and was equipped with its own self contained power supply. The manner by which the device was installed strongly suggests that those who planted it took considerable time to effect this and was obviously professionally done." (more)A little research reveals that the top component is an old Ericsson radio-modem (M2050 Mobidem c.1996-97) made for the UK market (425-460 MHz). "a small low power radio modem that can be built into PC or other equipment. It has no power source of its own. It does not have its own antenna, which must be designed specifically for the host equipment. It has rated data transfer rates of 1200 to 9600 bps. It supports Mobitex MACS, AT and X.28 protocols."
According to a press release, "Ericsson has signed an order with Thorn Security Ltd., a leading provider of security services in the U.K. market, for 5,000 Mobidem M2050 radio modems to be used for the company's new Siteguard Smart Signaling alarm services. The new services will be available to Thorn's thousands of customers throughout the U.K. in mid-September.
With the announcement of its new Siteguard Smart Signaling alarm portfolio, Thorn Security has scored a first in the industry. The system uses a self-checking alarm signaling technique that provides intelligent mutual monitoring between wireless data links and landline communications at the customer site. This virtually eliminates line errors and guarantees that the alarm system is functional at all times."
The batteries are 4 "D" cells, rechargeable lead-acid type.
Given the age of the main component, identifying information was left on it (unusual for professional bugging devices) and that similar-looking auto alarm systems exist, its real purpose can be questioned. Is it a bug, or did someone buy a used car not knowing it was outfitted with an alarm system at one time?
Saturday, March 22, 2008
US State Department Warns of Chinese Bugging and Wiretapping
"Security personnel may at times place foreign visitors under surveillance. Hotel rooms, telephones, and fax machines may be monitored, and personal possessions in hotel rooms, including computers, may be searched without the consent or knowledge of the traveler. ... Foreign government officials, journalists, and business people with access to advanced proprietary technology are particularly likely to be under surveillance." (more)
Subscribe to:
Posts (Atom)