July 19, 2024 at 01:15AM China disputes the existence of the Volt Typhoon cyber-attack group, alleging it is a fabrication by US intelligence agencies. They claim a disinformation campaign planned by US government agencies to manipulate infosec providers and consequently justify the re-authorization of surveillance laws. China views this as evidence of the US as … Read more
April 22, 2024 at 05:17PM US lawmakers reauthorized the controversial warrantless surveillance tool, Section 702 of the Foreign Intelligence Surveillance Act, for two more years. The legislation gives expanded surveillance powers to US intelligence agencies, allowing them to compel a range of individuals and organizations to spy for national security purposes. Privacy and civil liberties … Read more
March 4, 2024 at 12:36AM U.S. cybersecurity agencies have issued warnings about Phobos ransomware targeting government and critical infrastructure entities. The ransomware, operated as a service model, has targeted various sectors and has earned millions in ransom. The attackers use various tactics and have been actively targeting entities since May 2019, posing a significant ongoing … Read more
February 23, 2024 at 01:56PM North Korean hackers have been found spying on Russia by planting a backdoor within Russian government software. The backdoor was bundled inside a Russian-language installer associated with an internal tool, “Statistika KZU,” used by Russia’s Ministry of Foreign Affairs. This reveals a targeted and precise approach by North Korean hackers … Read more
January 29, 2024 at 02:15AM The U.S. National Security Agency (NSA) admits to purchasing internet browsing records from data brokers without court orders, raising concerns about Americans’ privacy. Senator Wyden criticizes this practice and emphasizes the potential privacy risks, especially relating to sensitive topics like mental health or domestic abuse. The revelation highlights a broader … Read more
October 24, 2023 at 03:03PM Kaspersky has released a report detailing the iOS zero-click attacks it suffered. Dubbed ‘Operation Triangulation’, the attacks used malicious iMessage attachments to exploit a zero-day vulnerability and deploy spyware named TriangleDB. The attackers implemented stealth techniques to avoid detection, including using two validators to collect device information and ensure the … Read more