Related Content: threat lab
SAN FRANCISCO—The Federal Trade Commission (FTC) must act to halt sales by Amazon, AliExpress, and other resellers of Android television set-top boxes and mobile devices manufactured by AllWinner and RockChip that have been pre-infected with malware before ever reaching consumers, the Electronic Frontier Foundation (EFF) urged Tuesday in ...
Today we join a set of 56 experts from organizations such as Google, Panasonic, Citizen Lab, Trend Micro and many others in an open letter calling on the European Commission, European Parliament, and Spain’s Ministry of Economic Affairs and Digital Transformation to reconsider the obligatory vulnerability reporting mechanisms built...
Cell-site simulators (CSS)—also known as IMSI Catchers and Stingrays—are a tool that law enforcement and governments use to track the location of phones, intercept or disrupt communications, spy on foreign governments, or even install malware. Cell-site simulators are also used by criminals to send spam and engage...
Citizen Lab 的安全研究人员在腾讯公司旗下的搜狗输入法(目前中国最广泛使用的输入法)键盘软件中发现多个加密漏洞。享有特权网络地位的对手(如互联网服务提供商或可以访问上游路由器的任何人)可以通过这些漏洞在用户进行输入时实时读取用户在设备上输入的文本。强烈建议搜狗键盘用户将操作系统升级到修复此漏洞的补丁版本:Windows >= 版本 13.7Android >= 版本 11.26Android >= 版本 11.25报告显示,与 iOS 版本相比,Windows 和安卓系统容易被窃听。尤为值得一提的是,搜狗输入法在全球拥有约 4.5 亿月活跃用户。其用户不仅限于中国,在美国、日本和台湾也拥有广泛的用户。该漏洞是否已被发现或利用,目前尚不明确。然而,考虑到中国国内的网络访问水平以及国家机关所拥有的广泛权限,键盘用户(尤其是中国境内用户)的私人通信有可能已被泄露给中国政府。自制加密技术再度来袭研究人员发现,这一漏洞归因于使用了容易受到填充提示攻击的自定义加密技术。加密算法的实施是一项极不稳定的工作,需要格外严谨。即使做得相对较好,边信道攻击也会破坏这些算法本应提供的基本保障。最佳做法是不自行编码,而是使用系统提供的经过严格审查的加密库来避免这些攻击,并确保针对弱点提供与时俱进的保护。截至 2003 年,这一特定实施中的漏洞已经在 TLS 实施中得到修复。我们对安全研究人员 Jeffrey Knockel、Zoë Reichert 和 Mona Wang(曾任职于 EFF)所做的严谨密码分析和逆向工程工作表示赞赏。通过揭露这些漏洞,公共利益分析师起到了屏障的作用,防止当局秘密囤积漏洞并将其用作侵犯我们所有人隐私的间谍工具。只有负责任地披露和公布这些缺陷,才能修复这些缺陷,也才能让公众在知情的情况下决定今后要使用什么软件。
Certain Android TV Box models from manufacturers AllWinner and RockChip, available for purchase on Amazon, come pre-loaded with malware from the BianLian family, a variant of which we investigated last year. The malware, discovered by security researcher Daniel Milisic, adds your smart set-top box to a...
You may have heard of the Flipper Zero. It’s marketed as a “Portable Multi-tool Device for Geeks”—a programmable portable device packed with hardware that facilitates wireless penetration testing and hacking on the go. The device, which greets its owner with an adorable cyber-dolphin on its monochrome 128x64 pixel screen,...
In 2018, EFF along with researchers from Lookout Security published a report describing the Advanced Persistent Threat (APT) we dubbed "Dark Caracal." Now we have uncovered a new Dark Caracal campaign operating since March of 2022, with hundreds of infections across more than a dozen countries. In this report...
Last week, the New York Attorney General secured a $410,000 fine from Patrick Hinchy and 16 companies that he runs which produce and sell spyware and stalkerware. In addition, he and his companies must modify their stalkerware to alert victims that their devices have been compromised. This sends a...
Tor, the onion router, remains one of the most effective censorship circumvention technologies. Millions of people use the Tor network every day to access the internet without fear of surveillance and censorship.Most people get on the Tor network by downloading the Tor Browser and connecting to a relay. But...
Apple’s new iOS 16 offers a powerful tool for its most vulnerable users. Lockdown Mode reduces the avenues attackers have to hack into users’ phones by disabling certain often-exploited features. While providing a solid defense against intrusion, it is also trivial to detect that this new feature is...
Pages
