காமா சர்வதேச News Today : Breaking News, Live Updates & Top Stories | Vimarsana
For Their Eyes Only: The Commercialization of Digital Spying - Business & Human Rights Resource Centre
business-humanrights.org - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from business-humanrights.org Daily Mail and Mail on Sunday newspapers.
No sólo Pegasus: en México operan FinFisher, Galileo, Geomatrix, Narus, Verint
pulsoslp.com.mx - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from pulsoslp.com.mx Daily Mail and Mail on Sunday newspapers.
German companies surveillance technology allegedly used in connection with human rights abuses by authoritarian govts
business-humanrights.org - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from business-humanrights.org Daily Mail and Mail on Sunday newspapers.
How the Shady Zero-Day Sales Game Is Evolving
Zero-day vulns are cold, while access-as-a-service is hot. Here s how black market (and gray market) deals go down.
(Image: chanut via Adobe Stock)
One of the software success stories of the COVID-19 pandemic era has been videoconferencing service Zoom. Despite already existing in a crowded field of both startups and mature competitors, Zoom became a household name for anyone stuck at home to avoid the coronavirus. But as Zoom boomed, so did Dark Web sales of zero-day vulnerabilities in its software.
A Zoom vulnerability that allowed remote-code execution on Windows computers was allegedly for sale on the Dark Web for $500,000, reported Vice in April. Another zero-day vulnerability for Zoom on Macs confirmed by multiple sources commanded a lower but allegedly still substantial Dark Web price.
Even Small Nations Have Jumped into the Cyber Espionage Game
While the media tends to focus on the Big 5 nation-state cyber powers, commercial spyware has given smaller countries sophisticated capabilities, as demonstrated by a zero-click iMessage exploit that targeted journalists last year.
Driven by the accessibility of commercial spyware and surveillance tools, sophisticated attacks using a variety of zero-click exploits attacks that don t require user interaction are increasingly within the reach of smaller nations, according to The Citizen Lab, an interdisciplinary laboratory based at the Munk School of Global Affairs and Public Policy at University of Toronto.
In an analysis published in late December, the group detailed how nations of the Gulf Cooperative Council (GCC) in the Middle East used the commercial Pegasus spyware sold by the NSO Group to hack three dozen phones and spy on journalists and news producers. The attacks used a zero-click iMessage exploit that u