WikiLeaks released what appeared to be C.I.A. documents about hacking programs used to break into phones, computers and TVs

March 7, 2017 By administrator

(nytimes.com) WikiLeaks on Tuesday released thousands of documents that it said described sophisticated software tools used by the Central Intelligence Agency to break into smart phones, computers and even Internet-connected televisions.
If the documents are authentic, as appeared likely at first review, the release would be the latest coup for the anti-secrecy organization and a serious blow to the C.I.A., which maintains its own hacking capabilities to be used for espionage.

Source: https://www.nytimes.com/2017/03/07/world/europe/wikileaks-cia-hacking.html?emc=edit_na_20170307&nl=breaking-news&nlid=49769097&ref=headline&mtrref=undefined&gwh=62752E8C575F3A4F3689BEC1FAC22A7E&gwt=pay

Microsoft to warn users of possible government hacking

January 2, 2016 By administrator

Microsoft Corp said on Wednesday it will begin warning users of its consumer services including Outlook.com email when the company suspects that a government has been trying to hack into their accounts, Reuters reports.
The policy change comes nine days after Reuters asked the company why it had decided not tell victims of a hacking campaign, discovered in 2011, that had targeted international leaders of China’s Tibetan and Uighur minorities in particular.
According to two former employees of Microsoft, the company’s own experts had concluded several years ago that Chinese authorities had been behind the campaign but the company did not pass on that information to users of its Hotmail service, which is now called Outlook.com.
In its statement, Microsoft said neither it nor the U.S. government could pinpoint the sources of the hacking attacks and that they didn’t come from a single country.
The policy shift at the world’s largest software company follows similar moves since October by Internet giants Facebook Inc, Twitter Inc and most recently Yahoo Inc.
Google Inc pioneered the practice in 2012 and said it now alerts tens of thousands of users every few months.
For two years, Microsoft has offered alerts about potential security breaches without specifying the likely suspect.
In a statement to Reuters, Microsoft said: “As the threat landscape has evolved our approach has too, and we’ll now go beyond notification and guidance to specify if we reasonably believe the attacker is ‘state-sponsored’.”
In a blog post published late Wednesday, Microsoft said: “We’re taking this additional step of specifically letting you know if we have evidence that the attacker may be ‘state-sponsored’ because it is likely that the attack could be more sophisticated or more sustained than attacks from cybercriminals and others. (here)
The Hotmail attacks targeted diplomats, media workers, human rights lawyers, and others in sensitive positions inside China, according to the former employees.
Microsoft had told the targets to reset their passwords but did not tell them that they had been hacked. Five victims interviewed by Reuters said they had not taken the password reset as an indication of hacking.
Online free-speech activists and security experts have long called for more direct warnings, saying that they prompt behavioral changes from email users.

Azerbaijan bought spyware for citizens’ surveillance via company linked to Israeli intelligence

July 13, 2015 By administrator

A massive leak of the Italian cyber-surveillance firm Hacking Team’s data showed that one of its key corporate partners is Nice Systems, a company with close links to Israeli military and intelligence agencies. The leaked documents showed that Nice Systems has been closing deals for its Italian partner all over the world including Azerbaijan and Thailand, according to Boingboing.net.
Boingboing.net points that a number of the published materials reveal that Hacking Team sold spying products to Azerbaijan — a notorious human-rights abuser. Mexico, Bahrain, Kazakhstan, Saudi Arabia, UAE, Vietnam, Russia, Honduras, Ethiopia and Egypt were among the Hacking Team’s customers.

Speaking to International Business Times UK, spokesman of the company, Eric Rabe, said that they were not hiding their activities and that there was no evidence in that 400GB of data that they had violated any law.

ABC.net writes that according to leaked documents, Australian law enforcement and intelligence services have been in secret talks with an Italian-based surveillance company notorious for helping repressive states like Sudan. Earlier this year, UK-based organization Privacy International wrote a briefing to the Italian government, outlining their concerns about Hacking Team’s operations.

“There were 46 countries altogether that have purchased Hacking Team’s products. That goes to Egypt, Bahrain, Tunisia — which we had never known about before — Azerbaijan and Sudan,” Matthew Rice from Privacy International said.

According to OCCRP (Organized Crime and Corruption Reporting Project), the leak of the Hacking Team’s data revealed that Azerbaijan’s Ministry of Defense licensed the company’s surveillance spyware Remote Control System (RCS) which helped access personal computers and smartphones. Citizen Lab documented an RCS endpoint active in Azerbaijan from June to November 2013, but is unclear who was under surveillance. Ministry of Defense of Azerbaijan purchased an RCS license via a California-based intermediary called Horizon Global Group in 2013. Hacking Team invoices show Horizon made payments of €130,000 on March 10, 2013 and €190,000 on May 30, 2013 for an initial RCS license.