This report describes our investigation into the apparent use of Sandvine/Procera Networks Deep Packet Inspection (DPI) devices to deliver nation-state malware in Turkey and indirectly into Syria, and to covertly raise money through affiliate ads and cryptocurrency mining in Egypt.

Bu rapor, Sandvine/Procera Networks Derin Veri Analizi (DPI) cihazlarının, Türkiye’de ve dolaylı olarak Suriye’de devlet menşeili kötücül yazılım yaymak; Mısır’da ise reklam ve kripto para madenciliği marifetiyle gizlice para toplamak için kullanımına yönelik araştırmamızı anlatmaktadır.  

يشرح هذا التقرير تحقيقنا عن استخدام واضح لأجهزة فحص عميق للحزم (DPI) من شركة ساندفين\بروكيرا لنشر البرامج الضارة في تركيا وبشكل غير مباشر إلى سوريا، وجمع الأموال سرا من خلال الإعلانات التابعة لتعدين العملات الرقمية في مصر.

This report describes an inexpensive and technically simple phishing operation. It shows that the continued low adoption rates for digital security features, such as two factor authentication, contribute to the low bar to entry for digital espionage.

加拿大多倫多大學公民實驗室（Citizen Lab）研究表明微信從一年多前就開始屏蔽與“十九大”有關的關鍵詞，隨著十九大日期逼近，該關鍵詞庫也在不斷更新。關鍵詞涵蓋內容非常廣泛，不僅包括了批評性言論，許多對中央政策和黨意識形態的中性指稱也被過濾。

加拿大多伦多大学公民实验室（Citizen Lab）研究表明微信从一年多前就开始屏蔽与“十九大”有关的关键词，随着十九大日期逼近，该关键词库也在不断更新。关键词涵盖内容非常广泛，不仅包括了批评性言论，许多对中央政策和党意识形态的中性指称也被过滤。

The 19th National Communist Party Congress was held from October 18-24 2017. WeChat, China’s most popular chat app, blocked a broad range of content related to the Congress.

加拿大多伦多大学公民实验室（Citizen Lab）研究人员发现了多个假冒中文新闻网站的域名和网站。这些中文新闻网站包括中国数字时代 明镜新闻 大纪元新闻 香港01 和 博闻社，它们经常报道被中国政府认为是禁忌或具有争议性的话题。

This report reveals a campaign of reconnaissance, phishing, and malware operations that use content and domains made to mimic Chinese language news websites.

In this report, we confirm the use of the services of Canadian company Netsweeper, Inc. to censor access to the Internet in the Kingdom of Bahrain.