Seth Hardy

Publications

Malware Attack Targeting Syrian ISIS Critics

This report describes a malware attack on a Syrian citizen media group critical of Islamic State of Iraq and Syria (ISIS). Though we are unable to conclusively attribute the attack to ISIS or its supporters, a link to ISIS is plausible. The malware used in the attack differs substantially from campaigns linked to the Syrian regime, and the attack is against a group that is an active target of ISIS forces. In the interest of highlighting a developing threat, this post analyzes the attack and provides a list of Indicators of Compromise.

December 18, 2014

Targeted Surveillance

research → Report

Asia Chats

LINE Keyword Filtering Upgraded to Include Regular Expressions

This report is part of a series which analyzes regionally-based keyword censorship in LINE, a mobile messaging application developed by LINE Corporation. The most recent update to the censorship keyword list include a number of new entries as well as the introduction of regular expressions for more advanced keyword matching.

October 7, 2014

Censorship

research → External Publication

Targeted Threat Research at USENIX Security 2014

At USENIX Security 2014 Citizen Lab researchers presented two papers on targeted threats against civil society communities as part of a dedicated session on the topic entitled Tracking Targeted Attacks against Civilians and NGOs.

September 8, 2014

Targeted Surveillance

News

News → In the Media

Malware Attack Targeting Syrian ISIS Critics

Asia Chats

LINE Keyword Filtering Upgraded to Include Regular Expressions

Targeted Threat Research at USENIX Security 2014

Seth Hardy talks to CBC Radio about RATS

Citizen Lab research featured in coverage of BlackShades bust

Citizen Lab Senior Security Analyst Seth Hardy in CTV News piece