Search Results for: NSO
Chilling Effects: Online Surveillance and Wikipedia Use
In “Chilling Effects: Online Surveillance and Wikipedia Use,” Citizen Lab Research Fellow Jon Penney analyzes the fall of traffic to Wikipedia articles about terror groups and their techniques after the Snowden revelations.
Chilling Effects: Insights on how laws and surveillance impact people online
April 27 – Boston, Massachusetts
Between Hong Kong and Burma: Tracking UP007 and SLServer Espionage Campaigns
In this research note, we analyze a malware campaign targeting Hong Kong democracy activists. Two new malware families are used in the campaign that we name UP007 and SLServer. Previous reports have shown overlap in the tactics, tools, and procedures used in this campaign in other operations targeting groups in Burma, Hong Kong, and the Tibetan community.
WUP! There It Is: Privacy and Security Issues in QQ Browser
This report describes privacy and security issues with the Windows and Android versions of QQ Browser. Our research shows that both versions of the application transmit personally identifiable data without encryption or with easily decrypted encryption, and do not adequately protect the software update process.
Researchers identify major security and privacy issues in Popular China Browser Application, QQ
A new report from the University of Toronto’s Citizen Lab identifies security and privacy issues in QQ Browser, a mobile browser produced by China-based Internet giant Tencent, which may put many millions of users of the application at risk of serious compromise.
Shifting Tactics: Tracking changes in years-long espionage campaign against Tibetans
This report describes the latest iteration in a long-running espionage campaign against the Tibetan community. We describe how the attackers continuously adapt their campaigns to their targets, shifting tactics from document-based malware to conventional phishing
Privacy International report cites Citizen Lab research
Privacy International (PI) latest report, entitled “The President’s Men?,” explores the role of Egypt’s Technical Research Department (TRD), a secret unit in the country’s intelligence infrastructure. In the report, PI cite Citizen Lab research on FinFisher and Hacking Team.
Baidu’s and Don’ts: Privacy and Security Issues in Baidu Browser
This report describes privacy and security issues with Baidu Browser, a web browser for the Windows and Android platforms. Our research shows that the application transmits personal user data to Baidu servers without encryption and with easily decryptable encryption, and is vulnerable to arbitrary code execution during software updates via man-in-the-middle attacks. Much of the data leakage is the result of a shared Baidu software development kit, which affects hundreds of additional applications.