This report analyzes a campaign of targeted attacks against an NGO working on environmental issues in Southeast Asia. Our analysis reveals connections between these attacks, recent strategic web compromises against Burmese government websites, and previous campaigns targeting groups in the Tibetan community.

Citizen Lab Communications Officer and Researcher Irene Poetranto speaking at a number of cybersecurity events in Latin America, including the second annual Colombian Internet Governance Forum.

This post analyzes targeted malware attacks against groups in the Tibetan diaspora and Hong Kong that leverage the CVE-2014-4114 vulnerability

July 1-3 – Macau

Hundreds of members of the Tibetan community are being targeted by email-based malware attacks that leverage the March 10 Tibetan Uprising anniversary as a theme. This report analyzes two March 10 related attacks. One using a new malware family we call MsAttacker , and another using the ShadowNet malware family and command and control infrastructure related to previous campaigns that targeted the Tibetan community.

Citizen Lab is sending an open letter to Hacking Team, providing a copy of our latest report on the company and highlighting our reasons for concern from these latest findings.

The hearing focused on the impact of digital surveillance and intrusion systems on human rights in third world countries. McKune spoke on relevant Citizen Lab research and the ways that policy decisions can reflect these findings.

Citizen Lab partner and Cyber Stewards Network member Tibet Action Institute (TAI) released a documentary entitled “Tibet: Frontline of the New Cyberwar.”

This report describes a malware attack on a Syrian citizen media group critical of Islamic State of Iraq and Syria (ISIS). Though we are unable to conclusively attribute the attack to ISIS or its supporters, a link to ISIS is plausible. The malware used in the attack differs substantially from campaigns linked to the Syrian regime, and the attack is against a group that is an active target of ISIS forces. In the interest of highlighting a developing threat, this post analyzes the attack and provides a list of Indicators of Compromise.