56 Apps Spy on Your Clipboard and Apple Doesn’t Care

· Andrew Orr · Link

Researchers found 56 apps that are spying on the iOS clipboard/pasteboard, like TikTok, New York Times, Fruit Ninja, and more. There are undoubtedly many more apps engaging in this behavior. And as I wrote in February, Apple doesn’t think it’s a problem.

We found that many apps quietly read any text found in the pasteboard every time the app is opened. Text left in the pasteboard could be as simple as a shopping list, or could be something more sensitive: passwords, account numbers, etc.

NSA Spy Program Cost Taxpayers $100 Million and Was Overall Useless

· Andrew Orr · Link

Form 2015 to 2019 the National Security Agency (NSA) collected Americans’ domestic phone calls and texts. The program cost US$100 million but only one investigation was able to make use of that data.

Moreover, only twice during that four-year period did the program generate unique information that the F.B.I. did not already possess, said the study, which was produced by the Privacy and Civil Liberties Oversight Board and briefed to Congress on Tuesday.

“Based on one report, F.B.I. vetted an individual, but, after vetting, determined that no further action was warranted,” the report said. “The second report provided unique information about a telephone number, previously known to U.S. authorities, which led to the opening of a foreign intelligence investigation.”

Is Facebook Secretly Accessing Your Camera? This Man Found a Bug

· Andrew Orr · Link

Facebook logo

For years there have been anecdotes from people saying that Facebook secretly uses their phone’s microphone and/or camera for targeted advertising. Joshua Maddux tweeted about a bug he found within the Facebook app. By tapping on a profile picture and slowly sliding it down the screen, you can see his rear camera being accessed on the left hand side. He tested it using five iPhones running iOS 13.2.2.

Found a @facebook #security & #privacy issue. When the app is open it actively uses the camera. I found a bug in the app that lets you see the camera open behind your feed. Note that I had the camera pointed at the carpet.

Two Twitter Employees Charged With Spying for Saudi Arabia

· Andrew Orr · Link

A complaint unsealed in the U.S. District Court in San Francisco revealed that two Twitter employees have been charged with spying for Saudi Arabia.

The complaint also alleged that the employees — whose jobs did not require access to Twitter users’ private information — were rewarded with a designer watch and tens of thousands of dollars funneled into secret bank accounts. Ahmad Abouammo, a U.S. citizen, and Ali Alzabarah, a Saudi citizen, were charged with acting as agents of Saudi Arabia without registering with the U.S. government.

I wonder if this is a separate incident from Saudi’s Twitter mole.

Researchers Test Phones to See if They're Secretly Listening

· Andrew Orr · Link

Siri, are you spying on me?

Researchers put an iPhone and a Samsung phone into a room, playing cat and dog food advertising for 30 minutes.

The security specialists kept apps open for Facebook, Instagram, Chrome, SnapChat, YouTube, and Amazon with full permissions granted to each platform…They repeated the experiment at the same time for three days, and noted no relevant pet food adverts on the “audio room” phones and no significant spike in data or battery usage.

The results won’t surprise those in the information security industry who’ve known for years that the truth is that tech giants know so much about us that they don’t actually need to listen to our conversations to serve us targeted adverts.

For some people, maybe the belief that phones secretly spy on us is less terrifying than learning how much data these corporations actually have on us.

This Google Nest Device Has a Secret Microphone

· Andrew Orr · Link

The Nest Secure smart home hub has had a secret microphone this whole time. But poor Google just plain forgot to tell us.

On Tuesday, a Google spokesperson told Business Insider the company had made an “error.” “The on-device microphone was never intended to be a secret and should have been listed in the tech specs. That was an error on our part,” the spokesperson said.

Silly Google, tricks are for kids. Also, get a HomePod.

A Spy Linked to Black Cube Was Caught

· Andrew Orr · Link

DJ Pangburn tells the story of how a spy linked to Black Cube was caught by Associated Press reporters and Citizen Lab.

Black Cube, which is based in Tel Aviv and London, has used undercover agents to approach women who had accused movie producer Harvey Weinstein of sexual misconduct, and dispatched operatives to probe Obama national security aide Ben Rhodes and another White House staffer involved with the Iran nuclear deal.

It’s a long read but a fascinating story.

MacBook Pro, FreezerGate and a Tempest in a Teapot

· John Martellaro · Particle Debris

MacBook Pro (2018)

There was a disruptive event this week in the Apple community that made screaming teenage girls at a concert look calm and sensible by comparison.

iOS 10 Spying Possible With iCloud Backups

· Andrew Orr · News

A scary piece from Motherboard brings to attention a tool for iOS 10 spying. A company called Mobistealth sells a special monitoring tool that can pull data from iCloud backups. And the device doesn’t need to be jailbroken to work.