SoylentNews is people
SoylentNews
Arthur T Knackerbracket has found the following story:
Facebook and its WhatsApp messenger division on Tuesday sued Israel-based spyware maker NSO Group. This is an unprecedented legal action that takes aim at the unregulated industry that sells sophisticated malware services to governments around the world. NSO vigorously denied the allegations.
Over an 11-day span in late April and early May, the suit alleges, NSO targeted about 1,400 mobile phones that belonged to attorneys, journalists, human-rights activists, political dissidents, diplomats, and senior foreign government officials. To infect the targets with NSO's advanced and full-featured spyware, the company exploited a critical WhatsApp vulnerability that worked against both iOS and Android devices. The clickless exploit was delivered when attackers made a video call. Targets need not have answered the call or taken any other action to be infected.
According to the complaint, NSO created WhatsApp accounts starting in January 2018 that initiated calls through WhatsApp servers and injected malicious code into the memory of targeted devices. The targeted phones would then use WhatsApp servers to connect to malicious servers allegedly maintained by NSO. The complaint, filed in federal court for the Northern District of California, stated:
In order to compromise the Target Devices, Defendants routed and caused to be routed malicious code through Plaintiffs' servers—including Signaling Servers and Relay Servers—concealed within part of the normal network protocol. WhatsApp's Signaling Servers facilitated the initiation of calls between different devices using the WhatsApp Service. WhatsApp's Relay Servers facilitated certain data transmissions over the WhatsApp Service. Defendants were not authorized to use Plaintiffs' servers in this manner.
Between approximately April and May 2019, Defendants used and caused to be used, without authorization, WhatsApp Signaling Servers, in an effort to compromise Target Devices. To avoid the technical restrictions built into WhatsApp Signaling Servers, Defendants formatted call initiation messages containing malicious code to appear like a legitimate call and concealed the code within call settings. Disguising the malicious code as call settings enabled Defendants to deliver it to the Target Device and made the malicious code appear as if it originated from WhatsApp Signaling Servers. Once Defendants' calls were delivered to the Target Device, they injected the malicious code into the memory of the Target Device—even when the Target User did not answer the call.
[...] Critics of the spyware industry have long said that NSO and its competitors sell products and services to oppressive governments that use them to target attorneys, journalists, human-rights advocates, and other groups that pose no legitimate threat. Citizen Lab, a University of Toronto research group that tracks hacking campaigns sponsored by governments, volunteered to help Facebook and WhatsApp investigate the attacks on its users. Citizen Lab said among those targeted in the campaign were 100 members of "civil society" from 20 countries.
Besides Facebook and WhatsApp apps and servers, NSO allegedly used servers owned by Amazon Web Services and smaller hosts Choopa and Quadrant. The leased servers connected targeted devices to a network of remote servers that were designed to distribute malware and send commands to devices once they were infected. Tuesday's complaint said that an IP address assigned to one of the malicious servers was previously used by a subdomain operated by NSO.
Now that Facebook and WhatsApp have taken the unprecedented step of suing a spyware provider for using its servers to target its users, it will be interesting to see if Amazon and the other server hosts mentioned in the complaint follow suit. So far, they haven't responded to emails seeking comment.
(Score: 3, Informative) by c0lo on Thursday October 31 2019, @06:12AM (5 children)
When it comes to simple internet arithmetic, only the alt-right doesn't add up.
First, they are divided to the point of self-inconsistency.
Then, they get even the multiplication wrong, which is not odd at all. Letting aside the ignorable truncation errors like Anglin and Yeahnahprickouless failures, just look at Bannon failing to recruit European loons; I don't want to sound like a depreciation, but one could say his efforts generate so little traction that one may call it sub-traction. Better write off all that.
for more information, consult aristarchus' submissions
Now, alt-right aside, the reminder of the internet seems pretty sane. Arithmetic-wise, that is.
(large grin)
https://www.youtube.com/watch?v=aoFiw2jMy-0 https://soylentnews.org/~MichaelDavidCrawford
(Score: 1) by fustakrakich on Thursday October 31 2019, @05:48PM (4 children)
When it comes to simple internet arithmetic, only the alt-right doesn't add up.
Neither do democrats and republicans, but they win. The problem isn't the organizations themselves, it's the credibility given to them by the audience.
La politica e i criminali sono la stessa cosa..
(Score: 0) by Anonymous Coward on Thursday October 31 2019, @09:16PM (3 children)
True, they add down, at the bottom line. And the result is a negative for the society.
Is this a problem? Why and for who?
(Score: 0) by Anonymous Coward on Friday November 01 2019, @12:40AM (2 children)
Is this a problem? Why and for who?
When the majority chooses to believe in false gods and worship golden calves, it complicates things for those who know better.
(Score: 0) by Anonymous Coward on Friday November 01 2019, @09:31AM (1 child)
Good. Because those who know better are delusional and I don't want to live the hell paved with their good intentions.
Don't get me wrong, I know we'll all live the hell no matter what; it's just from pragmatic reason, paving it with good intentions is such a waste of resources.
(large grin)
(Score: 0) by Anonymous Coward on Friday November 01 2019, @02:12PM
I know we'll all live the hell no matter what
So, don't even try, eh? Sorry, I'm one of those people that at least want a comfortable ride, a Bentley, not a beater, and on pavement, not a donkey trail.