Pandora's Box : Reflecting on 20 years of drone targeted killing
https://invidious.fdn.fr/watch?v=YgeL1RWW8Gw

On 3rd November 2002, a US #Predator drone launched two missiles at a vehicle travelling through the desert in Marib province, #Yemen. The drone’s target was al-Qaeda leader Qa’id Salim Sinan al-Harithi and this was the first of what has proved to be two decades of US drone targeted assassinations ‘beyond the battlefield’. An untold number of such operations have taken place across the globe since, with a significant number of such strikes causing serious civilian casualties. Despite public controversy and grave legal and ethical objections, the practise has spread among other drone operators including the UK, #France and Turkey.

#Drone #Wars invited a number of experts to mark 20 years of drone targeted killings, to offer some reflections on the human, legal and political cost of the practice and to discuss how we can ensure that drone operators abide by international law in this area

#DroneWarsUK

Inner workings revealed for “Predator,” Android malware that exploited 5 0-days
Article, Comments

#NSO #Predator #spyware
https://t.me/NoGoolag/19455?single

Beyond the Veil of Surveillance: Private Sector Offensive Actors (PSOAs) – SOCradar - June 2023

The global cyber-surveillance industry has made “surveillance as a service” that includes various tools and advanced malware such as ‘Pegasus,’ ‘DevilsTongue,’ and ‘Predator‘ widely accessible, empowering both government and non-government entities with capabilities exclusive to highly sophisticated actors.

Individuals can protect themselves against attacks that exploit simple mistakes victims make, such as clicking on a link, opening untrusted documents, or neglecting device updates, by adopting basic security measures like maintaining awareness, enabling multi-factor authentication, and keeping devices and applications up-to-date. However, PSOAs also employ advanced techniques like zero-day and zero-click exploits that require no victim interaction, enabling surveillance

#PSOAs #CommercialSpyware
#spyware #Pegasus #Predator #DevilsTongue

The U.S. government has banned European commercial spyware manufacturers Intellexa and Cytrox - BleepingComputer - July 2023

The U.S. government has banned European commercial spyware manufacturers Intellexa and Cytrox, citing risks to U.S. national security and foreign policy interests.

The Commerce Department's Bureau of Industry and Security (BIS) added four commercial entities to its Entity List: Intellexa S.A. from Greece, Intellexa Limited from Ireland, Cytrox Holdings Zrt from Hungary, and Cytrox AD from North Macedonia.

This decision was motivated by the four companies' involvement in trafficking cyber exploits used to gain unauthorized access to the devices of high-risk individuals worldwide, threatening their security and privacy

#Intellexa #Cytrox #Greece #Macedonia #Hungary #Ireland #EU #US #Spyware

#Predator

Who are Intellexa, the Irish spyware company placed on a US ‘blacklist’? – The Irish Times – July 2023

The Intellexa group produces a software product called Predator that can secretly take over the microphone and camera on a targeted mobile phone and turn it into a spying device.

Intellexa Ltd, a company incorporated in Ireland three and a half years ago, was this week labelled by the US state department as engaging in activities “contrary to the national security or foreign policy interests of the United States”.

The holding company’s main shareholder has an address in Ajman, a city in the United Arab Emirates.

Its Irish financial accounts from 2021 show the bulk of the group’s money was made from sales in the Middle East, which accounted for €29.5 million of its €34.3 million in sales that year.

#Predator #Intellexa #Ireland

PREDATOR IN THE WIRES: Ahmed Eltantawy Targeted with Predator Spyware After Announcing Presidential Ambitions | The Citizen Lab –

Between May and September 2023, former Egyptian MP Ahmed Eltantawy was targeted with Cytrox’s Predator spyware via links sent on SMS and WhatsApp. The targeting took place after Eltantawy publicly stated his plans to run for President in the 2024 Egyptian elections.

In August and September 2023, Eltantawy’s Vodafone Egypt mobile connection was persistently selected for targeting via network injection; when Eltantawy visited certain websites not using HTTPS, a device installed at the border of Vodafone Egypt’s network automatically redirected him to a malicious website to infect his phone with Cytrox’s Predator spyware.


#Predator #Cytrox #Egypt

Madagascar Drops Predator Spyware on Citizens in Watering Hole Attack

Madagascar's government services — such as police or domestic intelligence — have apparently purchased and leveraged Predator to conduct political domestic surveillance ahead of a presidential election in November.

According to research by Sekoia, the effort was a watering hole attack: Links to download the spyware were added to WordPress blogs containing genuine articles taken from the Madagascan newspaper Midi Madagasikara. Anyone looking for the legitimate story could have ended up on the malicious page and gone on to download the spyware, according to the firm. The malicious links were obscured with URL shorteners.

Active Lycantrox infrastructure illumination - Sekoia.io

#Predator #Intellexa #spyware #Madagascar

Global: ‘Predator Files’ investigation reveals catastrophic failure to regulate surveillance trade  | Amnesty International –

“The ‘Predator Files’ investigation shows what we have long feared: that highly invasive surveillance products are being traded on a near industrial scale and are free to operate in the shadows without oversight or any genuine accountability. It proves, yet again, that European countries and institutions have failed to effectively regulate the sale and transfer of these products,”

A comprehensive report on the Amnesty International Security Lab’s findings, ‘The Predator Files: Caught in the Net’, will be published on 9 October. 

#Predator #Intellexa #Israel #EU #Spyware

The Predator Files: Caught in the Net | Amnesty International - October 2023 –

This report lays out the human rights implications of the Predator Files disclosures, which show how a suite of highly invasive surveillance technologies supplied by the Intellexa alliance is being sold and transferred around the world with impunity. These findings make clear, yet again, that the unchecked sale and transfer of surveillance technologies could continue to facilitate human rights abuse on a massive global scale, as companies are still being allowed to freely sell and transfer their wares in utmost secrecy.

#Predator #Intellexa

The Predator Files: Caught in the Net - Amnesty International – October 2023

https://www.amnesty.org/en/wp-content/uploads/2023/10/ACT1072452023ENGLISH.pdf
#Predator #Intellexa

Kaspersky reveals new method to detect Pegasus spyware | Kaspersky –

Kaspersky's Global Research and Analysis Team (GReAT) has developed a lightweight method to detect indicators of infection from sophisticated iOS spyware such as #Pegasus, #Reign, and #Predator through analyzing Shutdown.log, a previously unexplored #forensic artifact.

The company’s experts discovered Pegasus infections leave traces in the unexpected system log, Shutdown.log, stored within any mobile #iOS device’s sysdiagnose archive. This archive retains information from each reboot session, meaning anomalies associated with the Pegasus malware become apparent in the log if an infected user reboots their device.

Among those identified were instances of ”sticky“ processes impeding reboots, particularly those linked to Pegasus, along with infection traces discovered through cybersecurity community observations.

#Pegasus #NSO #Reign #Predador #iOS #Spyware #Malware #Kapersky #MobileForensics #CyberSec

Researchers spot new infrastructure likely used for Predator spyware

"New research from Recorded Future’s Insikt Group examines newly discovered infrastructure related to the operators of Predator, a mercenary mobile spyware. This infrastructure is believed to be in use in at least eleven countries, including #Angola, #Armenia, #Botswana, #Egypt, #Indonesia, #Kazakhstan, #Mongolia, #Oman, the Philippines, Saudi Arabia (#KSA), and #Trinidad and #Tobago.

Notably, this is the first identification of Predator customers in #Botswana and the #Philippines. Despite being marketed for counterterrorism and law enforcement, Predator is often used against civil society, targeting journalists, politicians, and activists, with no specific victims or targets currently identified in this latest activity."

#Predator #Cytrox #Intellexa

How to detect Predator spyware on Phone (iOS) | OneJailbreak - 21/03/2024

Cytrox, a prominent Macedonian cybersecurity firm, gained notoriety in 2021 for its development and dissemination of the Predator spyware targeting iPhones. This sophisticated spyware successfully infiltrated iOS 14.6, the latest OS version at the time, through the utilization of single-click links distributed via the popular messaging platform, WhatsApp. Predator persists after reboot using the iOS automation feature.

- Cytrox (10 posts)
- Predator ( 25 posts)
#Predator #Cytrox #Apple #IoS

Predator Spyware Operators Rebuild Multi-Tier Infrastructure to Target Mobile Devices

New research from Recorded Future’s Insikt Group examines newly discovered infrastructure related to the operators of Predator, a mercenary mobile spyware. This infrastructure is believed to be in use in at least eleven countries, including Angola, Armenia, Botswana, Egypt, Indonesia, Kazakhstan, Mongolia, Oman, the Philippines, Saudi Arabia, and Trinidad and Tobago. Notably, this is the first identification of Predator customers in Botswana and the Philippines.

Despite being marketed for counterterrorism and law enforcement, Predator is often used against civil society, targeting journalists, politicians, and activists, with no specific victims or targets currently identified in this latest activity.

#Predator #Intellexa