Security News

New research indicates that over 80,000 Hikvision surveillance cameras in the world today are vulnerable to an 11 month-old command injection flaw. Hikvision - short for Hangzhou Hikvision Digital Technology - is a Chinese state-owned manufacturer of video surveillance equipment.

The UK's Parliament has ended its presence on TikTok after MPs pointed out the made-in-China social media service probably sends data about its users back to Beijing. The existence of the account saw half a dozen MPs write to the presiding officers of the Houses of Lords and Commons - Lord McFall of Alcluith and Sir Lindsay Hoyle, respectively - to ask for the account to be discontinued.

TheMarkup has an extensive analysis of connected vehicle data and the companies that are collecting it. The Markup has identified 37 companies that are part of the rapidly growing connected vehicle data industry that seeks to monetize such data in an environment with few regulations governing its sale or use.

The new proposal-championed by Mayor London Breed after November's wild weekend of orchestrated burglaries and theft in the San Francisco Bay Area-would authorize the police department to use non-city-owned security cameras and camera networks to live monitor "Significant events with public safety concerns" and ongoing felony or misdemeanor violations. Currently, the police can only request historical footage from private cameras related to specific times and locations, rather than blanket monitoring.

San Francisco lawmakers are mulling a proposed law that would allow police to use private security cameras - think: those in residential doorbells, medical clinics, and retail shops - in real time for surveillance purposes. The new proposal - championed by Mayor London Breed after November's wild weekend of orchestrated burglaries and theft in the San Francisco Bay Area - would authorize the police department to use non-city-owned security cameras and camera networks to live monitor "Significant events with public safety concerns" and ongoing felony or misdemeanor violations.

Report by Georgetown's Center on Privacy and Technology published a comprehensive report on the surprising amount of mass surveillance conducted by Immigration and Customs Enforcement. Our two-year investigation, including hundreds of Freedom of Information Act requests and a comprehensive review of ICE's contracting and procurement records, reveals that ICE now operates as a domestic surveillance agency.

The UK's Information Commissioner's Office has issued its third largest ever fine of £7.5m. It was imposed on Clearview AI, the controversial facial recognition company that has already been on the wrong end of similar decisions from regulators in Italy, France and Australia. It's not just your face: Surveillance technology is expanding at such a pace that it's now possible to analyze the way you walk, your heartbeat, breathing pattern, and, controversially, emotions.

The U.S. government ordered two travel companies to provide information about the movement of a Russian citizen suspected of hacking. The surveillance data was used as part of an investigation by the U.S. Secret Service, according to court documents recently unsealed.

“Google Maps Adds Shortcuts through Houses of People Google Knows Aren’t Home Right Now.” Excellent satire.

A new report from Google's Threat Analysis Group exposes the use of five different zero-day vulnerabilities targeting Chrome browser and Android operating systems. Google assesses with high confidence that these exploits have been packaged by a single commercial surveillance company named Cytrox.