Shhh… What’s this Google’s “Project Zero”?

Several reports have surfaced the last 24 hours about Google’s “Project Zero”, essentially the online search giant’s very own in-house super-geeks team of security researchers and hackers now devoted to finding security flaws in non-Google, third-party software “across the internet”, especially zero-day flaws (newly discovered bugs) – also known as “zero-day” vulnerabilities, those hackable bugs that are exploited by criminals, state-sponsored hackers and intelligence agencies.

Now the question is, is this a Google PR stunt? Read this and that articles and decide for yourself.

Shhh… GCHQ’s Hacking Tools Leaked

The latest Snowden revelations include a leaked document that lists the cyber-spy tools and techniques used by the American NSA’s UK counterpart GCHQ, according to a BBC News report.

More disturbing point: the GCHQ apparently used its toolbox to find ways to “alter the outcome of online polls, find private Facebook photos, and send spoof emails that appeared to be from Blackberry users, among other things”.

Shhh… Guide to Safer Computing

The (Globe & Mail) Paranoid Computer User’s Guide to Privacy, Security and Encryption

A nice reference and handy guide.

Shhh… was Snowden Tricked?

Today is one year to the day Edward Snowden revealed himself to the world from a hotel in Hong Kong as the source of the NSA leaks.

How timely, there’s a report in the Daily Mail that former KGB agent Boris Karpichkov said the Russian spies agencies (now known as the Federal Security Service (FSB) and Foreign Intelligence Service (SVR))have identified Snowden as a potential defector “as far back as 2007″ and the Russian spies have ‘tricked’ him into asking Moscow for asylum by posing as diplomats.

“It was a trick and he fell for it. Now the Russians are extracting all the intelligence he possesses,” according to Karpichkov.

Would you believe it?

Post-Snowden, the US Reaps a Security Whirlwind

From China with Love

It’s the one year anniversary of what is now known as the Snowden revelations, which appeared on June 5 and June 9 when The Guardian broke news of classified National Security Agency documents and Edward Snowden revealed himself in Hong Kong as the source of those leaks.

There is still much to decipher from the chronology of events in the aftermath and the sudden global awakening to the end of privacy. Among the impacts on the personal, business and political fronts, one interesting salient feature is the hypocritical rhetorical spats between the US and China in recent weeks, which could set the undertone for US-Sino relations for years to come.

Snowden said his biggest fear is that nothing would change following his bold decision a year ago.

You can find the entire column here.

Shhh… Microsoft, the NSA & You

End of Wins XP is No Dawn for Wins 8

Don’t be fooled into upgrading to Wins 8 after Microsoft recently ended support for the popular Wins XP OS. High time to switch to Linux instead – as I did 3 years ago.

Read this nicely written piece on those long held conspiracy theories about Microsoft and the NSA.

Do You Need the World’s Most Secure Email?

Or is Privacy Even Possible?

Is privacy and a secure email on your wish list? How does the “most secure email program” sound to you? Or rather, is that still possible in this post-Snowden era? How about a completely secure search engine?

Find out more from my latest column here and there.

More US Cyber-Spying?

Defense Secretary Hagel Faces a Tough Time Explaining This to China

US Defense Secretary Chuck Hagel announced at the National Security Agency headquarters last Friday that the Pentagon would triple its cyber security staff – to 6,000 – over the next few years to defend against computer-based attacks.

That’s great. I wonder how Hagel is going to face the music when he visits China later this week where he expects to be grilled on the latest NSA revelations and aggressive US cyber spying. Just last month, it was revealed that the NSA has for years assessed the networks of Chinese telecommunications company Huawei, which the US House of Representatives has long advocated that US companies should avoid on the grounds of national security.

Find out more from my latest column here and there.

When the Boss Hacks

Hot Mails

There is an unspoken underlying tension in the workplace on privacy matters relating to office telephones, computers, emails, documents, CCTV cameras, etc. Employers like to think they reserve the right to probe what they consider their property while employees believe their turf is clear from invasion.

This tension is nowhere better exemplified than by reports last Thursday that operatives with US tech giant Microsoft Inc. hacked into a blogger’s Hotmail account in the course of an investigation to try to identify an employee accused of stealing Microsoft trade secrets.

And it is not uncommon in my business to encounter client complaints about potential espionage and other alleged misconduct by their employees, leading to their consideration to search the (company-owned) computers, emails, phone records, etc.

Find out more from my latest column here and there.

The Growing Hacker Epidemic

Time for Standardized Data Breach Law

The latest hack on Bitcoin exchange Mt.Gox, leading to its sudden bankruptcy late February, and the spate of recent cyber-attacks have prompted warnings of a wave of serious cybercrimes ahead as hackers continue to breach the antiquated payment systems of companies like many top retailers.

Stock exchange regulators like the American SEC have rules for disclosures when company database were hacked but the general public is often at the mercy of private companies less inclined or compelled to raise red flags.

The private sector, policymakers and regulators have been slow to respond and address the increasing threats and sophistication of cybercriminals – only 11 percent of companies adopt industry-standard security measures, leaving our personal data highly vulnerable.

Time for a standardized data breach law?

Find out more from my latest column posted here and there.

The Perilous Job of Auditing China

Sometimes Auditors Have to Flee for Their Lives

Who should be most afraid of auditing in China – a US examiner, the Chinese regulators or the companies being audited? Pick those doing the examining. For all of the accounting profession’s image as a dull and boring occupation, in China it isn’t. Sometimes it can be downright dangerous.

You can find the entire column here.

Coping With Offline Snoops

Latest NSA Revelations Not the End of the World

The latest NSA revelations about their ability to penetrate into computers that are not even connected to the Internet may have caused deep concerns but there are at least 2 defensive measures one can undertake.

You can find out more from my latest column here.

Cyberborgs for Cyber Wars

Creating Giants to Battle Snoops by NSA and the Likes

Size matters in the covert wars of cyber espionage – even more so when two Herculean cyber warriors merge on Wall Street. US cyber-security firm FireEye Inc. announced the acquisition of Mandiant Corp. late last week in a deal worth more than US$1 billion, generating not just an immediate surge in FireEye’s share price but a Mexican wave across the world.

This merger and creation of a next-generation cyber-security firm – FireEye is a provider of security software for detecting cyber-attacks and Mandiant a specialist firm best known for emergency responses to computer network breaches – comes at a time when old-style anti-virus software took a dive, with governments, companies and private citizens across the globe hunting desperately for more effective defensive measures to fend off sophisticated hackers and state-sponsored cyber-attacks.

But the interesting and ironic twist to this FireEye and Mandiant deal is that many of Mandiant’s employees came from the US intelligence world and the Defense Department.

Please find the entire column here and there.

Shhh… the NSA’s special app for iPhones

The NSA has a special DROPOUTJEEP program for all Apple devices including the iPhones to intercept all SMS messages, collect contact lists, locate a phone (and its user/owner) and also activate the device’s microphone and camera with 100 percent success rate, according to a leaked document obtained by German magazine Der Speigel and a presentation by security researcher/independent journalist Jacob Applebaum, who said:

“[The NSA] literally claim that anytime they target an iOS device that it will succeed for implantation. Either they have a huge collection of exploits that work against Apple products, meaning that they are hoarding information about critical systems that American companies produce and sabotaging them, or Apple sabotaged it themselves. Not sure which one it is. I’d like to believe that since Apple didn’t join the PRISM program until after Steve Jobs died, that maybe it’s just that they write sh—y software. We know that’s true.”

I wrote in Sept 2012 that the NSA and Defense Information Systems Agency (the unit that manages all communications hardware needs for the Pentagon) issued their own specially developed smartphones for their top level officials. And they chose Android – no surprise now?!

Check out this NSA doc and YouTube presentation.

What Snowden Has Shown the World

The Year 2014 Equals 1 P.S.

Historians can be expected to mark June 9, 2013 as a significant date in the evolution of the surveillance and monitoring of mankind and peg 2013 alongside George Orwell’s Nineteen Eighty-Four, making 2014 officially 1PS – one year Post Snowden.

There is justification for this chronological divide. The world will be working its way out of the events of last June for years and decades to come, trying to come to grips with the astonishing ability of electronic snoopers to surreptitiously monitor the details of millions of lives.

It appears that they will continue to be able to do so despite growing knowledge of the pervasive level of this surveillance.

Please find the full column here.

The Walls that Spy

Bad news for those who say ‘If only the walls could talk’. They can.

Hotel rooms are never safe havens as spies know only too well, but warnings of the risk often fall on deaf ears, to the sorrow or sometimes embarrassment of the tenants. Two recent news stories and the episode that I describe below hopefully change the public perceptions.

The stories describe how the UK’s Government Communications Headquarters (GCHQ) has traced and wiretapped top diplomats in their hotel suites over the past three years through its secret “Royal Concierge” program, which tracked some 350 hotels across the world, according to documents exposed by the former US intelligence contractor turned fugitive Edward Snowden.

Separately, it emerged in media reports last week that US President Barack Obama takes extreme measures to ward off any threats of secret video or audio surveillance by setting up an anti-spy portable tent in his hotel suite when traveling abroad, including in allied countries that the US allegedly targeted in conducting massive surveillance against foreign leaders and citizens. That amplifies the deep US concerns about being spied upon as much as spying on its friends and risks inviting potential hypocritical labeling of the White House.

I have written previously about the risk but there is much more than meets the eye, including an interesting exchange I once had with a foreign agent about the spy trade and hotel room risks.

Please find the entire column here and there.

Security Lapse at the EU Summit

Security officials leave an easily tapped device in closed-door conferences of European leaders

In photos made public of several closed-door bilateral meetings between various European leaders last week, there were two common denominators. One was the presence of the French President Francois Hollande. The other was the VoIP phone on the desk. The question is: What is that phone doing there?

In the middle of a major brouhaha over charges that the US National Security Agency had allegedly monitored the phone conversations of foreign diplomats, the officials in those photos were speaking to each other in the presence of this easily-tapped device.

What these these photos highlight is a security lapse, thus generating many questions: What else have European countries missed and not done to better protect their leaders from American or any eavesdropping?

You can find the entire column here and there.

Shhh… 172 Ways to Keep Your Online Activities Secure

The NSA may now be cracking on the Tor project after the forced shutdown of Lavabit, 2 of the many tools in the arsenal of Edward Snowden and the likes. But there are many other ways to secure your online activities, including secured phone calls in case you are also concerned about eavesdropping.

Here’s a handy list of 172 tools you can use, compiled by the folks at Backgroundchecks.org .

Tinker Data Bankers Spies

Hong Kong Tightens Rules on IPOs – The Territory Gets Tough on Regulating Domestic and International New Listings

Starting Oct. 1, in a worst-case scenario, bankers and listing professionals could be put behind bars for their role in public listings in Hong Kong, up till recently a top capital-raising center and magnet for initial public offerings from Chinese companies. To top it off, the current clampdown on data and corporate investigations in mainland China further complicates the situation.

The controversy stems from measures announced by the Hong Kong Securities and Futures Commission in December 2012 to step up the regulatory regime for listing sponsors, including clarifications of their liabilities – up to civil and criminal liabilities – to be put into effect Oct. 1 this year, and will apply to all public listings filed from that date. These measures supplement the new listing rules previously announced by The Stock Exchange of Hong Kong to promote more extensive and thorough due diligence of listing candidates.

You can find the entire column here and there.

The Demise of the Cloud

NSA Snooping Compromises the Cloud Computing Industry

Facebook CEO Mark Zuckerberg complained last week that trust in social networks and Internet companies has dived ever since cyber snooping and spying activities by the US National Security Agency began to make global headlines earlier this year.

It is no surprise. In fact, as fugitive former NSA operative Edward Snowden pointed out, the encryption system adopted by the International Organization for Standardization and its 163 member countries were actually written by the NSA, convincing proof that online platforms being used by Internet companies and the commercial world, including banks, could in fact be easily compromised by the NSA.

In other words, the NSA designed their own secret back door into the global encryption system for their convenience. So until the encryption system has been overhauled and taken away from NSA’s control, no server and no cloud service provider is secure enough to be entrusted with any confidential data.

So why then are blindly trusting companies still moving ever more data into the cloud and onto servers, where online access to highly confidential information related to clients, customers, employees, deals, business plans and performances, etc., is available to the US snoops?

You can find the entire column here.

Your Computer May Be Watching You

No Cheeze Please

If you have ever got the feeling someone was watching you while you were using your computer, tablet or smartphone, it could be because someone is. You may well be sitting there while someone, somewhere out there, is commanding your electronic device to transmit pictures of you and what you are doing.

You might assume that if you haven’t given electronic orders to the camera, it’s shut off. But this might send a chill down your back. The friendly folks at the US’s National Security Agency – the omnipresent spy agency dominating the news, and not in a good way – recently released a little two-page primer on tips to “harden” your computer against attacks.

If even the NSA doesn’t trust those Webcams, why should you?

Plus, there are reportedly now special spy apps designed for smartphones. You don’t have to be interested in them. You don’t have to buy and install these apps. More importantly, you don’t even need to know about them. Their very existence simply makes everyone highly vulnerable.

You can find the entire column here and there.

For Whom the Whistle Blows

That Whistle Could Have You Behind Bars

For Whom the Bell Tolls was a 1940 novel by Ernest Hemingway about an American in the International Brigades who blows up a bridge during the Spanish Civil War with death the ultimate sacrifice.

But what about For Whom The Whistle Blows? That informs the current debate about Bradley Manning and Edward Snowden, two Americans who risked their lives by leaking documents on US foreign policy and covert cyber-snooping activities during the US war on terrorism. Are they prisoners – one in a US army stockade and the other in exile in Moscow – of conscience?

In contrast to the contemptuous labels and espionage charges the US government slapped on the two, one a US Army private first class and the other a former government intelligence contractor, both claimed their motive was to spark public debate and promote greater transparency in US government conduct. Whistle-blowers in general have all along been quite rightly championed and heralded by the authorities, media and the general public – at least by those whose oxen are not being gored from the revelations. Such are the dichotomies of modern history.

You can find the entire column here and there.

Was Edward Snowden A Spy?

Or was Dick Cheney looking for a cheap excuse to play politics?

Edward Snowden with his sudden departure from Hong Kong for Moscow and eventually elsewhere, possibly a country hostile to the US, would reignite the question if he’s a spy or double agent.

But the allegations made last week by former US vice president Dick Cheney that the National Security Agency whistle-blower Edward Snowden could be a spy for China is off track, and he knows it, and are a deliberate public distraction as the Obama administration searches for scapegoats in the midst of defending the NSA surveillance programs with their one and only trump card.

Snowden left with his passport annulled, a warrant on his head plus criminal charges of espionage, theft and communicating classified intelligence to unauthorized persons.

But here is the dichotomy: While the corporate world is still coping with US regulations on better corporate governance practices, where does the notion of whistleblowing stand right now?

Please read the entire column here.

The Guardian Online Interview with Snowden

Check out the Guardian online interview with Edward Snowden here. Thousands of comments from readers and still counting.

If I Were Snowden

The Art of Hiding and Being Undetectable

The world knows by now Edward Snowden, the former private contractor for the National Security Agency who leaked revelations of massive US clandestine electronic surveillance and eavesdropping programs, is still at large in Hong Kong.

You might wonder how Snowden managed to remain obscure, both in the physical and cyber spheres.

Hong Kong, a former British colony now a major global financial center and Special Administrative Region of China, is one of the most densely populated areas in the world with a population of over seven million spread over just 1,104 square kilometers.

But it is precisely for these reasons that Hong Kong may be the ideal place. One could be easily spotted or located or one could capitalize on the dense crowd and modern infrastructure to negotiate his way unnoticed in the physical, digital and cyber dimensions.

And Snowden sure knows how to do that.

So what would you do if you were Snowden or if you simply needed to hide and remain undetectable for a period of time?

Please read the full column here and there.

The Enemies of the US

Take your pick: Edward Snowden, Internet and phone service providers, or just everybody?

The furor over the past week about how US intelligence agencies like the National Security Agency and the Federal Bureau of Investigation have for years scooped up massive loads of private communications data raises one critical and distressing question.

Who, worldwide and in the US, are the general public supposed to trust now that it seems all forms of digital and cyber communications risk being read by the American authorities? The Americans, it seems, don’t believe it’s that big a deal. By 62-34, according to the latest poll by Pew Research and the Washington Post, they say it’s more important to investigate the threats than protect their privacy. But what about the rest of the world?

The immediate acknowledgement, rather than point blank denial, of the massive clandestine eavesdropping programs is no doubt alarming even for those long suspicious of such covert undertakings. But the more disturbing part is that the official response amounts to plain outright lies.

Please read this entire Opinion Column here.

The State of Cyber-War

In Spies We Trust

The two-day private talks between the US and Chinese Presidents Barack Obama and Xi Jinping this weekend in Rancho Mirage, CA are expected to include, among other thorny issues, the dwindling trust between the two countries following the recent spate of cyber intrusions the US have repeatedly alleges to have originated from China.

In the first diplomatic efforts to defuse chronic tensions, the two have also agreed to launch regular, high-level talks next month on how to set standards of behavior for cyber security and commercial espionage. But don’t expect anything concrete from these meetings. The state of cyberspace diplomacy is heading only south.

Please read the full column here.

The Spying Game

Spies in the newsroom? Or spying on newsrooms? There’s far too much of both

(The Inside Story of the Bloomberg Spying Scandal – and Snooping on the Associated Press – and Some Remedies.)

I often get strange, tough questions from the clients of my business intelligence and commercial investigation firm, but the recent bombardments highlight a new trend: bloated or irrational paranoia, depending on your take.

Should I stop using emails? Would you recommend a personal VPN? Is it safer to discuss in person than over an electronic device?

Just last week, one client pondered whether he should be using the Bloomberg terminal and another questioned if his phone, video and Skype calls were safe. I can’t blame them. Just look at the headline news the past week alone…

Please read the full column here.

Out of Office Blues

You could be out of pocket as well as out of office if you reveal too much

It may be so much the norm and standard practice one often never think twice but go along with it, totally oblivious to the risks and implications…

I am referring to those seemingly harmless out-of-office notifications: Consider how sensitive personal and company information as well as chain of command details were often automatically and unnecessarily revealed to the world.

Please read the full column here and there.

Computers: Patriot Games?

US decision to ban Chinese computer parts could mean no computers

The American Congress signed a US appropriations bill into law late March that restricts government purchase of Chinese computer equipments and technologies on fear of cyber-espionage risks.

The move inevitably prompted strong retaliation from China but my immediate curious question is: Where on earth is the US planning to buy its hardware, when even the major US brands like Dell, Apple and Hewlett-Packard – and also many Japanese, Korean and Taiwanese brands – are made in China?

I have 2 solutions…..

Please read the full column here.

Big Brother, Big Pharma

The US tries to cut off a lifeline for low-cost pharmaceuticals

The issue of parallel trading seems to have reached the United States, where the US Justice Department has begun demanding that the two largest American couriers, FedEx and UPS, open and report on the contents in the sealed packages of their customers or face criminal charges.

At stake is the delivery of prescription medicines from online pharmacies to customers, according to a report last week by the online news portal WND. FedEx and UPS disclosed last November that they are targets of a federal criminal investigation related to their dealings with online pharmacies.

Please read full column here and there.

Cracking the Vatican Code

Infiltrating and exfiltrating, pepper spray and all

As the world waits for a new Pope to emerge later this week, a cryptic spy-vs-spy game is brewing behind the scenes. And the business world has a lot to learn from the experience of the Holy See.

Please read the full column here and there.

Big Brother Meets Big Data

The Security Assault on Social Networks

Forget hacking. It works but it’s illegal.

Big data mining is the future of cyber espionage. It is not illegal as long as the data is open source and in the public domain. And all that data on “open” social networking Web sites are most vulnerable.

Two recent commercially developed software packages could soon be giving your government and employer and possibly anyone else who is interested – ways to spy on you like never before, including monitoring your words, your movements and even your plans now and into the future.

Please read the full column here and there.

The Genesis of Hong Kong´s Company Law Fuss

The Companies Ordinance review has been years in the making

A recent hotly debated topic in Hong Kong relates to the government’s attempt to rewrite the Companies Ordinance, spurred largely by the sudden public realization that the resulting new Companies Bill was already passed in the local legislature without much media attention and the rude awakening to the subsequent impacts.

Much of the current media focus and public debates have been placed on only one aspect of the many proposed changes: to withhold from the public parts of the identification numbers and details of the residential addresses of company directors found in the Hong Kong company registration records.

The lightning rod for public concern has struck many a wrong cord, including outcries about the suppression of transparency and apprehension over possible government submission to China’s will.

This column looks at the roots of the situation and puts the fuss in perspective.

Please read full article here.

Hong Kong Considers Freedom of Information Act

While Attempting to Suppress Transparency

Paradoxically, even as the Hong Kong government is proposing far-reaching changes to the Companies Ordinance that would bring due diligence and investigations to a stop, officials are also quietly studying the possibility of introducing a Freedom of Information Act.

If that seems a contradiction, that’s because it is.

The Companies Ordinance amendments, either missed or ignored by the mainstream media when it was passed through the legislature earlier last year, will result in withholding from the public parts of the identification numbers and details of the residential addresses of company directors found in the Hong Kong company registration records – the very thing a freedom of information act is designed to facilitate.

Please read the full column here.

The Year of Red October

It is just three weeks into the new year and the signs are already on the wall: this is going to be a busy year of cyber espionage and cyber crime activities.

Please read full article here and there.

DIY Counter Espionage

Spying on Spies

The FBI probe into the scandal involving former CIA director David Petraeus and his mistress may have stolen global headlines the past week.

But there is something else the FBI knows that should warrant more attention. Something closer to those of us less exalted than the boss of the world’s most famous spy agency.

The FBI is known to have video footage, covertly taken in a hotel room somewhere in China, showing how Chinese agents broke in and swept through the belongings and laptop of an American businessman.

There were recent media reports of similar incidents. The FBI is now showing the clip as a warning to corporate security experts of major US companies.

The FBI also warned some months ago about the risks of using hotel wi-fi networks and recommended all government officials, businessmen and academic personnel take extra caution when traveling abroad.

Whilst the corporate world is often most at risks, the average citizens are also highly vulnerable, especially to electronic surveillance on home and foreign soil.

So what can one do to protect the personal data and business secrets on the computers, especially when traveling abroad?

Please read full article here and there.

Spy Game: Kids for Tricks

The First World’s Version of Child Soldiers?

It is estimated that 250,000 children are fighting in wars all over the world, recruited by force or lured by the false promise of an escape from poverty. They are living a life no child should ever lead.

But across the planet, another crop of children, living in affluence in Cupertino, California, or Knightsbridge in London, or Berlin are being recruited as child soldiers. They won’t bear arms. They won’t nudge from their posts – usually in their parents’ back bedrooms.

On Halloween, while their peers are wearing goblin costumes and going from door to door, their families might regard them as hiding in their bedrooms and staying away from trouble.

But so you thought. They may be in much bigger trouble than you could ever imagine – they could be on a Wanted List from intelligence agencies – for hire. But in their teen years, are they capable of making the moral decisions to take up spying, any more than a 12 year old peering over the sights of a Kalashnikov in Sierra Leone?

Read the full article here.

How to Beat the CIA and Protect Your Data

A little secret and long overdue column – as I have promised some weeks ago.

How about leading a cyber lifestyle without the risks of compromising your computer, privacy and precious confidential data… ie. your life?!

There’s an easy solution and you do not have to be a computer expert. But the CIA, MI6, etc, wouldn’t want you to know the trick… because you can beat those spies and hackers by going online and leaving no trace.

Read the full article here.

Shhh… US Still At Loss on Cyber Espionage War

In the increasingly pugnacious cyber espionage war, the US is not only admittedly losing out to countries like China and Russia but the real headline news is, the US is still at a loss on how to protect itself against the massive intellectual property threats on its very turf.

The chairman of the House Intelligence Committee Rep. Mike Rogers told audience at the Intelligence and National Security Alliance (INSA) cyber conference, held on 26 September in Washington DC, that the US is “running out of time” – US government officials have stated that no country engages in cyber espionage as systematically, thoroughly and broadly as China and the theft of critical intellectual property is billing up to US$1 trillion.

The Rogers-Ruppersberger Bill designed to stem the tide is facing resistance at the Senate.

This Bill proposed to offer business liability insurance cover to the business community. In return, the victimized companies would have to share their threat information with the government, who will in turn share that experience with the business world.

(What? Are you kidding me?! Okay, I hear you at the back row).

Need I say more? Find out more about it here.

Shhh… Spying on Journalists

The Pentagon’s recent sworn: They won’t spy on journalists.

(Yeah right…. Yes, I hear you at the back.)

The US Defense Secretary Leon Panetta gave an order July 19 to clampdown on classified leaks from the Pentagon and “monitor all major, national level reporting”.

This raised immediate concerns amongst the press as journalists wondered: is the Pentagon planning to spy on their very act of reporting or simply to conduct wide-sweeping news scans for supposedly leaked information? The former, left to one’s imagination, could include wiretapping, surveillance and various forms of intrusive acts.

The Pentagon press secretary George Little reportedly replied in writing:

“The secretary and the chairman both believe strongly in freedom of the press and encourage good relations between the department and the press corps.” (Read this).

Meanwhile, a true story, I know a journalist who was spied upon by a Chinese intelligence agent.

The agent apparently tried to recruit the reporter by offering “huge rewards” if he cooperates and collects information about certain individuals under the pretense of combing background data for potential stories.

This journo friend declined outright but not long after, he suspected his phones were bugged and asked for help.

My advice?

Quite simply though cumbersome: buy and replace regularly several low-value, use-and-dispose SIM cards, several used cellular phones (the pre-smartphone days type like those good old Nokia, Ericsson, Motorola, etc) and used laptops.

In short, change your phone and cyber lifestyle – at least for the time being (Refer to my earlier commentary: Shhh… How to Beat the CIA and Protect Your Data).

Shhh… Spies Boundary

I just picked up 2 interesting reports on surveillance matters.

It was reported that the FBI claimed its surveillance on those involved in the Occupy movement is within legal boundaries and did not cause “unnecessary intrusions into the lives of law-abiding people.”

This came after the American Civil Liberties Union used the Freedom of Information Act to secure FBI surveillance documents on the movement in a lawsuit and asked why the agency withheld two-thirds of its records and subsequently cited national security as a reason for the nondisclosure (Read this).

On the other side of the Atlantic Ocean, the civil rights group Liberty used the UK Data Protection Act to represent a disabled woman in a legal action against a commercial security firm and its undercover surveillance “usual practice” which, as part of their investigative works for insurance companies, send agents disguised as delivery men to spy on the sick and disabled in their homes (Read this).

These are just going to lead to endless debates. Watch this space, I might post a column on this topic.

 

Shhh… Counting Spies

Interesting spy updates over the past few days.

Question: where do you think is the spy capital of the world?

Hint: Starts with letter B.

Did someone say Bei….?

Answer: Brussels.

Say what, Brussels?! Well, that’s according to Belgian intelligence chief Alain Winants, who added that spies usually pretend to be diplomats, journalists, lobbyists, businessmen or students (Read this - and please see my previous columns about spies pretending to be businessmen in China and students in US campus in Spy vs Spy and Espionage on Campus, respectively).

Now speaking of diplomats, the well known intelligence historian and collector of spy gadgets H. Keith Millon reportedly claimed “there are more spies at the United Nations than diplomats” (Read this).

The latter piece is not surprising but much depends on one’s definition of spy. But then again, given Million’s reputation in the intelligence trade…

Spies and the Airport Screening Machine

The US works out a free ride for its spooks

I have always fancied having a smorgasbord of passports, each bearing a different name, country of citizenship and photo — just like the spies as we know them, or at least as we understand them from spy fiction and movies like James Bond and CIA agent Jason Bourne in the Bourne Trilogy movies.

However, airport security checks and immigration clearance must be a nightmare for real spies, undercover agents and intelligence officials these days as governments, increasingly wary of the growing sophistication of terrorists, have invented new technologies to try to detect them. Hence the increased tight security measures at airports over the world have created lots of inconvenience for the intelligence community. And the pseudo passports probably don’t even work, given the facial recognition checks on top of the fingerprint hassles that have become commonplace at immigration checkpoints across the globe.

The spymasters know and they care, and they set out to do something about it.

So in late July, the US Transportation Security Administration (TSA) – the agency within the US Department of Homeland Security that exercises authority over the security of the traveling public in America – reportedly put procedures in place to allow the employees of three US intelligence agencies to pass un-scrutinized through airport security checks with convenience… (Read the entire column here and there).

Shhh… The Safest Place to Hide Your Data

… is possibly in your mouth?!

I’m glad I have not gone that far yet but nevertheless happy to read this piece of news article. I always advised my friends not to leave their computers and phones in their hotel room, or unattended for that matter, as spies will not only break into their room but also their devices. In fact, in certain countries, these agents are tasked to target certain individuals and business travelers the moment they left the airport. And they will wait patiently for the opportunity to penetrate their data. As a rule of thumb, the bigger the city and the hotel, the bigger the risks… because Ahem, I know only too well from… never mind.

Anyway, no one seems to believe or take it seriously. So I’m glad this story printed not only what I always wanted to say but also gave insights on some interesting counter-measures. Kind of paranoid for the men on the streets but… I hope you don’t have to go so far as planting the SD card in your mouth.

Shhh… New Phones for Spies

Christmas comes early for spies this year.

The National Security Agency and Defense Information Systems Agency (the unit that manages all communications hardware needs for the Pentagon) are reportedly going to issue in December their newly developed smart phones and tablets based on commercially designed devices. Only a selected number of “customers” would get such a device as an early Christmas present, including spies and some high-level military and government officials.

These new phones and tablets are modified from commercial designs  - for good operational reasons - and thus mark a departure from the current use of special phones that stand out from the crowd and cost thousands of dollars. These ordinary looking devices will use some special Apps to optimize use of cloud computing and thus ease the risks of losing them and having sensitive data easily compromised.

And by the way, these modified devices run on Google’s Android operating system. Apple’s loyal worshippers will be left disappointed…

Shhh… New iPhone Spy App to Log the World

It’s the App, Stupid!

Sounds familiar? Yes, it’s often the software that matters more than the hardware.

Whilst the countdown to the new iPhone 5 release is grabbing headlines, there is reportedly a new Spy App for iPhone that should deserve even more attention. This is unlike any other past so called iPhone Spy software: imagine you can log all incoming and outgoing phone calls and SMS of a chosen target’s phone?!

Yes, I know. The potential for this new iPhone Spy App, if it’s true, will simply blow your socks off…

Shhh… How to Beat the CIA and Protect Your Data

Business travel is a nightmare these days, especially when one visits a country known for high espionage/ corporate espionage activities or active government eavesdropping and wiretapping.

So what if you need to transmit confidential data, sensitive business information and trade secrets via emails or the cloud? Or simply access your online banking account?

Public wifi pose significant risks. The Internet connection in your hotel room is not any better. And you can forget the Internet cafe.

No worries, there’s a solution and I will soon be posting a column on this matter. Watch this space.