I thought you might like to read this article from the Law firms are still the firm favorites and proverbial jewel in the crown for cybercriminals. It appears, in the latest cyber report that hackers for hire, named ‘Dark Basin’ by researchers, have set their sights on the legal industry.
The group is said to have used the notoriously common and most successful cybercrime tool, phishing to dupe those in the legal sector to reveal personal details.
The University of Toronto completed a study that has revealed that the group has targeted thousands of individuals and organizations across six continents.
Essentially, surveillance enhanced view allows one to view a scene with more clarity and detail by increasing or improving in value, quality, desirability, or attractiveness.
Currently, there are no existing laws regarding enhanced view, but rather guidelines outlined in rulings determined on a case-by-case basis.
During any given surveillance, there can be three forms of enhanced view. They include:
Assuming an aided, unnatural, or contorted position
Illuminating an otherwise darkened area
Magnifying what is visible to the “naked” eye, or otherwise not visible
The use of enhancement devices, in and of themselves, are lawful. Surveillance professionals often use tools that can magnify a view, such as binoculars and zoom lenses on cameras and camcorders. Using such methods has been upheld in many instances as constitutionally proper; however, not all enhanced views are appropriate. Until such time that the Supreme court addresses the issue of enhancement methods or tools, the lower courts will continue to use their discretion in determining which enhancements are lawful.
Let’s address some of these issues. The lawfulness of the surveillance is often determined by the positioning of the investigator in relation to the location of the subject. To avoid this jeopardy, the professional investigator must frequently assess, “to what extent are my enhancement efforts violating a subject’s expectation of privacy?”
We have not yet seen decisions on surveillance of activities on public streets or other public areas being a violation of the Fourth Amendment. However, surveillance in public areas such as public restrooms or dressing rooms, and locker rooms, may violate the civil rights of those viewed.
The courts have established specific guidelines of visual enhancements when the area under observation is more private, such as a home or fenced yard; however, those guidelines vary in different jurisdictions. In that light, an investigator may observe a home from public areas, such as parking lots, public streets, or any area that can be accessed by the public.
Courts support photographing activities that can be seen with unaided vision or enlarging photographs that merely enable one to see items that were in plain view, though in greater detail. In the opinion of the courts, guidelines for using mechanical devices to enhance a view into the home also differ dramatically.
Can a surveillance professional use an enhancement device to view from a distance (to avoid detection) any activity that could have been observed with the unaided vision from a closer vantage point, i.e., enhanced views that are confined to the window area of a residence? Yes. Any activity viewed inside the home must be viewable from a public space. Courts look more favorably on the use of enhancement devices, which simply confirm those activities observed with unaided vision. An enhanced view is lawful in instances when the observations are not in an attempt to see something that is not in plain view without the enhancement device.
Finally, it is important to remember that each situation is uniquely different when dealing with legal issues of enhanced views. In general, visual enhancement devices are not illegal, however, their application relates to specific parameters. These parameters are determined by the particular area in which the effort is conducted and the protections that area affords to the people in these areas. The protections may be established by a subject’s reasonable expectations as well as the efforts of the subject to ensure privacy.
This article is not intended to provide legal advice. It is the sole opinion of the author. Be sure to seek professional legal guidance. And perhaps equally as necessary, communicate what you are doing with your client as they would likely experience any adverse outcome of a surveillance operator’s illegal or unethical activities.
For further information about our professional surveillance capabilities, call (253) 852-7000 or complete the online Contact Form.
Naomi Jones’ mother has reached a settlement with Aspen Village Apartments’ management and ownership in a lawsuit alleging negligent security at the complex led to her 12-year-old daughter’s murder.
On Monday, attorneys for Shantara Hurry announced they had settled with apartment complex owner, Aspen Village Acquisition LLC, for $2 million. Hurry also reached a settlement with the management group, Progressive Management of America Inc., under confidential terms.
Hurry said she hopes the case causes other apartment complex owners to improve their standards of monitoring who is living or visiting a property.
Speakers can be used just as effectively as microphones to surreptitiously listen to your conversations.
Microphones. We are surrounded by microphones in our home, office, and mobile phones, computers, public address systems, and IoT devices. Did you know that any one microphone can be surreptitiously tasked with multiple functions? An example would be the microphone in your speakerphone can also be used to covertly record conversations when you are not using the telephone.
The hearing aid industry produces such small microphones that they are often used by intelligence organizations. These microphones can be smaller than the size of a matchhead. A small microphone can be very effective when connected to fine wires that are hundreds of feet long. This allows eavesdropping on conversations without the risk of radio transmission.
Speakers. As with microphones, speakers are all around us. They are commonly found in telephones, fire and intrusion systems, public address systems, IoT devices, doorbells, etc. Did you know that any speaker can also be used as a microphone? Although they look very different, speakers and microphones use similar principles and components to convert electrical signals into sound and back again. Even though the processes are opposite (one takes electrical signals as input and outputs air vibrations, and the other takes vibrations in the air and transforms them into electrical impulses), all speakers are potentially a threat device. A speaker cone can act as a giant microphone diaphragm, and when connected to a basic amplifier, can be used to capture sound.
Who would have thought that the ceiling speaker or the fire alarm siren could pose a threat?
Now for the test question! With what you learned above about microphones and the threat speakers can pose, how many “microphones” are found in a typical desktop telephone?
Let’s figure this out together:
Microphone in the handset.
Speaker in the handset. Some phone base units have two speakers.
Microphone in the base unit. Some phone base units have two microphones.
Speaker in the base unit.
Ringer speaker in the base unit.
I count at least five potential listening threats. There are often more. Is there a potential threat of the video camera in this desktop phone?!
Our Technical Surveillance Countermeasures (TSCM) sweep provides a detailed physical inspection with an emphasis on locating and testing all wiring connected to microphones and speakers.
Call us at (253)852-7000 for more information about our pricing and services.
Automatic license plate reader cameras are controversial enough when law enforcement deploys them, given that they can create a panopticon of transit throughout a city. Now one hacker has found a way to put a sample of that power—for safety, he says, and for surveillance—into the hands of anyone with a Tesla and a few hundred dollars to spare.
He’s dialing up the charm offensive over the two days he gives Forbes unprecedented access to the normally hidden, clandestine spy-tech industry, estimated to be worth $12 billion and rising. Read more at Forbes.com
Despite more awareness of the risks associated with Chinese surveillance equipment, the news this week that cameras from the world’s second-largest manufacturer of such devices can be used to secretly listen in to users still comes as a shock. Put simply, the newly disclosed backdoor vulnerability means that millions of cameras have been carrying the potential to be used as eavesdropping devices—even when the audio on the camera is disabled.
We all know that intellectual property is the lifeblood of innovation, but are you doing enough to protect it?
Intellectual property (IP) plays an essential role in innovation, with new ideas perpetuating a successful economy. Information is a significant commodity of any business, of interest to competitors and third parties and has a high profile on a wide scale, particularly shown by recent interest around several foreign national companies.
Some businesses believe that their IP isn’t of much interest to anyone outside of their business and that their competitors aren’t a concern. However, what if the IP was simply harvested via a third-party, who picked it up as part of a wide-scale security breach, and then sold on the dark web or to targeted firms? Even if your IP isn’t of much interest in terms of face value, it causes other issues, including reputational damage. It can also bring significant financial penalties through regulatory breaches.
There are potentially thousands of subversive, third-party entities who want your data and can profit from it, one way or another. This undercuts any success a company may enjoy and may very well damage the future of the business. There is good news, however! You can deploy strategies to protect your IP, and these lessons can be applied across the entire business.
Your ideas are under attack
Step one of this process is understanding the nature of security threats to IP. Technological development and the interconnected nature of the digital world has made IP theft far easier than ever before, especially given that the majority of security breaches that go undetected.
It’s also important to remember information can easily be accessed outside of the “secure” network, such as personal devices connected to corporate systems. Are these devices being continually assessed? Not a day goes by where we don’t see a news story of devices being discovered. Insiders can either intentionally or incidentally breach even the most secure environment.
And then there the common sense approach. Businesses must make sure critical information isn’t being left on printers or simply dropped in a paper bin. Is your secured shred bin secure? We find they rarely are. If you want to breach a company, being on the cleaning staff is an easy way to get access.
Defending against thieves
Both insider and outsider threats facing IP are significant, but there are steps which can be taken to effectively deter or defend against attackers and minimize the risk that innovative ideas are stolen. Identifying and assessing IP on a regualar basis is a necessary first step in protective measures. It’s also important to look at where and how and where your IP is both stored and secured, how it’s transferred within a company network, and perhaps most imporantly, who has access to it.
Next, how do you categorize your IP? What is potentially valuable to competitors or cyber thieves? Is it afforded higher levels of protection than standard data? In short, businesses should be considering all of the threats to that information and then assigning controls to those risks.
Beyond technological defenses, there are additional steps that can be taken to benefit the business.
Educating company employees on a continual basis about threats such as spear phishing and social engineering is a good start.
Establish a thorough, frequently assessed human access control program. Recognize and reward program participants. Those human eyes and ears may very well be more important than the technology behind even the very best systems.
Initiate an on-going, random schedule of surveillance countermeasures sweeps. Random so that the “watchers” will not know when. Scheduled as part of your continued diligence.
Defending innovative ideas is vital, but it doesn’t have to be done in isolation. Instead, it should form part of a broader IT security strategy that continually evolves and develops. A good way to ensure this continual improvement is to invest in implementing the ISO 27001 standard – is a best practive. Not doing so could be considered negligent.
We would appreciate an opportunity to share with you how we can either help you build a successful IP Security Program, or be an active, value-added partner in your ongoing efforts to protect your Intellectual Property from those intent on causing your business harm. For further information about how Trident can assist you, please contact us at (253) 852-7000
VIENNA – Austrian Chancellor Sebastian Kurz called Saturday for an early
election after his vice chancellor resigned over a covertly shot video
that showed him apparently promising government contracts to a
prospective Russian investor.
Kurz said he would ask President Alexander Van der Bellen to set a date for a new election “as soon as possible.”
Vice Chancellor Heinz-Christian Strache, head of the far-right, anti-immigrant Freedom Party which is in Austria’s ruling coalition with Kurz’s People’s Party, had resigned earlier Saturday, a day after the video was published. See more…
Signup for Blog Posts
Get our most recent posts sent to your email inbox!