The firm also claims to have surveillance capabilities to extract data from 'many web accounts and apps'.

Subgraph OS | Adversary Resistant Computing

One of Europe's top hotels has admitted they had to pay thousands in Bitcoin ransom to cybercriminals who managed to hack their electronic key system, locking hundreds of guests in or out of their rooms until the money was paid.

Hackers infected 70 percent of storage devices that record data from D.C. police surveillance cameras eight days before President Trump’s inauguration, forcing major citywide reinstallation efforts, according to the police and the city’s technology office.

In order to inspect encrypted data streams using SSL/TLS, Kasperky installs a WFP driver to intercept all outgoing HTTPS connections. They effectively proxy SSL connections, inserting their own certificate as a trusted authority in the system store and then replace all leaf certificates on-the-fly. This is why if you examine a certificate when using Kaspersky Antivirus, the issuer appears to be "Kaspersky Anti-Virus Personal Root".

Kaspersky's certificate interception has previously resulted in serious vulnerabilities, but quick review finds many simple problems still exist. for example, the way leaf certificates are cached uses an extremely naive fingerprinting technique.

Security researchers Roberto Suggi Liverani and Steven Seeley reported the first bug to Trend on July 29 2016 and have continued to find a mix of vulnerabilities, from the mundane to the shocking. In total they've uncovered 223 weaknesses across 11 TrendMicro products. A whopping 194 can be exploited remotely, and all are triggered without user interaction, making them significantly more serious.

I checked my certificate manager, shocked to see root CA certificate installed by my anti-ads software - Adguard!

It looks to be working as what you wrote, a MITM attack software to block ads but there was no warning or asking me for permission during the install.

Much thanks if you can do a quick analysis to see how good or bad it works.

#1.1.2 fsecon on 2015-04-29 21:49 (Reply)

Had a look at it. It's bad. It's bad in a very interesting and creative way.
If you have adguard installed: Remove it together with its cert immediately. It's a huge security risk. I'll post details later.

#1.1.2.1 Hanno (Homepage) on 2015-04-30 21:33 (Reply)

A hacker provided Motherboard with a large cache of customer information, databases, and more.

Belgian security researcher Inti De Ceukelaire claims he discoved a method to figure out the phone numbers associated with many Facebook accounts, even when these phone number are not set

Chrome, Safari, Opera and extensions such as LastPass can be tricked into leaking private information using hidden text boxes, developer finds

More than 10,000 website databases have been taken hostage in recent days by attackers who are demanding hefty ransoms for the data to be restored, a security researcher said Friday.

Insecam.com - the world biggest directory of online surveillance security IP cameras. Watch live street, traffic, parking, office, road, beach, earth online webcams.
.

The story originally broke when Dutch website Misdaadnieuws (Crime News) published documents from the Netherlands Forensic Institute (NFI), a Dutch law enforcement agency, stating that police were able to access deleted messages and read encrypted emails on so-called BlackBerry PGP devices.

A representative from NFI confirmed that “we are capable of obtaining encrypted data from BlackBerry PGP devices,” according to a report from Motherboard.

On Tuesday, Motherboard further reported on a similar result by the Royal Canadian Mounted Police (RCMP).