China Says Seabed Sentinels Are Spying, After Trump Taps
On the heels of a Chinese APT eavesdropping on phone calls made by Trump and Harris campaign staffers, Beijing says foreign nations have mounted an extensive seafaring espionage effort.
Discover the latest updates and defenses against eavesdropping in cybersecurity. Stay informed on prevention methods to secure private conversations.
Search across headline titles and summaries.
Background for this topic.
Eavesdropping is listening to or capturing private communications without authorization. In information security, it usually means intercepting data in transit, such as packet capture on a compromised network, monitoring an insecure wireless connection, or tapping a communication link. It can also involve nearby voice interception or malware that records data at an endpoint. Encryption can protect message contents, but traffic metadata and information exposed at the endpoints may still be accessible.
The main risks are disclosure of credentials, session tokens, personal information, and confidential business data. Defenses include authenticated encryption such as TLS, secure wireless configurations, avoiding plaintext protocols, validating certificates, and controlling physical access to network equipment and devices. Security teams investigating suspected interception should examine affected network paths and endpoints, determine what data may have been captured, and rotate exposed credentials or tokens.
Weekly headline count for the current query.
On the heels of a Chinese APT eavesdropping on phone calls made by Trump and Harris campaign staffers, Beijing says foreign nations have mounted an extensive seafaring espionage effort.
The vulnerability affects not only AirPods, but also AirPods Max, Powerbeats Pro, Beats Fit Pro, and all models of AirPods Pro.
In the latest breaches, threat groups compromised telecommunications firms in at least two Asian nations, installing backdoors and possibly eavesdropping or pre-positioning for a future attack.
Eight out of nine apps that people use to input Chinese characters into mobile devices have weakness that allow a passive eavesdropper to collect keystroke data.
After the encryption algorithm used by public safety, military, and governments globally was found to allow eavesdropping, standard maintainers are making TETRA open source.
A video-enabled smart intercom made by Chinese company Akuvox has major security vulnerabilities that allow audio and video spying, and the company has so far been unresponsive to the discoveries.
Cyber-researchers are testing the bounds of optical attacks with a technique that allows attackers to recover voice audio from meetings if there are shiny, lightweight objects nearby.