SlideShare a Scribd company logo

Digital Leviathan: a comprehensive list of Nation-State Big Brothers (from huge to little ones)

Priyanka Aash
Priyanka Aash

This document analyzes digital surveillance and censorship by nation-states. It summarizes findings from over 750 reports about state-sponsored cyber attacks and cyber weapons acquisitions. 57 countries engaged in online censorship and 42 conducted internet shutdowns. 85 countries were attributed to cyber attacks or possess offensive cyber capabilities. Nation-states also increasingly request data from companies like Facebook, Twitter, and Google. The document concludes that digital authoritarianism through surveillance and censorship affects a majority of internet users worldwide.

Technology
1 of 28
Download to read offline
Digital Leviathan Nation-State Big Brothers (from huge to little ones) Eduardo Izycki & Rodrigo Colli Las Vegas, August 11th 2018
AGENDA INTRO SOURCES OUTCOMES CONCLUSION
INTRO
INTRO “We should give our obedience to an unaccountable sovereign otherwise what awaits us is a ‘state of nature’ that closely resembles civil war – a situation of universal insecurity”. ? ! The claim Terrorism, cybercrime, foreign espionage, among other are examples that support politicians claims for increase state power over online life. Opposing evidence The current use of cyber offensive tools are aimed to political objectives rather than public safety Thomas Hobbes
Espionage Surveillance / Eavesdropping Censorship Stealing of information and/or personal data (for achieving political purposes, i.e. opposition party, NGO, ethnic minorities) Untargeted violations of privacy (monitoring of behavior, activities, or other changing information of people online) Block specific applications or technologies; filtering and blocking of websites; manipulation of content or traffic manipulation; violations of user rights. INTRO 1 2 3
SOURCES
APT Reports Leaks from spyware providers Acquisition of technology • Total of 758 reports/blog posts from vendors, NGO, CSIRT and universities, • The dataset has bias from a western perspective (close to 80%) • Two big providers of surveillance solutions Hacking Team and Gamma Group, • Data is available from multiple sources (Wikileaks has a good search platform) • Surveillance and/or intrusion technologies reported from multiple sources • Purchases made by different countries (potential cyber capabilities) SOURCES 1 2 3 • Focus on attacks targeting NGO, political groups, media outlets, or opposition was considered as an indicator of state misbehavior • Many cases it was possible to identify who acquired it (law enforcement, military, intelligence, etc) • Buggedplanet.info and Surveillance Industry Index (SII) were helpful sources
Censorship Transparency Reports • Freedom House, OONI, Google, Reporters without Borders and OpenNet provide evidence of some level online censorship, • Blocking applications, technologies, traffic; filtering and blocking of websites; violations of user rights • Transparency Reports issued by major social networks and content providers •Facebook, Twitter, Google, Yahoo, Apple, LinkedIn, Snapchat, Tumblr, Dropbox, Wiki,Microsoft, and WordPress SOURCES 4 5 • Based on a western view of freedom of speech (an individual or a community to articulate their opinions and ideas without fear of retaliation, censorship or sanction) • Provides extra detail on the intent of Nation-States use of social media for surveillance
OUTCOMES
OUTCOMES 55% 119 17 + Documents that had some level of attribution Considered state- sponsored attacks Countries attributed with a state-sponsored APT Extensive use of Python3 (NLTK) and regular expressions for processing documents / posts 402 Single APT Groups and/or Campaigns
EUA México França Reino Unido Egito Emirados Árabes Israel Turquia Líbano Irã Síria Etiópia Índia Paquistão China Coreia do Norte Rússia STATE SPONSORED APT OUTCOMES Cazaquistão Bahrain 46 41 32 27 24 18 17 17 8 8 6 5 Political Targets FFAA Government Diplomacy P&D Midia Energy Telecom Automation Finnacial Oil & Gas Health State-Sponsored APT - Targets
OUTCOMES 57% 26 29 + Countries acquired offensive solutions from private vendors In 41 cases it was possible to identify the user/buyer User/buyer was an intelligence agency and/or armed forces Countries that acquired more than one offensive solution Wikileaks' search platform, Buggedplanet.info, Surveillance Industry Index, and reports from Citizen Lab / Privacy International / Freedom House 71
ACQUIRED OFFENSIVE SOLUTIONS Bull / Amesys 2 countries Cyberbit 10 countries Dreamlab 2 countries Gamma Group 55 countries Hacking Team 37 countries NSO Group 3 countries SS8 4 countries Trovicor 9 countries Major Private Vendors Procera 2 countries OUTCOMES
NEW THREATS Users / Buyers Saudi Arabia GIP / GID / MD Azerbaijan Azerbajan NS Bangladesh (DGFI) Cyprus Intelligence Agency Ecuador SENAIN Spain CNI Hungary SSNS Indonesia Lembaga Sandi Negara Kenya NIS Marroco CSDN / DST Mongolia SSSD Malasya MACC / MALMI / PMO Oman Intelligence Agency Panama Presidency Cabinet Serbia BIA Singapore IDA SGP Thailand Royal Thai Army Uganda CMI Uzbequistan NSS OUTCOMES
MULTIPLE OFFENSIVE SOLUTIONS > OUTCOMES 2 6 1 2 0 8 3 7 15 27 4 13 1 29 13 22 Africa Europe US/Canada Latin America Oceania MENA Russia & CIS Southeast Asia Contries with multiple solutions Solutions (Total) Multiple Providers 1 1 1 2 2 2 11 21 30 Law Enforcement / Armed Forces Customs / IRS Telecom Armed Forces Intelligence / Armed Forces State Level Law Enforcement Intelligence Agency Unidentified User / Buyer
74% In 32 countries the shutdown reached national level OUTCOMES 42 57 + Countries with evidence of online censorship Countries with evidence of some level of internet shutdown Countries with evidence from two or more sources Reports from Freedom House, OONI, Google, Reporters without Borders and OpenNet Initiative 40
OONI – Open Observatory of Network Interference OUTCOMES
FREEDOM HOUSE – Freedom of the Net OUTCOMES
WEB FOUNDATION – Web Index OUTCOMES
OPEN NET INITIATIVE OUTCOMES
Censorship and Shutdowns – Multiple Sources ACCESSNOW.ORG – SHUTDOWN TRACKER OUTCOMES #OpOperadoras – Brazil 2016 Saudi Arabia All sources Bahrain 4 sources Turkey 4 sources Iran 4 sources United Arab Emirates 3 sources China All sources Vietnam All sources Pakistan 4 sources Ethiopia 4 sources
63% World average requests where some data was produced (FB – 2017) OUTCOMES 10 125 + Companies worldwide publish transparency reports Major content providers covered in this analysis Countries have requested information or to remove content Most transparency reports data are available in csv/json formats, unfortunately some only PDF 70
Transparency Reports OUTCOMES - 2.000 4.000 6.000 8.000 10.000 12.000 14.000 2013 2014 2015 2016 2017 Facebook-TransparencyReport-Total DataRequests Facebook - Transparency Report Brazil India Mexico Poland Turkey 0 200 400 600 800 1000 1200 2012 2013 2014 2015 2016 2017 ACCOUNTINFORMATIONREQUESTS Twitter - Transparency Reports Brazil India Mexico Poland Turkey 0 2000 4000 6000 8000 10000 12000 14000 16000 2013 2014 2015 2016 2017 TotalNumberofLawEnforcement Requests Microsoft - Transparency Report Brazil India Mexico Poland Turkey - 1.000 2.000 3.000 4.000 5.000 6.000 7.000 8.000 9.000 2009 2010 2011 2012 2013 2014 2015 2016 2017 UserDataRequests Google - Transparency Report Brazil India Mexico Poland Turkey
Transparency Reports OUTCOMES - 500 1.000 1.500 2.000 2013 2014 2015 2016 2017 Facebook-TransparencyReport- TotalDataRequests Facebook - Transparency Report - 500 1.000 1.500 2.000 2009 2010 2011 2012 2013 2014 2015 2016 2017 UserDataRequests Google - Transparency Report 31,6% 1,0% 35,4% 44,2% 42,5% 50,8% 0% 10% 20% 30% 40% 50% 60% 2012 2013 2014 2015 2016 2017 Twitter - Transparency Reports 0 500 1000 1500 2000 2012 2013 2014 2015 2016 2017 ACCOUNTINFORMATIONREQUESTS Twitter - Transparency Reports
CONCLUSION
CONCLUSION OFFENSIVE CAPABILITIES Sponsored APT – Users Affected There are evidence that 19 countries were attributed as authors/sponsors of cyber attacks. Another 18 countries possess cyber weapons with Intelligence Agencies At last, 34 countries acquired cyber weapons but the user/buyer is not known Cyber offensive tools being used against political targets 1 85 countries attacked and/or possess cyber weapons 54,9 % Worldwide Sponsored APT + Intelligence Agencies 64,0% Worldwide All Cyber Offensive Capabilities 92,2% Worldwide
CONCLUSION CENSORSHIP & BLOCKING Censorship/Shutdowns – Internet Users Out of 57 countries that engaged in censorship or shutdowns, 26 did both. Concerning social media such as Facebook, Twitter and Google, all countries have increased its yearly number of requests Online Censorship and Internet Shutdowns 2 The two are strongly correlated 56,7 % Worldwide
Eduardo Izycki Independent Researcher linkedin.com/in/eduardoizycki eduizycki@protonmail.com Thanks!

Recommended

Cloudcamp Chicago Nov 2104 Fintech - Dwight Koop "East / West Chalkboard Talk"
Cloudcamp Chicago Nov 2104 Fintech - Dwight Koop "East / West Chalkboard Talk"Cloudcamp Chicago Nov 2104 Fintech - Dwight Koop "East / West Chalkboard Talk"
Cloudcamp Chicago Nov 2104 Fintech - Dwight Koop "East / West Chalkboard Talk"
CloudCamp Chicago
 
Lessons on netfreedom+best practices in cyber security
Lessons on netfreedom+best practices in cyber securityLessons on netfreedom+best practices in cyber security
Lessons on netfreedom+best practices in cyber security
Freedom House
 
DarkNet_article_wn17
DarkNet_article_wn17DarkNet_article_wn17
DarkNet_article_wn17
Ed Alcantara
 
Cybersecurity under the Trump Administration
Cybersecurity under the Trump AdministrationCybersecurity under the Trump Administration
Cybersecurity under the Trump Administration
Brunswick Group
 
Polinter09
Polinter09Polinter09
Polinter09
Jeffrey Hart
 
Warrantless governmental surveillance through the use of emerging technology ...
Warrantless governmental surveillance through the use of emerging technology ...Warrantless governmental surveillance through the use of emerging technology ...
Warrantless governmental surveillance through the use of emerging technology ...
Vania_Chaker
 
Investigating online conducting pre-interview research
Investigating online conducting pre-interview researchInvestigating online conducting pre-interview research
Investigating online conducting pre-interview research
Case IQ
 
Open Letter to President Obama Opposing Backdoors and Defective Encryption
Open Letter to President Obama Opposing Backdoors and Defective EncryptionOpen Letter to President Obama Opposing Backdoors and Defective Encryption
Open Letter to President Obama Opposing Backdoors and Defective Encryption
Alvaro Lopez Ortega
 

Recommended

Cloudcamp Chicago Nov 2104 Fintech - Dwight Koop "East / West Chalkboard Talk"
Cloudcamp Chicago Nov 2104 Fintech - Dwight Koop "East / West Chalkboard Talk"Cloudcamp Chicago Nov 2104 Fintech - Dwight Koop "East / West Chalkboard Talk"
Cloudcamp Chicago Nov 2104 Fintech - Dwight Koop "East / West Chalkboard Talk"
CloudCamp Chicago
 
Lessons on netfreedom+best practices in cyber security
Lessons on netfreedom+best practices in cyber securityLessons on netfreedom+best practices in cyber security
Lessons on netfreedom+best practices in cyber security
Freedom House
 
DarkNet_article_wn17
DarkNet_article_wn17DarkNet_article_wn17
DarkNet_article_wn17
Ed Alcantara
 
Cybersecurity under the Trump Administration
Cybersecurity under the Trump AdministrationCybersecurity under the Trump Administration
Cybersecurity under the Trump Administration
Brunswick Group
 
Polinter09
Polinter09Polinter09
Polinter09
Jeffrey Hart
 
Warrantless governmental surveillance through the use of emerging technology ...
Warrantless governmental surveillance through the use of emerging technology ...Warrantless governmental surveillance through the use of emerging technology ...
Warrantless governmental surveillance through the use of emerging technology ...
Vania_Chaker
 
Investigating online conducting pre-interview research
Investigating online conducting pre-interview researchInvestigating online conducting pre-interview research
Investigating online conducting pre-interview research
Case IQ
 
Open Letter to President Obama Opposing Backdoors and Defective Encryption
Open Letter to President Obama Opposing Backdoors and Defective EncryptionOpen Letter to President Obama Opposing Backdoors and Defective Encryption
Open Letter to President Obama Opposing Backdoors and Defective Encryption
Alvaro Lopez Ortega
 
Darknet
DarknetDarknet
Darknet
BijayKumarSingh11
 
Introduction to Hacktivism
Introduction to HacktivismIntroduction to Hacktivism
Introduction to Hacktivism
Phil Huggins FBCS CITP
 
CWFI Presentation Version 1
CWFI Presentation Version 1CWFI Presentation Version 1
CWFI Presentation Version 1
Brett L. Scott
 
Safe use of cloud - alternative cloud
Safe use of cloud - alternative cloudSafe use of cloud - alternative cloud
Safe use of cloud - alternative cloud
Tomppa Järvinen
 
Prism
PrismPrism
Prism
Rovin Valencia
 
Global Commision on Internet Governance
Global Commision on Internet GovernanceGlobal Commision on Internet Governance
Global Commision on Internet Governance
Dominic A Ienco
 
Computer crimes
Computer crimesComputer crimes
Computer crimes
essay-writing-help.us
 
News bytes-July 2013
News bytes-July 2013News bytes-July 2013
News bytes-July 2013
n|u - The Open Security Community
 
Mike Alcorn presentation
Mike Alcorn presentationMike Alcorn presentation
Mike Alcorn presentation
svito
 
Cyber attacks in Ukraine
Cyber attacks in UkraineCyber attacks in Ukraine
Cyber attacks in Ukraine
Nick Bilogorskiy
 
The Brazilian Cybercriminal Underground in 2015
The Brazilian Cybercriminal Underground in 2015The Brazilian Cybercriminal Underground in 2015
The Brazilian Cybercriminal Underground in 2015
Felipe Prado
 
China and the united states in commercial war at the confrontation for world ...
China and the united states in commercial war at the confrontation for world ...China and the united states in commercial war at the confrontation for world ...
China and the united states in commercial war at the confrontation for world ...
Fernando Alcoforado
 
Seminar Paper Heller
Seminar Paper HellerSeminar Paper Heller
Seminar Paper Heller
Kyle Heller
 
Famous hackers group
Famous hackers groupFamous hackers group
Famous hackers group
Ashokkumar Gnanasekar
 
Cyber securityincidents 2016
Cyber securityincidents 2016Cyber securityincidents 2016
Cyber securityincidents 2016
Raghavendra P.V
 
CSW2017 Harri hursti csw17 final
CSW2017 Harri hursti csw17 finalCSW2017 Harri hursti csw17 final
CSW2017 Harri hursti csw17 final
CanSecWest
 
Data localization vs global internet
Data localization vs global internetData localization vs global internet
Data localization vs global internet
Yoonee Jeong
 
Cybersecurity Context in African Continent - Way Forward
Cybersecurity Context in African Continent - Way ForwardCybersecurity Context in African Continent - Way Forward
Cybersecurity Context in African Continent - Way Forward
Gokul Alex
 
Cyber Crime Seminar Jan 2015
Cyber Crime Seminar Jan 2015Cyber Crime Seminar Jan 2015
Cyber Crime Seminar Jan 2015
Kevin Murphy
 
OSINT Social Media Techniques - Macau social mediat lc
OSINT Social Media Techniques - Macau social mediat lc OSINT Social Media Techniques - Macau social mediat lc
OSINT Social Media Techniques - Macau social mediat lc
Cyber Threat Intelligence Network
 
COMMON GOOD DIGITAL FRAMEWORK
COMMON GOOD DIGITAL FRAMEWORKCOMMON GOOD DIGITAL FRAMEWORK
COMMON GOOD DIGITAL FRAMEWORK
Boston Global Forum
 
1482734.ppt
1482734.ppt1482734.ppt
1482734.ppt
DorcusSitali
 

More Related Content

What's hot

Darknet
DarknetDarknet
Darknet
BijayKumarSingh11
 
Introduction to Hacktivism
Introduction to HacktivismIntroduction to Hacktivism
Introduction to Hacktivism
Phil Huggins FBCS CITP
 
CWFI Presentation Version 1
CWFI Presentation Version 1CWFI Presentation Version 1
CWFI Presentation Version 1
Brett L. Scott
 
Safe use of cloud - alternative cloud
Safe use of cloud - alternative cloudSafe use of cloud - alternative cloud
Safe use of cloud - alternative cloud
Tomppa Järvinen
 
Prism
PrismPrism
Prism
Rovin Valencia
 
Global Commision on Internet Governance
Global Commision on Internet GovernanceGlobal Commision on Internet Governance
Global Commision on Internet Governance
Dominic A Ienco
 
Computer crimes
Computer crimesComputer crimes
Computer crimes
essay-writing-help.us
 
News bytes-July 2013
News bytes-July 2013News bytes-July 2013
News bytes-July 2013
n|u - The Open Security Community
 
Mike Alcorn presentation
Mike Alcorn presentationMike Alcorn presentation
Mike Alcorn presentation
svito
 
Cyber attacks in Ukraine
Cyber attacks in UkraineCyber attacks in Ukraine
Cyber attacks in Ukraine
Nick Bilogorskiy
 
The Brazilian Cybercriminal Underground in 2015
The Brazilian Cybercriminal Underground in 2015The Brazilian Cybercriminal Underground in 2015
The Brazilian Cybercriminal Underground in 2015
Felipe Prado
 
China and the united states in commercial war at the confrontation for world ...
China and the united states in commercial war at the confrontation for world ...China and the united states in commercial war at the confrontation for world ...
China and the united states in commercial war at the confrontation for world ...
Fernando Alcoforado
 
Seminar Paper Heller
Seminar Paper HellerSeminar Paper Heller
Seminar Paper Heller
Kyle Heller
 
Famous hackers group
Famous hackers groupFamous hackers group
Famous hackers group
Ashokkumar Gnanasekar
 
Cyber securityincidents 2016
Cyber securityincidents 2016Cyber securityincidents 2016
Cyber securityincidents 2016
Raghavendra P.V
 
CSW2017 Harri hursti csw17 final
CSW2017 Harri hursti csw17 finalCSW2017 Harri hursti csw17 final
CSW2017 Harri hursti csw17 final
CanSecWest
 
Data localization vs global internet
Data localization vs global internetData localization vs global internet
Data localization vs global internet
Yoonee Jeong
 
Cybersecurity Context in African Continent - Way Forward
Cybersecurity Context in African Continent - Way ForwardCybersecurity Context in African Continent - Way Forward
Cybersecurity Context in African Continent - Way Forward
Gokul Alex
 
Cyber Crime Seminar Jan 2015
Cyber Crime Seminar Jan 2015Cyber Crime Seminar Jan 2015
Cyber Crime Seminar Jan 2015
Kevin Murphy
 
OSINT Social Media Techniques - Macau social mediat lc
OSINT Social Media Techniques - Macau social mediat lc OSINT Social Media Techniques - Macau social mediat lc
OSINT Social Media Techniques - Macau social mediat lc
Cyber Threat Intelligence Network
 

What's hot (20)

Darknet
DarknetDarknet
Darknet
 
Introduction to Hacktivism
Introduction to HacktivismIntroduction to Hacktivism
Introduction to Hacktivism
 
CWFI Presentation Version 1
CWFI Presentation Version 1CWFI Presentation Version 1
CWFI Presentation Version 1
 
Safe use of cloud - alternative cloud
Safe use of cloud - alternative cloudSafe use of cloud - alternative cloud
Safe use of cloud - alternative cloud
 
Prism
PrismPrism
Prism
 
Global Commision on Internet Governance
Global Commision on Internet GovernanceGlobal Commision on Internet Governance
Global Commision on Internet Governance
 
Computer crimes
Computer crimesComputer crimes
Computer crimes
 
News bytes-July 2013
News bytes-July 2013News bytes-July 2013
News bytes-July 2013
 
Mike Alcorn presentation
Mike Alcorn presentationMike Alcorn presentation
Mike Alcorn presentation
 
Cyber attacks in Ukraine
Cyber attacks in UkraineCyber attacks in Ukraine
Cyber attacks in Ukraine
 
The Brazilian Cybercriminal Underground in 2015
The Brazilian Cybercriminal Underground in 2015The Brazilian Cybercriminal Underground in 2015
The Brazilian Cybercriminal Underground in 2015
 
China and the united states in commercial war at the confrontation for world ...
China and the united states in commercial war at the confrontation for world ...China and the united states in commercial war at the confrontation for world ...
China and the united states in commercial war at the confrontation for world ...
 
Seminar Paper Heller
Seminar Paper HellerSeminar Paper Heller
Seminar Paper Heller
 
Famous hackers group
Famous hackers groupFamous hackers group
Famous hackers group
 
Cyber securityincidents 2016
Cyber securityincidents 2016Cyber securityincidents 2016
Cyber securityincidents 2016
 
CSW2017 Harri hursti csw17 final
CSW2017 Harri hursti csw17 finalCSW2017 Harri hursti csw17 final
CSW2017 Harri hursti csw17 final
 
Data localization vs global internet
Data localization vs global internetData localization vs global internet
Data localization vs global internet
 
Cybersecurity Context in African Continent - Way Forward
Cybersecurity Context in African Continent - Way ForwardCybersecurity Context in African Continent - Way Forward
Cybersecurity Context in African Continent - Way Forward
 
Cyber Crime Seminar Jan 2015
Cyber Crime Seminar Jan 2015Cyber Crime Seminar Jan 2015
Cyber Crime Seminar Jan 2015
 
OSINT Social Media Techniques - Macau social mediat lc
OSINT Social Media Techniques - Macau social mediat lc OSINT Social Media Techniques - Macau social mediat lc
OSINT Social Media Techniques - Macau social mediat lc
 

Similar to Digital Leviathan: a comprehensive list of Nation-State Big Brothers (from huge to little ones)

COMMON GOOD DIGITAL FRAMEWORK
COMMON GOOD DIGITAL FRAMEWORKCOMMON GOOD DIGITAL FRAMEWORK
COMMON GOOD DIGITAL FRAMEWORK
Boston Global Forum
 
1482734.ppt
1482734.ppt1482734.ppt
1482734.ppt
DorcusSitali
 
ESSENTIALS OF Management Information Systems 12eKENNETH C..docx
ESSENTIALS OF Management Information Systems 12eKENNETH C..docxESSENTIALS OF Management Information Systems 12eKENNETH C..docx
ESSENTIALS OF Management Information Systems 12eKENNETH C..docx
debishakespeare
 
ESSENTIALS OF Management Information Systems 12eKENNETH C.
ESSENTIALS OF Management Information Systems 12eKENNETH C.ESSENTIALS OF Management Information Systems 12eKENNETH C.
ESSENTIALS OF Management Information Systems 12eKENNETH C.
ronnasleightholm
 
Adjusting Your Security Controls: It’s the New Normal
Adjusting Your Security Controls: It’s the New NormalAdjusting Your Security Controls: It’s the New Normal
Adjusting Your Security Controls: It’s the New Normal
Priyanka Aash
 
Panel Cyber Security and Privacy without Carrie Waggoner
Panel Cyber Security and Privacy without Carrie WaggonerPanel Cyber Security and Privacy without Carrie Waggoner
Panel Cyber Security and Privacy without Carrie Waggoner
mihinpr
 
SingHealth Cyber Attack (project)
SingHealth Cyber Attack (project)SingHealth Cyber Attack (project)
SingHealth Cyber Attack (project)
James Neo
 
EENA2019: Track1 session1 _The future of emergency response today: how agenci...
EENA2019: Track1 session1 _The future of emergency response today: how agenci...EENA2019: Track1 session1 _The future of emergency response today: how agenci...
EENA2019: Track1 session1 _The future of emergency response today: how agenci...
EENA (European Emergency Number Association)
 
EENA2019: Track1 session1 _The future of emergency response today (...)_Jessi...
EENA2019: Track1 session1 _The future of emergency response today (...)_Jessi...EENA2019: Track1 session1 _The future of emergency response today (...)_Jessi...
EENA2019: Track1 session1 _The future of emergency response today (...)_Jessi...
EENA (European Emergency Number Association)
 
Cyber Resilience
Cyber ResilienceCyber Resilience
Cyber Resilience
Ian-Edward Stafrace
 
Don't Panic. Making Progress on the 'Going Dark' Debate
Don't Panic. Making Progress on the 'Going Dark' DebateDon't Panic. Making Progress on the 'Going Dark' Debate
Don't Panic. Making Progress on the 'Going Dark' Debate
Fabio Chiusi
 
Who Has Your Back 2014: Protecting Your Data From Government Requests
Who Has Your Back 2014: Protecting Your Data From Government RequestsWho Has Your Back 2014: Protecting Your Data From Government Requests
Who Has Your Back 2014: Protecting Your Data From Government Requests
- Mark - Fullbright
 
How safe and reliable are information systems?
How safe and reliable are information systems?How safe and reliable are information systems?
How safe and reliable are information systems?
blogzilla
 
[AIIM18] GDPR: whose job is it now? - Paul Lanois
[AIIM18] GDPR: whose job is it now? - Paul Lanois[AIIM18] GDPR: whose job is it now? - Paul Lanois
[AIIM18] GDPR: whose job is it now? - Paul Lanois
AIIM International
 
RIM On The Social Side
RIM On The Social SideRIM On The Social Side
RIM On The Social Side
Natalie Alesi
 
Building A Modern Security Policy For Social Media and Government
Building A Modern Security Policy For Social Media and GovernmentBuilding A Modern Security Policy For Social Media and Government
Building A Modern Security Policy For Social Media and Government
Michael Smith
 
Internet Rights are Human Rights Case Booklet
Internet Rights are Human Rights Case BookletInternet Rights are Human Rights Case Booklet
Internet Rights are Human Rights Case Booklet
Rajat Kumar
 
wp-analyzing-breaches-by-industry
wp-analyzing-breaches-by-industrywp-analyzing-breaches-by-industry
wp-analyzing-breaches-by-industry
Numaan Huq
 
Hot Topics in Privacy and Security
Hot Topics in Privacy and SecurityHot Topics in Privacy and Security
Hot Topics in Privacy and Security
PYA, P.C.
 
Internet Governance & Digital Rights by Waihiga K. Muturi, Rtn..pdf
Internet Governance & Digital Rights by Waihiga K. Muturi, Rtn..pdfInternet Governance & Digital Rights by Waihiga K. Muturi, Rtn..pdf
Internet Governance & Digital Rights by Waihiga K. Muturi, Rtn..pdf
WAIHIGA K.MUTURI
 

Similar to Digital Leviathan: a comprehensive list of Nation-State Big Brothers (from huge to little ones) (20)

COMMON GOOD DIGITAL FRAMEWORK
COMMON GOOD DIGITAL FRAMEWORKCOMMON GOOD DIGITAL FRAMEWORK
COMMON GOOD DIGITAL FRAMEWORK
 
1482734.ppt
1482734.ppt1482734.ppt
1482734.ppt
 
ESSENTIALS OF Management Information Systems 12eKENNETH C..docx
ESSENTIALS OF Management Information Systems 12eKENNETH C..docxESSENTIALS OF Management Information Systems 12eKENNETH C..docx
ESSENTIALS OF Management Information Systems 12eKENNETH C..docx
 
ESSENTIALS OF Management Information Systems 12eKENNETH C.
ESSENTIALS OF Management Information Systems 12eKENNETH C.ESSENTIALS OF Management Information Systems 12eKENNETH C.
ESSENTIALS OF Management Information Systems 12eKENNETH C.
 
Adjusting Your Security Controls: It’s the New Normal
Adjusting Your Security Controls: It’s the New NormalAdjusting Your Security Controls: It’s the New Normal
Adjusting Your Security Controls: It’s the New Normal
 
Panel Cyber Security and Privacy without Carrie Waggoner
Panel Cyber Security and Privacy without Carrie WaggonerPanel Cyber Security and Privacy without Carrie Waggoner
Panel Cyber Security and Privacy without Carrie Waggoner
 
SingHealth Cyber Attack (project)
SingHealth Cyber Attack (project)SingHealth Cyber Attack (project)
SingHealth Cyber Attack (project)
 
EENA2019: Track1 session1 _The future of emergency response today: how agenci...
EENA2019: Track1 session1 _The future of emergency response today: how agenci...EENA2019: Track1 session1 _The future of emergency response today: how agenci...
EENA2019: Track1 session1 _The future of emergency response today: how agenci...
 
EENA2019: Track1 session1 _The future of emergency response today (...)_Jessi...
EENA2019: Track1 session1 _The future of emergency response today (...)_Jessi...EENA2019: Track1 session1 _The future of emergency response today (...)_Jessi...
EENA2019: Track1 session1 _The future of emergency response today (...)_Jessi...
 
Cyber Resilience
Cyber ResilienceCyber Resilience
Cyber Resilience
 
Don't Panic. Making Progress on the 'Going Dark' Debate
Don't Panic. Making Progress on the 'Going Dark' DebateDon't Panic. Making Progress on the 'Going Dark' Debate
Don't Panic. Making Progress on the 'Going Dark' Debate
 
Who Has Your Back 2014: Protecting Your Data From Government Requests
Who Has Your Back 2014: Protecting Your Data From Government RequestsWho Has Your Back 2014: Protecting Your Data From Government Requests
Who Has Your Back 2014: Protecting Your Data From Government Requests
 
How safe and reliable are information systems?
How safe and reliable are information systems?How safe and reliable are information systems?
How safe and reliable are information systems?
 
[AIIM18] GDPR: whose job is it now? - Paul Lanois
[AIIM18] GDPR: whose job is it now? - Paul Lanois[AIIM18] GDPR: whose job is it now? - Paul Lanois
[AIIM18] GDPR: whose job is it now? - Paul Lanois
 
RIM On The Social Side
RIM On The Social SideRIM On The Social Side
RIM On The Social Side
 
Building A Modern Security Policy For Social Media and Government
Building A Modern Security Policy For Social Media and GovernmentBuilding A Modern Security Policy For Social Media and Government
Building A Modern Security Policy For Social Media and Government
 
Internet Rights are Human Rights Case Booklet
Internet Rights are Human Rights Case BookletInternet Rights are Human Rights Case Booklet
Internet Rights are Human Rights Case Booklet
 
wp-analyzing-breaches-by-industry
wp-analyzing-breaches-by-industrywp-analyzing-breaches-by-industry
wp-analyzing-breaches-by-industry
 
Hot Topics in Privacy and Security
Hot Topics in Privacy and SecurityHot Topics in Privacy and Security
Hot Topics in Privacy and Security
 
Internet Governance & Digital Rights by Waihiga K. Muturi, Rtn..pdf
Internet Governance & Digital Rights by Waihiga K. Muturi, Rtn..pdfInternet Governance & Digital Rights by Waihiga K. Muturi, Rtn..pdf
Internet Governance & Digital Rights by Waihiga K. Muturi, Rtn..pdf
 

More from Priyanka Aash

Digital Personal Data Protection (DPDP) Practical Approach For CISOs
Digital Personal Data Protection (DPDP) Practical Approach For CISOsDigital Personal Data Protection (DPDP) Practical Approach For CISOs
Digital Personal Data Protection (DPDP) Practical Approach For CISOs
Priyanka Aash
 
Verizon Breach Investigation Report (VBIR).pdf
Verizon Breach Investigation Report (VBIR).pdfVerizon Breach Investigation Report (VBIR).pdf
Verizon Breach Investigation Report (VBIR).pdf
Priyanka Aash
 
Top 10 Security Risks .pptx.pdf
Top 10 Security Risks .pptx.pdfTop 10 Security Risks .pptx.pdf
Top 10 Security Risks .pptx.pdf
Priyanka Aash
 
Simplifying data privacy and protection.pdf
Simplifying data privacy and protection.pdfSimplifying data privacy and protection.pdf
Simplifying data privacy and protection.pdf
Priyanka Aash
 
Generative AI and Security (1).pptx.pdf
Generative AI and Security (1).pptx.pdfGenerative AI and Security (1).pptx.pdf
Generative AI and Security (1).pptx.pdf
Priyanka Aash
 
EVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdf
EVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdfEVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdf
EVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdf
Priyanka Aash
 
DPDP Act 2023.pdf
DPDP Act 2023.pdfDPDP Act 2023.pdf
DPDP Act 2023.pdf
Priyanka Aash
 
Cyber Truths_Are you Prepared version 1.1.pptx.pdf
Cyber Truths_Are you Prepared version 1.1.pptx.pdfCyber Truths_Are you Prepared version 1.1.pptx.pdf
Cyber Truths_Are you Prepared version 1.1.pptx.pdf
Priyanka Aash
 
Cyber Crisis Management.pdf
Cyber Crisis Management.pdfCyber Crisis Management.pdf
Cyber Crisis Management.pdf
Priyanka Aash
 
CISOPlatform journey.pptx.pdf
CISOPlatform journey.pptx.pdfCISOPlatform journey.pptx.pdf
CISOPlatform journey.pptx.pdf
Priyanka Aash
 
Chennai Chapter.pptx.pdf
Chennai Chapter.pptx.pdfChennai Chapter.pptx.pdf
Chennai Chapter.pptx.pdf
Priyanka Aash
 
Cloud attack vectors_Moshe.pdf
Cloud attack vectors_Moshe.pdfCloud attack vectors_Moshe.pdf
Cloud attack vectors_Moshe.pdf
Priyanka Aash
 
Stories From The Web 3 Battlefield
Stories From The Web 3 BattlefieldStories From The Web 3 Battlefield
Stories From The Web 3 Battlefield
Priyanka Aash
 
Lessons Learned From Ransomware Attacks
Lessons Learned From Ransomware AttacksLessons Learned From Ransomware Attacks
Lessons Learned From Ransomware Attacks
Priyanka Aash
 
Emerging New Threats And Top CISO Priorities In 2022 (Chennai)
Emerging New Threats And Top CISO Priorities In 2022 (Chennai)Emerging New Threats And Top CISO Priorities In 2022 (Chennai)
Emerging New Threats And Top CISO Priorities In 2022 (Chennai)
Priyanka Aash
 
Emerging New Threats And Top CISO Priorities In 2022 (Mumbai)
Emerging New Threats And Top CISO Priorities In 2022 (Mumbai)Emerging New Threats And Top CISO Priorities In 2022 (Mumbai)
Emerging New Threats And Top CISO Priorities In 2022 (Mumbai)
Priyanka Aash
 
Emerging New Threats And Top CISO Priorities in 2022 (Bangalore)
Emerging New Threats And Top CISO Priorities in 2022 (Bangalore)Emerging New Threats And Top CISO Priorities in 2022 (Bangalore)
Emerging New Threats And Top CISO Priorities in 2022 (Bangalore)
Priyanka Aash
 
Cloud Security: Limitations of Cloud Security Groups and Flow Logs
Cloud Security: Limitations of Cloud Security Groups and Flow LogsCloud Security: Limitations of Cloud Security Groups and Flow Logs
Cloud Security: Limitations of Cloud Security Groups and Flow Logs
Priyanka Aash
 
Cyber Security Governance
Cyber Security GovernanceCyber Security Governance
Cyber Security Governance
Priyanka Aash
 
Ethical Hacking
Ethical HackingEthical Hacking
Ethical Hacking
Priyanka Aash
 

More from Priyanka Aash (20)

Digital Personal Data Protection (DPDP) Practical Approach For CISOs
Digital Personal Data Protection (DPDP) Practical Approach For CISOsDigital Personal Data Protection (DPDP) Practical Approach For CISOs
Digital Personal Data Protection (DPDP) Practical Approach For CISOs
 
Verizon Breach Investigation Report (VBIR).pdf
Verizon Breach Investigation Report (VBIR).pdfVerizon Breach Investigation Report (VBIR).pdf
Verizon Breach Investigation Report (VBIR).pdf
 
Top 10 Security Risks .pptx.pdf
Top 10 Security Risks .pptx.pdfTop 10 Security Risks .pptx.pdf
Top 10 Security Risks .pptx.pdf
 
Simplifying data privacy and protection.pdf
Simplifying data privacy and protection.pdfSimplifying data privacy and protection.pdf
Simplifying data privacy and protection.pdf
 
Generative AI and Security (1).pptx.pdf
Generative AI and Security (1).pptx.pdfGenerative AI and Security (1).pptx.pdf
Generative AI and Security (1).pptx.pdf
 
EVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdf
EVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdfEVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdf
EVERY ATTACK INVOLVES EXPLOITATION OF A WEAKNESS.pdf
 
DPDP Act 2023.pdf
DPDP Act 2023.pdfDPDP Act 2023.pdf
DPDP Act 2023.pdf
 
Cyber Truths_Are you Prepared version 1.1.pptx.pdf
Cyber Truths_Are you Prepared version 1.1.pptx.pdfCyber Truths_Are you Prepared version 1.1.pptx.pdf
Cyber Truths_Are you Prepared version 1.1.pptx.pdf
 
Cyber Crisis Management.pdf
Cyber Crisis Management.pdfCyber Crisis Management.pdf
Cyber Crisis Management.pdf
 
CISOPlatform journey.pptx.pdf
CISOPlatform journey.pptx.pdfCISOPlatform journey.pptx.pdf
CISOPlatform journey.pptx.pdf
 
Chennai Chapter.pptx.pdf
Chennai Chapter.pptx.pdfChennai Chapter.pptx.pdf
Chennai Chapter.pptx.pdf
 
Cloud attack vectors_Moshe.pdf
Cloud attack vectors_Moshe.pdfCloud attack vectors_Moshe.pdf
Cloud attack vectors_Moshe.pdf
 
Stories From The Web 3 Battlefield
Stories From The Web 3 BattlefieldStories From The Web 3 Battlefield
Stories From The Web 3 Battlefield
 
Lessons Learned From Ransomware Attacks
Lessons Learned From Ransomware AttacksLessons Learned From Ransomware Attacks
Lessons Learned From Ransomware Attacks
 
Emerging New Threats And Top CISO Priorities In 2022 (Chennai)
Emerging New Threats And Top CISO Priorities In 2022 (Chennai)Emerging New Threats And Top CISO Priorities In 2022 (Chennai)
Emerging New Threats And Top CISO Priorities In 2022 (Chennai)
 
Emerging New Threats And Top CISO Priorities In 2022 (Mumbai)
Emerging New Threats And Top CISO Priorities In 2022 (Mumbai)Emerging New Threats And Top CISO Priorities In 2022 (Mumbai)
Emerging New Threats And Top CISO Priorities In 2022 (Mumbai)
 
Emerging New Threats And Top CISO Priorities in 2022 (Bangalore)
Emerging New Threats And Top CISO Priorities in 2022 (Bangalore)Emerging New Threats And Top CISO Priorities in 2022 (Bangalore)
Emerging New Threats And Top CISO Priorities in 2022 (Bangalore)
 
Cloud Security: Limitations of Cloud Security Groups and Flow Logs
Cloud Security: Limitations of Cloud Security Groups and Flow LogsCloud Security: Limitations of Cloud Security Groups and Flow Logs
Cloud Security: Limitations of Cloud Security Groups and Flow Logs
 
Cyber Security Governance
Cyber Security GovernanceCyber Security Governance
Cyber Security Governance
 
Ethical Hacking
Ethical HackingEthical Hacking
Ethical Hacking
 

Recently uploaded

Removing Uninteresting Bytes in Software Fuzzing
Removing Uninteresting Bytes in Software FuzzingRemoving Uninteresting Bytes in Software Fuzzing
Removing Uninteresting Bytes in Software Fuzzing
Aftab Hussain
 
Essentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FMEEssentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FME
Safe Software
 
Data structures and Algorithms in Python.pdf
Data structures and Algorithms in Python.pdfData structures and Algorithms in Python.pdf
Data structures and Algorithms in Python.pdf
TIPNGVN2
 
How to Get CNIC Information System with Paksim Ga.pptx
How to Get CNIC Information System with Paksim Ga.pptxHow to Get CNIC Information System with Paksim Ga.pptx
How to Get CNIC Information System with Paksim Ga.pptx
danishmna97
 
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
James Anderson
 
Generative AI Deep Dive: Advancing from Proof of Concept to Production
Generative AI Deep Dive: Advancing from Proof of Concept to ProductionGenerative AI Deep Dive: Advancing from Proof of Concept to Production
Generative AI Deep Dive: Advancing from Proof of Concept to Production
Aggregage
 
Monitoring Java Application Security with JDK Tools and JFR Events
Monitoring Java Application Security with JDK Tools and JFR EventsMonitoring Java Application Security with JDK Tools and JFR Events
Monitoring Java Application Security with JDK Tools and JFR Events
Ana-Maria Mihalceanu
 
Epistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI supportEpistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI support
Alan Dix
 
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
Neo4j
 
Mind map of terminologies used in context of Generative AI
Mind map of terminologies used in context of Generative AIMind map of terminologies used in context of Generative AI
Mind map of terminologies used in context of Generative AI
Kumud Singh
 
Introduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - CybersecurityIntroduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - Cybersecurity
mikeeftimakis1
 
20240609 QFM020 Irresponsible AI Reading List May 2024
20240609 QFM020 Irresponsible AI Reading List May 202420240609 QFM020 Irresponsible AI Reading List May 2024
20240609 QFM020 Irresponsible AI Reading List May 2024
Matthew Sinclair
 
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
名前 です男
 
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AI
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AIEnchancing adoption of Open Source Libraries. A case study on Albumentations.AI
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AI
Vladimir Iglovikov, Ph.D.
 
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
Neo4j
 
Climate Impact of Software Testing at Nordic Testing Days
Climate Impact of Software Testing at Nordic Testing DaysClimate Impact of Software Testing at Nordic Testing Days
Climate Impact of Software Testing at Nordic Testing Days
Kari Kakkonen
 
By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024
Pierluigi Pugliese
 
GridMate - End to end testing is a critical piece to ensure quality and avoid...
GridMate - End to end testing is a critical piece to ensure quality and avoid...GridMate - End to end testing is a critical piece to ensure quality and avoid...
GridMate - End to end testing is a critical piece to ensure quality and avoid...
ThomasParaiso2
 
Full-RAG: A modern architecture for hyper-personalization
Full-RAG: A modern architecture for hyper-personalizationFull-RAG: A modern architecture for hyper-personalization
Full-RAG: A modern architecture for hyper-personalization
Zilliz
 
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
SOFTTECHHUB
 

Recently uploaded (20)

Removing Uninteresting Bytes in Software Fuzzing
Removing Uninteresting Bytes in Software FuzzingRemoving Uninteresting Bytes in Software Fuzzing
Removing Uninteresting Bytes in Software Fuzzing
 
Essentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FMEEssentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FME
 
Data structures and Algorithms in Python.pdf
Data structures and Algorithms in Python.pdfData structures and Algorithms in Python.pdf
Data structures and Algorithms in Python.pdf
 
How to Get CNIC Information System with Paksim Ga.pptx
How to Get CNIC Information System with Paksim Ga.pptxHow to Get CNIC Information System with Paksim Ga.pptx
How to Get CNIC Information System with Paksim Ga.pptx
 
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
 
Generative AI Deep Dive: Advancing from Proof of Concept to Production
Generative AI Deep Dive: Advancing from Proof of Concept to ProductionGenerative AI Deep Dive: Advancing from Proof of Concept to Production
Generative AI Deep Dive: Advancing from Proof of Concept to Production
 
Monitoring Java Application Security with JDK Tools and JFR Events
Monitoring Java Application Security with JDK Tools and JFR EventsMonitoring Java Application Security with JDK Tools and JFR Events
Monitoring Java Application Security with JDK Tools and JFR Events
 
Epistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI supportEpistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI support
 
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
 
Mind map of terminologies used in context of Generative AI
Mind map of terminologies used in context of Generative AIMind map of terminologies used in context of Generative AI
Mind map of terminologies used in context of Generative AI
 
Introduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - CybersecurityIntroduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - Cybersecurity
 
20240609 QFM020 Irresponsible AI Reading List May 2024
20240609 QFM020 Irresponsible AI Reading List May 202420240609 QFM020 Irresponsible AI Reading List May 2024
20240609 QFM020 Irresponsible AI Reading List May 2024
 
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
 
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AI
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AIEnchancing adoption of Open Source Libraries. A case study on Albumentations.AI
Enchancing adoption of Open Source Libraries. A case study on Albumentations.AI
 
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
 
Climate Impact of Software Testing at Nordic Testing Days
Climate Impact of Software Testing at Nordic Testing DaysClimate Impact of Software Testing at Nordic Testing Days
Climate Impact of Software Testing at Nordic Testing Days
 
By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024
 
GridMate - End to end testing is a critical piece to ensure quality and avoid...
GridMate - End to end testing is a critical piece to ensure quality and avoid...GridMate - End to end testing is a critical piece to ensure quality and avoid...
GridMate - End to end testing is a critical piece to ensure quality and avoid...
 
Full-RAG: A modern architecture for hyper-personalization
Full-RAG: A modern architecture for hyper-personalizationFull-RAG: A modern architecture for hyper-personalization
Full-RAG: A modern architecture for hyper-personalization
 
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
 

Digital Leviathan: a comprehensive list of Nation-State Big Brothers (from huge to little ones)

  • 1. Digital Leviathan Nation-State Big Brothers (from huge to little ones) Eduardo Izycki & Rodrigo Colli Las Vegas, August 11th 2018
  • 4. INTRO “We should give our obedience to an unaccountable sovereign otherwise what awaits us is a ‘state of nature’ that closely resembles civil war – a situation of universal insecurity”. ? ! The claim Terrorism, cybercrime, foreign espionage, among other are examples that support politicians claims for increase state power over online life. Opposing evidence The current use of cyber offensive tools are aimed to political objectives rather than public safety Thomas Hobbes
  • 5. Espionage Surveillance / Eavesdropping Censorship Stealing of information and/or personal data (for achieving political purposes, i.e. opposition party, NGO, ethnic minorities) Untargeted violations of privacy (monitoring of behavior, activities, or other changing information of people online) Block specific applications or technologies; filtering and blocking of websites; manipulation of content or traffic manipulation; violations of user rights. INTRO 1 2 3
  • 7. APT Reports Leaks from spyware providers Acquisition of technology • Total of 758 reports/blog posts from vendors, NGO, CSIRT and universities, • The dataset has bias from a western perspective (close to 80%) • Two big providers of surveillance solutions Hacking Team and Gamma Group, • Data is available from multiple sources (Wikileaks has a good search platform) • Surveillance and/or intrusion technologies reported from multiple sources • Purchases made by different countries (potential cyber capabilities) SOURCES 1 2 3 • Focus on attacks targeting NGO, political groups, media outlets, or opposition was considered as an indicator of state misbehavior • Many cases it was possible to identify who acquired it (law enforcement, military, intelligence, etc) • Buggedplanet.info and Surveillance Industry Index (SII) were helpful sources
  • 8. Censorship Transparency Reports • Freedom House, OONI, Google, Reporters without Borders and OpenNet provide evidence of some level online censorship, • Blocking applications, technologies, traffic; filtering and blocking of websites; violations of user rights • Transparency Reports issued by major social networks and content providers •Facebook, Twitter, Google, Yahoo, Apple, LinkedIn, Snapchat, Tumblr, Dropbox, Wiki,Microsoft, and WordPress SOURCES 4 5 • Based on a western view of freedom of speech (an individual or a community to articulate their opinions and ideas without fear of retaliation, censorship or sanction) • Provides extra detail on the intent of Nation-States use of social media for surveillance
  • 10. OUTCOMES 55% 119 17 + Documents that had some level of attribution Considered state- sponsored attacks Countries attributed with a state-sponsored APT Extensive use of Python3 (NLTK) and regular expressions for processing documents / posts 402 Single APT Groups and/or Campaigns
  • 11. EUA México França Reino Unido Egito Emirados Árabes Israel Turquia Líbano Irã Síria Etiópia Índia Paquistão China Coreia do Norte Rússia STATE SPONSORED APT OUTCOMES Cazaquistão Bahrain 46 41 32 27 24 18 17 17 8 8 6 5 Political Targets FFAA Government Diplomacy P&D Midia Energy Telecom Automation Finnacial Oil & Gas Health State-Sponsored APT - Targets
  • 12. OUTCOMES 57% 26 29 + Countries acquired offensive solutions from private vendors In 41 cases it was possible to identify the user/buyer User/buyer was an intelligence agency and/or armed forces Countries that acquired more than one offensive solution Wikileaks' search platform, Buggedplanet.info, Surveillance Industry Index, and reports from Citizen Lab / Privacy International / Freedom House 71
  • 13. ACQUIRED OFFENSIVE SOLUTIONS Bull / Amesys 2 countries Cyberbit 10 countries Dreamlab 2 countries Gamma Group 55 countries Hacking Team 37 countries NSO Group 3 countries SS8 4 countries Trovicor 9 countries Major Private Vendors Procera 2 countries OUTCOMES
  • 14. NEW THREATS Users / Buyers Saudi Arabia GIP / GID / MD Azerbaijan Azerbajan NS Bangladesh (DGFI) Cyprus Intelligence Agency Ecuador SENAIN Spain CNI Hungary SSNS Indonesia Lembaga Sandi Negara Kenya NIS Marroco CSDN / DST Mongolia SSSD Malasya MACC / MALMI / PMO Oman Intelligence Agency Panama Presidency Cabinet Serbia BIA Singapore IDA SGP Thailand Royal Thai Army Uganda CMI Uzbequistan NSS OUTCOMES
  • 15. MULTIPLE OFFENSIVE SOLUTIONS > OUTCOMES 2 6 1 2 0 8 3 7 15 27 4 13 1 29 13 22 Africa Europe US/Canada Latin America Oceania MENA Russia & CIS Southeast Asia Contries with multiple solutions Solutions (Total) Multiple Providers 1 1 1 2 2 2 11 21 30 Law Enforcement / Armed Forces Customs / IRS Telecom Armed Forces Intelligence / Armed Forces State Level Law Enforcement Intelligence Agency Unidentified User / Buyer
  • 16. 74% In 32 countries the shutdown reached national level OUTCOMES 42 57 + Countries with evidence of online censorship Countries with evidence of some level of internet shutdown Countries with evidence from two or more sources Reports from Freedom House, OONI, Google, Reporters without Borders and OpenNet Initiative 40
  • 17. OONI – Open Observatory of Network Interference OUTCOMES
  • 18. FREEDOM HOUSE – Freedom of the Net OUTCOMES
  • 19. WEB FOUNDATION – Web Index OUTCOMES
  • 21. Censorship and Shutdowns – Multiple Sources ACCESSNOW.ORG – SHUTDOWN TRACKER OUTCOMES #OpOperadoras – Brazil 2016 Saudi Arabia All sources Bahrain 4 sources Turkey 4 sources Iran 4 sources United Arab Emirates 3 sources China All sources Vietnam All sources Pakistan 4 sources Ethiopia 4 sources
  • 22. 63% World average requests where some data was produced (FB – 2017) OUTCOMES 10 125 + Companies worldwide publish transparency reports Major content providers covered in this analysis Countries have requested information or to remove content Most transparency reports data are available in csv/json formats, unfortunately some only PDF 70
  • 23. Transparency Reports OUTCOMES - 2.000 4.000 6.000 8.000 10.000 12.000 14.000 2013 2014 2015 2016 2017 Facebook-TransparencyReport-Total DataRequests Facebook - Transparency Report Brazil India Mexico Poland Turkey 0 200 400 600 800 1000 1200 2012 2013 2014 2015 2016 2017 ACCOUNTINFORMATIONREQUESTS Twitter - Transparency Reports Brazil India Mexico Poland Turkey 0 2000 4000 6000 8000 10000 12000 14000 16000 2013 2014 2015 2016 2017 TotalNumberofLawEnforcement Requests Microsoft - Transparency Report Brazil India Mexico Poland Turkey - 1.000 2.000 3.000 4.000 5.000 6.000 7.000 8.000 9.000 2009 2010 2011 2012 2013 2014 2015 2016 2017 UserDataRequests Google - Transparency Report Brazil India Mexico Poland Turkey
  • 24. Transparency Reports OUTCOMES - 500 1.000 1.500 2.000 2013 2014 2015 2016 2017 Facebook-TransparencyReport- TotalDataRequests Facebook - Transparency Report - 500 1.000 1.500 2.000 2009 2010 2011 2012 2013 2014 2015 2016 2017 UserDataRequests Google - Transparency Report 31,6% 1,0% 35,4% 44,2% 42,5% 50,8% 0% 10% 20% 30% 40% 50% 60% 2012 2013 2014 2015 2016 2017 Twitter - Transparency Reports 0 500 1000 1500 2000 2012 2013 2014 2015 2016 2017 ACCOUNTINFORMATIONREQUESTS Twitter - Transparency Reports
  • 26. CONCLUSION OFFENSIVE CAPABILITIES Sponsored APT – Users Affected There are evidence that 19 countries were attributed as authors/sponsors of cyber attacks. Another 18 countries possess cyber weapons with Intelligence Agencies At last, 34 countries acquired cyber weapons but the user/buyer is not known Cyber offensive tools being used against political targets 1 85 countries attacked and/or possess cyber weapons 54,9 % Worldwide Sponsored APT + Intelligence Agencies 64,0% Worldwide All Cyber Offensive Capabilities 92,2% Worldwide
  • 27. CONCLUSION CENSORSHIP & BLOCKING Censorship/Shutdowns – Internet Users Out of 57 countries that engaged in censorship or shutdowns, 26 did both. Concerning social media such as Facebook, Twitter and Google, all countries have increased its yearly number of requests Online Censorship and Internet Shutdowns 2 The two are strongly correlated 56,7 % Worldwide