<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>Citizen Lab &#8211; Noise</title>
	<atom:link href="https://noise.getoto.net/tag/citizen-lab/feed/" rel="self" type="application/rss+xml" />
	<link>https://noise.getoto.net</link>
	<description>The collective thoughts of the interwebz</description>
	<lastBuildDate>Mon, 06 Oct 2025 19:18:28 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.8.2</generator>
	<item>
		<title>AI-Enabled Influence Operation Against Iran</title>
		<link>https://noise.getoto.net/2025/10/07/ai-enabled-influence-operation-against-iran/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Tue, 07 Oct 2025 11:04:23 +0000</pubDate>
				<category><![CDATA[AI]]></category>
		<category><![CDATA[Citizen Lab]]></category>
		<category><![CDATA[deepfake]]></category>
		<category><![CDATA[iran]]></category>
		<category><![CDATA[israel]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=70926</guid>

					<description><![CDATA[<p>Citizen Lab has <a href="https://citizenlab.ca/2025/10/ai-enabled-io-aimed-at-overthrowing-iranian-regime/">uncovered</a> a coordinated AI-enabled influence operation against the Iranian government, probably conducted by Israel.</p>
<blockquote><p><strong>Key Findings</strong></p>
<ul>
<li>A coordinated network of more than 50 inauthentic X profiles is conducting an AI-enabled influence operation. The network, which we refer to as “PRISONBREAK,” is spreading narratives inciting Iranian audiences to revolt against the Islamic Republic of Iran.
</li><li>While the network was created in 2023, almost all of its activity was conducted starting in January 2025, and continues to the present day.
</li><li>The profiles’ activity appears to have been synchronized, at least in part, with the military campaign that the Israel Defense Forces conducted against Iranian targets in June 2025.
...</li></ul></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>I’m Spending the Year at the Munk School</title>
		<link>https://noise.getoto.net/2025/08/22/im-spending-the-year-at-the-munk-school/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Fri, 22 Aug 2025 19:00:37 +0000</pubDate>
				<category><![CDATA[Citizen Lab]]></category>
		<category><![CDATA[cybersecurity]]></category>
		<category><![CDATA[Schneier news]]></category>
		<category><![CDATA[schools]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=70541</guid>

					<description><![CDATA[<p>This academic year, I am taking a sabbatical from the Kennedy School and Harvard University. (It’s not a real sabbatical—I’m just an adjunct—but it’s the same idea.) I will be spending the Fall 2025 and Spring 2026 semesters at the <a href="https://munkschool.utoronto.ca/">Munk School</a> at the University of Toronto.</p>
<p>I will be organizing a reading group on AI security in the fall. I will be teaching my cybersecurity policy class in the Spring. I will be working with <a href="https://citizenlab.ca/">Citizen Lab</a>, the <a href="https://www.law.utoronto.ca/">Law School</a>, and the <a href="https://srinstitute.utoronto.ca/">Schwartz Reisman Institute</a>. And I will be enjoying all the multicultural offerings of Toronto...</p>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Security Vulnerabilities in Covert CIA Websites</title>
		<link>https://noise.getoto.net/2022/09/30/security-vulnerabilities-in-covert-cia-websites/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Fri, 30 Sep 2022 14:19:16 +0000</pubDate>
				<category><![CDATA[cia]]></category>
		<category><![CDATA[Citizen Lab]]></category>
		<category><![CDATA[cyberespionage]]></category>
		<category><![CDATA[espionage]]></category>
		<category><![CDATA[operational security]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=65917</guid>

					<description><![CDATA[<p>Back in 2018, we learned that covert system of websites that the CIA used for communications was <a href="https://news.yahoo.com/cias-communications-suffered-catastrophic-compromise-started-iran-090018710.html/">compromised by</a>—at least—China and Iran, and that the blunder caused a bunch of arrests, imprisonments, and executions. We’re <a href="https://www.reuters.com/investigates/special-report/usa-spies-iran/">now learning</a> that the CIA is still “using an irresponsibly secured system for asset communication.”</p>
<p>Citizen Lab did the <a href="https://citizenlab.ca/2022/09/statement-on-the-fatal-flaws-found-in-a-defunct-cia-covert-communications-system/">research</a>:</p>
<blockquote><p>Using only a single website, as well as publicly available material such as historical internet scanning results and the Internet Archive’s Wayback Machine, we identified a network of 885 websites and have high confidence that the United States (US) Central Intelligence Agency (CIA) used these sites for covert communication...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>NSO Group’s Pegasus Spyware Used against Thailand Pro-Democracy Activists and Leaders</title>
		<link>https://noise.getoto.net/2022/07/19/nso-groups-pegasus-spyware-used-against-thailand-pro-democracy-activists-and-leaders/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Tue, 19 Jul 2022 14:40:34 +0000</pubDate>
				<category><![CDATA[Citizen Lab]]></category>
		<category><![CDATA[hacking]]></category>
		<category><![CDATA[Human Rights]]></category>
		<category><![CDATA[spyware]]></category>
		<category><![CDATA[Thailand]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=65688</guid>

					<description><![CDATA[<p>Yet another basic human rights violation, courtesy of NSO Group: Citizen Lab has the <a href="https://citizenlab.ca/2022/07/geckospy-pegasus-spyware-used-against-thailands-pro-democracy-movement/">details</a>:</p>
<blockquote><p>Key Findings</p>
<ul>
<li>We discovered an extensive espionage campaign targeting Thai pro-democracy protesters, and activists calling for reforms to the monarchy.
</li><li>We forensically confirmed that at least 30 individuals were infected with NSO Group’s Pegasus spyware.
</li><li>The observed infections took place between October 2020 and November 2021.
</li><li>The ongoing investigation was triggered by notifications sent by Apple to Thai civil society members in November 2021. Following the notification, multiple recipients made contact with civil society groups, including the Citizen Lab.
...</li></ul></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Long Article on NSO Group</title>
		<link>https://noise.getoto.net/2022/04/21/long-article-on-nso-group/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Thu, 21 Apr 2022 12:16:35 +0000</pubDate>
				<category><![CDATA[Citizen Lab]]></category>
		<category><![CDATA[cyberespionage]]></category>
		<category><![CDATA[espionage]]></category>
		<category><![CDATA[israel]]></category>
		<category><![CDATA[spyware]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=65346</guid>

					<description><![CDATA[Ronan Farrow has a long article in the New Yorker on NSO Group, which includes the news that someone &#8212; probably Spain &#8212; used the software to spy on domestic Catalonian separatists.
]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>More on NSO Group and Cytrox: Two Cyberweapons Arms Manufacturers</title>
		<link>https://noise.getoto.net/2021/12/20/more-on-nso-group-and-cytrox-two-cyberweapons-arms-manufacturers/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Mon, 20 Dec 2021 15:17:41 +0000</pubDate>
				<category><![CDATA[Citizen Lab]]></category>
		<category><![CDATA[cyberweapons]]></category>
		<category><![CDATA[exploits]]></category>
		<category><![CDATA[spyware]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=64686</guid>

					<description><![CDATA[<p>Citizen Lab published <a href="https://citizenlab.ca/2021/12/pegasus-vs-predator-dissidents-doubly-infected-iphone-reveals-cytrox-mercenary-spyware/">another report</a> on the spyware used against two Egyptian nationals. One was hacked by NSO Group’s Pegasus spyware. The other was hacked both by Pegasus and by the spyware from another cyberweapons arms manufacturer: Cytrox.</p>
<p>We haven’t heard a lot about Cytrox and its Predator spyware. According to Citzen Lab:</p>
<blockquote><p>We conducted Internet scanning for Predator spyware servers and found likely Predator customers in Armenia, Egypt, Greece, Indonesia, Madagascar, Oman, Saudi Arabia, and Serbia.</p>
<p>Cytrox was reported to be part of <a href="https://intellexa.com/">Intellexa...</a></p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Zero-Click iPhone Exploits</title>
		<link>https://noise.getoto.net/2021/09/01/zero-click-iphone-exploits/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Wed, 01 Sep 2021 11:14:47 +0000</pubDate>
				<category><![CDATA[Apple]]></category>
		<category><![CDATA[Citizen Lab]]></category>
		<category><![CDATA[cyberweapons]]></category>
		<category><![CDATA[exploits]]></category>
		<category><![CDATA[iPhone]]></category>
		<category><![CDATA[Malware]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=63640</guid>

					<description><![CDATA[Citizen Lab is reporting on two zero-click iMessage exploits, in spyware sold by the cyberweapons arms manufacturer NSO Group to the Bahraini government.
These are particularly scary exploits, since they don&#8217;t require to victim to do anything, li...]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>NSO Group Hacked</title>
		<link>https://noise.getoto.net/2021/07/20/nso-group-hacked/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Tue, 20 Jul 2021 18:50:56 +0000</pubDate>
				<category><![CDATA[Citizen Lab]]></category>
		<category><![CDATA[cyberespionage]]></category>
		<category><![CDATA[cyberweapons]]></category>
		<category><![CDATA[leaks]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=63477</guid>

					<description><![CDATA[<p>NSO Group, the Israeli cyberweapons arms manufacturer behind the Pegasus spyware — used by authoritarian regimes around the world to spy on dissidents, journalists, human rights workers, and others — was hacked. Or, at least, an enormous trove of documents was leaked to journalists.</p>
<p>There’s a lot to read out there. Amnesty International has a <a href="https://www.amnesty.org/en/latest/research/2021/07/forensic-methodology-report-how-to-catch-nso-groups-pegasus/">report</a>. Citizen Lab conducted an <a href="https://citizenlab.ca/2021/07/amnesty-peer-review/">independent analysis</a>. The <i>Guardian</i> has <a href="https://www.theguardian.com/news/series/pegasus-project">extensive coverage</a>. <a href="https://www.nytimes.com/2021/07/18/world/middleeast/israel-nso-pegasus-spyware.html">More</a> <a href="https://www.washingtonpost.com/investigations/interactive/2021/nso-spyware-pegasus-cellphones/?itid=lk_inline_manual_10">coverage</a>.</p>
<p>Most interesting is a list of over 50,000 phone numbers that were being spied on by NSO Group’s software. Why does NSO Group have that list? The obvious answer is that NSO Group provides spyware-as-a-service, and centralizes operations somehow. Nicholas Weaver ...</p>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
	</channel>
</rss>

<!--
Performance optimized by W3 Total Cache. Learn more: https://www.boldgrid.com/w3-total-cache/

Object Caching 32/152 objects using Memcached
Page Caching using Disk: Enhanced 
Lazy Loading (feed)
Database Caching using Memcached

Served from: noise.getoto.net @ 2025-12-11 14:42:59 by W3 Total Cache
-->