Read how IDOS transport application leaks users locations, their passwords and email addresses by not performing a certificate validation for some of it’s encrypted communications.
Read how Moovit transport application leaks users locations, what they type, their usernames and email addresses by sending unencrypted requests on the network.
Lea cómo la aplicación de transporte del Gobierno de Buenos Aires filtra las ubicaciones de los usuarios y todo lo que el usuario escribe al enviar solicitudes sin cifrar en la red.
Read how Buenos Aires Government transport application leaks users locations, and everything the user types by sending unencrypted requests on the network.
I am Kamila, a first-year student of Computer Science and Electrical Engineering in CTU (Czech Technical University in Prague). I recently joined the Сivilsphere team as a Malware Reverser. So, this blog will be about my first small project in analyzing a particular malware, its actions, and understanding what it does.
Read how a seemingly benign Weather android application, discloses the geographic location of its users putting them at risk.
In February 2018, we started investigating a security breach in one of our partner organisations. The analysis lead us to discover a long pattern of attacks against several web servers in the same organisation. The final goal of the attacks: exploiting the computational power of the servers to mine cryptocurrency.
The CivilSphere Project was born at the Stratosphere IPS laboratory, Czech Technical University (CTU), in early 2018. We believe that NGOs' work is a critical asset for our society, protecting human rights and civil liberties. It is their critical work that makes them a highly valuable political target for a wide variety of powerful actors.
The NGO Market is an annual event that takes place in Prague, Czech Republic, which gathers dozens of non-gubernamental organizations from Czech Republic and abroad.