Investigative journalist @ Forbidden Stories
Coordinator #PegasusProject, #StoryKillers, #CartelProject
Send me tips about spyware abuse and bad puns
Worth reading through the ECPMF
report on #pressfreedom threats in Europe. #France has broken the top five, a shame for the country known for its important role in pioneering human rights frameworks.
https://www.mfrr.eu/756-violations-in-six-months-the-state-of-press-freedom-in-2024/
Lots of movement on possible #Pegasus purchase in #Colombia. Any leads? DM me!
https://www.timesofisrael.com/money-laundering-watchdog-suspends-colombia-after-presidents-israeli-spyware-claims/
@drdrowland fuerza ✊
@humanhorseshoes I'll try a PRAM reset before getting a new battery. Thanks!
@drdrowland I figured this might be the response 😌
Hello #infosec community. Having a major technology fail.
My computer (MacBook Air 2015) keeps dying whenever I unplug it (despite showing full battery symbol) and then when I restart it, it resets the clock to January 1, 2023.
I feel like I'm in tech Groundhog Day. Any suggestions? #techfix #computerfail #soslaptop
Shoutout to @torproject and @alshafei for this great report, and to @citizenlab @phineas and everyone else who works to expose this deadly industry.
The full report is here: https://blog.torproject.org/surveillance-as-a-service-global-impact-of-israeli-defense-technologies-on-privacy-human-rights/
Amazing news: after about 7 years of judicial harassment, #Guatemala has finally dropped all charges against community journalist #CarlosErnestoChoc who investigated the wrongdoings of a #mining company!
More background: https://forbiddenstories.org/case/green-blood/
Latest from #ForbiddenStories:
We investigated #StolenLands in #India linked to a proposed $44 billion refinery project.
Work left behind by murdered journalist Shashikant Warishe led us to the nexus of land agents and politicians in Maharashtra. One of these land agents, accused of running over Warishe with his SUV, was a kingpin in this network and had direct ties to the refinery.
Latest from #France:
Violent, far-right #extremism is on the rise across the country.
A local mayor's home was vandalized
A migrants rights organization doxxed
And protesters who took to the streets to decry police violence were attacked by vigilante groups
I spoke to some of the victims of this violence, and experts who study it, for The Nation:
https://www.thenation.com/article/world/france-far-right-violence/
Some more cool #Paris street art. This time, in Montreuil.
@derekmorr super interesting, thank you for sharing!
Perhaps the scariest thing in this article is how some of these companies are working around encryption to find out who is talking, and sending files, to whom on Signal, Telegram and WhatsApp.
Prepare to be surprised (heck, even I was): "Sleeper trains vs planes: Which is cheaper?" https://www.which.co.uk/news/article/sleeper-trains-vs-planes-which-is-cheaper-a7iD22q04uyK
My piece in the NYT on the West's most beloved dictator: https://www.nytimes.com/2023/04/11/opinion/paul-kagame-rwanda-britain.html
This image is truly the embodiment of cars in public space. #cycling #softmobility #carculture
This was a fun one to write.
In #France, the government's #planvelo aims to provide free #cycle training to 700,000 students per year by 2027.
I visited one school in #SaintDenis that is participating in this program, which, as I wrote for Next City, is a big win for #equity.
The Catalan government has decided to ban the use of the #Pegasus software and other similar #spyware programs, thus “complying with and implementing the commitments of the Geneva Declaration on Targeted Surveillance and Human Rights”.
👀 @phineas
https://www.euractiv.com/section/politics/news/catalonia-bans-use-of-pegasus-spyware/
Thanks to @denbib who has kindly reminded me to spend more time on Mastodon, I'm sharing my latest article for Jacobin (👋 @jacobinbot @jacobinfeed).
A couple of weeks ago, as #France debated retirement reform (#reformedesretraites), the National Assembly quietly passed a new Olympics law which paves the way for #AI based, algorithmic #surveillance.
I spoke with various #digitalrights activists about this law and what it could mean for #humanrights. Check it out here: https://jacobin.com/2023/03/emmanuel-macron-2024-olympics-surveillance-state-ai-biometric-system
So I think I understand the workflow on how #TeamJorge is able to hijack Telegram accounts. They need help from the local telecom authority to intercept SMS but! When you register the same phone number on a different device, you first get a push notification inside Telegram..
However, below you can also click, send me an SMS code. This is bad if you don't have 2FA setup with an additional password on Telegram! As #TeamJorge is able to hijack your Telegram account this way!
Always remember to setup 2-factor authentication on all your messengers!
This is how to on Telegram: https://businessinsider.com/guides/tech/enable-two-step-verification-on-telegram
This is how to on Whatsapp: https://faq.whatsapp.com/1920866721452534
This is how to on Signal: https://support.signal.org/hc/en-us/articles/360007059792-Signal-PIN
It's a very noisy attack, you get notifications on your SMS app as your messenger app with codes. But it seems to work for the attackers!
IMHO, all the messengers should force a 2nd-factor on registration for which you need to provide periodic reminders ala Signal. This should keep attackers out that are able to hijack through SS7/telco layers.
