The Citizen Lab is an interdisciplinary laboratory based at the Munk School of Global Affairs, University of Toronto, Canada focusing on advanced research and development at the intersection of Information and Communication Technologies (ICTs), human rights, and global security. Learn more »

In Focus

Every Step You Fake: A Comparative Analysis of Fitness Tracker Privacy and Security

This report describes major security and privacy issues in several leading wearable fitness tracking devices and accompanying mobile applications.

Citizen Lab hosts Ford-Mozilla Open Web Fellowship

The Citizen Lab is excited to announce that we are a host organization in the 2016 Open Web Fellowship (a collaboration between the Ford Foundation and Mozilla). The fellowship is an international leadership initiative that brings together the best emerging technology talent and civil society organizations to protect the open Web

Packrat: Seven Years of a South American Threat Actor

This report describes an extensive malware, phishing, and disinformation campaign active in several Latin American countries, including Ecuador, Argentina, Venezuela, and Brazil. The nature and geographic spread of the targets seems to point to a sponsor, or sponsors, with regional, political interests. The attackers, whom we have named Packrat, have shown a keen and systematic interest in the political opposition and the independent press in so-called ALBA countries (Bolivarian Alternative for the Americas), and their recently allied regimes.

Research News

여전히 위험에 처해있는 아이들: 시티즌랩의 스마트보안관 보고서 “우리의 아이들은 안전한가”에 대한 업데이트

두 번째 스마트보안관 감사에서 해당 앱의 자녀용과 부모용을 사용하는 이용자들을 심각한 위험에 노출시키는 취약점이 무수히 해결되지 않은 채 남아있음이 확인되었다.

Beyond Privacy: Articulating the Broader Harms of Pervasive Mass Surveillance

Citizen Lab Postdoctoral Fellow Christopher Parsons published a paper titled “Beyond Privacy: Articulating the Broader Harms of Pervasive Mass Surveillance” in Media and Communication. The paper explores how dominant theories of privacy grapple with the pervasive mass surveillance activities undertaken by western signals intelligence activities, including those of the NSA, CSE, GCHQ, GCSB, and ASD.

An Analysis of the International Code of Conduct for Information Security

As the United Nations General Assembly begins its milestone 70th session, international digital security is high on the agenda. One starting point for discussion is likely to be the International Code of Conduct for Information Security (the “Code”). This analysis explores how the Code has developed over time, impetus behind the changes made, and the potential impact of the Code on international human rights law and its application. It is accompanied by an interactive comparison of the 2015 and 2011 versions of the Code.

تماس از لندن: فیشینگ رمز عبور دو مرحله‌ای از ایران

این گزارش به کمپین رو به رشد حملات فیشینگ علیه کاربران در گستره ایران و حداقل یک حمله به یک فعال غربی می‌پردازد. این حمله‌ها تلاش دارند تا امنیت مضاعفی که از طریق رمز عبور دو مرحله‌ای در گوگل فراهم شده است را دور بزنند و به شکل گسترده‌ای مبتنی بر تماس‌های تلفنی و تلاش برای ورود در زمان حقیقی از سوی مهاجم است. جالب اینجاست که این حمله‌ها عموما با یک تماس تلفنی از کشور انگلستان شروع می‌شده و هکرها به یکی از دو زبان فارسی و یا انگلیسی ارتباط برقرار می‌کرده‌اند.

More Research...

Lab News

Morgan Marquis-Boire on malware attribution

In an interview with Scientific American, Citizen Lab Senior Security Researcher Morgan Marquis-Boire explained the techniques and associated challenges in identifying the perpetrators of malware attacks.

Christopher Parsons on Canada’s Five Eyes intelligence sharing

In a guest post on JustSecurity co-authored with Tamir Israel of the Canadian Internet Policy & Public Interest Clinic (CIPPIC), Citizen Lab Postdoctoral Fellow Christopher Parsons urged a revaluation of Canada’s intelligence sharing with its Five Eyes allies.

Citizen Lab hosts Ford-Mozilla Open Web Fellowship

The Citizen Lab is excited to announce that we are a host organization in the 2016 Open Web Fellowship (a collaboration between the Ford Foundation and Mozilla). The fellowship is an international leadership initiative that brings together the best emerging technology talent and civil society organizations to protect the open Web

Bill Marczak on FinFisher in Australia

Citizen Lab Senior Research Fellow Bill Marczak spoke to ABC Australia regarding the proxy server for the remote intrusion software FinFisher found in Sydney, Australia.

More Lab News...

Get Connected




Events