During a routine TSCM sweep a bugging device had been found embedded in a chair in the hotel room used by the All Blacks rugby team. Sweeps can be important for any business, and sports teams as well. Information discussed prior to major games could be desirable from many directions- the opposing team, news media, not to mention gambling and possible organized crime activities. In this case however, it appears that the security consultant hired to help protect the team had ideas of his own and is now charged with planting the device himself. The risk posed by insiders to any corporation is significant. Employees, executives, vendors, and consultants could all come under suspicion.

Our surveillance detection department has discovered an increase in spy activity coming from foreign actors to the north. Images leaked by NPA contractor Edward Snowflake (North Pole Agency) reveal what appears to be a secret command post manned by Kris Kringle and a team of highly skilled hackers.

Deloitte is looking to hire a federal contracts manager, a federal cybersecurity consultant and is even advertising for military officers with top-secret government clearances. What none of the people applying for those jobs know — and few of the people doing the hiring know, either — is the secret history of Deloitte's robust federal practice.

From The Mainichi, December 8, 2016

Researchers from the Negev Cyber Security Research Center of Ben-Gurion University have presented a paper explaining that the software controlling signals to headphone jacks in many computers can be altered or re-tasked to change the jack from an output to an input, thereby turning the earphones into potential microphones.

Eavesdropping attempts may not always be well thought out, they could be spur of the moment opportunities. A camera recording with audio was found under a chair during a private meeting of MPs. British sportswear company Sports Direct was being paid an unannounced visit by members of the House of Commons' Business Select Committee. The MPs were there to insure that good working practices were being upheld by CEO Mike Ashley and the rest of the company.

Earlier this year I wrote about a few different consumer security cameras on the market that pose unique eavesdropping threats (here).

One of the more popular cameras has been the Arlo, sold by Netgear, available at outlets such as Best Buy and Sam’s Club. The Arlo was a replacement for the Netgear VueZone camera and was easy to use as a video device, but it only recorded video, no audio, so it was not able to eavesdrop on conversations (thankfully). It also required an active internet connection for the base unit. This would make it a bit more difficult to install in a corporate environment where the network may have active security in place.  We found that Arlo cameras have been discovered being used as covert residential spy devices, but have not seen them used for corporate level eavesdropping espionage yet. The new version makes it a much more significant threat.

Arlo Pro, […]

Even the best eavesdroppers may be nervous or have a lot on their minds. This could cause them to be careless when planting a bug or listening device. This would be true if they were spy-shop amateurs, disgruntled employees, or even state sponsored agents. Failure to clean up well after installing a device could be the clue that gives them away.