Eva Galperin

Last updated
Eva Galperin
Hacker in a blue dress.jpg
2021
Website https://www.eff.org/about/staff/eva-galperin   OOjs UI icon edit-ltr-progressive.svg

Eva Galperin is the Director of Cybersecurity at the Electronic Frontier Foundation (EFF) and technical advisor for the Freedom of the Press Foundation. [1] She is noted for her extensive work in protecting global privacy and free speech and for her research on malware and nation-state spyware. [2]

Biography

Galperin became interested in computers at an early age through her father, who was a computer security specialist. [2] When she was 12, she created a desktop for her on his Unix/Solaris computer and she became active in Usenet discussion areas about science fiction novels and playing interactive text games, and she later became active in web development. [2] She attended college at San Francisco State University for political science and international relations while working as a Unix system administrator at various companies in Silicon Valley. [3]

Galperin joined the EFF in 2007. Prior to EFF, she worked at the Center for US–China policy studies, where she helped to organize conferences and researched Chinese energy policy. [4] At EFF, she led the Threat Lab project [5] before she was promoted as the EFF's Director of Cybersecurity in 2017. [6] Since 2018, she focused on the eradication of the "stalkerware" spyware used for domestic abuse industry, working with victims of stalkerwares. These malicious applications, which are being marketed to abusive spouses, overbearing parents, and stalkers, can be installed secretly on mobile devices, allowing their owners to monitor their targets' activities. [5]

In April 2019, she convinced anti-virus provider Kaspersky Lab to begin explicitly alerting users of security threats upon detection of stalkerware on the company's Android product. She also asked Apple to allow antivirus applications in its marketplace and, like Kaspersky, to alert its users if their mobile devices have been jailbroken or rooted. [7] Galperin stated that due to competition, more cybersecurity companies will be prompted to follow suit to meet this heightened standard. [8] She has also called on U.S. state and federal officials to arrest and prosecute executives of companies that are developing and selling stalkerwares on charges of hacking. [8]

Related Research Articles

<span class="mw-page-title-main">Citizen Lab</span> Digital research center at the University of Toronto

The Citizen Lab is an interdisciplinary laboratory based at the Munk School of Global Affairs at the University of Toronto, Canada. It was founded by Ronald Deibert in 2001. The laboratory studies information controls that impact the openness and security of the Internet and that pose threats to human rights. The organization uses a "mixed methods" approach which combines computer-generated interrogation, data mining, and analysis with intensive field research, qualitative social science, and legal and policy analysis methods. The organization has played a major role in providing technical support to journalists investigating the use of NSO Group's Pegasus spyware on journalists, politicians and human rights advocates.

<span class="mw-page-title-main">Ronald Deibert</span> Canadian academic (born 1964)

Ronald James Deibert is a Canadian professor of political science, philosopher, founder and director of the Citizen Lab at the Munk School of Global Affairs, University of Toronto.

<span class="mw-page-title-main">Eugene Kaspersky</span> Russian specialist in the information security field

Yevgeny Valentinovich Kaspersky is a Russian cybersecurity expert and the CEO of Kaspersky Lab, an IT security company with 4,000 employees. He co-founded Kaspersky Lab in 1997 and helped identify instances of government-sponsored cyberwarfare as the head of research. He has been an advocate for an international treaty prohibiting cyberwarfare.

Mobile malware is malicious software that targets mobile phones or wireless-enabled Personal digital assistants (PDA), by causing the collapse of the system and loss or leakage of confidential information. As wireless phones and PDA networks have become more and more common and have grown in complexity, it has become increasingly difficult to ensure their safety and security against electronic attacks in the form of viruses or other malware.

<span class="mw-page-title-main">Window Snyder</span> Computer security expert

Mwende Window Snyder, better known as Window Snyder, is an American computer security expert. She has been a top security officer at Square, Inc., Apple, Fastly, Intel and Mozilla Corporation. She was also a senior security strategist at Microsoft. She is co-author of Threat Modeling, a standard manual on application security.

<span class="mw-page-title-main">Andrew Huang (hacker)</span> American researcher and hacker (born 1975)

Andrew "bunnie" Huang is an American researcher and hacker, who holds a Ph.D in electrical engineering from MIT and is the author of the freely available 2003 book Hacking the Xbox: An Introduction to Reverse Engineering. As of 2012 he resides in Singapore. Huang is a member of the Zeta Beta Tau fraternity, and a resident advisor and mentor to hardware startups at HAX, an early stage hardware accelerator and venture capital firm.

<span class="mw-page-title-main">Kaspersky Lab</span> Russian multinational cybersecurity and anti-virus provider

Kaspersky Lab is a Russian multinational cybersecurity and anti-virus provider headquartered in Moscow, Russia, and operated by a holding company in the United Kingdom. It was founded in 1997 by Eugene Kaspersky, Natalya Kaspersky and Alexey De-Monderik. Kaspersky Lab develops and sells antivirus, internet security, password management, endpoint security, and other cybersecurity products and services.

<span class="mw-page-title-main">FinFisher</span> Surveillance software

FinFisher, also known as FinSpy, is surveillance software marketed by Lench IT Solutions plc, which markets the spyware through law enforcement channels.

Turla or Uroboros is a Trojan package that is suspected by computer security researchers and Western intelligence officers to be the product of a Russian government agency of the same name.

<span class="mw-page-title-main">Morgan Marquis-Boire</span> New Zealand hacker, journalist, and security researcher

Morgan Marquis-Boire is a New Zealand-born hacker, journalist, and security researcher. Marquis-Boire previously served as an advisor to the Freedom of the Press Foundation. He was a Special Advisor to the Electronic Frontier Foundation (EFF) and advisor to the United Nations Interregional Crime and Justice Research Institute. He was the Director of Security at First Look Media and a contributing writer at The Intercept. He has been profiled by Wired, CNN, Süddeutsche Zeitung, and Tages Anzeiger. He was one of Wired Italy 's Top 50 people of 2014. In March 2015 he was named a Young Global Leader.

DarkHotel is a targeted spear-phishing spyware and malware-spreading campaign that appears to be selectively attacking business hotel visitors through the hotel's in-house WiFi network. It is characterized by Kaspersky Lab as an advanced persistent threat.

Detekt is a discontinued free tool by Amnesty International, Digitale Gesellschaft, EFF, and Privacy International to scan for surveillance software on Microsoft Windows.

Lazarus Group is a hacker group made up of an unknown number of individuals, alleged to be run by the government of North Korea. While not much is known about the Lazarus Group, researchers have attributed many cyberattacks to them between 2010 and 2021. Originally a criminal group, the group has now been designated as an advanced persistent threat due to intended nature, threat, and wide array of methods used when conducting an operation. Names given by cybersecurity organizations include Hidden Cobra and ZINC or Diamond Sleet. According to North Korean defector Kim Kuk-song, the unit is internally known in North Korea as 414 Liaison Office.

Pegasus is a spyware developed by the Israeli cyber-arms company NSO Group that is designed to be covertly and remotely installed on mobile phones running iOS and Android. While NSO Group markets Pegasus as a product for fighting crime and terrorism, governments around the world have routinely used the spyware to surveil journalists, lawyers, political dissidents, and human rights activists. The sale of Pegasus licenses to foreign governments must be approved by Israeli defense ministry.

In cybersecurity, cyber self-defense refers to self-defense against cyberattack. While it generally emphasizes active cybersecurity measures by computer users themselves, cyber self-defense is sometimes used to refer to the self-defense of organizations as a whole, such as corporate entities or entire nations. Surveillance self-defense is a variant of cyber self-defense and largely overlaps with it. Active and passive cybersecurity measures provide defenders with higher levels of cybersecurity, intrusion detection, incident handling and remediation capabilities. Various sectors and organizations are legally obligated to adhere to cyber security standards.

Kaspersky Lab has faced controversy over allegations that it has engaged with the Russian Federal Security Service (FSB) to use its software to scan computers worldwide for material of interest—ties which the company has actively denied. The U.S. Department of Homeland Security banned Kaspersky products from all government departments on 13 September 2017, alleging that Kaspersky Lab had worked on secret projects with Russia's Federal Security Service (FSB). In October 2017, subsequent reports alleged that hackers working for the Russian government stole confidential data from the home computer of a National Security Agency (NSA) contractor in 2015 via Kaspersky antivirus software. Kaspersky denied the allegations, stating that the software had detected Equation Group malware samples which it uploaded to its servers for analysis in its normal course of operation.

<span class="mw-page-title-main">Nate Cardozo</span> American privacy and civil rights lawyer

Nate Cardozo is an American privacy engineer and former privacy and civil rights lawyer. He spent much of his career as a staff attorney at the San Francisco-based Electronic Frontier Foundation (EFF), where his portfolio included cybersecurity, privacy litigation, and protecting coders' rights. His practice focused on encryption and information security.

Stalkerware is monitoring software or spyware that is used for cyberstalking. The term was coined when people started to widely use commercial spyware to spy on their spouses or intimate partners. Stalkerware has been criticized because of its use by abusers, stalkers, and employers.

Ruslan Stoyanov is a Russian computer scientist. In December 2016, he was arrested on charges of treason as part of the Mikhailov case. In 2019, he was sentenced to 14 years in prison.

Candiru is a Tel Aviv-based technology company offering surveillance and cyberespionage technology to governmental clients.

References

  1. "Eva Galperin". Electronic Frontier Foundation. 7 October 2011. Retrieved 10 August 2017.
  2. 1 2 3 Grimes, Roger A. (2017). Hacking the Hacker: Learn from the Experts Who Take Down Hackers. John Wiley & Sons. ISBN   9781119396215.
  3. "Panel - An Evening with the EFF". DEF CON® 25 Hacking Conference. Retrieved 10 August 2017.
  4. "Akademy 2013 Program". Akademy2013. Retrieved 10 August 2017.
  5. 1 2 Greenberg, Andy (3 April 2019). "How EFF's Eva Galperin plans to destroy the stalkerware industry". Boing Boing. Retrieved 2019-05-07.
  6. Grimes, Roger A. (2017-04-19). Hacking the Hacker: Learn From the Experts Who Take Down Hackers. Hoboken, NJ: John Wiley & Sons. p. 235. ISBN   9781119396215.
  7. Eston, Tom (2019-04-08). "Facebook's Bad Week, Stalkerware, Tax Season Scams". Security Boulevard. Retrieved 2019-05-07.
  8. 1 2 Greenberg, Andy (2019-04-03). "Hacker Eva Galperin Has a Plan to Eradicate Stalkerware". Wired. ISSN   1059-1028 . Retrieved 2019-04-04.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.