I can't believe that came from your mouth!
Cyber
All-things related to Cyber Security
Scanning for Rootkits
Mar 31st
Rootkits that have the ability to hide in the Master Boot record have been making the news lately. In response, F-Secure retooled their BlackLight rootkit scanner to detect MBR rootkits. The tool for a single system is free and should be in every incident handler’s response kit.
Check it out at F-Secure here.
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!)
Loading ...New Version of WordPress is All Sparkly
Mar 31st
At first I wasn’t too sure I was going to like the new version of WordPress that was released over the weekend. The Dashboard publishing interface was changed quite a bit, including the colors and layouts of the dashboard features. But the more I look, the more I like. There are even new features to add multimedia like videos and music.
As always, there were also security updates, including a password strength meter, so if you operate a blog, get to upgrading. Its quick and painless.
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!) Loading ...Yahoo Finally Makes Sites for Women
Mar 31st
Its about time I guess.
From Reuters here:
Yahoo Inc is introducing a new media site focused on women’s daily lives. Yahoo said the new site, called “Shine,” offers nine categories ranging from Fashion & Beauty to Parenting. It syndicates material from popular lifestyle publishers including Conde Nast and Hearst Corp.
Yahoo Shine is located at shine.yahoo.com.
In the mean time, Yahoo’s Saudi Arabian version of the site, called washyourdirtyburqaandnoyoustillcantdrive.yahoo.com, focuses on keeping women in their place in the muslim society. It features tips for men on how to beat their wives, the proper sweeping motion for picking up sand, and how to fake an orgasm, but not too well in case the man throws the whore out onto the street. Other popular features include “spot the jew” and the best way to sacrifice goats.
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!) Loading ...TorrentSpy Tosses in the Towel
Mar 27th
Legal Fees were mounting in their battle against the Motion Pictures Association of America, and rather than spend another dime in legal fees, they shut down.
From the Reg here:
The operators of TorrentSpy, once the most popular BitTorrent tracker, have been forced to permanently shutter the site after losing a battle with rights holders.
A Los Angeles court ruled in favour of the Motion Picture Ass. of America in December after TorrentSpy destroyed evidence, claiming it was protecting users’ privacy. The judge said it had made a fair trial impossible and imposed a $30,000 fine.
This statement has been posted the TorrentSpy site by its founder Justin Bunnell:
We have decided on our own, not due to any court order or agreement, to bring the Torrentspy.com search engine to an end and thus we permanently closed down worldwide on March 24, 2008.
The legal climate in the USA for copyright, privacy of search requests, and links to torrent files in search results is simply too hostile. We spent the last two years, and hundreds of thousands of dollars, defending the rights of our users and ourselves.
Ultimately the court demanded actions that in our view were inconsistent with our privacy policy, traditional court rules, and international law; therefore, we now feel compelled to provide the ultimate method of privacy protection for our users – permanent shutdown.
It was a wild ride,
The TorrentSpy Team
Score one for the copyright holders.
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!) Loading ...Comcast Reverses on P2P Stance
Mar 27th
Comcast today announced that they were redesigning their network in order to better manage P2P for their customers. No more blocking, they promise.
Why? Is this because they have heard the clamoring of the masses about net neutrality and wanted to do what was right? Puh. No. Its because Verizon worked with a P2P vendor to retool their network to handle P2P the right way and now Comcast wants to play catchup.
I have full details of this over at Geeks Are Sexy.
And by the way, one of my last posts on the site went international when it was picked up by Reuters! Woo hoo!
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!) Loading ...Enterprises Still Ignoring Risk of Instant Messaging
Mar 26th
Many organizations have simply given up when it comes to blocking external Instant Messaging. According to FaceTime communications, 1 in 4 employees admit to sending company information to outsiders, including passwords.
From Net-Security.org here:
FaceTime Communications warns that with one in four employees admitting to sending information about company plans, finances or password/login credentials via instant messaging, organizations need to wake up to the use of real-time communications within the workplace and ensure that they have the ability log, archive and retrieve them.
From my experience, at least 5% of all Instant Messaging traffic on the enterprise is either cyber-sex or communications between an employee cheating on his spouse. It makes for interesting reading when you are looking for incidents.
One day some lucky company is going to be subpoenaed for their Instant Messaging logfiles in a divorce case.
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!) Loading ...New PDA Phone
Mar 25th
Seems that one of the perks of the new job is that the company will take over my cell phone payments and even provide me a PDA phone. I’m staying with Verizon and always liked the Windows Mobile. That means that I get a new Titan XV6800.
The reviews are mixed, especially when it comes to battery life. My old cell phone’s battery would last for a week, and it definitely spoiled me. I guess I’m going to get into the practice of having chargers everywhere. But its been a while since I got a new gizmo, so I’m excited anyways.
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!) Loading ...Backed Up Your CellPhone?
Mar 24th
Most of the modern phones that sync with desktop applications can be easily backed up. Older phones, like my standard camera phone? Not so much. Its quite difficult to retain any of the data without the help of a technician at the phone store. I have written down all of my phone numbers in an address book, and this weekend, while waiting way too long for a cheeseburger, I started uploading photos from my phone to my Verizon pixplace. The photo below is a bizarre clear plastic model of the female sex organs. I snapped it while my wife was waiting for her OB/GYN during her pregnancy.
I realized that I have had this particular phone for a long time and it is almost like a photo diary of the past few years. Now that I have backed it up, I won’t be too heartbroken if it should fall into a river or be run over by a tractor. In my mind, that’s how all cellphones meet their doom.
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!) Loading ...US-CERT Can’t Secure Fed CyberSpace. Maybe New Cyber Center Can.
Mar 20th
The Department of Homeland Security was commanded to secure the federal cyberspace in 2003. Five years later, and the job is still not completed. DHS has the National Cyber Security Division and that division runs US-CERT, which is supposed to be the top incident response agency over all of the federal-civilian agencies.
But US-CERT is actually a partnership with the old Cert running out of Carnegie Mellon University, and they have lots of lawyers, who have friends in Congress, that put the brakes on DHS’s attempts to place network monitors in the Federal Agencies. They whined and cried and worked against their own national mandate both overtly, and behind the scenes, to kill any attempts to gather raw network data from agencies such as the IRS, the FAA, FDIC, HUD, and even DHS itself. Doing that would violate peoples’ privacy they whined. Attempting to stop Chinese hackers by seeing source IP, destination IP and packet payload might accidently allow analysts to see someone’s Instant Messenger chat sessions.
So today the privacy of federal agencies are protected, but the networks are rife with Chicom packet sniffers. And if you work with a federal agency, you are required to report security incidents to US-CERT. When you do that, you receive back a number. No help, no wishes for good luck in dealing with the incident. Just a worthless number.
All of this is about to change. The administration had to do an end-around the privacy weenies, and ordered the NSA and other intel agencies to put network monitors in the Federal agencies.
President Bush signed a directive in January that expands the intelligence community’s role in monitoring Internet traffic to protect against a rising number of attacks on federal agencies’ computer systems.
The directive, whose content is classified, authorizes the intelligence agencies, in particular the National Security Agency, to monitor the computer networks of all federal agencies.
US-CERT was supposed to do this. I guess they have been benched.
Under the new initiative, a task force headed by the Office of the Director of National Intelligence (ODNI) will coordinate efforts to identify the source of cyber-attacks against government computer systems. As part of that effort, the Department of Homeland Security will work to protect the systems and the Pentagon will devise strategies for counterattacks against the intruders.
I think they mean countermeasures, like blacklists, DNS poisoning, web proxy evasion, etc.
The White House is expected to announce as early as Thursday the selection of Rod A. Beckstrom as a top-level adviser based in the Department of Homeland Security. Beckstrom is an author and entrepreneur best known for starting Twiki.net, a company that provides collaboration software for businesses.
According to the sources, the center will be charged with gathering cyber attack and vulnerability information from a wide range of federal agencies, including the FBI, the National Security Agency and the Defense Department. Beckstrom will report directly to Homeland Security Secretary Michael Chertoff.
What about NCSD? Is that agency going away or is it getting pushed under the new office?
DHS only recently appointed Greg Garcia, former head of the Information Technology Association of America, to be assistant secretary for cyber-security and telecommunications, a position fought for and won through tireless lobbying from lawmakers on Capitol Hill who believed DHS wasn’t placing a strong enough emphasis on cyber.
Of course, with the upcoming election, all of these efforts may get shelved as part of a new policy. You tax dollars at work. I’m happy to be going back to the private sector. Lots of thanks to Richard Stiennon’s blog for the news links.
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!) Loading ...Hannaford Data Breach Tied to Rapid7
Mar 19th
I have provided an update to the Hannaford Hack story over at [GAS] here.
Check it out and then visit Attrition.Org to see their scathing remarks here.
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!) Loading ...The Hannaford Data Breach: Watch it Grow
Mar 18th
It turns out that people running a grocery store have no idea how to keep their network secure. Fresh greens and grains? Cold beer? Sure. Data loss? They got that too.
The Hannaford network security team have their own show on TBS
I have a detailed post over at [GAS] detailing how we are about to be bombarded with headlines that say “Hannaford Data Breach much worse than originally thought.”
When you have the VP of Marketing blabbing her mouth to the press about the details of the hack, you know the network was FUBAR’ed. Check out the post here.
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!) Loading ...RIAA Sued for Racketeering
Mar 17th
Its about time. The RIAA has been using strong arm tactics to enforce their copyrighted property, and these tactics are illegal. Sending letters threatening to sue for hundreds of thousands of dollars to bully people into settling for a few thousands of dollars amounts to mail fraud and racketeering.
From the AP here:
Tanya Andersen originally sued the Recording Industry Association of America after RIAA representatives threatened to interrogate her young daughter if she didn’t pay thousands of dollars for music she downloaded from somebody else.
Her amended complaint filed Friday in U.S. District Court in Portland seeks national class-action status for other people allegedly victimized by the industry’s anti-piracy campaign and the company it hired, MediaSentry.
The new lawsuit claims accuses the industry and MediaSentry of spying “by unlicensed, unregistered and uncertified private investigators” who “have illegally entered the hard drives of tens of thousands of private American citizens” in violation of laws “in virtually every state in the country.”
The information was used to file “sham” lawsuits intended only as intimidation to further the anti-piracy campaign, the lawsuit said.
The complaint notes the case began when Andersen received a notice of an RIAA lawsuit falsely alleging copyright infringement and demanding penalties.
The lawsuit was dismissed and Andersen countersued.
The claim about illegal entry into hard drives won’t hold water. If dumbass P2P users share out their hard drives to the world, then the RIAA has just as much right to inventory your shared directory as anonymous users.
But if Anderson’s attorneys stick to the part about threats through the mail, they have a good chance to set a precedent. The RIAA has every right to pursue legal action against users that violate the copyright laws. But you are not allowed to intimidate and threaten anyone.
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!) Loading ...New [GAS] Post: Hacking Harvard
Mar 13th
There was once a time whenyour company suffered a security breach, the damage was pretty much limited to the hacker, his friends, and your company. You could recover from the breach, but the risk of exposure of data loss was still relatively small since it was basically limited to one attacker.
Not so much anymore. Now hackers get a real kick of making the exposure as big as possible. Case in point: When Harvard’s Graduate School of Arts and Sciences was hacked, the attacker uploaded the entire system backup of the webserver to Bit Torrent. The server contained 10,000 entries on applicants to the school, including their social security numbers. All because the sysadmin didn’t use a strong password. Ouch.
Like This Post? Rate it and tell your friends! Click the Share button below.
(1 votes, average: 6.00 out of 6) Loading ...I Think I’m Going to Like Hulu
Mar 12th
Its Hulu.Com. Its a joint venture site between Fox and NBC to bring high quality video to your desktop. And they get their money for it by putting in commercials. Sounds like a good trade to me. They even have full length movies.
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!) Loading ...Hack Your Way Into Their Heart
Mar 12th
Security researchers discovered that some medical devices that wirelessly broadcast patient data to monitors are doing so unencrypted. Some of that data is personal, such as the patient’s ID and in some cases, the social security number. Wouldn’t it suck to have a pile of medical bills and suddenly suffer identity theft because a bunch of doctors ignored security precautions on their medical devices?
From the AP here:
A common new technology for monitoring defibrillators is vulnerable to hacking and even to reprogramming that could stop the devices from delivering a lifesaving shock.
In the past couple years, more than 100,000 patients in the U.S. alone have been implanted with newer devices that reduce medical visits by sending information on a patient to a bedside monitor that then sends the data to a doctor, usually once a day.
In the model researchers studied, transmissions from the defibrillator to the bedside monitor are not encrypted, which means that someone intercepting the transmissions could retrieve such data as the patient’s birth date, medical ID number and, in some cases, Social Security number.
As the technology spreads to more medical devices, including pacemakers, spinal cord stimulators and hearing implants — and as the range of the devices’ radio signals increase — the researchers predict patients’ data will face increasing risks.
“There will be more implanted devices and more wireless capabilities and transmissions over greater distances,” said Dr. William Maisel, one of the study’s authors.
Like This Post? Rate it and tell your friends! Click the Share button below.
(1 votes, average: 6.00 out of 6) Loading ...Playing With Internet Explorer 8 Beta
Mar 6th
I downloaded IE8 to play around with it. Its installed on my XP workstation at the office. I can’t run the thing at all. It takes up 100% CPU until I close the browser. Maybe I have a plugin such as SiteAdvisor or Google Toolbar causing the problem.
I am going to have to uninstall the damn thing and wait for Beta 2 to come out and give it another go. This browser needs to go back in the oven. Its not finished cooking yet.
UPDATE: It turns out IE8 just really hates my homepage of My.Yahoo.com.
Like This Post? Rate it and tell your friends! Click the Share button below.
(1 votes, average: 6.00 out of 6) Loading ...New [GAS] Post: The Admins Have Eyes
Feb 29th
Network admins are watching your network activity at work now more than ever according to a recent survey. They even check your blogs and MySpace posts!
I have a list of tips on staying private when you are heavily scrutinized by network monitors. Go to Geeks Are Sexy and check it out!
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!) Loading ...Idiotic Love Triangle Earns Man Hacking Charges
Feb 28th
Stephen Hailes, 48, from Matson, Gloucester, UK, got jealous because his online honey, who was married, was flirting with other men online. He found this out by hacking into her Hotmail account. As revenge, he sends nude photos of her, which she had previously sent to him, to everyone on her contact list.
Now Stephen is facing jail time.
From SMH.com.au here:
A UK man is facing jail after he emailed pictures of his lover to everyone in her address book when he found out she was flirting with other men.
Stephen Hailes, 48, had been in an “internet romance” with Karen Parker, 36, after the pair met in a chat room last August. During the romance Parker, a married mother-of-two, sent a series of nude pictures of herself to Hailes, a former tree surgeon.
Hailes became angry after he hacked into Parker’s email account and discovered she was flirting with other men.
To get revenge he forwarded the lurid pictures to all the contacts in her email address book, a court heard. Hailes, who never met Parker in person, has pled guilty to sending indecent images by a public communication network.
Hailes said he only meant to send the photos to Parker’s husband and had accidentally clicked the wrong button.
See if you can count the ways these people FAIL in life, technology and common sense.
- Parker had an easily guessed password
- Hailes supposedly can’t operate email at all if he forwarded the email to everyone.
- Parker is married and flirting online
- Parker took photos of herself nude
- Parker put photos of herself on the internet.
- Hailes was shocked that a whore would do whorish things
- Hailes broke the law in a fit of jealousy.
Did I miss anything? This sounds similar to the case of a Missouri man in this post here.
Like This Post? Rate it and tell your friends! Click the Share button below.
(1 votes, average: 6.00 out of 6) Loading ...Pakistan Cyber-Jihads YouTube
Feb 25th
The Mohammad cartoon controversy continues. This time the new government in Pakistan decreed that all of YouTube should be blocked because they are hosting the Danish Mohammad cartoons in videos on the site.
The person running the Autonomous System (AS) which is the main backbone router for the whole country, put in a new entry in its BGP matrix that made it, accidentally or on purpose, authoritative for YouTube.Com’s DNS IP range. This effectively decapitated the company for a few hours over the weekend.
I have more analysis and lots of links over at Geeks Are Sexy here.
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!) Loading ...Supreme Court to ACLU re: TSP- STFU, STFD
Feb 19th
The ACLU was like, “OMG, Bushhitler was listening to my phonecalls when I call overseas! Make him stop!” The Supreme Court was like, “STFU n00b!”
From the AP here:
The Supreme Court, without comment, turned down an appeal from the American Civil Liberties Union to let it pursue a lawsuit against Bush administration’s warrantless wiretapping program that began shortly after the Sept. 11 terror attacks.
The ACLU sued on behalf of itself, other lawyers, reporters and scholars, arguing that the program was illegal and that they had been forced to alter how they communicate with foreigners who were likely to have been targets of the wiretapping.
A federal judge in Detroit largely agreed, but the 6th U.S. Circuit Court of Appeals dismissed the suit, saying the plaintiffs could not prove their communications had been monitored and thus could not prove they had been harmed by the program.
The government has refused to turn over information about the closely guarded program that could reveal who has been under surveillance.
Also blogging this is Michelle Malkin and StoptheACLU.
Like This Post? Rate it and tell your friends! Click the Share button below.
(No Ratings Yet. Rate It!) Loading ...
