This Cyber Security Lab has been optimally designed to tackle the challenges of Cyber Security in a comprehensive and multidisciplinary way. TNO’s CSL offers highly promising cyber-innovation projects not only its existing expertise but also the technical facilities and a safe working environment.
Archive for the ‘Network Security’ Category
TNO is opening the doors of its new Cyber Security Lab, CSL
Posted: 2013/05/22 in Cybercrime, Education / Awareness, Enforcement, Network Security, New Business Models, Privacy / Data Protection, Stats / reportsItalian Anonymous Members Were IT Professionals Who Offered Their Services To Their Victims. They Also Ratted Out 30 Fellow Hackers
Posted: 2013/05/19 in Cybercrime, Education / Awareness, Enforcement, Network Security, Privacy / Data Protection, Public Policy, Stats / reportsPirates and black hats both cowards when AFK. 4 Italian Anonymous members have been arrested after 10 homes were raided. 6 others under investigation
Dutch language news article:
http://webwereld.nl/beveiliging/77806-opgepakte-italiaanse-anonymous-leden-leidden-dubbel-leven
Apple’s lax iTunes streaming security gives out a free copy of Daft Punk’s Random Access Memories
Posted: 2013/05/18 in Education / Awareness, Network Security, Stats / reportsIt’s about the devices, not the content…
Security researchers uncover global cyberespionage effort
Posted: 2013/05/18 in Cybercrime, Education / Awareness, Network Security, Privacy / Data Protection, Stats / reportsSecurity researchers from Trend Micro have uncovered an active cyberespionage operation that so far has compromised computers belonging to government ministries, technology companies, media outlets, academic research institutions and nongovernmental organizations from more than 100 countries.
The operation, which Trend Micro has dubbed SafeNet, targets potential victims using spear phishing emails with malicious attachments. The company’s researchers have investigated the operation and published a research paper with their findings Friday.
Four Anonymous/Lulzsec hackers handed jail sentences: 20 months suspended, 24 months, 30 months and even 32 months
Posted: 2013/05/16 in Cybercrime, Education / Awareness, Enforcement, Jurisprudence, Litigation, Network Security, Organized Crime, Privacy / Data Protection, Public Policy, Stats / reportsConvicts: Ryan Cleary, Jake Davis, Mustafa al-Bassam and Ryan Ackroyd
Targets included the CIA, the U.S. Air Force, Sony Pictures, games maker EA, News International and the UK’s Serious Organised Crime Agency
- hacking into the US Air Force’s computers and possession of indecent images of babies and children;
- possession of images showing child abuse;
- stealing emails, credit card details and passwords from their targets’ computer servers and crashing victims’ websites with distributed denial of service (DDoS) attacks;
- providing the software to carry out attacks and posting stolen data online;
- stealing data from Sony;
- redirecting visitors trying to visit the Sun newspaper’s site to a fake story about News Corp chairman Rupert Murdoch committing suicide;
- an unauthorised act to impair the operation of a computer;
- hacking and launching cyber-attacks against organisations including the CIA and Soca.
FT: Thousands of Confidential Bloomberg Terminal Messages Found Online
Posted: 2013/05/14 in Education / Awareness, Network Security, Privacy / Data Protection, Stats / reports, Tech EvolutionJust the other day, the New York Post outed Bloomberg reporters for monitoring Bloomberg terminals to track Wall Street traders’ accounts. Now, the Financial Times has pointed out another egregious but unrelated security problem: apparently more than ten thousand confidential terminal records have been on the Internet—searchable by Google—probably for years.
More:
http://gizmodo.com/ft-thousands-of-confidential-bloomberg-terminal-messag-504868659
Bloomberg blocks its journalists from snooping on financial terminals to obtain stories
Posted: 2013/05/14 in Cybercrime, Education / Awareness, Network Security, New Business Models, Privacy / Data Protection, Stats / reportsBloomberg has blocked its journalists from eavesdropping on users of its financial data terminals after it emerged that reporters were obtaining stories through their snooping.
Financial services firms, including merchant banks, pay about $20,000 a year to rent each Bloomberg terminal. Thousands of traders in stock exchanges around the world use the terminals to obtain real-time data from multiple financial markets, as well as access to news and instant messaging features.
CNN reports that a Bloomberg reporter asked a Goldman executive if a partner at the bank had recently left, after noting that the partner hadn’t logged into his Bloomberg terminal in some time. Goldman insiders later discovered that journalists at Bloomberg could access login records for Bloomberg’s proprietary terminals, as well as seeing how many times individual users had used particular functions.
Surreptitious access to the terminals had been possible for years, as a hangover from the 1990s when Bloomberg’s reporters also formed part of its sales operation.
More:
http://www.theregister.co.uk/2013/05/13/bloomberg_customer_data_access_snooping_blocked/
SONY hacker gets year of house arrest. But not for hacking
Posted: 2013/05/14 in Cybercrime, Education / Awareness, Enforcement, Jurisprudence, Litigation, Network Security, Privacy / Data Protection, Public Policy, Stats / reportsA West Side man suspected of helping crash Sony’s online game servers worldwide in 2008 will spend a year on house arrest. But not for the hacking.
Instead, Todd M. Miller, 23, was sentenced yesterday in federal court for obstructing a federal investigation because he smashed his computers, halting an FBI investigation into his hacking. U.S. District Judge Peter C. Economus said Miller was part of the KCUF clan, a group of hackers who organized an attack on Sony’s computer servers in San Diego in 2008 and beyond. After the FBI interviewed Miller in 2011, they returned with a search warrant and found that his hard drives were missing and he had smashed his computers.
Without the computers, the FBI did not have enough evidence to pursue hacking charges against Miller and another unnamed Columbus man, according to court records. Miller, who has a ninth-grade education, told the judge that he was “immature and ignorant and caught up with the wrong people at the wrong time” when he destroyed the computers. He said he has learned his lesson.
“You will not see me again,” he told Economus.
The judge also sentenced him to three years probation and ordered him to get his high-school equivalence certificate. Miller could have been sentenced to 20 years in prison and fined $250,000. Economus told Miller he could “see no purpose in sentencing you to prison” because Miller has a full-time job and some stability in his life after a tumultuous childhood.
Germany arrests two Dutch citizens in cyber bank heist
Posted: 2013/05/11 in Cybercrime, Education / Awareness, Network Security, Stats / reportsDutch Professor And Cyber Expert Jaap Van Till: Dutch Government Is In Denial About Cyber Security Risks. Noobs Should GO AND PLAY GOLF!
Posted: 2013/05/08 in Cybercrime, Education / Awareness, Enforcement, Network Security, New Business Models, Organized Crime, Privacy / Data Protection, Public Policy, Stats / reports, Tech Evolution- The Dutch government does NOT take cyber security risks seriously;
- Politicians and officials are denying and ignoring the problems;
Professor Van Till states:
“It’s incredible that there are still so many people in high places that have absolutely no clue about networks”
“People don’t need to have knowledge about everything. But they do need more knowledge than they currently have. And otherwise they should go and play golf or something.”
In addition to those embarrassing observations, CEO Ronald Prins of Fox-IT stated: “The Netherlands is lacking direction on a high level. People are only learning on the basis of security incidents.”
He also argued that the Dutch government will only take action after the fact. The country is lacking a mechanism for proactive and preventative action…
Dutch language news article:
http://www.telegraaf.nl/digitaal/21549331/__Gevaren_internet_ontkend__.html
When Authorities Discover That Pirates Can Be Hackers Too And Vice Versa…And Have Hell’s Angels For Friends
Posted: 2013/05/04 in Cybercrime, Education / Awareness, Enforcement, Network Security, Organized Crime, Privacy / Data Protection, Public Policy, Stats / reportsPeople with computer skills can engage in all sorts of legal and illegal activities on behalf of all sorts of “friends”. Cyber criminals are always looking for a variety of opportunities while enforcement authorities leave it to the “illegal act” and related section(s) in the national penal code to decide whether or not they will act against cyber criminals (and their “associates”)…
In November “MG” was interrogated again but refused to have a lawyer present. After being shown chatlogs he told his interrogators that “tLt” was Gottfrid Svartholm.
Evidence also gathered from MG included forensics on his cellphone which revealed tools for cracking WiFi networks. Text documents within them contained the exact same login credentials used to access Logica’s servers. The same data was found on his Ubuntu One cloud storage account. MG later went on to admit that he had used the name “diROX” online.
MG denied that he’d downloaded any data through the tax intrusions but admitted carrying out queries on his friends. The interrogator asked ‘MG’ if those friends are members of the “Hells Angels” – MG said that was possible.
What followed next was an exchange where MG implied he was scared for his safety so couldn’t say anything more. His interrogators suggested things were still going to look bad for him with his ‘friends’ whether he cooperated or not. MG’s lawyer stepped in and put an end to the approach.
(…)
Gottfrid also admitted to owning two computers, a desktop and a Macbook, that were found in his Cambodia apartment. He said the computers were used as servers, not by him personally, and were accessed via the Internet by individuals he admitted knowing and meeting.
“These people then, who have accessed [the servers]. Do you want to say something about them?” the interrogator asked.
Gottfrid responded “No…[..] because I fear for my own life.”
See also:
http://vrritti.com/?s=svartholm
How To Protect Against Laptop Webcam Hacking
Posted: 2013/05/02 in Education / Awareness, Network Security, Privacy / Data Protection, Stats / reportsDon’t forget, some of them will be able to activate the microphone too…
https://www.eff.org/deeplinks/2013/04/how-protect-against-laptop-webcam-hacking
Facebook Wants To Know Who Your Best Friends Are And You Will Tell The Hacker Company
Posted: 2013/05/02 in Education / Awareness, Network Security, New Business Models, Online advertising, Privacy / Data Protection, Stats / reports, Tech EvolutionOr did you really believe that the existing ‘tag your friends’ and ‘security questions’ schemes were only about enabling you to regain access to the social network? Wake up…it’s all about making you disclose the purest and most truthful levels of information…
http://www.theverge.com/2013/5/2/4292744/facebook-trusted-contacts-account-security-launch
Pirate Bay co-founder Gottfrid Svartholm Warg denies charges. Says that evidence against him was planted
Posted: 2013/04/30 in Copyright, Cybercrime, Education / Awareness, Enforcement, File Sharing, Illegal File Sharing, Litigation, Network Security, Organized Crime, Privacy / Data Protection, Public Policy, Stats / reports, Tech EvolutionMuch of the prosecution’s evidence was obtained from a computer seized from Gottfrid. The Pirate Bay co-founder says that the information was placed there via the Internet but he won’t name the culprit out of fear of reprisals.
More:
http://torrentfreak.com/pirate-bay-founder-on-trial-next-month-facing-societal-damage-claims-130429/
Previously:
http://vrritti.com/?s=svartholm
