19 December 2013

NEW STANDARD ON INTER-CLOUD COMPUTING (Source_ITU@WebSite)

Cloud computing experts have reached first-stage approval (‘consent’) on a standardized framework for inter-cloud computing, an architecture whereby cloud service providers (CSPs) benefit from the services or resources of partnering CSPs to satisfy customer needs as dynamically as possible.
Recommendation ITU-T Y.3511 “Framework of inter-cloud computing for network and infrastructure” describes the framework for the interaction of multiple CSPs that might underlie the fulfillment of a single CSP’s service contracts with its customers.
The standard describes the possible relationship patterns among multiple CSPs – namely ‘peering’, ‘federation’ and ‘intermediary’ – based on several inter-cloud computing use cases and the consideration on different types of service offerings. It continues to introduce the concept of ‘primary’ and ‘secondary’ CSPs; the primary being the CSP required to fulfill a service contract with a customer, and the secondary the most immediate CSP that interworks its services and resources with other partnering CSPs to aid the primary CSP in its delivery of services. Building on these concepts, the interaction of CSPs in federation and intermediary patterns is discussed in-depth and Y.3511 concludes with the derivation of functional requirements for inter-cloud computing.
Although not integral parts of the Recommendation, Y.3511 also provides three annexes which detail “Use cases from the inter-cloud perspective”, “Use cases from telecom and non-telecom providers’ views”, and “Abstract service offering models for inter-cloud computing”.
Nine other standards found consent at SG13’s meeting:
  • ITU-T Y.1903 “Functional requirements of mobile IPTV”
  • ITU-T Y.2254 “Capabilities of multi-connection to support enhanced Multimedia Telephony (eMMTel) services”
  • ITU-T Y.2253 “Capabilities of Multi-connection to Support Streaming Service”
  • ITU-T Y.3032 “Configurations of node identifiers and their mapping with locators in future networks”
  • ITU-T Y.3045 “Smart ubiquitous networks – Functional architecture of content delivery”
  • ITU-T Y.3033 “Framework of Data Aware Networking for Future Networks”
  • ITU-T Y.2065 “Service and capability requirements for e-health monitoring services”
  • ITU-T Y.2064 “Energy saving using smart objects in home networks”

Apple and Google App Stores Are Vulnerable

Too many apps in Apple and Google app stores have been targeted for hacking. The security experts point out that financial apps on Android are the most vulnerable. In most cases, applications have been hacked and uploaded to 3rd-party stores or Google Play in a bid to capture credentials from consumers, or to operate maliciously, or to defraud the app’s creator by removing adware elements.
1409c84d-cb2c-44fd-9ebc-057f9a90509b-460x276.jpeg

Security experts admit that hacked apps are showing up in various storefronts, like Cydia, in a decrypted state, so by definition the software has been hacked. The specialists have seen multiple examples where there has been some tampering with the original code. In the meantime, financial apps are a particular concern, because people trust them with sensitive data, like bank account numbers and passwords. It was found that 23% of sample iOS financial apps had been hacked and reposted, as well as 53% of Android financial apps.

As you know, Android users are able to download apps from 3rd-party stores through setting on their devices, while iOS users have to “jailbreak” their device to do so. In other words, they voluntarily use a hacking attack to give themselves the equivalent of “root” privileges for installing software. Thus far, iOS 7 hasn’t been jailbroken.

However, even Google’s official Play store itself can be a source of malware and hacked applications. A few months ago BlackBerry had to halt the rollout of its BBM app for Android because a hacked version appeared in the Play store before the official one and had been downloaded over a million times. The experts also warn that it’s easy for people to upload a “Bank of America” app onto Google Play and use freely available data about the bank, while fooling users. It is believed that Google Play isn’t a vetted app store, having a lot of cruft, while in the Apple Store users are almost certain to see only legitimate apps. So, hacked code is not a significant problem in Apple’s App Store, as the company vets all apps before uploading them onto its App Store. As for Google, it will remove apps only after the complaints emerge or if they are detected as having malware. Both Google and Apple platforms have a “kill switch” that is able to retrospectively delete malicious installed apps from the devices.

Bitcoin Is Not a Currency of a Future

An expert on digital currencies from Ernst & Young claimed that Bitcoin doesn’t have to replace normal currency to have a future. The expert described a number of myths around the currency, one of which was its position as a replacement for “fiat” money.

bitcoins-.png


Fiat currency is essentially currency the government decrees to be legal tender. And Bitcoin was obviously not created as a replacement for fiat currency. There are many people talking about how Bitcoin is going to take over, or how it doesn’t have the properties lending to it being used widely. The currency was really created to be used in electronic commerce and for micro transactions. If you remember this, the future risks for the currency take on a different shape. At the moment, many experts are concerned with such problems as price volatility and the deflationary nature of Bitcoin. Since there will only ever be 21 million Bitcoins, it has led some to fear that the currency will have a “deflationary” element, leading to each unit getting more valuable over time.

Deflation is usually blamed for the “lost decade” in Japan, and Ernst & Young emphasized that it adheres to the mainstream economic view that mild positive inflation is healthy for a national currency. However, when talking about using Bitcoin as an ecommerce tool, deflation seems to be not necessarily problematic.

Instead, the experts highlighted problems of speed and fraud control as the most pressing priorities for the virtual currency. To prevent fraud, the Bitcoin network has to “confirm” transactions every ten minutes. This is one of the weaknesses with Bitcoin – the problem is that you generally have to wait for 5 to 6 transaction confirmations before making sure that your money hasn’t been spent twice, which can take up to 40 or 50 minutes.

Some businesses have decided that speed is worth the risk. One pub in London takes Bitcoin and accepts unconfirmed transactions as payment, for example. However, not every retailer is able to that – especially if they are selling goods more expensive than beer.

Ernst & Young believes that there are definite possible gains in Bitcoin, in terms of lowered transaction costs. On the other side, there are also some significant negatives, in terms of accountability and how to deal with anonymous users and how to regulate in the market.

YouTube Advertising Revenues Estimated to Grow 50% in 2013

Google has never revealed the scale of profits YouTube makes since acquiring the video streaming service for $1.65 billion seven years ago. However, the analysts and researchers still can take guesses. The latest estimates were made by eMarketer – it predicts that the gross ad revenues of the service will increase over 50% to $5.6 billion this year, which is more than 10% of Google’s total revenue.

youtube-give-away-50-million-free-advertising-new-video-program.jpg

Even after the company has paid ad partners and video creators their percentage, its net ad revenues are still predicted to reach almost $2 billion in 2013, up 65% compared to last year’s $1.18 billion. The researchers have also broken out YouTube’s net ad revenues in the United States, estimating that the figure will reach $1.08 billion, $850 million of it coming from video ads. Thus, YouTube gets 1/5 of all US video advertising revenues for 2013.

Of course, all these estimations are all guesswork, but eMarketer claims that it is based on “hundreds of datapoints and studies about YouTube revenues, ad impressions, rates, usage and other information received from research companies, investment banks, Google reports and interviews with industry executives.

Those interested can compare eMarketer’s analysis to other numbers: for example, in May 2013, Morgan Stanley predicted that the company’s gross revenues would reach $4 billion this year, while Barclays thought it would be $3.6 billion. Recent report by analyst firm Wedge Partners also suggested that YouTube accounts for about 10% of Google’s revenues (which corresponds with eMarketer’s analysis), which if the Google’s 4th quarter matched the average revenues across the previous quarters would result in approximately $5.7 billion of YouTube revenues for the year as a whole.

Still, it all remains guesswork, and Google is very unlikely to announce the real figures anytime soon. It is worth noting that the $1.65bn Google paid for YouTube seven years ago (a sum which shocked many people at the time) looks like something of a bargain today.

The company’s public statistics for YouTube reveal that the service attracts 1bn people watching over 6bn hours of video per month, and 80% of its traffic is coming from abroad. 40% of its viewing time is consumed by mobile devices.

2/3rd of Web Traffic is Bots

The security outfit Incapsula has found out that about 62% of all website traffic today is generated by bots. There was a 21% rise on 2012 figure where bots accounted for a bit over 50% of the traffic.
internet-bot-tarkvaralised-robotid-300x260.jpg


Of course, some of those automated software instruments are malicious, but the rapid growth in traffic was for good bots used by search engines to crawl sites to index their content. Other types of bots are employed by analytics companies to provide feedback about how a portal performs, or by others to carry out specific tasks like helping the online archive preserve material before it’s removed.

The security company observed almost 1.5 billion bot visits within a 3-month period from the 20,000 websites operated by its customers. Regardless of the overall growth in bot activity, the company pointed out that many of the traditional malicious uses of the tools are now less common. There had been a 75% drop in the frequency spam links were being automatically posted.

In addition, it had seen a 10% drop in hacking tool bot activities. Those include the use of code to distribute malware, steal credit cards and hijack and deface sites. Another new trend was an 8% growth in the use of so-called “impersonator bots”. This classification includes software which masquerades as being from a search engine or other legal agent and manages to fool security measures. Such bots are custom-made to carry out a specific activity like a DDoS attack, forcing a server to crash taking a site or service offline by flooding it with traffic or to steal corporate secrets.

The developing good bots show that the legitimate services were sampling the net more frequently, which can allow search engines to add breaking news stories to its results quicker, for instance.

01 December 2013

Internet Cafés Disappear

Internet cafes, once being the communication hub in developing countries, are fast disappearing from our life. The reason is obvious – the rise in smartphones is making the need to go into a café largely redundant.
InternetCafe.jpg

For example, in Rwanda one Internet café went from 200 daily customers to just 10. India is suffering as well – for instance, some businesses in the southern city of Mysore have opted to sell stationery or sweets instead of Internet access. In the meantime, Internet café owners have to diversify their offerings in order to include flight bookings, mobile phone top-up cards, and accessories for different gadgets. Even cafés in Myanmar, where mobile penetration is very low, are facing the same trend there.

However, more developed countries had seen cafés survive to cater for immersive Internet gaming. At the same time, the number of such cafes in South Korea dropped to 15,800 in 2012 from 19,000 in 2010. As for China, the number of online cafes there dropped 7% to 136,000 in 2012 from 2011.

The above mentioned statistics flies in the face of a 5-year study released by the University of Washington in July, which discovered that Internet users in developing countries still rely on such public venues as cafes and libraries for Internet access even when smartphones are available. The research insisted that one technology won’t replace the other and smartphones are not responsible for the current trend.

US Snoops May Blackmail Muslim Clerics

US spies seem to be tracking sort of porn Internet users were downloading in order to blackmail them later. Another Snowden leak revealed that the NSA has been collecting records of Internet sexual activity and evidence of visits to porn sites.

article-2133296-12A30F33000005DC-41_468x297.jpg

It looks like part of a plan to blackmail or harm the reputations of people who are radicalizing others via incendiary speeches. The idea is that a radical Muslim cleric won’t be taken seriously if his followers knew he spends the nights downloading porn.

NSA secret documents revealed that six Muslims became an example of how “personal vulnerabilities” could become known via electronic surveillance, and then used to undermine people’s credibility, reputation and authority.

For some reason, it fails to mention giving similar attention to born-again Christian priests who called for Obama to be assassinated – maybe because they are Americans and therefore immune from spying. However, the fact is that American presidents have always been killed by their own people.

NSA lists a number of vulnerabilities of its targets, including those who can effectively be exploited: for instance, “viewing sexually explicit content” or “using sexually explicit persuasive language when communicating with inexperienced young girls”.

According to the US Civil Liberties Union, the leaks led to serious concerns about abuse. The outfit explained that the NSA was collecting massive amounts of sensitive data about almost everyone, so it knows what you are downloading, too.

In should be noted that none of the 6 people targeted by the agency was accused of being involved in terror plots and all of them currently reside outside the US.

Europe Told US How It Can Handle Spying Crisis

The European Commission has provided the United States with a list of hoops it wants the country to follow before it starts trusting it. This is the result of revelations about National Security Agency and UK spying on everyone under its PRISM program.
2013-11-12T121203Z_1_CBRE9AB0XWV00_RTROPTP_2_GERMANY-USA-SPYING.JPG


The EC said that spying on its citizens, businesses and leaders was unacceptable and that people of European Union and the United States have to be reassured about protection of their personal information. In addition, the businesses also need to be reassured that the existing agreements between the two regions are both respected and policed.

The European Commission announced that it will set out actions supposed to help restore trust and strengthen information protection in transatlantic relations. They listed 6 areas that the European Union and the United States need to do to restore confidence.

The list includes swift adoption of EU's information protection reforms, improving the protection safeguards, and commitment from the United States for making use of a legal framework. The European Commission also wants to address its concerns in the on-going American reform process, as well as promoting privacy standards internationally.

The EC claims that everyone from the users to governments on both sides of the Atlantic want to gain from cooperation, based on strong legal safeguards and trust that they will be respected.

20 November 2013

Snapchat Declined Facebook Buyout Offer

Snapchat, the fast-growing messaging system that registers 5 million daily users, has rejected a $3bn buyout offer from Facebook. The financial experts point out that the offer came as other investors valued the loss making 2-year-old service at over $4bn. At $3bn messaging system would be the most expensive acquisition of the social network ever.
nlelafegehh.jpg

The application has been downloaded by 9% of mobile users throughout the United States. It allows users to send messages and images with an expiration date – i.e. they are deleted from the recipient’s device after being received. Snapchat claimed to be handling over 350m messages every day.

Evan Spiegel, 23, the co-founder and CEO of the service, decided to wait until early 2014 before considering any offers. Apparently, he hopes that Snapchat’s numbers will grow enough to justify a larger valuation. In fact, Snapchat’s valuation has been growing along with its user base – for example, in June 2013 the company raised $60m from investors that valued it at $800m. There were reports that Facebook offered $1bn for the company earlier in 2013, while China’s Tencent was discussing an investment that would value Snapchat at over $3.6bn.

Back in October, Pinterest, a social scrapbooking company, had raised $225m in new funds at a price which valued the company at $3.8bn. In the meantime, valuation of Snapchat and its social media peers will likely soar after Twitter’s IPO, which has valued the company at over $23bn.

Industry experts point out that the rapid growth in the company’s valuation reminds that of Groupon, the Internet discount company which has also rejected a $6bn offer from Google before filing for an IPO. Two years ago, Groupon started trading and was valued at over $16bn, but soon crashed to less than $4bn. However, the company has since recovered and is now worth about $7bn.

Hackers Are in High Demand

A few weeks ago, the UK Defense Secretary mentioned that hackers with a criminal past might be hired to serve in a new military cyber force. This stance may have surprised many, but it actually points to an important recent shift where governments and companies were increasingly trying to use hackers and their associated skills to improve security, fight crime and even develop competitive advantage.

hacker_blog_main_horizontal.jpg

Today, if you look into the heart of any successful information security organization, you will find hackers, because they have become highly cherished commodities throughout the mainstream. In fact, it took businesses and governments too long to realize this untapped resource, all due to a combination of negative PR and a fundamental lack of understanding about hacker’s incentives.

Originally, a hacker was a technical wizard interested in exploring electronic systems and living by a strict ethical code which forbade them from harming those systems. But those hackers were later replaced by a younger, more reckless generation of crackers, whose aim was to break security and show they were better than the others. They were called “blackhats” and looked to financially motivated crime, being prolific at pirating software, stealing phone access, and even credit card fraud. As a result, being labeled a “hacker” automatically made bright young people unemployable. As such, a candidate with unparalleled expertise in IT but no qualifications or higher education to justify their skills ended up perceived as unsuitable for any position.

Only a small group of hackers found jobs in roles that demonstrated their true value – they were the ones who managed to change the mainstream view of what a hacker could be. For instance, the US government had early exposure to hackers when a hacker group L0pht testified in front of the Senate in 1998. Perhaps, this is why the American government is now so advanced in the integration of hackers into cyber defense and other critical parts of the country's military program.

Today the world offers many possibilities, and businesses start realizing that hackers could play a pivotal role in shaping their cyber future. They are perceived as technical geniuses who like to explore the technical world and change it as they like in a non-destructive way. So, modern hackers are in high demand – governments see hackers as valuable assets in fighting sophisticated cyber-criminals, while businesses see them as the front-line against complex cyber threats.

How US Online Traffic Is Distributed

According to Sandvine’s (broadband service company) recent research, P2P file-sharing has declined, with Amazon and Hulu struggling to win receding US attention spans. At the same time, Netflix and YouTube account for over 50% of downstream online traffic in the United States and Canada. The results of the research were published in Sandvine’s biannual Global Internet Phenomena Report and are based on information collected from the company’s 250 network customers across the world. 
sandvine-2h-2013-na-fixed.jpg


It is the first time the two video streaming services surpassed the 50% mark of all US Internet traffic. This also means a significant decline in the use of P2P services: BitTorrent, the protocol used for peer-to-peer file-sharing, currently accounts for 7.4% of everyday online traffic in North America, which is 1/3 drop from 5 years ago. At the same time, Netflix accounted for over 31% of downstream traffic on fixed networks during “primetime” online hours.

The researchers believe that the decline shouldn’t be interpreted as a decline in the dominance of the service. Sandvine predicts that Netflix will break its own record very soon. YouTube accounts for over 18% of overall Internet traffic, so the two video streaming services held about 50% of North America downstream traffic. In the meantime, Amazon video and Hulu found themselves in the end of the list, each holding 1.6% and 1.3% of all downstream traffic, respectively.

Nevertheless, peer-to-peer services (namely BitTorrent) still dominate upstream traffic, and its share is 36.35%. However, downstream traffic represents a greater percentage of online traffic, because it is sent to the average home or office user, while upstream traffic is sent from a machine or network away from the user.

The results of the research also revealed that YouTube is dominant in South America and accounts for over 36% of traffic over there. As for Netflix, it failed to achieve comparable success in South America and holds just 2.17% of downstream traffic. Apparently, the service is growing in popularity in Europe, where its share is over 20% of traffic – this is less than 2 years after launching in the region. Netflix launched in the United Kingdom and Ireland two years ago and in the Netherlands two months ago.

12 November 2013

Olympics Were Safe from Cyber Attacks

Security experts claim that provisions were in place to prevent cyber terrorism at the London 2012 Olympics, but it wasn’t a major concern, as most of notable events were rudimentary DDoS attempts or financial fraud.

BT_logo_380.png

BT has run through worst-case scenarios for cyber terrorism during the Olympics, including putting together provisions for the shutting down of largest power networks. Besides, despite the over 200 million malicious incidents reported during the entire event, only 77 tickets required a human response from analysts.

All those events were described as anything that could be flagged as a potential threat – like a single DDoS attempt or defacement. The experts revealed that necessary defenses were created over 7 years of preparation, while the London 2012 site appeared to be the most popular on the planet during the Games.

Over the course of the 2012 Olympic games, "quite a few" DDoS attacks were reported, along with unsophisticated DNS amplifications, coming "from everywhere". Security analysts admitted that they had to deal with quite serious staff, which potentially would have had impact if the right controls hadn’t been in place".

The targets against the American banks, for example, demonstrate that cyber attacks are becoming more sophisticated, not just as hacktivism but a lot more concerted. In other words, there’s evidence clearly about criminals becoming more sophisticated in using such types of instruments now for financial gain.

Some of the hacktivist campaigns over the last 18 months involved the core people evangelizing their point of view on why they wanted to carry out their attacks. In the meantime, there were different scenarios, some being very capable, some being there to participate without realizing what they were doing.

BT has distanced itself from culpability if malicious events did run on its own infrastructure. The company pointed out that it had a huge consumer base in the United Kingdom, and there definitely were people buying DSL circuits from it with nefarious purposes. However, the end users were the ones who were the motivated criminals, while BT supplying services to its customers entered that contract in good faith with its subscribers, and it was up to users whether they break the law or not.

NSA Hacked Search Engines’ Datacenters

The press has recently run a chilling story about the NSA hacking into the Google and Yahoo datacentres. According to the NSA papers, seen by the reporters, the National Security Agency carried out “full take”, “bulk access” and “high volume” operations on both Yahoo and Google networks.
PRISM_logo_%28PNG%29.png

Such large-scale harvesting of online data would be illegal in the US, but it looks like the operations took place overseas, where the spooks were allowed to presume that anyone using a foreign data link is a foreigner.

An ex-NSA chief analyst admitted that the agency has platoons of lawyers, whose task is to figure out how to stay within the law while maximizing data collection by exploiting every loophole.

The search giants maintain fortresslike data centers across 4 continents, connected with thousands of miles of fiber-optic cable. For instance, Yahoo’s internal network is transmitting entire e-mail archives from one data center to another, which is when the agency could pounce.

Security experts point out that tapping the Google and Yahoo clouds would allow the National Security Agency to intercept communications and view the content at its leisure. NSA agents had to circumvent gold-standard security to get the information. In the meantime, the weak point might have been some of the premium data links that Google and Yahoo have been buying or leasing.

According to the insiders, they had reason to believe that their private, internal networks were safe from prying eyes, but apparently not.

31 October 2013

Microsoft Paid $100,000 for Finding Bug in Windows 8.1

The software giant has paid $100,000 to the UK researcher James Forshaw, who found a critical security flaw in Microsoft’s upcoming Windows 8.1 OS.

winblue-feat.jpg

Forshaw, a researcher for the security company, has found a “mitigation bypass”. This hack circumvented the built-in protection systems that could have allowed intruders access to the system.

Microsoft said it couldn’t provide any details of that mitigation bypass technique until it found a way to address it. However, the software giant promised to strengthen platform-wide mitigations, and make it harder to exploit vulnerabilities in all software that runs on Windows platform, not only their own apps.

The researcher admitted it had taken him 25 days to find the bug, responding to “a very specific brief” from the software giant. Forshaw originally came up with the winning idea sitting at home and pondering what he could do. $100,000 bounty is a lot of money, but James Forshaw said that he wasn’t talking retirement money there. Indeed, when it comes to security flaw bounties like Microsoft’s, most of it goes to the company. Actually, even if it didn’t, after paying taxes it is already not a life-changing amount.

The researcher admitted that using outside experts was just part of the process due to the scale of the task involved. The software giant has a huge security department which actively looks for software bugs in its products, but it might be just a problem of being too close to the product – you simply cannot see the wood for the trees. Forshaw recommends to step back and take a look at the entire product and its interactions in order to find the higher-level flaws.

It seems that outsourcing is also important from a monetary point of view. In fact, the company couldn’t dedicate enough resources to find everything, because it is cheaper to pay external researchers bounties like this one. Apparently, there is only a finite pool of talented people who are able to find vulnerabilities in software products.

One can argue that the bugs and vulnerabilities should not exist in the first place, but everyone knows that humans are fallible and nobody can write perfect code.

Silk Road Founder Will Face Charges in New York

A federal judge ordered a California man accused of operating an Internet drug marketplace dubbed Silk Road to go to New York to face charges. The order came during a brief court hearing in San Francisco. Federal authorities in New York have charged Ross Ulbricht, the site operator, with three felonies related to the operation of the service. Ulbricht's attorney has denied all charges.

silk3n-1-web.jpg


Silk Road became known a couple years ago as a black market bazaar where users could trade drugs for BitCoins, a form of online cash. A “hidden” site used Tor network to mask the location of its servers. Thus far, the site operator agreed to remain in custody. The police have said he ran the service under various aliases, including “Dread Pirate Roberts”. However, his attorney denied this information.

Silk Road became so popular because other services were selling drugs more or less openly. In the meantime, Silk Road was technically sophisticated, had user-friendly system and promised near-total anonymity. The authorities closed down the website when they arrested Ulbricht at a small library in San Francisco while he chatted online with a “co-operating witness”.

In addition, Ulbricht is also charged in Baltimore federal court with soliciting the murder of a former employee, who was arrested on drug charges. It is suggested that Ulbricht feared the victim would turn on him. The police claimed that Ulbricht unwittingly hired an undercover agent for the murder, which the authorities staged but never took place.

In the meantime, prosecutors in New York have charged the site operator with trying unsuccessfully to solicit the murder of a Canadian citizen who allegedly hacked into Silk Road, obtained dealers names and started blackmailing Ulbricht.

It turned out that the FBI agents have penetrated the behind-the-scenes operations of the website and obtained a list of its users and sellers. In the following days, the police in Britain, Sweden and the US arrested 8 people charged with using the service for selling drugs. For example, in Washington state, a couple was arrested on charges of selling cocaine, heroin and methamphetamine via Silk Road. The UK authorities indicated more arrests were on the way. The FBI claimed that it had copy of the contents of the website’s server, which could provide international authorities with detailed data about the website’s dealers.

Apparently, months’ worth of sales history are currently in law enforcement hands. As a result, the traceable nature of BitCoin transfers can allow the FBI to easily follow the money.

British Mobile Services Providers Face Fee Hike

According to media reports, British mobile network operators may face a 4-fold increase in license fees to rent the radio spectrum. These plans were revealed by Ofcom.
Ofcom1.jpg
The watchdog confirmed that the new fees were in line with what other states paid. Moreover, the group believed that the UK operators had been getting off lightly for a long time. The United Kingdom raised a less-than-expected £2.34 billion in a 4G spectrum auction for airwaves in order to carry high-speed mobile broadband traffic, so it seems that Ofcom is looking to make up the shortfall.

The largest broadband providers Vodafone, Telefonica’s O2, EE and H3G pay around £64.5 million pounds altogether for using the 900 megahertz and 1800 megahertz spectrum bands. It was estimated that any changes would result in a £309 million increase.

According to Ofcom, spectrum is a valuable and finite national resource, and that is why charging for it might incentivize the optimal use of frequencies. In the meantime, the telcos can blame the UK government for the rent hike. Apparently, the government asked the watchdog to recalculate the fees to reflect “full market value”, and the latter said the new rules were expected to take effect in 2014 after a consultation period which will end in December.

The mobile companies keep reviewing the new bill, but Vodafone has already expressed its discontent after Ofcom was proposing a 430% increase in its fees. Maybe it believes that the regulator should be encouraging such private sector investment in infrastructure and new services – for example, 4G.

29 October 2013

2 Million Chinese Officers Police the Internet

The Chinese state media claimed that the authorities hire 2 million people to operate and monitor its infamous “Great Firewall”. The reports reveal that most of the employees perform keyword searches and check millions of messages being posted on a daily basis.
china-police.jpg

This huge number of employees shows just how low tech and human intensive the operations are. However, even with the collective being so huge, employees are still unable to prevent comments which are seen by the government as undesirable from being published and reposted.

The “Internet Police” are hired by the propaganda arm of the Chinese government and by a number of commercial websites. The country accounts for over 500 million Internet users, which makes China the largest online population in the world.

In case a western country wanted to carry out a similar operation, it would have its work cut out to justify it. For example, the UK industry observers estimated that if David Cameron wanted to set up a “Great Firewall of Britain” he would have to hire almost 210,000 people to run it. Taking into account the fact that British labor is much more expensive than Chinese one, it might make sense to consider outsourcing such an operation to China.

Samsung Is a Top Advertiser with Ukrainian Pirates

The Korean tech giant has been outed as one of the major advertisers on the Ukraine’s largest file-sharing websites. The entertainment industry has launched an initiative dubbed “Clear Sky” in Ukraine, which is focused on naming and shaming the advertising antics of such giants as Samsung, Nokia, Canon, Carlsberg and even Coca Cola.
samsung-logo.jpg
The initiative sees funding of peer-to-peer websites by the major international brands as a core problem. After the Ukraine has been labeled by the United States as one of the top piracy havens worldwide, the anti-piracy groups decided to “counter this image” and established Clear Sky.

Apparently, the task of the coalition is to find ways to fight Internet piracy. First of all, it is going to name and shame global companies who advertise with pirates. A couple of largest local portals, Ex.ua and FS.ua, accounts for millions of visitors weekly and generates a healthy revenue stream via adverts, which are partly paid by multinational corporations.

Indeed, it turned out that almost 10% of all advertisements on those file-sharing services are financed by famous international brands, and almost half of all those adverts belong to Samsung. The report revealed that a big chunk of the company’s advertising budget in Ukraine goes to those file-sharing services. In the meantime, the industry observers found out that both services are rather short on adverts.

Russia to Mount Spy Fest for Winter Olympics

It seems to be not enough for the Russian government to make its Winter Olympics a forbidden zone for gay people – in addition to this, the local authorities are ready to mount a spy fest. Media reports emerged that the Black Sea resort of Sochi has been wired to allow Russian equivalent of FBI (Federal Security Service or FSB) to log all visitor communications.
kremlin-wc.jpg

Apparently, any sportsmen and spectators attending the Winter Olympics 2014 in Sochi next February will have to deal with invasive and systematic spying and surveillance. The report, prepared by a team of Russian journalists investigating the preparations for the Games, revealed tenders from the local communication firms describing a phone and online spying capability not seen before.

This move could enable the FSB to intercept any telephone or data traffic and even track the use of key words or phrases mentioned in emails, chats and on social media. The reporters claimed that major amendments have been made to phone and Wi-Fi networks in the Black Sea resort in order to ensure monitoring and filtering of all traffic.

The spies are using Sorm, a Russian technology for intercepting telephone and Internet communications, which is being modernized throughout the country, but the most attention has been paid to Sochi given the enormous number of foreign visitors expected in 2014.

The system will allow deep packet inspection to filter people by keywords. The Russian government has already threatened gay sportsmen and spectators with arrest if they attend the games and protest, so apparently this is how they are going to find out.

The researchers insist that the FSB has been working for three years to upgrade the Sorm system to ensure it can digest the extra traffic during the Olympics. The law requires all telephone and ISP providers to install Sorm boxes in their technology. Once the equipment is in place, the FSB will be able to access information without the provider ever knowing.

In the meantime, the Russian authorities claimed that the London Olympics featured far more intrusive measures – for example, the UK installed CCTV cameras in the toilets, while Russia wouldn’t.

27 October 2013

Facebook Will Build Its Kingdom

The social network is considering building its own town so its employees never have to leave work. The campus in Menlo Park will include a $120 million, 394-unit housing community within walking distance of its offices. Dubbed Anton Menlo, the 630,000 square-foot rental property is supposed to include a sports bar and a day care for pet dogs.
facebook-privacy-3005.png

Media reports admit that the move towards a 24-hour work lifestyle is new, even for Silicon Valley. The social network insists that employee retention is not a major factor in the plan. Instead, it is a great idea to have more housing options closer to campus. Facebook believes that people will want to live there because they believe in the company’s mission.

The sources revealed that there will be many amenities on the site, including cafes, a store, a sports pub, bike repair shop with onsite storage, pool, spas, and gyms. This move may fix some of the company’s accommodation problems for workers. Indeed, a housing shortage is reported in Menlo Park and some employees couldn’t find places to stay near the corporate campus.

In the meantime, the industry experts point out that in many ways the move is turning the clock back. America had its “company towns” at the turn of the 20th century – the US factory workers were living in communities owned by their employer and provided housing, health care, law enforcement, church and just about every other service necessary. But the drawback is that your life becomes the company, and this is why the 20th century company towns died out.

This move means that employees will always be working. Only 10% of Facebook’s employees will be housed on-site. Apparently, there will not be too many families. The housing will go for market rates, with some being set aside for low-income staff.

Web Freedom Doomed

A recent report, carried out by the advocacy group Freedom House, has taken a look at Internet trends in 60 countries. The results were that despite a pushback from activists which successfully blocked some repressive laws, web freedom still plummeted in 2012.
internet_freedom-150x150.jpg

In 35 of those 60 countries, governments had grown their legal and technical spying powers through the web. A global decline in web freedom in 2012 was determined by broad surveillance, new legislation controlling Internet content and growing arrests of social media users. For instance, Iceland has the most web freedom. On the contrary, China, Cuba and Iran had the least.

In the meantime, declines in Internet freedom were led by 3 democracies - Brazil, India and the US. Apparently, revelations by Edward Snowden demonstrated that changes in online freedom of the United States were eroding extremely fast. Anyway, the United States still made it to 4th in Freedom House’s list.

A number of the governments have acted against the worldwide web because social media was exploited to arrange national protests. Since 2012, two dozen countries have adopted some kind of legislation restricting web freedom. For instance, Bangladesh imposed a 14-year prison sentence on a group of bloggers who wrote posts critical of Islam. Bahrain has also arrested ten people for “insulting the king on Twitter”, while Morocco jailed a teenager for 18 months for “attacking the nation’s sacred values” via a Facebook post which also ridiculed the king. Finally, a woman in India was arrested for just “liking” a friend’s Facebook status.

According to Sanja Kelly, project director for Freedom on the Net at Freedom House, banning and filtering are still the favorite methods of censorship in lots of countries, though the governments are increasingly looking at who is saying what on the Internet and finding ways to punish them. According to the report, law restricting Internet freedom are still sometimes blocked with a combination of pressure from advocates, lawyers, businesses, politicians and the international community. However, this is the 3rd consecutive year web freedom has declined.

Security Agencies Target Tor Network

The NSA has repeatedly tried to attack people using Tor, a popular tool protecting their Internet anonymity. This is despite the fact the software is primarily funded and promoted by the government of the United States itself.

NSA-laptop-010.jpg

According to secret NSA files, disclosed by Edward Snowden, the agency successfully identified Tor users and then attacked vulnerable software on their machines. One NSA technique targeted the Firefox Internet browser used with Tor and gave the agency full control over targets’ computers, including access to files, all keystrokes and all Internet activity. However, the files suggest that the fundamental security of the anonymity service remains intact.

Tor (The Onion Router) is an open-source public project which redirects its users’ traffic via other PCs, called “relays” or “nodes”, in order to keep it anonymous and avoid filtering tools. Journalists, activists and campaigners in America, Europe, China, Iran and Syria rely on Tor network to maintain the privacy of their communications and avoid reprisals from the authorities. The network currently receives around 60% of its funding from the American government, primarily the State Department and the Department of Defense.

Despite the importance of the network to dissidents and human rights groups, the National Security Agency and its British counterpart GCHQ have devoted their efforts to attacking Tor. They claim that the service is also used by people engaged in terrorism, trade of child abuse images, and virtual drug dealing.

While it seems that the agency hasn’t compromised the core security of the Tor software or network, the leaked files detail proof-of-concept attacks, including some relying on the large-scale Internet surveillance systems used by the NSA and GCHQ via Internet cable taps.

Foremost among the concerns is whether the agency has acted against users in the United States when attacking the network. The matter is that one of the functions of the anonymity service is to hide the country of all of its users, which means that any attack could be hitting members of Tor’s American user base.

A less complex attack against the network was also disclosed in July 2013, with its details leading to speculation that it had been built by the FBI or another American agency. While at the time the FBI refused to admit it was behind the attack, it subsequently claimed in a hearing in an Irish court that the agency did operate malware to target an alleged host of pictures of child abuse, with the attack also hitting Tor network.

23 October 2013

France Will Fine Google

The tech giant hoped that France would forget its sins and let it do what it wants with EU data having been dashed recently. Local press confirm that Google will get a fine after it failed to comply with an order to alter the way user data is stored and used in order to conform to French privacy laws.

lef1.jpg

The fine comes as a result of an investigation led by EU data protection authorities of a new privacy policy adopted by Google a year ago. Local privacy watchdog pointed out that Google was ordered to comply with data protection legislation within three months, but it just didn’t. It seems like Google just shrugged and refused. The company keeps insisting that local data protection laws can’t be applied to users of certain Google services in France.

Now the watchdog will designate a rapporteur to initiate a formal procedure for imposing sanctions. This is done under the provisions laid down in the country’s data protection legislation. The tech giant could be fined about $200,000 which seems not much. In addition, the company could in certain circumstances be ordered to refrain from processing personal information in certain ways for 3 months. The company responded that its privacy policy does respect European legislation. It also insisted that it had “engaged fully” with the watchdog within this process.

Industry observers agree that the company is in trouble with European laws in an antitrust case for allegedly breaking competition rules. Google recently submitted proposals to avoid fines in that case. In the meantime, in the United Kingdom, Google is finding itself on the back foot over its policy of refusing to pay tax which the government didn’t like at all.

22 October 2013

National Security Agency Maps Social Connections

According to the latest Snowden leak, for the last three years, the National Security Agency has been creating sophisticated graphs of the US citizens’ social connections.
nsa-spying-logo.jpg

Investigating the shedloads of information the agency has collected, NSA is now able to tell who your friends are, your locations at certain times, your travel companions and other personal data.

One of the slides from a leaked NSA presentation reveals the way it uses e-mail and phone information in order to analyze the relationships of foreign intelligence targets. Another file revealed that the NSA was told to carry out large-scale graph analysis on communications metadata “without having to check foreignness of every e-mail address, phone number or other identifier”.

The NSA was mix and matching communications information with public, commercial and other sources. The list included bank codes, insurance data, Facebook profiles, passenger manifests, voter registration rolls, GPS location data, and even property records and unspecified tax information.

It seems that the agency may also know more about foreign citizens than their own government does. The Americans may also have been caught up in the effort. Actually, lots of foreigners might know the US citizens and sometimes send them emails.

Google Pays Corporation Tax in the US instead of the UK

Google paid only £11 million in British corporation tax in 2012, despite revenues of £500 million. Indeed, the company made global profits of £6 billion last year, but says that it pays bulk of its tax where business originated – the United States. Its representatives argued that the company made a significant contribution to the United Kingdom through investment and jobs.

Google-sign--010.jpg


Back in 2011, Google paid £6 million while showing a £24 million loss on a £400 million turnover. The US company has been repeatedly accused of failing to pay its fair share of tax in the United Kingdom. In addition, the tech giant has been criticized for designating Ireland, and not the United Kingdom, as Google’s official European sales base in order to benefit from lower company tax rates.

Google’s former employee, who turned to be a whistle blower, handed over documents to HM Revenue and Customs to show how the company’s London sales staff would negotiate and sign contracts with UK customers, with cash paid into a British bank account. However, the deals were allegedly booked through Google’s Dublin office in order to minimize its liabilities.

According to the recent Companies House filings, the tech giant also set aside £24 million for taxes associated with shares awarded to staff between 2005 and 2011, in order to comply with new rules from HMRC. In response, Google claimed it was right that the majority of its tax should be paid in the United States. The company’s representatives argued the company made a huge contribution to Britain via investment and jobs.

Google explained that like most multinationals it pays the bulk of its £1.2 billion corporate tax bill where its business originated – the United States. This is a rate of almost 20%, roughly what a Britain-based entity would pay. Google also considers itself a significant contributor to the British economy having created more than 2,000 jobs. The company has invested over £300 million in property in 2013, with tax related to British operations totaled £150 million.

21 October 2013

There Are 430 Million Active Pirates Out There

A recent survey has discovered that online piracy is growing rapidly (well, this wasn’t a news). According to the estimations, 432 million people per month used the worldwide web to access copyright infringing material. Within a month, all these pirates consumed 9,567 petabytes of illegal content, mostly via BitTorrent. To put it simply, about 25% of all Internet traffic is attributed to piracy.

illegald460.jpg



The conclusion of the report was also nothing new – despite anti-piracy policies and enforcement actions, piracy cannot be stopped. The researchers admit that the practice of infringement is “tenacious and persistent”. Sometimes the industry succeeds in limiting infringement, but not for long. At the moment, the piracy universe not just persists in attracting more users, but also hungrily consumes increasing amounts of bandwidth.

Among the most visible trends the observers point at direct download “cyberlockers” losing plenty of visitors within the last couple years, while other platforms, on the contrary, expanded their user bases. So, within 2012, the number of pirates using cyberlockers decreased by 8%, and the most obvious reason for this is MegaUpload shutdown. In the meantime, the number of file-sharers using BitTorrent and video streaming platforms grew by 27% and 22% accordingly.

Today most illegal file-sharers use direct download and torrent services, both accounting for 200 million unique users per month. This figures excluded users who never download any infringing content, and their share is only 4% for BitTorrent and 8% for direct download services.

The total bandwidth generated by illegal file-sharers in Europe, North America and Asia-Pacific is estimated at over 9,500 petabytes of data – so, you can guess that global traffic far exceeded 10,000 petabytes. Here BitTorrent is the absolute leader, and this makes sense – people both download and upload content, thus generating twice as much traffic. At the same time, cyberlocker users downloaded relatively little data – about 338 petabytes per month.

Talking about regional trends, direct download services are preferred in the Asia-Pacific region, and BitTorrent is popular in Europe and North America. Although there is no clear way these numbers could be translated into losses for the entertainment industry, the latter will undoubtedly leave no opportunity unused to turn the results of the survey to its advantage.

Thanks to TorrentFreak for providing the source of the article

Free Software Foundation Turns 30

Richard Stallman, recognized worldwide as free software guru, president of the Free Software Foundation and a person who started the development of the free software operating system GNU nearly 30 years ago.

stallman1.article.jpg

As you know, the GNU/Linux system is used on tens of millions of devices these days. Stallman also established the League for Programming Freedom. The latter campaigned against legal threats to programming.

Richard Stallman explained that it is now thirty years since he started the campaign for freedom in computing. According to his words, since he started, the IT scene has changed dramatically – today most people in advanced countries own PCs and smartphones which can be like computers.

However, he is still worried that non-free software makes users surrender control over their computing to someone else. Actually, the situation has become worse because of Service as a Software Substitute (SaaSS), which means allowing someone else’s server do your own computing activities.

This was all highlighted by the PRISM scandal, revealing that non-free software and SaaSS are able to spy on the user, shackle the user, and even attack the user. Stallman admitted that malware was common in services and proprietary software apps because people don't have control over them.

In the meantime, free software is controlled by its users. Therefore, freedom means having control over their own lives. Nevertheless, Service as a Software Substitute leads to the same injustices as using a non-free app.

In case someone uses a SaaSS translation service, their text is sent to the server. Then the server translates it and sends the translation back to the user. In other words, users are entrusting all the relevant information to the server operator. The latter may be forced to show it to the state under the current law. The scheme is simple: if the users don’t control the software, the software controls the users.

Richard Stallman was also talking about another difficulty: non-free software forces other people to use it as well. For example, if you use the non-free Skype app, another person has to use it as well, thus surrendering their freedoms along with yours.

French Watchdog Threatens Google

It seems that the search giant is tired of getting threats from watchdogs all over the world – every day someone barks at Google. Today France’s data-protection watchdog warned that it is going to impose sanctions against the company, after it missed a 3-month deadline to adjust its privacy policy.
20130620__0621google~1_300.JPG


CNIL, the French outfit, claimed that it had initiated procedures to fine the search engine after Google failed to meet a deadline to fix its policy on how it gathers and uses information. CNIL pointed out that on the final day before the deadline, the search giant contested the request.

The fine of up to $200,000 is insignificant for Google, which made $10.7 billion in profits last year. However, the fine comes as data-protection agencies in the UK, Germany, Italy and the Netherlands are investigating the company’s privacy policy. Google is also facing pressure to adjust its privacy policy in the United States.

A year ago, the tech giant changed its privacy policy in EU to combine over 60 of its services into one. In other words, Google consolidated data collected across the services. This is why consumer groups expressed concern that people might not want the data from those services to be connected.

The French watchdog claimed in June that the company’s new privacy policy was a violation of the local 1978 data protection act. CNIL asked Google to clarify its privacy policy and to modify its data-collection instruments.

Google replied that its privacy policy respects EU law and allows to create simpler, more effective services. The company has engaged fully with the watchdog throughout this process, and is going to continue doing so. The CNIL's move comes in a week when an American judge ruled that the tech giant may violate wiretap legislation when it scans the e-mails of non-Gmail users. This court decision will allow a class action lawsuit against Google, backed by privacy advocates, to move forward.

Judge Lucy Koh also decided that the company’s privacy agreements were less than explicit. She pointed out that a reasonable Gmail user reading the Privacy Policies wouldn’t have necessarily understood that their e-mails were being intercepted in order to create user profiles or to provide targeted advertisements.

UK to Form a Cyber Army

Britain is going to recruit hundreds of computer experts to create a cyber-army. The unit is supposed to defend vital networks against virtual attacks and launch high-tech assaults of its own. The Ministry of Defense announced that the country is spending increasing amounts on defending the people from the threats they are unlikely to ever face.

Dads%20Army-1.jpg


Despite the fact that the United Kingdom is broke, it still has the 4th largest defense budget in the world. A large part of this cash is not being spent on cyber intelligence and surveillance. Back in 2012, cyber defenses blocked about 400,000 advanced malicious cyber threats against the government’s secure Internet alone. This shows that the threat is real.

However, the Ministry of Defense points out that building cyber defense is not sufficient, because the United Kingdom also has to deter attacks. The country said that it is going to build a dedicated capability to counterattack in cyberspace and, in case of necessity, to strike. The representatives of the Ministry added that clinical “cyber strikes” could disable enemy communications, nuclear and chemical weapons, planes, ships and other hardware.

It was announced that the British government would recruit a new Joint Cyber Reserve. The “reservists” are supposed to work alongside existing experts in numerous government agencies, including the Ministry of Defense and the extremely unpopular GCHQ surveillance agency.

08 October 2013

UK Will Block Payments to Sites Failing to Restrict Children Access to Porn

It seems that UK banks and credit card companies will be asked to hold back cash from customers of sites hosting explicit content if they fail to implement restrictions to stop children from accessing it.

Porn.jpg

Financial entities and the video services regulator are going to meet in October to finalize the deal. Media reports also reveal that a voluntary deal might be agreed with credit card firms. It seems that government would be prepared to consider legislation, if necessary.

While some online services require users to verify their age, most of them offer free and unrestricted access to any visitors. This is why the authority regulating British websites hosting videos decided to act against services operating in this way. In the beginning of 2013, regulator Ofcom fined Playboy £100,000 for failing to protect kids from porn content. A couple of websites owned by Playboy allowed everyone to access explicit content without having acceptable controls in place to check that users are adults. Ofcom claimed that Playboy’s failure to protect kids from potentially accessing adult content was serious, repeated and reckless.

The UK government supports the work that the watchdog has undertaken, and it will explore with local financial organizations and credit card companies the possibility to decline processing payments to websites operating outside the EU that allow British kids to view porn content.

The authorities also support efforts to encourage the Internet industry to design new effective ways of verifying the age of visitors. In the meanwhile, it wouldn’t be appropriate to block outright all online services providing free hardcore porn because they host legitimate content for adults to view.

So, the meeting is scheduled to October with the UK Cards Association, the British Bankers Association, the Payments Council and the leading credit card companies. It is already known that the financial services companies had provided a “very positive response” to the proposal.

As you remember, the UK Prime Minister has suggested a new initiative earlier in 2013 aimed at getting ISPs to put filters in place. Online giants including Google and Yahoo are set to be called back to Downing Street in October to update the Prime Minister on the progress on such measures.

07 October 2013

Internet Connections to Sudan Cut off

All online connections to Sudan were abruptly cut off after riots erupted over the ending of fuel subsidies. The government seems to make the move in order to prevent protesters from using social media to organize riots. Although the real reasons are unclear, the Internet monitoring firms point out that it was either a coincidental catastrophic failure of all three independent ISPs and their connections out of Sudan (as well as a terrestrial link into Egypt) or some centrally directed, government action.

In most cases of a failure of this kind which is not governmentally directed (for example, a power failure or a cut cable), ISPs switch to their satellite backups. However, this time it didn’t happen. It was a total shutdown, as happened earlier in Egypt.

Cutting off Internet is normally used by some governments in Middle Eastern countries in order to regain control amid heated protests. As you now, the now-defunct Mubarak regime in Egypt and the Assad regime in Syria have severed online links in attempt to restrict protests. Indeed, cutting international links makes it difficult to upload videos of protests to YouTube, among other things.

The industry observers confirmed that Sudan’s Internet connectivity abruptly dropped to zero. According to media reports, it broke out after the local government removed fuel subsidies, with a number of petrol stations and a university building set on fire. In the meantime, security forces fired teargas to disperse protesters who have demonstrated and set fire to a police station in Khartoum.

Since the protests have gone on for a few days after the country’s Council of Ministers decided to stop the subsidies, the price of fuel immediately doubled. The industry experts point out that the cut in subsidies followed the split of South Sudan to form an independent state two years ago. The latter took more of the main oil-producing territory which had previously been part of Sudan. In addition, the International Monetary Fund has previously told Sudan to cut the subsidies, as they consumed over 3/4 of the government’s total tax revenues. As a result, the people have no access to Internet and are in isolation from the world.

UK Will Block Payments to Sites Failing to Restrict Children Access to Porn

It seems that UK banks and credit card companies will be asked to hold back cash from customers of sites hosting explicit content if they fail to implement restrictions to stop children from accessing it.

Porn.jpg

Financial entities and the video services regulator are going to meet in October to finalize the deal. Media reports also reveal that a voluntary deal might be agreed with credit card firms. It seems that government would be prepared to consider legislation, if necessary.

While some online services require users to verify their age, most of them offer free and unrestricted access to any visitors. This is why the authority regulating British websites hosting videos decided to act against services operating in this way. In the beginning of 2013, regulator Ofcom fined Playboy £100,000 for failing to protect kids from porn content. A couple of websites owned by Playboy allowed everyone to access explicit content without having acceptable controls in place to check that users are adults. Ofcom claimed that Playboy’s failure to protect kids from potentially accessing adult content was serious, repeated and reckless.

The UK government supports the work that the watchdog has undertaken, and it will explore with local financial organizations and credit card companies the possibility to decline processing payments to websites operating outside the EU that allow British kids to view porn content.

The authorities also support efforts to encourage the Internet industry to design new effective ways of verifying the age of visitors. In the meanwhile, it wouldn’t be appropriate to block outright all online services providing free hardcore porn because they host legitimate content for adults to view.

So, the meeting is scheduled to October with the UK Cards Association, the British Bankers Association, the Payments Council and the leading credit card companies. It is already known that the financial services companies had provided a “very positive response” to the proposal.

As you remember, the UK Prime Minister has suggested a new initiative earlier in 2013 aimed at getting ISPs to put filters in place. Online giants including Google and Yahoo are set to be called back to Downing Street in October to update the Prime Minister on the progress on such measures.

অল্টার+কন্ট্রোল+ডেল ভুল ছিল

সফটওয়্যার জায়ান্ট মাইক্রোসফটের সহ-প্রতিষ্ঠাতা বিল গেটস সম্প্রতি জানিয়েছেন, পিসিতে লগ ইন করার জন্য Ctrl+Alt+Del  কমান্ডটি ব্যবহার করার সিদ্ধান্ত ভুল ছিল।
     

15 September 2013

Syrian Hackers Attack New York Times and Twitter in Melbourne

Pro-Assad Syrian group was the one who claimed responsibility for hacking Melbourne IT systems with a valid password. Australian Internet hosting firm Melbourne IT suffered a major hacker attack which affected the New York Times website and Twitter.

Syrian-Electronic-Army-lo-010.jpg


The Syrian Electronic Army is known for supporting the Assad regime in Syria and it was the one who claimed responsibility for the DDoS attack on the New York Times website, which resulted in downtime of a few hours. The group also claimed that it hacked Twitter’s domain. The affected websites both use Melbourne IT as a domain name registrar.

Theo Hnarakis, the CEO of Melbourne IT, admitted that the perpetrators gained access to the company’s systems using a valid user name and password. It seems like one of the company’s resellers in the United States was targeted and the outfit is now investigating how it could have happened. Melbourne IT is working with a variety of parties in order to trace the Internet service provider in charge and find out who was responsible for the failure. The company had to admit the vulnerability exists and agree it needs to make sure the failure won’t happen again. However, Melbourne IT can’t even confirm at which stage the systems had been hacked.

The company announced that the New York Times and Twitter were both back online and operating as usual, after changing and locking system passwords. Aside from the online giants, four other lesser known services were affected as well. The company holds registrations for major sites in the country.

In the meantime, Twitter confirmed that it regained control of its domain, stating that the viewing of pictures was “sporadically impacted”. As for the New York Times, they said the incident was caused by a “malicious external attack” and recommended its employees to be careful when sending emails. The NYT believes that a domain registrar should be very serious about security, as it is holding the security to thousands of websites. If someone obtains access to the domain registrar, the site visitors can be easily redirected away from a website, while their emails can be read.

A couple weeks before this incident, the Syrian Electronic Army was reported to hack the Washington Post’s website, with the site operators admitting that the service had fallen victim to a sophisticated phishing attack to gain password data.