Security technology – Page 258 – SSL and internet security news

Did North Korea Really Attack Sony?

December 24, 2014 infossl

fbi, hacking, intelligence, nationalsecuritypolicy, northkorea, overreactions, rootkits, Security technology, sony

I am deeply skeptical of the FBI’s announcement on Friday that North Korea was behind last month’s Sony hack. The agency’s evidence is tenuous, and I have a hard time believing it. But I also have trouble believing that the US government would make the accusation this formally if officials didn’t believe it. Clues in … Read More “Did North Korea Really Attack Sony?” »

Manipulating Juries with PowerPoint

December 23, 2014 infossl

courts, laws, propaganda, Security technology

Interesting article on the subconscious visual tricks used to manipulate juries and affect verdicts. In December 2012 the Washington Supreme Court threw out Glasmann’s convictions based on the “highly inflammatory” slides. As a general rule, courts don’t want prosecutors expressing their personal opinion to a jury; they’re supposed to couch their arguments in terms of … Read More “Manipulating Juries with PowerPoint” »

North Korea DDoSed Off the Internet

December 23, 2014 infossl

denialofservice, hacking, internet, northkorea, Security technology, sony

North Korea has been knocked off the Internet by a distributed denial-of-service (DDoS) attack. Maybe the US did it, and maybe not. This whole incident is a perfect illustration of how technology is equalizing capability. In both the original attack against Sony, and this attack against North Korea, we can’t tell the difference between a … Read More “North Korea DDoSed Off the Internet” »

2008 Cyberattack Against Turkish Oil Pipeline

December 23, 2014 infossl

cyberterrorism, hacking, infrastructure, Security technology, turkey

Interesting article talks about the 2008 cyberattack against a Turkish oil pipeline: For western intelligence agencies, the blowout was a watershed event. Hackers had shut down alarms, cut off communications and super-pressurized the crude oil in the line, according to four people familiar with the incident who asked not to be identified because details of … Read More “2008 Cyberattack Against Turkish Oil Pipeline” »

Reacting to the Sony Hack

December 22, 2014 infossl

cyberterrorism, cyberwar, hacking, northkorea, privacy, Security technology, sony

First we thought North Korea was behind the Sony cyberattacks. Then we thought it was a couple of hacker guys with an axe to grind. Now we think North Korea is behind it again, but the connection is still tenuous. There have been accusations of cyberterrorism, and even cyberwar. I’ve heard calls for us to … Read More “Reacting to the Sony Hack” »

Friday Squid Blogging: Squid Beard

December 19, 2014 infossl

Security technology, squid

Impressive. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Powered by WPeMatico

Lessons from the Sony Hack

December 19, 2014 infossl

advancedpersistentthreats, computersecurity, hacking, networksecurity, privacy, Security technology, sony

Earlier this month, a mysterious group that calls itself Guardians of Peace hacked into Sony Pictures Entertainment’s computer systems and began revealing many of the Hollywood studio’s best-kept secrets, from details about unreleased movies to embarrassing emails (notably some racist notes from Sony bigwigs about President Barack Obama’s presumed movie-watching preferences) to the personnel data … Read More “Lessons from the Sony Hack” »

SS7 Vulnerabilities

December 19, 2014 infossl

Security technology

There are security vulnerability in the phone-call routing protocol called SS7. The flaws discovered by the German researchers are actually functions built into SS7 for other purposes — such as keeping calls connected as users speed down highways, switching from cell tower to cell tower — that hackers can repurpose for surveillance because of the … Read More “SS7 Vulnerabilities” »

ISIS Cyberattacks

December 18, 2014 infossl

hacking, iraq, isis, malware, phishing, press, Security technology, socialengineering, syria

Citizen Lab has a new report on a probable ISIS-launched cyberattack: This report describes a malware attack with circumstantial links to the Islamic State in Iraq and Syria. In the interest of highlighting a developing threat, this post analyzes the attack and provides a list of Indicators of Compromise. A Syrian citizen media group critical … Read More “ISIS Cyberattacks” »

The Limits of Police Subterfuge

December 18, 2014 infossl

courts, fbi, gambling, hotels, laws, police, privacy, searches, Security technology, socialengineering, surveillance

“The next time you call for assistance because the Internet service in your home is not working, the ‘technician’ who comes to your door may actually be an undercover government agent. He will have secretly disconnected the service, knowing that you will naturally call for help and — when he shows up at your door, … Read More “The Limits of Police Subterfuge” »