Lifeboat Foundation: Safeguarding Humanity
Toggle light / dark theme

Blog

Category: cybercrime/malcode – Page 191

Ben-Gurion University of the Negev (BGU) cyber security researchers have developed a new attack called Malboard evades several detection products that are intended to continuously verify the user’s identity based on personalized keystroke characteristics.

The new paper, “Malboard: A Novel User Keystroke Impersonation Attack and Trusted Detection Framework Based on Side-Channel Analysis,” published in the Computer and Security journal, reveals a sophisticated attack in which a compromised USB automatically generates and sends malicious keystrokes that mimic the attacked user’s behavioral characteristics.

Keystrokes generated maliciously do not typically match human typing and can easily be . Using artificial intelligence, however, the Malboard attack autonomously generates commands in the user’s style, injects the keystrokes as malicious software into the keyboard and evades detection. The keyboards used in the research were products by Microsoft, Lenovo and Dell.

Read more

Low tech sometimes is really good because when systems can be exploited then basically you see that no tech is sometimes best.

Election Systems & Software has championed electronic voting machines in the US. Now it has had a change of heart about the need for paper records of votes.

Cyber threats: Over half a million electronic machines are used in big US elections. Many produce paper copies of votes that can be used to audit electronic results, but some don’t. That’s a problem because security experts have shown that machines can be hacked.

The news: Tom Burt, Election Systems & Software’s chief executive, said in an op-ed in the political newspaper Roll Call that it will no longer sell paperless voting machines as the primary voting device in jurisdictions. Burt also called on Congress to make paper backups mandatory for all electronic votes cast, and to require all voting equipment suppliers to submit their machines to robust cybersecurity testing.

Read more

Dehgan hopes that the organization’s prizes and other initiatives will bring innovative solutions to conservation’s deepest problems. Hundreds of people have already been lured in through challenges and engineering programmes such as Make for the Planet — a multi-day, in-person event — and an online tech collaboration platform called Digital Makerspace, which matches conservationists with technical talent.

Standard efforts have failed to slow the pace of extinctions, so Conservation X Labs is trying a fresh approach.

Read more

Governments are becoming ever more reliant on digital technology, making them more vulnerable to cyber attacks. In 2007, Estonia was attacked by pro-Russian hackers who crippled government servers, causing havoc. Cyber attacks in Ukraine targeted the country’s electricity grid, while Iran’s nuclear power plants were infected by malware that could have led to a nuclear meltdown.

In the US, president Trump recently declared a “national emergency” to recognise the threat to US computer networks from “foreign adversaries”.

Politically-motivated cyber are becoming increasingly commonplace but unlike traditional warfare between two or more states, cyberwarfare can be launched by groups of individuals. On occasion, the state is actually caught in the crosshairs of competing hacking groups.

Continue reading “Cyber attacks are rewriting the ‘rules’ of modern warfare—and we aren’t prepared for the consequences” | >

DARPA has awarded funding to six organizations to support the Next-Generation Nonsurgical Neurotechnology (N) program, first announced in March 2018. Battelle Memorial Institute, Carnegie Mellon University, Johns Hopkins University Applied Physics Laboratory, Palo Alto Research Center (PARC), Rice University, and Teledyne Scientific are leading multidisciplinary teams to develop high-resolution, bidirectional brain-machine interfaces for use by able-bodied service members. These wearable interfaces could ultimately enable diverse national security applications such as control of active cyber defense systems and swarms of unmanned aerial vehicles, or teaming with computer systems to multitask during complex missions.

“DARPA is preparing for a future in which a combination of unmanned systems, artificial intelligence, and cyber operations may cause conflicts to play out on timelines that are too short for humans to effectively manage with current technology alone,” said Al Emondi, the N program manager. “By creating a more accessible brain-machine interface that doesn’t require surgery to use, DARPA could deliver tools that allow mission commanders to remain meaningfully involved in dynamic operations that unfold at rapid speed.”

Over the past 18 years, DARPA has demonstrated increasingly sophisticated neurotechnologies that rely on surgically implanted electrodes to interface with the central or peripheral nervous systems. The agency has demonstrated achievements such as neural control of prosthetic limbs and restoration of the sense of touch to the users of those limbs, relief of otherwise intractable neuropsychiatric illnesses such as depression, and improvement of memory formation and recall. Due to the inherent risks of surgery, these technologies have so far been limited to use by volunteers with clinical need.

Read more

ANN ARBOR—A new computer processor architecture developed at the University of Michigan could usher in a future where computers proactively defend against threats, rendering the current electronic security model of bugs and patches obsolete.

Called MORPHEUS, the chip blocks potential attacks by encrypting and randomly reshuffling key bits of its own code and data 20 times per second—infinitely faster than a human hacker can work and thousands of times faster than even the fastest electronic hacking techniques.

“Today’s approach of eliminating security bugs one by one is a losing game,” said Todd Austin, U-M professor of computer science and engineering and a developer of the system. “People are constantly writing code, and as long as there is new code, there will be new bugs and security vulnerabilities.

Read more