Lifeboat Foundation: Safeguarding Humanity
Toggle light / dark theme

Blog

Category: cybercrime/malcode – Page 231

Hmmmmm.

“We had analysts crawling all over that,” says Chappell of the Hold Security cache. “Quickly it was clear that a lot of those were from previous breaches.”

Anyone using this tool would have had a rapid assessment of their potential exposure. If breached data turns out to be new, the next task is to understand how it might have ended up in the hands of criminals. There are several sources for breached data including straight database theft but also phishing attacks and malware campaigns, each with its own dynamics and set of business implications.

“Instant responders are in a horrible position. They have to work out whether it [the breach] is genuine or not — Google is not effective,” says Chappell.

Read more

I am glad that D. Whyte recognizes “If quantum computers are developed faster than anticipated, certification would mandate insecure modules, given the time to approve and implement new quantum resistant algorithms. Worse, it is conceivable that data encrypted by a certified module is more vulnerable than data encrypted by a non-certified module that has the option of using a quantum-safe encryption algorithm.”

Because many of us who are researching and developing in this space have seen the development pace accelerated this year and what was looking like we’re 10 years away is now looking like we’re less than 7 years.

Dr. William Whyte, Chief Scientist for Security Innovation, a cybersecurity provider and leader in the 2015 Gartner Magic Quadrant for Security Awareness Training, will be presenting at the Fourth International Cryptographic Module Conference in Ottawa, Ontario.

Read more

Privacy is practically a joke anymore.

A hacker known as “Peace” is selling what is reportedly account information from 117 million LinkedIn users. The stolen data is said to include email addresses and passwords, which a malicious party could use to gain access to other websites and accounts for which people used the same password.

LinkedIn says it has about 433 million members worldwide, so this data could represent 27% of its user base.

The hacker says the credentials were obtained during a LinkedIn data breach in 2012 that saw 6.5 million encrypted passwords posted online, according to Motherboard. But the leak now appears to be much larger than was thought at the time. Peace is selling the data for about $2,200 (5 bitcoin) on the Dark Web, the part of the internet accessible only with a special browser that masks user identities.

Read more

Given the fact that Los Alamos Labs have been and continue to advance cyber security work on the Quantum Internet as well as work in partnerships with other labs and universities; so, why isn’t Mason not collaborating with Los Alamos on developing an improved hacker proof net? Doesn’t look like the most effective and cost efficient approach.

Imagine burglars have targeted your home, but before they break in, you’ve already moved and are safe from harm.

Now apply that premise to protecting a computer network from attack. Hackers try to bring down a network, but critical tasks are a step ahead of them, thanks to complex algorithms. The dreaded “network down” or denial of service message never flashes on your screen.

That’s the basic idea behind new research by George Mason University researchers, who recently landed some $4 million in grants from the Defense Advanced Research Projects Agency (DARPA). George Mason’s researchers are leading an effort that includes Columbia University, Penn State University and BAE Systems.

Read more

In the US we have an old saying “fight fire with fire” and in this case “fight bots with bot/s” It should be noted, having a bot or any type of AI on your network is not necessarily going to prevent 100% of the hacking and Cyber threats today due to the weak connected infrastructure across the net, etc. However, to counter attack the pesky bots that we’re seeing around online ads, click monitoring can be limited by AI.

Roughly half of all Web traffic comes from bots and crawlers, and that’s costing companies a boatload of money.

That’s one finding from a report released Thursday by DeviceAtlas, which makes software to help companies detect the devices being used by visitors to their websites.

Non-human sources accounted for 48 percent of traffic to the sites analyzed for DeviceAtlas’s Q1 Mobile Web Intelligence Report, including legitimate search-engine crawlers as well as automated scrapers and bots generated by hackers, click fraudsters and spammers, the company said.

Read more

CRISPR to take bio- and dirty-bombs to new levels.
Great; however, QC needs to be front and center on this; or, I see a bunch of funding spent on research that will be render useless by the time it goes to market due to the progress in QC.

I truly feel bad for the labs who are having to tests for bio- and dirty-bomb material. Really a dangerous job.

The Defense Advanced Research Projects Agency (DARPA) is looking for research proposals to develop a system that would enable the government and law enforcement to identify the actual individual behind a cyber attack.

The Enhanced Attribution Program proposal is looking to create the technology that would allow not only the collection of data that could pinpoint the perpetrator, but do so in a way that would not put at risk the sources and methods used to find the person or group. From DARPA’s perspective the need for this is quite straightforward.

“Malicious actors in cyberspace currently operate with little fear of being caught due to the fact that it is extremely difficult, in some cases perhaps even impossible, to reliably and confidently attribute actions in cyberspace to individuals,” DARPA wrote in the 43-page proposal.

Read more

Luv it!!!! Another fellow experienced AI SME having the same point of view that many other well seasoned AI experts have. Cerf is more concerned about coding bugs and not killer robots; and I and others are also concern about the weakness of the connected infrastructure, weak under pinning technology, and hacking/ criminals hotwiring or overriding AI systems to do their dirty deed and we’re not (like Cerf) concerned over robots and machines taking over the world.

Robots won’t take over humans, but buggy software might, according to the Google exec known as the “father of the Internet.”

Asked for his thoughts on the risk of a robotic overthrow, Google’s chief internet evangelist, Vint Cerf, said he doesn’t fear that problem — especially because artificial intelligence technology isn’t that sophisticated.

However, flawed software could pose a real threat to humans, he said.

Read more

Hotwiring your Apple watch to run Win95. My 1st question is why? Why would anyone want to work with such a dated system; and I worked many years at Microsoft and don’t understand the logic on this one. I would at least try Win 10. Granted the person states they like retro. If I want retro, I just hook up a PS2, or Wang VS.

Developer Nick Lee managed to get Windows 95 working on his Apple Watch. And Apple Watch definitely has the specs (check our full review). The watch packs in a 520 MHz processor, 512 MB of RAM, and 8GB of internal storage. Compared with Nick’s original $3,000, 300 MHz Pentium II powered PC with 256MB of RAM, the Apple Watch is practically the Computeress from Dexter’s Laboratory. There were quite a few hurdles to overcome, however, before Windows 95 was up and running.

First, Apple does not provide a direct way to install new operating systems. Apple’s WatchKit SDK also does not allow one to access user touch locations directly. Lee therefore patched files within WatchKit and loaded his own application code.

Second, Apple Watch typically hibernates when not in use. To fix this issue, Lee created a motorized tube that constantly turns the Watch’s crown and prevents the watch from falling asleep.

Read more

Due to the pace of Quantum Computing is developing; NIST is rushing to create a Quantum proof cryptographic algorithms to prevent QC hacking. Like I have stated, I believe we’re now less that 7 years away for QC being in many mainstream devices, infrastructure, etc. And, China and it’s partnership with Australia; the race is now on and hotter than ever.

The National Institute for Standards and Technology has begun to look into quantum cybersecurity, according to a new report that details and plans out ways scientists could protect these futuristic computers.

April 29, 2016.

Ransomware has taken off in 2016, already eclipsing the number of attacks observed in a recently published threat report from Symantec.

Read more