This and that | Ripple's Web

What, me worry?

(Credit:
Nicolas Maigretto)

The Pirate Cinema chaotically visualizes the most popular video torrent files found on The Pirate Bay in a mesmerizing and sometimes visually overwhelming way.

Created by artist Nicolas Maigretto and programmed by Brendan Howell, the cinematic collage involves a custom-programmed box that intercepts real-time peer-to-peer file sharing among the top 100 torrent files (on The Pirate Bay) and projects flashes of the actively downloaded video content on one of three screens.

After entering a dimly lit room, visitors to the exhibit sit down and observe the
projector screens, which show brief clips of movie, television, and music video content culled from real-time traffic. User IP addresses and locations of the downloader hang above each video.

“This immediate and fragmentary rendering of digital activity, with information concerning its source and destination, thus depicts the topology of digital-media consumption and uncontrolled content dissemination in a connected world,” Maigretto noted on The Pirate Cinema Web site.

The Pirate Cinema ran for several weeks in May at the Eastern Bloc arts exhibition center in Montreal, Canada.

Article source: http://feedproxy.google.com/~r/cnet/pRza/~3/8BRqUyoaE4g/

A flaw in Adobe’s Reader software allows an attacker to find out when and where a document is opened, and potentially even sniff out other system information.

McAfee has warned of a vulnerability in Adobe’s Reader PDF viewing software that could potentially allow attackers to track the usage of files in unexpected ways.

According to a blog post made by McAfee’s Haifei Li late last week, ‘unusual PDF samples‘ have been detected in the wild, courtesy of a shady email tracking company, which are exploiting a previously unknown flaw in Adobe’s Reader software. While not capable of allowing remote code execution – the most serious type of vulnerability – Li claims that the flaw can be used to disclose privileged information on how the document spreads.

‘When a specific PDF JavaScript API is called with the first parameter having a UNC-located resource, Adobe Reader will access that UNC resource,‘ Li explains. ‘However, this action is normally blocked and creates a warning dialogue asking for permission. The danger is that if the second parameter is provided with a special value, it changes the API’s behaviour. In this situation, if the UNC resource exists, we see the warning dialogue. However, if the UNC resource does not exist, the warning dialogue will not appear even though the TCP traffic has already gone.‘

The result: an attacker can see when and where the PDF file was opened, even though the security systems built into Reader should have prevented it from making contact with the remote server.

‘Is this a serious problem? No, we don’t want to overvalue the issue,‘ Li admits. ‘However, we do consider this issue a security vulnerability. Considering this, we have reported the issue to Adobe and we are waiting for their confirmation and a future patch. We are also hiding the key details of the vulnerability to protect Reader users.

‘Some people might leverage this issue just out of curiosity to know who has opened their PDF documents, but others won’t stop there. An APT [Advanced Persistent Threat] attack usually consists of several sophisticated steps. The first step is often collecting information from the victim; this issue opens the door. Malicious senders could exploit this vulnerability to collect sensitive information such as IP address, Internet service provider, or even the victim’s computing routine. In addition, our analysis suggests that more information could be collected by calling various PDF JavaScript APIs. For example, the document’s location on the system could be obtained by calling the JavaScript “this.path” value.’

The workaround recommended by Li is to disable JavaScript processing in Reader – the same advice that is given every time a new security hole is found in the software. Alternatively, users can try a third-party PDF viewer.

Thus far, Adobe has not issued a statement regarding the flaw, and it is not known whether the company is actively working on a patch for what it will surely view as a relatively low-priority issue.

Article source: http://feedproxy.google.com/~r/bit-tech/news/~3/hO4voDyckpM/1

Article source: http://feedproxy.google.com/~r/GamingRipplesWeb/~3/CCGb1INm5gM/

McAfee’s patent covers a system for detecting and blocking a user’s attempts to download copyright-infringing material, but could it give pirates an excuse for their actions?

Security specialist McAfee, best known for its range of anti-virus software, is branching out into the anti-piracy game, according to a patent filed by the company back in October last year and published late last week.

Spottedy by file sharing news site TorrentFreak, the patent – WO2013055564A1 – describes a system to ‘detect and prevent illegal consumption of content on the internet.’ To put it another way: it’s a blacklisting system that aims to prevent users from downloading hooky software, music and films from file sharing sites.

The system, McAfee’s Davoud Maha explains in the patent, aims at ‘preventing (or at least deterring) a user from inadvertently or directly consuming illegal content on the internet.‘ Acting as an extension of the company’s existing SiteAdvisor system, which warns users if they’re visiting a site that hosts malicious software or has been reported as a ‘phishing’ site, the system can take several steps if it detects apparently-unauthorised content: it can simply warn the user; it can block access to the site entirely; or – and it’s here that the system’s target audience becomes somewhat clearer – it can block the site while redirecting the user to an alternative source, such as a pay-to-download service hosting an authorised copy of the works.

According to McAfee, the system holds benefits to consumers as well as rightsholders – in particular by preventing ‘accidental’ download of unauthorised content that could result in expensive litigation should the rightsholder decide to pursue the user for infringement. If the system is simply added to McAfee’s existing consumer-oriented security software and made optional, that’s perhaps good news for the less confident downloader who perhaps may not know that The Pirate Bay isn’t exactly a legitimate source of new-release films and music.

The risk McAfee runs, however, is in giving those who know full well that they’re downloading unauthorised copies of copyright material a further excuse for their actions: ‘McAfee SiteAdvisor didn’t tell me it was unauthorised, so I thought it was OK.’ While tenuous at best, firms that chase downloaders for payment are typically loath to take them to court over the matter – regardless of their threats to the contrary – in case their ‘evidence,’ usually limited to a spreadsheet of IP addresses, is found wanting. Offering yet another excuse – alongside ‘I run an open Wi-Fi connection, so anyone could have downloaded it’ – may mean any such court case struggles even more than would have been the case.

One thing is clear, however: where McAfee leads, others are likely to follow. Expect the security software of tomorrow to come with the same kind of ‘protection’ against copyright infringement as it offers for malware.

Thus far, McAfee hasn’t indicated when – or even if – it plans to add the anti-piracy system to its software packages.

Article source: http://feedproxy.google.com/~r/bit-tech/news/~3/4fbVg1A9UTs/1

Article source: http://feedproxy.google.com/~r/GamingRipplesWeb/~3/R0Jrslri4dQ/

St. Peter’s Basilica in Vatican City. The Vatican is actually a tiny, sovereign country, surrounded by the city of Rome, Italy.

(Credit:
CBS)

Even the residents of Vatican City need to be entertained, but are they pirating porn?

The blog TorrentFreak recently compiled a report alleging that computers located in Vatican City are downloading pornography. A recent tale of Irish priests enjoying first-run hits at their home movie nights piqued the blog’s interest to see what the residents of Vatican City have been downloading.

TorrentFreak recruited the help of ScanEye, a Web site that tracks and analyzes this type of online activity. ScanEye’s data found that computers inside Vatican City were downloading films like “Love Actually” and TV shows like “The Americans.”

Files with the names of adult film stars also appeared in the queue. Some of the files appeared to be of bondage, domination, sadism, and masochism (BDSM) videos.

While downloads are tracked back to Vatican City, it doesn’t necessarily mean church officials are doing the downloading. Lay people who work for the Vatican, like the Papal Swiss Guard, have daily access to Vatican City.

Screenshot of download queue tracked to IP addresses in Vatican City.

(Credit:
TorrentFreak)

This story originally appeared on CBSNews.com.

Article source: http://feedproxy.google.com/~r/cnet/pRza/~3/j2J4-OMzllE/

The War Z launched last December and made a name for itself by promising features that were not available in the game.

The War Z has been knocked offline following a hack of its player database and forum.

The zombie survival game’s publisher, OP Productions, issued a security alert to the players affected via email and has taken the game itself and the forum offline whilst the hack is investigated.

The information swiped included email addresses and passwords used to log in to the game as well as email addresses and passwords used to access the forum. IP addresses of the forum’s users and any information posted to the forums has also been accessed.

OP Productions does however assert that the hacked passwords were encrypted but also warns that these can be broken into through a brute force attempt and has advised players to change their passwords anyway.

The publisher also states that no financial information or payment histories have been exposed in the attack as all payments are made outside of OP Productions’ system and go through a third party.

‘We have already taken a number of steps to increase security and are continuing to work with external advisors and investigators to identify and implement measures to minimize the chance of this happening in the future,’ read a statement from OP Productions. ‘This has been a humbling experience for us. While we all know that there is no guaranty of security on the internet, our goal is to try our very best to protect your data.’

Although nobody has claimed responsibility for the hack, The War Z has done more than enough to earn the ire of gamers. Launching in December last year in a rather unfinished state and featuring micro-transactions of questionable value, Valve even felt it necessary to offer refunds to anyone who bought the game through Steam and de-listed the title until some of its more severe bugs were dealt with.

The War Z has come under attack from hackers before with developer Hammerpoint claiming the game suffered from various DDOS attacks on its login server back in January this year.

Article source: http://feedproxy.google.com/~r/bit-tech/news/~3/-jWafA3Q_Kc/1

Article source: http://feedproxy.google.com/~r/GamingRipplesWeb/~3/nVdGGCr2Az8/

China, which has been accused by U.S. organizations of supporting cyberattacks, said Thursday that it was aware of reports on the matter.

“We have pointed out many times that hacking is a global issue. It is anonymous and transnational,” said Hong Lei, a Chinese foreign ministry spokesman. “Hackers would often use IP addresses from other countries to launch cyberattacks.”

South Korean officials are still analyzing the cause of the network crashes and are working to prevent any further damage, the country’s communications commission said.

Increased alert level

The military has stepped up its cyberdefense efforts in response to the widespread outages, which hit nine companies, Yonhap reported, citing the National Police Agency.

Government computer networks did not seem to be affected, Yonhap cited the National Computing and Information Agency as saying.

A joint team from government, the military and private industry was responding.

A South Korean official close to the investigation told CNN that malicious computer code spread through hacking caused the outages.

How the hackers got in and spread the code remains under investigation, and analysts are examining the malware, the official said.

U.S. flies B-52s over South Korea

Previous attacks linked to North

South Korean officials have not said who they suspect unleashed the malicious code, but experts believe it is consistent with what North Korea has done in the past.

“It’s happened before in similar circumstances where there have been tensions on the peninsula,” said Adam Segal, a cybersecurity expert with the Council on Foreign Relations.

There didn’t appear to be any mention of the computer crash in North Korean state media.

South Korea has accused the North of similar hacking attacks before, including incidents in 2010 and 2012 that also targeted banks and media organizations. The North rejected the allegations.

The outages come amid heightened tensions on the Korean Peninsula, with the North angrily responding to a recent U.N. Security Council vote to impose tougher sanctions on Pyongyang after the country’s latest nuclear test last month.

Last week, North Korea invalidated its 60-year-old armistice with the South. It has threatened to attack its neighbor with nuclear weapons and has also threatened the United States.

The armistice agreement, signed in 1953, ended the three-year war between North and South but left the two nations technically in a state of war.

The United States has deployed B-52 bombers to conduct high-profile flyovers of its South Korean ally and announced that it will deploy new ground-based missile interceptors on its West Coast against the remote possibility that North Korea could strike the United States with long-range weapons.

Under threat, South Koreans mull nuclear weapons

Accusations against U.S., South Korea

Last week, North Korea complained that it was the victim of “intensive and persistent virus attacks” from the United States and South Korea, according to KCNA, the official North Korean news agency.

Yonhap said Wednesday’s outages affected three broadcasters, four banks and two insurance companies.

The three broadcasters — KBS, MBC and YTN — reported varying levels of trouble containing the virus. While the networks remained on the air, cable network YTN said editing equipment had been affected and it expected to experience broadcasting problems, Yonhap reported.

Computer networks stopped working entirely at three banks — Shinhan, Nonghyup and Jeju — around 2 p.m. Wednesday, Yonhap reported, citing the National Police Agency. Another financial institution, Woori Bank in Seoul, reported it was able to fend off a hacking attack about the same time.

The banks that were affected reported problems with a variety of systems, including Internet banking, ATMs and telecommunication services, and some branches stayed open late because of the slowdown, Yonhap said.

CNN’s K.J. Kwon reported from Seoul, Jethro Mullen from Hong Kong and Michael Pearson from Atlanta. Judy Kwon in Hong Kong and Dayu Zhang in Beijing contributed to this report.

Article source: http://edition.cnn.com/2013/03/21/world/asia/south-korea-computer-outage/index.html?eref=edition

Article source: http://feedproxy.google.com/~r/NewsRipplesWeb/~3/YM36vmfOebw/hacking-on-s-korea-traced-to-china

At CeBIT, Intel showed off display as a service (DAAS), which lets a device use any display on a network.

(Credit:
Stephen Shankland/CNET)

HANOVER, Germany–Intel today debuted a technology called display as a service (DAAS) that it hopes will transform how people use their gadgets.

The technology breaks the hard link between a video source and a screen the way virtualization software breaks the hard link between an operating system and a processor. With DAAS, people can view what’s on their
tablet on a big-screen TV, mirror the same imagery on multiple displays, or link up multiple displays to create a single, bigger display. Effectively, each display becomes a bunch of pixels available for any device to use. Image data is sent over a wired or wireless network.

Intel announced and demonstrated the technology here at the CeBIT trade show. It also showed off a small box that can bring the technology to displays that don’t have the requisite IP address.

Christian Morales, general manager of Intel’s operations in Europe, the Middle East, and Africa, demonstrates a detachable touch-screen Windows 8 tablet powered by Intel’s upcoming “Haswell” chip. He spoke at CeBIT 2013.

(Credit:
Stephen Shankland/CNET)

Also at CeBIT, Intel showed off a prototype
Windows 8 laptop, built with its upcoming fourth-generation Core processor, called Haswell. The laptop prototype — one of only four in the world — has a screen that can be detached with one hand.

Haswell, due to arrive in systems midyear, is built on the same manufacturing process as today’s Ivy Bridge processors, but it will introduce a new microarchitecture. Intel has been mum on the details beyond promising better power management, but expect better graphics performance and somewhat faster processing.

Later this year, Intel will release the earliest chips, called Broadwell, that shrink the Haswell design using the next-generation manufacturing process. Broadwell chips measure 14 nanometers (billionths of a meter), down from 22nm in Ivy Bridge and Haswell chips.

Intel’s prototype laptop using a fourth-generation Core processor, aka Haswell, shown at CeBIT.

(Credit:
Stephen Shankland/CNET)

“We’re going to be introducing the 14-nanometer technology at the end of this year and [will] start ramping it next year,” said Christian Morales, general manager of Intel’s operations in Europe, the Middle East, and Africa.

Also coming will be a new manufacturing process that shifts to silicon wafers measuring 450mm across rather than today’s 300mm. The larger wafers lower the per-chip cost of manufacturing because more processors can fit onto a single wafer.

The transition is tremendously expensive, though, because new manufacturing equipment is required. It’s one reason Intel has been increasing its capital expenditures, Morales said.

“We want to go into 450mm wafers in the very near future,” Morales said.

Article source: http://feedproxy.google.com/~r/cnet/pRza/~3/ifDhFx6rMKA/

Virginia-based Mandiant published a 60-page report detailing allegations over a six-year period against a group of hackers — known as Comment Crew — which Summers linked to a secret division of the Chinese military.

Summers told CNN: “China is attacking the U.S. on a scale like we’ve never seen before… We believe that the Communist Party of China is very aware of this.”

Read more: Have the courage to deal with cyber war

Mandiant says the activity can be traced to four networks near Shanghai — with some operations taking place in a location that is also the headquarters of Unit 61398, the secret military division.

Summers added: “Never before have we seen one state-sponsored entity like unit 61398 of the Chinese PLA attacking helpless commercial organizations in other countries.”

Read more: Chinese cyber attacks on West are widespread, experts say

The espionage group mainly targeted U.S. blue chip companies in 20 separate industries from aerospace to financial services.

“It’s really a who’s who of American companies. Of 140 victims worldwide, 115 of them were in the U.S.,” Grady said.

Chinese foreign ministry spokesman Hong Lei dismissed the hacking charges on Tuesday, insisting that China is the victim of many cyberattacks — most originating in the United States.

“Making baseless accusations based on premature analysis is irresponsible and unprofessional,” he said. “China resolutely opposes any form of hacking activities.”

Earlier this month, President Obama signed an executive order designed to address the country’s most basic cybersecurity needs — and highlighted the effort in his State of the Union address.

Summers says a cyber offence by the U.S. is not an appropriate response to the attacks as “it creates more problems than it solves.”

Instead, he advocates better defense systems in organizations that are vulnerable to cyber attacks and diplomatic pressure from Washington on Beijing.

The Mandiant report details 3,000 technical indicators including IP addresses, domain names and encryption certificates, that can be used to strengthen companies’ defenses.

Article source: http://rss.cnn.com/~r/rss/edition_business/~3/SqrifVQZkzk/index.html

Article source: http://feedproxy.google.com/~r/NewsRipplesWeb/~3/0aicZ-QifLg/mandiant-china-sponsors-cyber-spying

READ: In the tech world, porn quietly leads the way

Interior Minister Ogmundur Jonasson has appointed committees to study the best methods for keeping young people from seeing explicit images and videos on computers, game consoles and smartphones.

The options being considered, according to the Daily Mail, include blocking the IP addresses of known porn sites and making it illegal to use credit cards from Iceland to subscribe to X-rated sites.

“This move is not anti-sex. It is anti-violence because young children are seeing porn and acting it out,” Gunnarsdottir said. “That is where we draw the line. This material is blurring the boundaries for young people about what is right and wrong.”

Attempting a total block of porn sites somewhere like the United States, with its legions of public and private portals onto the Web and the millions of software engineers who likely would spring into action to find workarounds, would be nearly impossible.

But Iceland has a population of 322,000 — roughly the same as St. Louis, Missouri. That, and its remote location 1,300 miles off of the coast of Europe, would make jamming or blocking Web traffic to certain sites easier, if that was the route the government there chose.

The move is, predictably, drawing fire from Web-freedom advocates, including some in Iceland who agree with Jonasson on most issues.

“Since he claimed office as minister, Jonasson has brought forward progressive legislation and has shown that he can be a man of principles and courage. For that, I truly respect him,” Birgitta Jonsdottir, a member of Iceland’s parliament who represents part of Reykjavik, wrote in an editorial for London’s The Guardian.

“But he is way off track in his attempts to place a shield around Iceland in order to ‘stop porn’ from entering the country.”

A member of the parliament committee studying the issue, Jonsdottir says a porn ban has “near zero” chance of passing parliament and that she’s working to find other ways the government can help protect children from Web porn.

“Introducing censorship without compromising freedom of expression and speech is like trying to mix oil and water: It is impossible,” she wrote. “I know my fellow MPs can often turn strange and dangerous laws into reality, but this won’t be one of them.”

Article source: http://rss.cnn.com/~r/rss/edition_technology/~3/oVgnzhw6lPU/index.html

Article source: http://feedproxy.google.com/~r/NewsRipplesWeb/~3/QRvJQEwoAkk/iceland-wants-to-ban-internet-porn

The US CERT has advised users to disable UPnP on routers following the discovery of a serious security flaw in the easy-access technology.

Security researchers have warned that faulty implementations of the Universal Plug and Play (UPnP) protocol in common routers are leaving millions of users at risk of attack.

UPnP was introduced as a solution to the problem of needing to forward ports from a router’s external interface to internal systems in order to make internet-facing equipment visible. When routers and gateways were entirely under the control of system administrators that wasn’t a problem, but these days nearly every house with an internet connection has a router that uses Network Address Translation (NAT) to connect multiple devices to the internet on a single public-facing IP.

A NAT system blocks incoming traffic by default – not so much as a security precaution, although that’s a handy by-product, but because it has no idea to which of multiple client systems the traffic is supposed to be sent. Port forwarding tells the router that all incoming traffic to a selected port should go to a particular client system, but can be too confusing for non-technical types with all its talk of ‘virtual servers,’ ‘IP addresses’ and ‘port ranges.’

UPnP solves that problem: in a move seemingly designed to give security wonks a heart attack, UPnP allows the client devices themselves to negotiate holes in the firewall. Launch a peer-to-peer file sharing application, for example, and it will typically use UPnP to forward an externally-facing port to your laptop or desktop’s internal IP address. When the client software is closed, so is the hole – until the next time it’s launched. UPnP also allows for device discovery on the local network: many network printers allow access over UPnP, while the Digital Living Network Alliance (DLNA) media streaming standard is built on UPnP technologies.

One of the key points of UPnP is that it should only be active on the local network: it’s one thing to have your internal systems poking holes in your firewall, but quite another for an external system to do the same. Sadly, that most basic point appears to have been ignored by several manufacturers: a whitepaper released by security research firm Rapid 7 claims that there are around 50 million devices accessible over the internet using the UPnP protocol.

It’s a serious problem: NAT provides a handy level of protection against network intrusion, blocking access to vulnerable services on client machines. With UPnP access enabled on the external interface, attackers can easily bypass the NAT to gain direct access to ports on client devices. Still worse, systems that use UPnP to share media have been found to be exposing said media to the internet at large – and while that might not concern those who use media servers to stream the latest TV shows, it’s a common feature of smartphones and tablets to be able to share personal pictures and videos over UPnP and related protocols.

The issue has the US Computer Emergency Readiness Team (CERT) worried enough to issue an advisory telling users that they should consider disabling UPnP – typically just by flipping a setting in the router, although some models have publicly-disclosed vulnerabilities where UPnP remains active even when apparently disabled – until manufacturers update the vulnerable libupnp software library to version 1.6.18, which explicitly disables UPnP on external interfaces.

Article source: http://feedproxy.google.com/~r/bit-tech/news/~3/EfKh2Bv1uE8/1

Article source: http://feedproxy.google.com/~r/GamingRipplesWeb/~3/BLmBVYJbOcU/