RSS
Valleywag
hackers
Posts Tagged “
Hackers
”
hackers
hackers
How do you clean a virus in space?
The laptops up on the International Space Station have been infected with a virus — the W32.Gammima.AG worm, to be precise — which raises an interesting challenge: How do you wipe a computer clean when you're 217 miles away from Earth and moving at 17,000+ miles per hour? According to the BBC, the ISS isn't net-connected. All data is subject to scan before transmission upstairs. So the laptops were probably infected via flash drive before they left. The worm itself doesn't threaten the station — all it wants is your gaming passwords — and the laptops aren't connected to mission-critical computers. But the lack of an Internet connection makes fixing things tricky. More »
We Read Facebook So Sheryl Sandberg Doesn't Have To
Facebook security a laughing matter for cofounder
Officially, Facebook is treating the onslaught of viruses piggybacking on the social network's popularity as a very, very serious matter. We're talking Sheryl Sandberg serious. Facebook's press statement reads: "We are investigating every report, removing false content, blocking bogus links and addressing the concerns of our users. These efforts have limited the affected users to a small percentage of those on Facebook.” The unofficial response from cofounder Dustin Moskovitz, posted on CEO Mark Zuckerberg's Facebook profile, is much more fun: More »
hackers
Any guy in a suit can crack the iPhone's password
A forum post on MacRumors explains how to end-run the password on a locked iPhone. It's so easy it hurts: More »
your privacy is an illusion
Virus mimics Facebook's hated Beacon ads
Facebook CEO Mark Zuckerberg should be relieved to learn that someone is at last "leveraging the social graph," as he might put it, for financial gain. Problem is, it's not Facebook. It's hackers pulling a phishing scam. A tipster tells us his friends at Facebook are busy fighting a virus that tricks a user into opening "a YouTube phishing site," delivered in the form of a Facebook message from one of the user's Facebook friends. More »
hackers
Red Hat server break-in hushed up
"Last week Red Hat detected an intrusion on certain of its computer systems," says a security advisory from the leading Linux vendor. "The intruder was able to sign a small number of OpenSSH packages," in what seemed like an attempt to place something into the company's downloadable enterprise software packages. Red Hat's spokespeople say they don't believe any hacked packages were distributed, but still. More »
hackers
FEMA phone system hacked to make free calls
Although not as hardcore as the British hacker that did his work over 56k, another hacker should be commended for his ability to hijack FEMA phone systems and make $12,000 worth of free phone calls this weekend. The Department of Homeland Security was apparently upgrading FEMA's voicemail system with outdated Private Branch Exchange (PBX) technology but failed to configure the security settings properly. The phreak was able to exploit a vulnerability and use Homeland Security's own phones to ring up countries like Afghanistan, Saudi Arabia, and Yemen. Which all proves that Michael Chertoff was right to fear the power hackers have over inept government bureaucracies. [AP] (Photo by gthills)
silicon valley users guide
How not to get your Gmail hacked
Last time someone came out with a Gmail exploit, it was possible to completely hijack your account with just email filters. This time around, hackers found a way to break into your account via "session" cookies. Mike Perry — a reverse-engineering specialist in San Francisco — is debuting a tool at Defcon that can sniff out the browser's cookies during your session of email crunching. When you click on links from inside email messages, website operators can use that Gmail cookie and be able to find out your account information and password. More »
hackers
MIT students free to talk about bugs in Boston bus system
Three MIT students who'd been blocked by a judge from presenting their findings on "vulnerabilities in Boston's transit fare payment system" at this month's Defcon security conference are free to speak starting Friday. A U.S. District Court judge refused to extend the 10-day gag order issued against Zack Anderson (pictured), RJ Ryan, and Alessandro Chiesa just before the conference. The Massachusetts Bay Transportation Authority had asked for a five-month restraining order to allow time to fix the vulnerabilities. San Francisco's Electronic Frontier Foundation represented the students. (Photo by Zack Anderson)
Michael Dolan
AOL phisher gets 7-year maximum jail sentence
He's only 24 years old, but Michael Dolan of West Haven, Conn. has been slapped with the maximum sentence after pleading guilty to fraud and aggravated identity theft. Dolan and five accomplices spammed AOL users for four years with messages such as, "Due to a central server meltdown, your credit card information was lost." The prosecution claimed the scams had taken in at least $400,000 from 250 users who fell for it. Dolan's defense lawyer had argued that Dolan suffered mental illness, made worse by his father's suicide.
spam
Microsoft acquires AOL, according to clever phishing scheme
MSNBC.com did not report this morning that in a long-anticipated move, Microsoft has acquired AOL. But after finding the above "MSNBC Breaking News" alert in my inbox this morning, I thought they did for a minute there. I even started drafting a post on the news ("Last we heard about the deal in mid-July, AOL negotiators were …"). Then my boss yelled at me. I looked at the email again and saw it came from
British hacker gets temporary reprieve
Gary McKinnon — crowned by the Pentagon as the biggest hacker of all time — will have to wait a bit longer before heading to the U.S. to face criminal charges. The European Court of Human Rights will now allow him to stay in Britain until August 28 to review his appeal against extradition. McKinnon has been pleading innocence throughout all this, claiming he was simply curious about what information the U.S. military and NASA had about UFOs. [News.com]
Gary McKinnon — crowned by the Pentagon as the biggest hacker of all time — will have to wait a bit longer before heading to the U.S. to face criminal charges. The European Court of Human Rights will now allow him to stay in Britain until August 28 to review his appeal against extradition. McKinnon has been pleading innocence throughout all this, claiming he was simply curious about what information the U.S. military and NASA had about UFOs. [News.com]
Apple Users Held Hostage
iPhone day 33: The most eye-pleasing phishing spam ever
A Macworld reader sent in a screenshot of a charmingly credible HTML email that claims to be from Apple: "We were unable to process your most recent payment. Did you recently change your bank, phone number or credit card?" It's convincing not just because it's pretty, but because this sort of error from MobileMe at this point would seem like a minor hurdle — I'm still trying to figure out how my wife's name got onto my account in the conversion. That'll teach me to sneak her credit card.
security
How 15 minutes of shame can save your company
The Wall of Sheep is a tradition at the annual Defcon computer-security conference. Hackers at the event post information that other attendees have accidentally placed unsecured onto the conference's network. Passwords and porn are the best examples. Organizers at last week's Black Hat conference set one up, too. It's a fun prank, but here's a serious idea: Why not run a Wall of Sheep at your own company? There are two good reasons: More »
hackers
MIT brats' free-bus scheme blocked by judge
You can fill this blank in yourself: Three students from the Massachusetts Institute of Technology were scheduled to present an analysis of "vulnerabilities in Boston's transit fare payment system" at the Defcon security conferences in Vegas. They were stopped at the last minute after the Massachusetts Bay Transit Authority sued them for allegedly violating the Computer Fraud and Abuse Act. The Electronic Frontier Foundation has chosen to represent the students. That's great news, if only because it involves the EFF standing up for something besides BitTorrent.
cyberwar
Claim: Russian hackers behind spam crime ring took over Georgia's national websites
Before the Russian army pushed past the borders of breakaway republic South Ossetia and invaded Georgia's interior, Russian hackers took over Georgian government websites last Friday, taking control over a central government site as well as the homepages for the ministries of foreign affairs and defense. Researcher Jart Armin told Britain's Daily Telegraph he blames the attacks an organization called the Russian Business Network, which the Telegraph describes as a "a network of criminal hackers with close links to the Russian mafia and government." More »
security
Vista security completely end-run by hack
Today at the Black Hat conference in Las Vegas, two security experts showed off a new Web-based break-in that completely bypasses all of the hardware memory protection built into Windows Vista. Once inside, a program can then load any content at all from the Internet via your browser. The best tech writeup is at Electronista: "The malicious code not only negates the effectiveness of Vista's Address Space Layout Randomization and Data Execution Prevention technologies, but specifically abuses their behavior to ensure an attack gets through." What does this mean for you? It's not the end of the world. But stand by for one very important Security Update.
great moments in journalism
