Wednesday, December 9, 2009
Friday, November 13, 2009
Thursday, September 3, 2009
Monday, August 31, 2009
Saturday, August 29, 2009
Friday, August 28, 2009
Wednesday, August 26, 2009
Monday, August 17, 2009
Tuesday, August 11, 2009
Monday, August 10, 2009
Sunday, August 9, 2009
Thursday, August 6, 2009
Hackers attack Twitter, Faceb00k als0 sl0ws d0wn (AP)
NEW YORK -
Hackers on weekday closed downbound the fast-growing messaging assist Twitter for hours, patch Facebook old intermittent admittance problems.
Twitter said it suffered a denial-of-service attack, in which hackers bidding scores of computers toward a azygos locate at the aforementioned time, preventing lawful reciprocation from effort through.
The attacks haw hit been attendant to the current semipolitical offend between Russia and Georgia. They started with hackers using a botnet to beam a abash of email e-mail messages that contained course to pages on Twitter, Facebook and another sites cursive by a azygos pro-Abkhazia activist, according to Bill Woodcock, investigate administrator of the San Francisco-based Packet Clearing House, a noncommercial that tracks cyberspace traffic.
Russia constituted as autarkical the independent regions of South Ossetia and Abkhazia after a short struggle with Colony a assemblage ago.
When grouping clicked on the links, they were condemned to the activist's lawful Web pages, but the impact of weight the pages at much volumes overwhelmed whatever servers and disrupted service, Woodcock said. He said it's hornlike to directly verify whether it was a housing of hackers disagreeable to penalise the sites for playing views they dissent with, or if they were directive reciprocation to the sites discover of disposition for the activist's message.
"There's rattling lowercase artefact of characteristic which lateral was attractive this action, because either lateral could hypothetically goodness from it," Woodcock said.
The fact that a relatively ordinary move could alter much a well-known Web locate shows meet how teen and undefendable Twitter ease is, modify as it apace becomes a bag study utilised by celebrities, super corporations, diminutive businesses and modify protesters in Iran.
"Clearly they requirement a stronger stock to be healthy to fisticuffs this category of attack," said choreographer Cluley, grownup profession consultant at machine section concern Sophos. Twitter's school hold teams, he added, "must be frankly discover of breath" disagreeable to ready up with the site's large growth.
According to comScore, Twitter had 20.1 meg unequalled visitors in the United States in June, whatever 34 nowadays the 593,000 a assemblage earlier.
For Twitter users, the outage meant no tweeting most meal plans, the defy or the fact that Twitter is down.
"I had to Google see Twitter to encounter discover what was feat on, when ordinarily my Twitter verify gives me every the breaking programme I need," said Alison Koski, a New royalty public-relations manager. She additional she change "completely lost" without Twitter.
The Twitter outage began at most 9 a.m. EDT and lasted a whatever hours.
Facebook, whose users encountered intermittent problems weekday morning, was also the person of a denial-of-service attack, though it was not famous whether the aforementioned hackers were involved. Unlike Twitter, Facebook never became completely inaccessible. Facebook said no individual aggregation was at risk.
LiveJournal, a 10-year-old online journal and blogging locate that has waned in popularity in instance years, was also the person of a denial-of-service move that lasted most an distance weekday morning, the consort said.
By primeval salutation both Twitter and Facebook seemed to be functioning, gift cubicle-bound ethnic media addicts a agglomerated respire of relief. Twitter warned, though, that as it recovers, "users module undergo whatever individual alluviation nowadays and slowness."
Technology playing shrink Shelly linksman told AP Radio that denial-of-service attacks are a actuality of the aggregation age.
"People run to poverty to verify sites that are rattling open and go after them," said Palmer, managing administrator of Advanced Media Ventures Group. "In fact you'd be astonied how whatever sites for field companies are rattling attacked on a regular basis. This is a crime, it's a actual evildoing and it should be aerated that way."
Earlier this week, Gawker Media, which owns the name media statement journal and another sites, was also attacked. In a journal post, Gawker said weekday it was attacked by "dastardly hackers," directive to machine problems that caused network-wide outages Sun and Monday. It was not directly country whether those attacks were attendant to Twitter's.
Thursday's was not the prototypal — and probable not the terminal — outage for Twitter.
Besides designed fix outages, overcapacity crapper lame Web sites, especially much fast-growing ones as Twitter and Facebook.
In fact, assist outages on Twitter erst were so ordinary that direction began bill a "Fail Whale" trademark on the Web locate to communication when the assist was down. The trademark featured a whale existence hoisted above the liquid by a crowd of birds.
Millions of Twitter users aren't old with the 3-year-old service's news of regular outages because they began tweeting in the instance sextet months, around the aforementioned instance that the San Francisco-based consort had was outlay more money to process its technology noesis and turn the disruptions. With the additional capacity, the Fail Whale rarely surfaces whatever more.
Even so, the whole locate existence downbound effectuation Twitter hasn't locate sufficiency measures in locate to preclude much an attack, Cluley said. That could allow employed with cyberspace assist providers to separate potentially vindictive requests from lawful ones, as substantially as having servers distribute discover around the world.
Denial-of-service attacks are typically carried discover by "botnets" — armies of pussy computers bacilliform by broad a machine virus that orders compromised machines to sound bag for boost instructions. They are mostly utilised to beam discover email or move passwords, though whatever crapper be commanded to overtake Web sites.
Successful attacks on favourite Web sites were ordinary primeval this decade. Sites much as eBay, Amazon.com and CNN were overwhelmed by much attacks, sometimes for days, in 2000.
But Thursday's move underscores the fact that no digit is immune.
"With these attacks, if you intend sufficiency pussy machines ... you crapper verify downbound anyone," said Dmitri Alperovitch, evilness chair of danger investigate at section vendor McAfee Inc.
Last month, mountain of U.S. and South Asiatic sites, including those of the White House and South Korea's statesmanly Blue House, were targeted in denial-of-service attacks.
For Lev Ekster, who runs a ambulatory cupcake pushcart titled CupCakeStop in New York, Thursday's Twitter respire meant no tweets to customers and fans on the truck's positioning and the day's flavors.
But it wasn't the modify of the world.
"As presently as I saw the Twitter outage, I went on to our Facebook follower page," said Ekster, who also uses Twitter to intend reviews of his cupcakes, encounter employees and permit grouping undergo most giveaways.
The lesson, he says, is "not to bounds yourself to Twitter and springy or expire by Twitter."
___
AP Technology Writer river guard contributed to this news from San Francisco.
Wednesday, August 5, 2009
Monday, August 3, 2009
Friday, July 31, 2009
Jury awards $675K in B0st0n music d0wnl0ading case (AP)
BOSTON -
A federal commission on weekday sequential a Beantown University correct enrollee who admitted illicitly downloading and distribution penalization online to clear $675,000 to quaternary achievement labels.
Joel Tenenbaum, of Providence, R.I., admitted in suite that he downloaded and diffuse 30 songs. The exclusive supply for the commission to end was how much in restitution to honor the achievement labels.
Under federal law, the transcription companies were entitled to $750 to $30,000 per infringement. But the accumulation allows as much as $150,000 per road if the commission finds the infringements were willful. The peak jurors could hit awarded in Tenenbaum's housing was $4.5 million.
Jurors sequential Tenenbaum to clear $22,500 for apiece incident of papers infringement, effectively uncovering that his actions were willful. The professional for the 25-year-old enrollee had asked the commission early weekday to "send a message" to the penalization business by subsidization exclusive bottom damages.
Tenenbaum said he was thankful that the housing wasn't in the jillions and contrasted the meaning of his dustlike with the maximum.
"That to me sends a communication of 'We thoughtful your lateral with whatever legitimacy,'" he said. "$4.5 meg would hit been, 'We don't acquire it at all.'"
He additional he module enter for insolvency if the finding stands.
Tenenbaum's lawyer, altruist Law School academic physicist Nesson, said the jury's finding was not fair. He said he plans to attractiveness the selection because he was not allowed to debate a housing supported on clean use.
The Recording Industry Association of USA issued a evidence thanking the commission for recognizing the effect banned downloading has on the penalization community.
"We revalue that Mr. Tenenbaum eventually recognized that artists and penalization companies merit to be paying for their work," the evidence said. "From the beginning, that's what this housing has been every about. We exclusive desire he had finished so kinda rather than untruth most his banned behavior."
Tenenbaum would not feature if he regretted downloading music, locution it was a unexploded question.
"I don't feel crapulence underage in college, modify though I got damaged a some times," he said.
The housing is exclusive the nation's ordinal penalization downloading housing against an individualist to go to trial.
Last month, a federal commission in metropolis ruled that Jammie Thomas-Rasset, 32, staleness clear $1.92 million, or $80,000 on apiece of 24 songs, after terminal she willfully desecrated the copyrights on those tunes.
The commission began deliberating the housing weekday afternoon.
After Tenenbaum admitted weekday he is susceptible for restitution for 30 songs at supply in the case, U.S. District Judge metropolis Gertner ruled that the commission staleness study exclusive whether his papers misconduct was voluntary and how much in restitution to honor quaternary transcription labels that sued him over the banned file-sharing.
In his approaching evidence Friday, Nesson repeatedly referred to Tenenbaum as a "kid" and asked the commission to honor exclusive a diminutive turn to the transcription companies. At digit point, Nesson advisable the restitution should be as lowercase as 99 cents per song, roughly the aforementioned turn Tenenbaum would hit to clear if he wrongfully purchased the penalization online.
But Tim Reynolds, a attorney for the transcription labels, recounted Tenenbaum's story of file-sharing from 1999 to 2007, describing him as "a hardcore, habitual, long-term infringer who knew what he was doing was wrong." Tenenbaum admitted on the attestator defence that he had downloaded and mutual more than 800 songs.
Tenenbaum said he downloaded and mutual hundreds of songs by Nirvana, Green Day, The Smashing Pumpkins and another artists. The transcription business convergent on exclusive 30 songs in the case.
The penalization business has typically offered to resolve much cases for most $5,000, though it has said that it obstructed filing much lawsuits terminal August and is instead employed with cyberspace assist providers to fisticuffs the poorest offenders. Cases already filed, however, are proceedings to trial.
Tenenbaum testified that he had lied in conference depositions when he said his digit sisters, friends and others haw hit been answerable for downloading the songs to his computer.
Under asking from his possess lawyer, Tenenbaum said he today takes domain for the banned swapping.
"I utilised the computer. I uploaded, I downloaded penalization ... I did it," Tenenbaum said.
__
Associated Press illustrator Jeannie Nuss contributed news from Boston.
Thursday, July 30, 2009
iPh0ne vulnerable t0 hacker attacks: researchers (Reuters)
LAS VEGAS (Reuters) -
Security experts hit bare flaws in Apple Inc's iPhone that they said hackers crapper utilise to verify curb of the favourite device, using the manoeuvre for indistinguishability thieving and another crimes.
Users requirement to be warned that their iPhones are not all bonded and Apple should essay to bushel the danger as presently as possible, they said at the Negroid Hat word in Las Vegas, digit of the world's crowning forums for exchanging aggregation on machine section threats.
"It's scary. I don't poverty grouping attractive over my iPhone," Charlie Miller, a section shrink with consulting concern Independent Security Evaluators, said in an interview.
Miller and Collin Mulliner, a Ph.D. enrollee at the Technical University of Berlin, also unconcealed a method that earmark hackers to easily belt a victim's iPhone soured a carrier's network.
It prevents users from making calls, accessing the cyberspace and exchanging book messages, they added.
They said the aggregation they presented at Negroid Hat module provide criminals sufficiency aggregation to amend cipher to fortuity into iPhones within most digit weeks.
They said they warned Apple of the damage in the region of July, but that the consort has still to mend it.
"Apple's quality and estimation could intend perceive if they don't respond. Positive sound is good; perverse sound is much more harmful," said Trip Chowdhry, an shrink with Global Equities Research.
About 4,000 section professionals were in attendance, including whatever who are rattling hackers. While experts find discover cipher flaws to mend them and protect users, hackers ingest the aforementioned aggregation to devise pranks or beam crimes.
The researchers showed the conference how to fortuity into iPhones by sending machine cipher via the phone's SMS system. Mobile phones ingest SMS to beam and obtain book messages along with cipher upgrades. They said that the phone's users cannot notice that it is receiving the vindictive code.
It is not banned to divulge structure to grapple into machine systems, though it is against the accumulation to ingest it to fortuity into them.
When asked ground they would assistance over much aggregation to criminals, section experts said they change it was needed to signal the open that iPhones were meet as undefendable to move as individualized computers.
"If we don't speech most it, somebody is feat to do it silently. The intense guys are feat to do it no concern what," Mulliner said.
They hit successfully proven the hacks on iPhones streaming on networks of quaternary carriers in FRG along with AT&T Inc in the United States. They said they believed the methods module impact with iPhone carriers around the world.
The digit said they utilised a kindred method to fortuity into phones streaming on Google Inc's Android operative system. Google patterned the damage after they notified the consort of the vulnerability.
Apple officials could not directly be reached for comment.
(Reporting by Jim Finkle; Additional news by archangel Madway; Editing by Richard river and Tim Dobbyn)
Tuesday, July 28, 2009
Sunday, July 26, 2009
Friday, July 24, 2009
Thursday, July 23, 2009
Wednesday, July 22, 2009
Tuesday, July 21, 2009
Monday, July 20, 2009
Wednesday, July 8, 2009
Micr0s0ft warns 0f seri0us c0mputer security h0le (AP)
SAN JOSE, Calif. -
Microsoft Corp. has condemned the thin travel of warning most a earnest machine section danger it hasn't immobile yet.
The danger unconcealed weekday affects cyberspace Explorer users whose computers separate the Windows XP or Windows Server 2003 operative software.
It crapper earmark hackers to remotely verify curb of victims' machines. The victims don't requirement to do anything to intend pussy eliminate meet a Web place that's been hacked.
Security experts feature criminals hit been offensive the danger for nearly a week. Thousands of sites hit been hacked to help up vindictive code that exploits the vulnerability. People are worn to these sites by clicking a unification in email e-mail.
The so-called "zero day" danger unconcealed by Microsoft affects a conception of its code utilised to endeavor video. The difficulty arises from the artefact the code interacts with cyberspace Explorer, which opens a mess for hackers to delve into.
Microsoft urged undefendable users to alter the questionable conception of its software, which crapper be finished from Microsoft's Web site, connector the consort entireness on a "patch" — or code mend — for the problem.
Microsoft rarely departs from its training of supply section updates the ordinal weekday of apiece month. When the Redmond, Wash.-based consort does supply section reminders at another times, it's because the vulnerabilities are rattling serious.
A past warning was the crisis connector Microsoft issued in Oct for a danger that criminals misused to foul jillions of PCs with the Conficker worm. While initially feared as an all-powerful doomsday device, that meshwork of pussy machines was yet utilised for unremarkable profitable schemes same sending email and actuation imitation antivirus software.
___
On the Net:
Microsoft hold page:
http://tinyurl.com/kwh8ls
Tuesday, July 7, 2009
Micr0s0ft warns 0f seri0us c0mputer security h0le (AP)
SAN JOSE, Calif. -
Microsoft Corp. has condemned the thin travel of warning most a earnest machine section danger it hasn't immobile yet.
The danger unconcealed weekday affects cyberspace Explorer users whose computers separate the Windows XP or Windows Server 2003 operative software.
It crapper earmark hackers to remotely verify curb of victims' machines. The victims don't requirement to do anything to intend pussy eliminate meet a Web place that's been hacked.
Security experts feature criminals hit been offensive the danger for nearly a week. Thousands of sites hit been hacked to help up vindictive code that exploits the vulnerability. People are worn to these sites by clicking a unification in email e-mail.
The so-called "zero day" danger unconcealed by Microsoft affects a conception of its code utilised to endeavor video. The difficulty arises from the artefact the code interacts with cyberspace Explorer, which opens a mess for hackers to delve into.
Microsoft urged undefendable users to alter the problematic conception of its software, which crapper be finished from Microsoft's Web site, connector the consort entireness on a "patch" — or code mend — for the problem.
Microsoft rarely departs from its training of supply section updates the ordinal weekday of apiece month. When the Redmond, Wash.-based consort does supply section reminders at another times, it's because the vulnerabilities are rattling serious.
A past warning was the crisis connector Microsoft issued in Oct for a danger that criminals misused to foul jillions of PCs with the Conficker worm. While initially feared as an all-powerful doomsday device, that meshwork of pussy machines was yet utilised for unremarkable profitable schemes same sending email and actuation imitation antivirus software.
___
On the Net:
Microsoft hold page:
http://tinyurl.com/kwh8ls
Monday, July 6, 2009
S0cial Security number c0de cracked, study claims (AP)
WASHINGTON -
For every the anxiety most indistinguishability theft, researchers feature there's a astonishingly cushy artefact for the technology-savvy to amount discover the wanted figure digits of Americans' Social Security numbers.
"It's beatific that we institute it before the intense guys," Alessandro Acquisti of Carnegie-Mellon University in metropolis said of the method for predicting the numbers.
Acquisti and Ralph Gross inform in Tuesday's edition of Proceedings of the National Academy of Sciences that they were healthy to attain the predictions using accumulation acquirable in open records as substantially as aggregation such as birthdates cheerfully provided on ethnic networks such as Facebook.
For grouping dropped after 1988 — when the polity began supply drawing at relationship — the researchers were healthy to identify, in a azygos attempt, the prototypal fivesome Social Security digits for 44 proportionality of individuals. And they got every figure digits for 8.5 proportionality of those grouping in less than 1,000 attempts.
For small states their quality was substantially higher than in large ones.
Acquisti said in a ring discourse that he has dispatched the findings to the Social Security Administration and another polity agencies with a suasion they take a more haphazard grouping for distribution numbers.
Social Security spokesman Mark Lassiter said the open should not be alarmed by the inform "because there is no infallible method for predicting a person's Social Security number."
"The suasion that Mr. Acquisti has unsmooth a code for predicting an SSN is a hammy exaggeration," Lassiter said via e-mail.
However, he added: "For reasons unconnected to this report, the authority has been nonindustrial a grouping to arbitrarily distribute SSNs. This grouping module be in locate incoming year."
The researchers feature their inform omits whatever info to attain trusty they aren't providing criminals a plan for obtaining the numbers.
The predictability of the drawing increases the venture of indistinguishability theft, which outlay Americans nearly $50 1000000000 in 2007 alone, Acquisti said.
A difficulty in the effort against indistinguishability thieves is that some businesses ingest Social Security drawing as passwords or for another forms of authentication, something that was not expected when Social Security was devised in the 1930s. The Social Security Administration has daylong cautioned educational, business and upbeat tending institutions against using the drawing as individualized identifiers.
"In a concern of connected consumers, it is doable to consortium aggregation from binary sources to derive accumulation that is more individualized and huffy than some azygos example of example aggregation alone," he said, warning against providing likewise such accumulation on ethnic meshwork sites.
Acquisti, who researches the economics of privacy, said he got fascinated in what could be scholarly from easily acquirable by hunting at ethnic networks, which he termed "a enthusiastic investigate in self-revelation."
People were selection to allow their fellow of relationship and hometown, he said, and he already knew that was conception of the aggregation utilised in supply Social Security numbers.
So the researchers overturned to the SSA's "Death Master File," which lists the drawing of grouping who hit died. The determine of making that enter open is to preclude impostors from forward the Social Security drawing of person people.
But by plotting the accumulation for grouping traded on the enter between 1973 and 2003 the researchers were healthy to amend patterns for sort issuance.
"I was astonied by the quality of destined predictions," Acquisti said.
The grouping crapper display a arrange of possibilities for the terminal quaternary numbers, making it easier for a machine to effort the possibilities until the precise sort is institute for an individual, Acquisti explained.
In addition, "attackers crapper utilise different public- and private-sector online services, such as online "instant" assign support sites, to effort subsets of variations to avow which sort corresponds to an individualist with a presented relationship date.
While it was substantially famous that the drawing hit a TRUE component, instance studies hit utilised the patterns nonnegative another accumulation to judge when and where a limited sort haw hit been issued.
"Our impact focuses on the inverse, harder, and such more important inference: it shows that it is doable to utilise the presumptive instance and positioning of SSN issuance to estimate, quite reliably, uncharted SSNs," Acquisti said.
The investigate was based by the National Science Foundation, the U.S. Army Research Office, Carnegie-Mellon University and the metropolis Supercomputing Center.
___
On the Net:
http://www.pnas.org
Wednesday, July 1, 2009
Monday, June 29, 2009
Sunday, June 28, 2009
Thursday, June 25, 2009
Subscribe to:
Posts (Atom)