COMPUTERS/INTERNET/SECURITY | WHAT REALLY HAPPENED


COMPUTERS/INTERNET/SECURITY

Aug 24 17:28

As First NAFTA Round Opens in Secrecy, Digital Rights Groups Fear Another TPP

he opening round of a series of negotiations over a proposed revised North American Free Trade Agreement (NAFTA) began this week in Washington, D.C. between trade representatives from the United States, Canada, and Mexico. Already it is clear that the office of the U.S. Trade Representative (USTR) has ignored our specific recommendations (to say nothing of USTR Robert Lighthizer’s personal promises) about making the negotiations more open and transparent. Once again, following the failed model of the Trans-Pacific Partnership (TPP), the USTR will be keeping the negotiating texts secret, and in an actual regression from the TPP will be holding no public stakeholder events alongside the first round. This may or may not set a precedent for future rounds, that will rotate between the three countries every few weeks thereafter, with a scheduled end date of mid-2018.

Aug 24 17:03

Who Will Pay The Ransom When Smart Meters Are Hacked Into?

By Catherine J. Frompovich

Do you recall that a hospital actually paid hackers $17,000 ransom for the release of the hospital’s data? That was the Hollywood Presbyterian Medical Center, which paid using Bitcoin in February 2016. Another hacked company didn’t get off so cheaply! The South Korean web hosting company Nayana paid 397.6 Bitcoin, which was equivalent to almost a million dollars! That’s not all...

Aug 24 16:07

Ex-CIA Agent Launches Campaign To Buy Twitter To Kick Trump Off

Valerie Plame Wilson, a former CIA operations officer, is trying to buy Twitter so she can ban US President Donald Trump from the social media site.

She has launched a campaign to raise money to buy a controlling interest in the social media site in order shut down Trump’s Twitter account.

Aug 24 15:18

Nasty firmware update butchers Samsung smart TVs so bad, they have to be repaired

Owners of Samsung smart TVs say their swish sets are basically unusable after a bungled firmware update.

In fact, the update was so bad, it looks as though it will require people to send or bring their televisions back to base for repair to correct the cockup.

Folks on Samsung UK's support forums report that an update released on August 8 rendered many newer smart sets – such as 50-inch Ultra HD and 49-inch 4K displays – worse that dumb TVs, because dumb TVs actually work.

Aug 24 15:16

DreamHost smashed in DDoS attack: Who's to blame? Take a guess...

So maybe DreamHost is under attack from the alt-right and their supporters, both in the US and overseas? Probably not. Instead the attack looks to have originated on the opposite side of the political spectrum and stems from another DreamHost customer.

On Thursday, DreamHost began hosting a new website called Punished Stormer. This is a reboot of the neo-Nazi-slash-white-supremacist Daily Stormer website that was dropped like a rabid porcupine by the tech world after the death of a protester at the Charlottesville demonstrations.

This makes it likely that the attack is coming from those trying to take the foul neo-Nazi site down, but they are out of luck because DreamHost no longer hosts the Punished Stormer site. Instead it's now hosted by Canadian outfit BuyVM with some DDoS protection.

Aug 24 15:11

Beware of Windows/MacOS/Linux Virus Spreading Through Facebook Messenger

If you came across any Facebook message with a video link sent by anyone, even your friend — just don’t click on it.

Security researchers at Kaspersky Lab have spotted an ongoing cross-platform campaign on Facebook Messenger, where users receive a video link that redirects them to a fake website, luring them to install malicious software.

Although it is still unclear how the malware spreads, researchers believe spammers are using compromised accounts, hijacked browsers, or clickjacking techniques to spread the malicious link.

The attackers make use of social engineering to trick users into clicking the video link, which purports to be from one of their Facebook friends, with the message that reads "< your friend name > Video" followed by a bit.ly link, as shown.

Aug 24 13:58

Google Losing its Market to Yandex in Russia

The Russian IT company Yandex, responsible for introducing its search engine of the same name, and which is often regarded as one of the best alternatives to Google, the world’s most frequently used search engine, is effectively taking the Google's market share in Russia.

It is expected that Yandex will go even further after it introduced a new version of its search engine, which is now based on real artificial intelligence that not only opens the requested sites, but also suggests the desired solution.

Based on the Korolev algorithm, the company’s own creation, the search engine can, while aided by the neural network, compare the meaning of the query and the desired website. Artificial intelligence is tuned to be accurate when searching in Russian realities and expectations.

Webmaster's Commentary: 

Good!

Aug 24 12:27

U.S. SENATE WANTS TO LABEL WIKILEAKS A “NON-STATE HOSTILE INTELLIGENCE SERVICE”

The U.S. Senate is considering a bill that would classify WikiLeaks as a “non-state hostile intelligence service” bundled as part of the 2018 Intelligence Authorization Act. Presumably, that classification would authorize the use of force against WikiLeaks. “It is the sense of Congress that WikiLeaks and the senior leadership of WikiLeaks resemble a non-state hostile intelligence service often abetted by state actors and should be treated as such a service by the United States,” a section of the Act reads.

Aug 24 08:03

Banking trojan-slingers slip past Google Play's malware defences

Security researchers have uncovered an Android banking malware hiding on Google Play using stealthy new tactics.

A game called "Bubble Shooter Wild Life" and an app named "Earn Real Money Gift Cards" in the Google Play Store are actually designed to drop banking malware named BankBot. "The malware only becomes active when the actors decide to drop the real trojan on the victim's device and therefore bypassing Google's internal malware scanner named Bouncer," Han Sahin, co-founder of Securify, told El Reg.

Aug 24 07:54

Kill animals and destroy property before hurting humans, Germany tells future self-driving cars

Germany’s government has answered the car ethics question once and for all: driverless cars should prioritize the protection of human life over the destruction of animals or property.

Aug 24 07:52

Mozilla ponders making telemetry opt-out, 'cos hardly anyone opted in

Browser-maker wants to compile global top 100 sites list, promises to protect privacy

Aug 24 07:49

Airbus issues patch to stop A350 airliner fuel tanks exploding

Airbus has issued an emergency patch to stop its A350 airliners from exploding.

The fix, an update to the aircraft's Master Minimum Equipment List (MMEL), adds a number of items to in-cockpit displays to prohibit affected airliners from flying.

"Recently, an overheat failure mode of the the A350 hydraulic Engine Driven Pump (EDP) has been found. Such EDP failure may cause a fast temperature rise of the hydraulic fluid," said the European Aviation Safety Agency (EASA) in an Emergency Airworthiness Directive.

Aug 24 07:46

A Company Offers $500,000 For Secure Messaging Apps Zero-Day Exploits

Launched in 2015, Zerodium is a Washington, DC-based premium exploit acquisition platform by the infamous French-based company Vupen that buys and sells zero-day exploits to government agencies around the world.

...

Zerodium's payout for other new exploit categories for servers and desktop computers include:

Up to $300,000 for a Windows 10 exploit that requires no user interaction
Up to $150,000 for Apache Web Server
Up to $100,000 for Microsoft Outlook
Up to $80,000 for Mozilla Thunderbird
Up to $80,000 for VMware escapes
Up to $30,000 for USB code execution

Aug 23 16:47

Cloudflare CEO Gives Bizarre Explanation For Banning The Daily Stormer From The Internet

Net Neutrality advocate and Cloudflare CEO Matthew Prince told VICE News he banned The Daily Stormer despite allowing ISIS beheading videos on his network because he's a self-proclaimed "hypocrite" and had an emotional reaction to someone suggesting Cloudflare staff secretly supported the website's far-right views.

Aug 23 16:07

Google Is Secretly Recording You

The technology giant has effectively turned millions of its users’ smartphones into listening devices that can capture intimate conversations – even when they aren’t in the room.

Aug 23 10:33

Phishing phone scam spoofs local number on caller ID

There’s a new phishing scam making its way around Hawaii, and the Hawaii Better Business Bureau worries people may fall for it, simply because of what shows up on the caller ID.

Instead of a mainland or international number showing up, it appears to be a local one.

“What scares us the most about this is that local people see the 808 number and they think it might be someone that they know, so they pick up the phone,” said Greg Dunn, Hawaii Better Business Bureau CEO.

That’s when a recorded message says to press “1” in order to lower the interest rate on your credit cards. Once you do that, you’re transferred to a call center. If you don’t, you’re told your credit rates will increase.

Dunn says the callers aren’t asking for any money. Instead, they’re trying to collect as much personal information as they can about you.

Aug 23 10:18

New Pence emails show archbishop asked him to intercede on behalf of killer Paula Cooper

The state of Indiana has released another batch of Vice President Mike Pence's emails from his personal AOL account during his time as governor — and they show the Catholic archbishop in Indianapolis asked him to intercede in the parole of Paula Cooper, once the youngest death row inmate in the United States.

Webmaster's Commentary: 

I am very troubled by this. On one hand, you have Pence using private email for government business, and on the other AOL willing to release PRIVATE emails.

Aug 23 08:26

HOW GOOGLE IS SECRETLY RECORDING YOU THROUGH YOUR MOBILE, MONITORING MILLIONS OF CONVERSATIONS EVERY DAY AND STORING THE CREEPY AUDIO FILES

DID you know that Google has been recording you without your knowledge?

The technology giant has effectively turned millions of its users' smartphones into listening devices that can capture intimate conversations - even when they aren't in the room.

If you run Android software on your smartphone, Google may have been recording you every day - without you knowing

If you own an Android phone, it's likely that you've used Google's Assistant, which is similar to Apple's Siri.

Google says it only turns on and begins recording when you utter the words "OK Google".

But a Sun investigation has found that the virtual assistant is a little hard of hearing.

In some cases, just saying "OK" in conversation prompted it to switch on your phone and record around 20 seconds of audio.

It regularly switches on the microphone as you go about your day-to-day activities, none the wiser.

Webmaster's Commentary: 

Understanding this, I am about ready to go back to a 2-way radio.

Aug 23 07:01

Banking trojan-slingers slip past Google Play's malware defences

Security researchers have uncovered an Android banking malware hiding on Google Play using stealthy new tactics.

A game called "Bubble Shooter Wild Life" and an app named "Earn Real Money Gift Cards" in the Google Play Store are actually designed to drop banking malware named BankBot. "The malware only becomes active when the actors decide to drop the real trojan on the victim's device and therefore bypassing Google's internal malware scanner named Bouncer," Han Sahin, co-founder of Securify, told El Reg.

Separate research from Zscaler supports Securify's discovery. The apps are able capable of abusing Android's accessibility permissions to download additional programs without the user's knowledge.

Aug 23 06:57

Simple Exploit Allows Attackers to Modify Email Content — Even After It's Sent!

Security researchers are warning of a new, easy-to-exploit email trick that could allow an attacker to turn a seemingly benign email into a malicious one after it has already been delivered to your email inbox.

Dubbed Ropemaker (stands for Remotely Originated Post-delivery Email Manipulation Attacks Keeping Email Risky), the trick was uncovered by the researchers at email and cloud security firm Mimecast.

A successful exploitation of the Ropemaker attack could allow an attacker to remotely modify the content of an email sent by the attacker itself, for example swapping a URL with the malicious one.

This can be done even after the email has already been delivered to the recipient and made it through all the necessary spam and security filters, without requiring direct access to the recipient’s computer or email application, exposing hundreds of millions of desktop email client users to malicious attacks.

Aug 22 14:22

How Google is secretly recording YOU through your mobile, monitoring millions of conversations every day and storing the creepy audio files

DID you know that Google has been recording you without your knowledge? The technology giant has effectively turned millions of its users' smartphones into listening devices that can capture intimate conversations - even when they aren't in the room.

Aug 22 11:56

Markforged announces two 3D printers that produce items as strong as steel

Markforged, a 3D printer manufacturer based in Boston, has just announced two new models — the X3 and the X5. Both of these printers are designed to create carbon fiber-infused objects using a standard filament printing system and both can produce items that can replace or are stronger than steel objects.

Aug 22 10:28

Google Folds, Restores Accounts Of Banned Statistics Professor

Yesterday we reported that in a shocking, and explained move, statistics professor Salil Mehta, adjunct professor at Columbia and Georgetown who teaches probability and data science and whose work has appeared on this website on numerous prior occasions, had been banned by Google on Friday, with his email, blog and other Google-linked accounts wiped clean and no longer accessible.

As we discussed yesterday, it was not clear what Salil did to provoke Google:

On Friday afternoon East Coast Time by surprise, I was completely shut down in all my Google accounts (all of my gmail accounts, blog, all of my university pages that were on google sites, etc.) for no reason and no warning. A number of us were stunned and unsure, but clearly we know at this point it wasn’t an accident.

That changed yesterday, because after our article detailing Salil's plight went viral, and was read 300,000 times, Google responded and as of this morning, has restored all of Salil Metha's accounts.

Webmaster's Commentary: 

The censoring algorithms Google with which it "punishes" all those who do not tow its party line, have come back to bite it... in a very sensitive portion of the human anatomy.

Congrats to this guy getting his on line life back; but this never should have happened in the first place.

Aug 22 10:07

Fappening 2017: More Celebrity Nude Photos Hacked and Leaked Online

It seems like celebrities have not taken their security seriously, which once again resulted in the leaking of nude and personal photographs of more a-listed celebrities.

...

The latest release of celebs private photos seems to have come after an unidentified hacker or group of hackers has gained access to celebs' Apple iCloud accounts and stolen private iPhone photos and videos.

Aug 22 07:56

Online hate crimes will be taken just as seriously as offline offenses in England, Wales

The internet has revolutionized the way humans interact with one another, adding another facet to communication that rivals face-to-face interaction for primacy in modern life. But it isn’t all informative reading, pleasant banter and happy reunions with old friends. Social media and other websites have also provided new avenues for the expression of hate.

Aug 22 07:38

TSA FACIAL BIOMETRIC BODY SCANNERS AND GOVERNMENT WATCHLISTS BEING USED IN TRAIN STATIONS

The TSA is winning the war on Americans minds as commuters are being tricked into giving away their rights without a fight. The above video warns that facial recognition body scanners are coming to a train station near you…

Aug 21 10:53

One Statistics Professor Was Just Banned By Google: Here Is His Story

On Friday afternoon East Coast Time by surprise, I was completely shut down in all my Google accounts (all of my gmail accounts, blog, all of my university pages that were on google sites, etc.) for no reason and no warning. A number of us were stunned and unsure, but clearly we know at this point it wasn’t an accident. Here are some examples commented from best-selling author Nassim Taleb, and they have been re-tweeted by government officials, and the NYT and WSJ journalists.

Webmaster's Commentary: 

Welcome to the very dark side of Google witch hunts on steroids, leaving massive, innocent cybercasualties in its wake.

Aug 21 10:17

Police: Israeli Hacker Gang Responsible for 2 Million Attacks

The two “specialized” in distributed denial of service (DDoS) attacks, in which hackers use networks to overload and overwhelm online sites, basically inundating them with requests for connections, as a result overloading and freezing them. Investigators said that the two were responsible for no fewer than 2 million such attacks, costing their victims — corporations and government sites around the world — millions of dollars.

Aug 21 09:41

Micro-Blogging App Zappl Will Utilize Steem Blockchain To Pay Users For Posts

Micro-blogging is loved by everyone, but censorship isn’t; up until this point there haven’t been many suitable replacements for the big social giant Twitter that has increasingly begun to censor its users. That’s about to change with the release of Zappl currently planned for later this month...

Aug 21 08:21

IT staffers may have compromised sensitive data to foreign intelligence

Federal authorities are investigating whether sensitive data was stolen from congressional offices by several Pakistani-American tech staffers and sold to Pakistani or Russian intelligence, knowledgeable sources say.

What started out 16 months ago as a scandal involving the alleged theft of computer equipment from Congress has turned into a national security investigation involving FBI surveillance of the suspects.

Investigators now suspect that sensitive US government data — possibly including classified information — could have been compromised and may have been sold to hostile foreign governments that could use it to blackmail members of Congress or even put their lives at risk.

Webmaster's Commentary: 

Notice that the number of potential defendants in this investigation is starting to mushroom!!

Drip...drip...drip....

Aug 21 07:31

Bitcoin-accepting sites leave cookie trail that crumbles anonymity

Bitcoin transactions might be anonymous, but on the Internet, its users aren't – and according to research out of Princeton University, linking the two together is trivial on the modern, much-tracked Internet.

In fact, linking a user's cookies to their Bitcoin transactions is so straightforward, it's almost surprising it took this long for a paper like this to be published.

Aug 21 07:30

Foxit PDF Reader is well and truly foxed up, but vendor won't patch

We've got Safe Mode and that's safe enough, vendor tells ~400m users

Aug 21 07:16

Warning: Enigma Hacked; Over $470,000 in Ethereum Stolen So Far

An unknown hacker has so far stolen more than $471,000 worth of Ethereum—one of the most popular and increasingly valuable cryptocurrencies—in yet another Ethereum hack that hit the popular cryptocurrency investment platform, Enigma.

According to an announcement made on their official website an hour ago, an "unknown entity" has managed to hack their website, slack account and email newsletter accounts, and uploaded a fake pre-sale page with a fake ETH address to send money.

The hackers also spammed their fake address in Enigma's newsletter and slack accounts for pre-sale coins, tricking victims to send their cryptocurrencies to hacker's address.

Etherscan, a popular search engine for the Ethereum Blockchain that allows users to look up, confirm and validate transactions easily, has already flagged the address as compromised, but people are still sending ETH to the fake address

Aug 21 06:37

Bank runs in Hong Kong following introduction of facial recognition withdrawals in Macau

Hong Kong’s ATM network has been hit with a surge in withdrawals by customers using China UnionPay bank cards in the wake of facial recognition technology being introduced at cash dispensing machines in Macau. Monetary chiefs in Hong Kong have declined to deny or confirm information obtained by the South China Morning Post that ATMs have seen a “staggering’’ rise in withdrawals since the casino hub introduced the recognition technology in May as part of a bid to stem illegal capital flight from mainland China.

Aug 20 10:18

Wasserman's IT staffers may have compromised sensitive data to foreign intelligence

Federal authorities are investigating whether sensitive data was stolen from congressional offices by several Pakistani-American tech staffers and sold to Pakistani or Russian intelligence, knowledgeable sources say. What started out 16 months ago as a scandal involving the alleged theft of computer equipment from Congress has turned into a national-security investigation involving FBI surveillance of the suspects.

Aug 20 08:02

Donald Trump could soon pardon Wikileaks founder Julian Assange after doing this

Republican congressman Dana Rohrabacher revealed he discussed discuss “what might be necessary to get him out” of asylum, when he met with Mr Assange earlier this week.

And speculation was reignited yesterday when Trump Alert, the Twitter account which tracks the President’s Twitter activity, reported that the President had begun following Mr Assange.

However, the President may have quickly unfollowed the Wikileaks founder, with the account no longer listed as on his followers for both his presidential and personal accounts.

Mr Assange has been holed up inside the embassy for almost exactly five years and has been granted political asylum by Ecuador.

Aug 20 06:41

The Truth Will Not Be Googled

Google has come under scrutiny by free-speech organisations for shutting down neo-Nazi website, Daily Stormer, seemingly too distracted to notice the tech giant has been waging a censorship campaign against news organisations that publish content which conflicts with the narrative of the Washington establishment, along with Facebook and Twitter on the grounds of ‘fake news’.

Aug 20 06:34

IT staffers may have compromised sensitive data to foreign intelligence

Investigators now suspect that sensitive US government data — possibly including classified information — could have been compromised and may have been sold to hostile foreign governments that could use it to blackmail members of Congress or even put their lives at risk.

“This is a massive, massive scandal,” a senior US official familiar with the widening probe told The Post.

Alarm bells went off in April 2016 when computer security officials in the House reported “irregularities” in computer equipment purchasing. An internal investigation revealed the theft of hundreds of thousands of dollars in government property, and evidence pointed to five IT staffers and the Democratic Congress members’ offices that employed them.

Aug 19 18:31

GOOGLE Working with Liberal Groups to Snuff Out Conservative Websites…

Google revealed in a blog post that it is now using machine learning to document "hate crimes and events" in America. They've partnered with liberal groups like ProPublica, BuzzFeed News, and the Southern Poverty Law Center (SPLC) to make information about "hate events" easily accessible to journalists. And now, there are troubling signs that this tool could be used to ferret out writers and websites that run afoul of the progressive orthodoxy.

Aug 19 07:31

What the Announced NSA / Cyber Command Split Means

Cyberwar and cyber intelligence are diverging, as are Cyber Command and the NSA. Here’s what that means for the man who leads both entities, the future of signals intelligence collection, and cyberwarfare.

The move to elevate Cyber Command to a full Unified Combatant Command and split it off from the National Security Agency or NSA shows that cyber intelligence collection and information war are rapidly diverging fields. The future leadership of both entities is now in question, but the Pentagon has set out a conditions-based approach to the breakup. That represents a partial victory for the man who directs both Cyber Command and the NSA.

Aug 19 07:17

What the Announced NSA / Cyber Command Split Means

Cyberwar and cyber intelligence are diverging, as are Cyber Command and the NSA. Here’s what that means for the man who leads both entities, the future of signals intelligence collection, and cyberwarfare.

Aug 19 07:02

Cloudflare CEO calls for a system to regulate hateful internet content

Cloudflare CEO Matthew Prince has called for the implementation of a framework to govern how the internet’s gatekeepers deal with cases like The Daily Stormer. This comes after a number of tech companies have revoked support for the neo-Nazi website for its close association with the violent far-right demonstrations in Charlottesville.

Aug 18 14:42

Purge Begins: Cloudflare Terminates Service to Cody Wilson’s GhostGunner Website

By Activist Post

A day after Cloudflare removed service to the Daily Stormer, it has now terminated service to Cody Wilson’s website GhostGunner.net, Wilson announced on Twitter...

Aug 18 12:24

Inheritance scams

A scammer may contact you out of the blue to tell you that you can claim a large inheritance from a distant relative or wealthy benefactor. You may be contacted by letter, phone call, text message, email or social networking message.

The scammer usually poses as a lawyer, banker or other foreign official, and claims that the deceased left no other beneficiaries.

Sometimes the scammer will say you are legally entitled to claim the inheritance. Alternatively, they might say that an unrelated wealthy person has died without a will, and that you can inherit their fortune through some legal trickery because you share the same last name.

Aug 18 10:55

Breaking: Google removes Gab's Android app from the Google Play Store for "hate speech."

Aug 18 09:04

KIM DOTCOM: Mr. Mueller, the heat is on

Assange tells congressman Russia wasn’t source of Dem emails

Aug 18 08:45

USB connections exposed as 'leaky' and vulnerable

TESTS on USB connections have shown they are highly susceptible to information “leakage”, making them less secure than previously thought.

Aug 18 08:38

Cloudflare CEO admits that removing neo-Nazi site because he's in a 'bad mood' is a slippery slope

Cloudflare CEO Matthew Prince's decision to terminate protection of neo-Nazi website the Daily Stormer because he "woke up in a bad mood" could be dangerous to the future of free speech on the internet, he admitted.

"Literally, I woke up in a bad mood and decided someone shouldn't be allowed on the Internet," Prince wrote in an internal memo to employees obtained by Gizmodo and published on Wednesday. "No one should have that power."

Prince further explained his decision to remove the Daily Stormer in an official blog post after the site claimed that Cloudflare held "secret support" for its beliefs. But he reiterated his view that policing content online is a slippery slope.

Aug 18 08:35

Don't panic, Chicago, but an AWS S3 config blunder exposed 1.8 million voter records

A voting machine supplier for dozens of US states left records on 1.8 million Americans in public view for anyone to download – after misconfiguring its AWS-hosted storage.

ES&S says it was notified by UpGuard researcher Chris Vickery of the vulnerable database that contained personal information it collected from recent elections in Chicago, Illinois. The records included voters' names, addresses, dates of birth, and partial social security numbers. Some of the records also included drivers' licenses and state ID numbers.

"The backup files on the AWS server did not include any ballot information or vote totals and were not in any way connected to Chicago's voting or tabulation systems," ES&S said in a statement on Thursday.

Aug 18 08:26

Android Trojan Now Targets Non-Banking Apps that Require Card Payments

Dubbed Faketoken.q, the new variant of mobile banking trojan is being distributed using bulk SMS messages as their attack vector, prompting users to download an image file that actually downloads the malware.

Once downloaded, the malware installs the necessary modules and the main payload, which hides its shortcut icon and begins monitoring everything—from every calls to launched apps—that happens on the infected Android device.

When calls are made to or received from certain phone numbers on the victim's device, the malware begins to record those conversations and sends the recordings to the attacker's server.

Moreover, Faketoken.q also checks which apps the smartphone owner is using and when detects the launch of an app whose interface it can simulate, the Trojan immediately overlays the app with a fake user interface.

Aug 18 08:22

Two Critical Zero-Day Flaws Disclosed in Foxit PDF Reader

Security researchers have discovered two critical zero-day security vulnerabilities in Foxit Reader software that could allow attackers to execute arbitrary code on a targeted computer, if not configured to open files in the Safe Reading Mode.

Aug 18 08:21

Unpatchable Flaw in Modern Cars Allows Hackers to Disable Safety Features

Initially developed in 1983 and put into production in 1989, the CAN standard manages the majority of the electrical subsystems and control units found in a significant number of modern smart cars.

If exploited, the vulnerability could eventually allow attackers to turn off crucial safety functions of a vehicle, such as airbags, power-steering, parking sensors, and the anti-lock brakes—or almost any computerised component that's connected to the car's CAN bus.

Since the CAN standard is being used in "practically every light-duty vehicle currently in circulation today," the fundamental security flaw affects all modern, internet-connected vehicles, rather than just a particular vendor.

Aug 18 07:48

Government Agents Admit Stealing Silk Road Bitcoins Seized By U.S. Marshals

Two rogue U.S. Secret Service agents, Shaun Bridges and Carl Mark Force, were caught and sentenced to prison for stealing Bitcoin funds that were seized in the Silk Road raid in 2015.

According to reports, Shaun Bridges plead guilty on August 15th for the theft of 1,600 bitcoins in federal custody in addition to funds confiscated after raiding the Darknet marketplace ran by “Dread Pirate Roberts,” now known to be Ross Ulbricht, Silk Road...

Aug 17 18:48

Eye Spy: Facial Recognition Tech Gets Govt Cash Boost Despite Claims It’s Illegal

Britain’s Home Office is ready to invest more in facial recognition technology for police forces despite claims it infringes civil liberties.

The technology, which matches images of people’s faces with a police database, could be in breach of the right to privacy.

Aug 17 18:18

Salon: Russians Didn't Hack the DNC

The July 5th download is thought by some to have been done by DNC data administrator, Seth Rich. The investigators found that on that day 1,976 megabytes of data were downloaded in 87 seconds.

What does that mean? It means that far exceeds an internet capability for a remote hack – much less a transoceanic one.

As Skip Folden told The Nation:

“Based on the data we now have, what we’ve been calling a hack is impossible.”

Aug 17 16:39

Instagram Admits It Banned Lauren Southern For… ‘Fat Shaming’ Hedgehogs?!

Leftist social media giants hate Lauren Southern. Mostly because she’s a meddling conservative with a large following (see Watch Lauren Southern Make a SJW Cry… with WORDS!). Instagram took a shot at Southern by banning her account yesterday morning. They had their reasons. For instance, Lauren violated their terms of service. Her crime? Poking fun at one of her portly hedgehog companions. Someone call Tess Holliday!

Aug 17 15:50

LA Metro Begins Pilot Program for Full Body Scanners Funded by Bill Gates

By Nicholas West

Once again it appears that airports are a test bed for nearly everything that will eventually trickle out into the general public. Whether it’s TSA VIPR teams on trains, or the emergence of biometric ID, the continuous reinforcement of an imminent and pervasive threat has people scrambling to give up their freedom for their ever-elusive security.

Although airport body scanners have been much maligned for their negative health effects from millimeter wave technology, as well as their thoroughly intimate invasion of privacy, it’s not stopping Los Angeles from rolling out a pilot program of the $60,000-per-unit scanners which began on Wednesday...

Aug 17 12:20

Pedophile Hunters Dark Justice Report Online Grooming ‘Epidemic’

Pedophile hunters ‘Dark Justice’ say the number of men targeting children online has reached “epidemic” levels, with predators lurking on Justin Bieber Facebook pages and live video apps to find victims.

Aug 17 12:19

Anonymous & More Tech Companies Knocking White Supremacy Groups Offline

In the wake of the Charlottesville protests, hate groups are being suspended or losing their accounts with major crowdfunding services and other tech companies, while the hacking group Anonymous continues to target their websites.

Aug 17 07:49

LambdaLocker ransomware victim? Now you can decrypt your files for free

As part of the No More Ransom initiative, Avast Antivirus have released a tool that decrypts files locked by LambdaLocker ransomware.

Aug 17 07:35

A PATENT EXISTS TO PROVIDE HOME SURVEILLANCE USING AMI SMART METERS

AMI (Advanced Metering Infrastructure) Smart Meters (AMI SMs) are being forced on to everyone’s home, apartment, condo and businesses in the United States with total disregard for numerous legal aspects, with one specifically-egregious issue experiencing total abandonment or disregard for the U.S. Constitution, plus individuals’ rights under their respective home states’ constitutions.

So, what am I talking about? Privacy and the right to be secure in your home! The Search and Seizure aspects found and shielded in the Fourth Amendment to the U.S. Constitution are not being respected nor enforced by state public utility commissions and utility companies, most of who are harassing customers!

AMI SMs are nothing but “surveillance computers”!

Let me say that again. AMI SMs are nothing short of “surveillance computers”. They are built and intended to

Aug 16 18:58

Oopss! HBO Itself Accidentally Leaked 'Game of Thrones' Season 7 Episode 6

HBO doesn't need hackers to leak its widely watched "Game of Thrones" episodes, as it is sufficient enough to leak them by its own.

In what seems to be a terrible blunder, HBO Spain appeared to have accidentally broadcast the next episode—Episode 6—of Game of Thrones season 7 five days before its official premiere.

And as expected, the GoT episode 6 quickly began circulating online.

Aug 16 18:07

PayPal, accused of facilitating neo-Nazi rally, promises to deny hate groups service

PayPal has vowed to pull its online payment services from sites linked to hate, violence and intolerance in wake of the weekend's tragic events in Charlottesville, Virginia.

The company defended its acceptable use policy following a separate report by the Southern Poverty Law Centre yesterday, which claimed organisers of the deadly rally raised money with PayPal.

Aug 16 17:58

Disgraced US Secret Service agent coughs to second Bitcoin heist

An ex-Secret Service agent who stole Bitcoins from the Silk Road dark web drugs bazaar he was supposed to be investigating has admitted stealing even more sacks of the digital currency.

Shaun Bridges, who is already serving a six-year sentence for nicking Bitcoins from the underground souk, pleaded guilty on Tuesday to stealing a further 1,600 Bitcoin (worth $359,005 at the time and approximately $6.6m today) during a separate investigation.

Aug 16 17:56

10 minutes of silence storms iTunes charts thanks to awful Apple UI

The smash-hit, "A a a a Very Good Song" by New York-based reporter Samir Mezrahi, is in fact a rather clever trick to get around one of the more annoying bugs in the way iTunes syncs up with cars via Bluetooth. Drivers and passengers have found that once an iPhone is paired with and connects to the car's entertainment system, it will play songs automatically, usually the first alphabetical title in the handset's library.

To counter that, Mezrahi created and published an audio file that consisted entirely of ten minutes of silence and then gave it the "A a a a" title so it will automatically become the first song in most libraries. Thus, when someone gets into their car and the phone connects to the dashboard and begins automatically playing music, you get silence and about ten minutes to turn it off or pick whatever track you really want.

Aug 16 17:55

NotPetya ransomware attack cost us $300m – shipping giant Maersk

"In the last week of the quarter we were hit by a cyber-attack, which mainly impacted Maersk Line, APM Terminals and Damco," CEO Soren Skou said in a statement today.

"Business volumes were negatively affected for a couple of weeks in July and as a consequence, our Q3 results will be impacted. We expect that the cyber-attack will impact results negatively by USD 200-300m."

Admittedly Maersk is massive – it's responsible for around 15 per cent of the world's entire shipping network – but that kind of financial damage is close to a record for such an attack. Then again, the company's entire network was down for days, Skou told the Financial Times.

Aug 16 16:37

Champions Of Net Neutrality Ban Far-Right Website The Daily Stormer

Net Neutrality advocates Google, GoDaddy and Cloudflare have banned the far-right website The Daily Stormer from using their services.

Google and GoDaddy dropped the site from their DNS services earlier this week and Cloudflare has dropped them from their DDoS protection services.

Aug 16 12:01

Trump Retweets, Then Deletes, Image Of Train Running Over CNN Logo

US President Donald Trump retweeted the image of a train with the president’s name on it running over the CNN logo, but quickly deleted it after the meme sparked blacklash.

Aug 16 10:13

Massive nationwide #MarchOnGoogle August 19th … join the protest against techno tyranny and ‘Goolag’ dictators

Frustrated with Google’s continued efforts to silence free speech and control the content that shows up on people’s internet searches, protesters from all across the country are planning a multi-locale “March on Google” on August 19 to make their voices heard. The nationwide event will reportedly take place at ground zero, Google’s headquarters in Mountain View, California, as well as in New York City, Washington, D.C., Austin, Texas, Boston, Los Angeles, Pittsburgh, Atlanta, and Kirkland, Washington (near Seattle).

Dubbed as a coordinated effort to challenge Google’s “silencing (of) dissenting voices,” the protest was sparked after the recent firing by Google of James Damore, a company employee who wrote a memo entitled “Google’s Ideological Echo Chamber.” Some news outlets have described the memo as being “anti-diversity,” but in reality, it simply challenges Google’s discriminatory policies that cater to LGBT people, for instance, at the expense of everyone else.

Aug 16 09:57

EXPOSED: Vodafone adds sneaky £1-a-month charge to contracts of a million mobile phone users

Vodafone has added a sneaky £1-a-month charge to more than one million customers' mobile phone contracts, we can reveal.

The new fee — which will net the telecoms giant millions of pounds a year — has been added to every new monthly contract taken out since February.

Vodafone says the service offers customers extra protection against any harmful websites users may visit while surfing the internet.

The so-called 'Secure Net' software is included on monthly contracts and is advertised as a 'free three-month trial' in Vodafone's promotional material.

But customers claim they are not told they have been opted in and will be charged £12 a year when the free trial ends. It is impossible to remove the extra software at the time of purchase and it cannot be cancelled until at least 24 hours later.

Aug 16 09:40

This locator tracks men who send unwanted pictures of their penis

If you send unsolicited and unwelcome pictures of your penis then you may be about to get your comeuppance, so to speak.

There is now a website that is tracking the location of men who send unsolicited dick pics.

The rather aptly titled DickPicLocator, scans data on the unsolicited image to find out the GPS coordinates of where it was taken.

Aug 16 09:17

A Patent Exists To Provide Home Surveillance Using AMI Smart Meters

By Catherine J. Frompovich

AMI (Advanced Metering Infrastructure) Smart Meters (AMI SMs) are being forced on to everyone’s home, apartment, condo and businesses in the United States with total disregard for numerous legal aspects, with one specifically-egregious issue experiencing total abandonment or disregard for the U.S. Constitution, plus individuals’ rights under their respective home states’ constitutions...

Aug 16 08:56

If Google and Facebook are not regulated, their politically-motivated censorship will drive America to open warfare in the streets

The echo chamber of the illogical, irrational and enraged Left — the liberal mob — is magnified by the selective censorship of internet gatekeepers like Google and Facebook, all of which are engaged in the most outrageous distortions and censorship imaginable, deliberately silencing all conservative voices while amplifying left-wing channels and (fake) news sources, no matter how dishonest or hypocritical they are. This is all part of a deliberate scheme to silence open debate and suppress the voices of conservatives, heterosexuals, White people or Christians in order to favor lunatic left-wing culture that’s rooted in delusional thinking, anti-science “biology” and intense racism, bigotry and hatred toward anyone who doesn’t bow down to their totalitarianism cult.

Aug 16 08:49

Red Ice Websites Hacked - Someone Really Hates Us

Aug 16 08:04

Outage outed: Bing dinged, Microsoft portal mortal, DuckDuckGo becomes DuckDuckNo

Microsoft's Bing fell over on Tuesday morning, Pacific Time, causing a ripple effect that crippled other search engines.

Visitors to Bing were hit with HTTP 503 error messages. We note that, while Bing appears to be working again as we write this, it's feeling a little slow. (Reg readers also dropped us tips that status.bing.com and portal.microsoft.com both appear busted, but these aren't websites folks can use.)

The Bing outage prevented DuckDuckGo, the privacy-centric engine that aggregates results from the Microsoft search engine, from returning useful links to queries. Searching for, say, "CMOS," returned zero results.

DuckDuckGo said its problems with both Bing and Yahoo! were slowing its own operations. It should be back to normal by the time you read this.

Aug 16 07:57

Backdoor Found in Popular Server Management Software used by Hundreds of Companies

Recently, cyber crooks managed to infiltrate the update mechanism for a popular server management software package and altered it to include an advanced backdoor, which lasts for at least 17 days until researchers discovered it.

Dubbed ShadowPad, the secret backdoor gave attackers complete control over networks hidden behind legit cryptographically signed software sold by NetSarang—used by hundreds of banks, media firms, energy companies, and pharmaceutical firms, telecommunication providers, transportation and logistics and other industries—for 17 days starting last month.

Important Note — If you are using any of the affected product (listed below), we highly recommend you stop using it until you update them.

Aug 16 07:55

8 More Chrome Extensions Hijacked to Target 4.8 Million Users

According to the latest report published by the researchers at Proofpoint on Monday, the expanded list of compromised Chrome Extensions are as below:

Chrometana (1.1.3)
Infinity New Tab (3.12.3)
CopyFish (2.8.5)
Web Paint (1.2.1)
Social Fixer (20.1.1)

Proofpoint researcher Kafeine also believes Chrome extensions TouchVPN and Betternet VPN were also compromised in the same way at the end of June.

In all the above cases, some unknown attackers first gained access to the developers' Google web accounts by sending out phishing emails with malicious links to steal account credentials.

Once the attackers gained access to the accounts, either they hijacked their respective extensions and then modified them to perform malicious tasks, or they add malicious Javascript code to them in an attempt to hijack traffic and expose users to fake ads and password theft in order to generate revenue.

Aug 16 07:49

If you believe in liberty, you should be using the BRAVE browser (not chrome)… here’s why

As the United States begins to resemble the fictional world created by George Orwell in his famous novel 1984, more and more companies are being forced to find ways to continue developing new technology while simultaneously respecting the privacy rights of their customers. One such company is Brave, a relatively new Internet browser founded by former Mozilla CEO Brendan Eich. According to Brave’s official website, the company “aims to transform the online ad ecosystem with micropayments and a new revenue-sharing solution to give users and publishers a better deal, where fast, safe browsing is the path to a brighter future for the open web.”

Webmaster's Commentary: 

I just installed this, and it works really well!

Aug 16 07:48

CENSORSHIP ALERT: Mozilla planning “kill shot” for entire independent media by blocking all non-approved news in the FireFox browser

In November of 1737, decades before America officially declared its independence from the king of England, a young Benjamin Franklin published an essay in The Pennsylvania Gazette entitled, “On Freedom of Speech and the Press.” In it, Franklin wrote, “Freedom of speech is a principal pillar of a free government; when this support is taken away, the Constitution of a free society is dissolved, and tyranny is erected on its ruins.” Franklin went on to write, “An evil magistrate entrusted with power to punish for words, would be armed with a weapon the most destructive and terrible.”

Aug 15 16:45

Google Cancels Neo-Nazi Website’s Registration Over Terms Of Service Violation

Already dropped by another webhost, white supremacist website Daily Stormer lasted only hours with Google Domains. The bloodshed in Charlottesville brought attention to the neo-Nazi site, which remains online, despite GoDaddy and Google refusing registration.

Aug 15 16:05

Pale Moon: The Web Browser Made For You

So these are the points which defines the capability and major difference of Pale Moon browser from rest. In my experience, if you want a browser with fast speed & efficiency then this browser is the choice for you. Most of its feature will fulfill your daily need. It’s main aim is to provide fast browsing with stability.

But if you want more advanced feature than its better to go for any other modern web browser. But I recommend you to give this Firefox-based browser a try. You will surely become its fan.

Aug 15 13:41

US Government Demands Data On Visitors Of Anti-Trump Website

The US Justice Department has requested information on some 1.3 million visitors of a so-called resistance website used to organize protests against President Donald Trump, in what privacy advocates say is an unconstitutional “fishing expedition” for political dissidents.

Aug 15 12:15

"The Goolag Echopeligo"

Warning: SLL is about to put forth two propositions that are so obvious they’re undoubtedly controversial. Readers offended by the obvious but controversial are advised to stop reading.

Proposition one: If Group A and Group B are competing for the same jobs and standards are lowered for Group B but not Group A, on average the members of Group B will not be as good at the jobs as members of Group A.

Proposition two: Men and women are different.
This, when you wade through James Damore’s excruciatingly diplomatic Google memorandum is the crux of what he said.

SLL can say it but Damore couldn’t; Google fired him for “perpetuating gender stereotypes.”

Aug 15 11:48

Silicon Valley Tightens Its Grip On Free Speech

In a chilling oped published in The New York Times on July 14, Lisa Feldman Barrett, a professor of psychology at Northeastern University, argued that so-called “hate speech” is the same thing as physical violence because it may possibly cause emotionally fragile individuals stress — and should be made illegal.

Thankfully, the First Amendment prohibits the federal government from following such advice, but online companies are taking it upon themselves to stamp-out so-called “hate speech,” strangling free speech and the free exchange of ideas in the process.

A number of troubling actions by internet companies — Google most prominent among them — are making it increasingly clear that some in Silicon Valley have proclaimed themselves defenders of the progressive, politically correct faith, and that those firms will silence any and all heretics who challenge those beliefs.

Aug 15 10:08

Diamond And Silk Talk To Alex Jones About Suing YouTube

Aug 15 09:54

How Just Opening A Malicious PowerPoint File Could Compromise Your PC

A few months back we reported how opening a simple MS Word file could compromise your computer using a critical vulnerability in Microsoft Office.

The Microsoft Office remote code execution vulnerability (CVE-2017-0199) resided in the Windows Object Linking and Embedding (OLE) interface for which a patch was issued in April this year, but threat actors are still abusing the flaw through the different mediums.

Security researchers have spotted a new malware campaign that is leveraging the same exploit, but for the first time, hidden behind a specially crafted PowerPoint (PPSX) Presentation file.

According to the researchers at Trend Micro, who spotted the malware campaign, the targeted attack starts with a convincing spear-phishing email attachment, purportedly from a cable manufacturing provider and mainly targets companies involved in the electronics manufacturing industry.

Aug 15 07:33

Google insiders warn “outright censorship” of the internet is Google’s top priority… and everyone has been intimidated into silence

With liberal censorship running rampant in the mainstream media, in Hollywood, on college campuses and across the Internet, our country needs pro-First Amendment voices now more than ever. Once the freedom of speech is gone, it is only a matter of time before an all-powerful authoritarian state is established and individual liberty in America ceases to exist.

Aug 15 07:00

SEA-US undersea cable system bringing broadband speeds to Hawaii is ready for service

Honolulu-based telecommunications company Hawaiian Telcom (NASDAQ: HCOM) announced that the Southeast Asia-United States (SEA-US) undersea cable system is complete and ready for commercial service. The 9,000-mile submarine fiber-optic cable system covers a route that bypasses congested, earthquake-prone regions, and will link Indonesia, the Philippines, Guam, Hawaii, and California, according to Hawaiian Telcom.

The $250 million undersea fiber cable system will meet increasing demand for internet service. Providing 100-Gbps broadband speeds to Hawaii, the SEA-US cable has a 20-Tbps capacity, and will accommodate greater capacities as technology advances, says Hawaiian Telcom, part-owner and operator of the long-haul submarine network.

Aug 15 05:52

The Elite Move Ahead With Their Agenda, The Chaos Has Just Begun

YouTube is going after all those videos that expose the deep state. Trump warns Venezuela that the US has a military option.

SHARE THIS ARTICLE WITH YOUR SOCIAL MEDIA