When scammers get inside of the networks of financial institutions, they sometimes stage "cashouts" where they recruit confederates around the world to all hit ATMs at the same time with cards tied to hacked accounts and withdraw the maximum the ATMs will allow; but the wilier criminals first disable the anti-fraud and withdrawal maximum features in the banks' systems, enabling confederates to drain ATMs of all the cash they contain. This is called an "unlimited cashout."
Read the rest
A federal lawsuit brought by voting security activists against the State of Georgia has revealed breathtaking defects in the state's notoriously terrible voting machines -- and, coincidentally, the machines in question were wiped and repeatedly degaussed by the state before they could be forensically examined as evidence of their unsuitability for continued use.
Read the rest
Have you tried turning it off and on again?
The FBI sent out an urgent bulletin advising anyone with a home or small office internet router to immediately turn it off and then turn it on again as a way to help stop the spread of a malware outbreak with origins in Russia. Read the rest
A recently concluded cybersecurity review conducted by the Trump White House and Department of Homeland Security finds most government agencies remain shockingly insecure, despite Trump's campaign promises for super great cybersecurity unlike the very bad hacker criminal Hillary Clinton who bleached emails and acid-washed her network devices, and should be in jail. Read the rest
According to The Hong Kong Free Press, Apple is set to hand over the keys to the the accounts of iCloud users in China to a company owned by the surveillance and censorship-happy Chinese government.
Guizhou-Cloud Big Data (GCBD) will take over the operation of Apple's Chinese data center at the end of February, making GCBD responsible for all legal and financial transactions between the Apple and China's iCloud users. Once GCBD is running the show, Apple will be responsible for investing one billion USD to build a new server farm in Guiyang and to provide technical support in the interest of preserving data security.
Apple's doesn't like telling folks what iCloud user data they're able to read. The information could be limited to the size of uploaded files and where those files were uploaded, or as comprehensive as being able to browse through the photos taken with an iPhone. That China's communist government, which is big on watching the digital doings of its citizens, censorship and political activism could will soon have access to the iCloud account information of every iPhone, iPad or Mac user in China pretty troubling.
This isn't the first time that Apple has bowed to pressure from the Chinese government, either. At the ass end of 2017, they happily removed close to 700 VPN apps from the Chinese iTunes App Store, making it extremely difficult for iOS users to view uncensored content. So, say good bye to news stories about China and the rest of the world that hasn't been approved by Chinese state censors. Read the rest
U.S. Girl Scouts as young as 5 years old will soon be able to earn their first-ever cybersecurity badges. 18 of these merit patches will be launched by the Girl Scouts of the USA starting in September, 2018.
Read the rest
Micah Lee and The Intercept put together this video with “tips on how to prepare your phone before you go to a protest and on how to safely communicate with your friends.” Read the rest
'President' Donald Trump is expected to sign an executive order addressing cybersecurity today, Reuters reports in an item that cites "two sources familiar with the situation.” The EO is expected to be Trump's first action to address what he called a top priority of his administration during the Presidential campaign. Read the rest
Of 1700+ known acts of global power-grid sabotages, affecting some 5,000,000 people, 879 were caused by squirrels; between 0 and 1 were caused by Russia, and another 1 was caused by the USA (Stuxnet). Read the rest
Three posts from the Electronic Frontier Foundation dispassionately recount the on-the-record policies of Trump and his advisors on issues that matter to a free, fair and open internet: net neutrality; surveillance, encryption and cybersecurity; free speech and freedom of the press. Read the rest
"Cybersecurity": it's the new "terrorism," a word to conjure with, a source of bottomless no-bid procurements for the military-industrial complex, full employment for snake-oil salesmen. Read the rest
Ted Koppel's new book, Lights Out: A Cyberattack, A Nation Unprepared, Surviving the Aftermath warns of an impending disaster when America's critical infrastructure will be destroyed by cyberattackers, plunging the nation into a literal dark age. Read the rest
“We must stop demonizing these quiet intelligence professionals and start giving them the tools they need.”
A newly released document from the Snowden trove is a five-year "cyber-threat" forecast that stresses the importance of strong civilian use of cyrptography as crucial to protecting private data, especially the industrial secrets sought by foreign spies. Read the rest
In his Sunday Observer column, John Naughton makes an important point that's hammered home by the escape of the NSA/GCHQ Regin cyberweapon into the wild: spies who make war on the Internet can't be trusted with its security. Read the rest
Citizenlab's Ron Diebert lays out the terrible contradiction of putting spy agencies -- who rely on vulnerabilities in the networks used by their adversaries -- in change of cybersecurity, which is securing those same networks for their own citizens. Read the rest