Russian Cyber Attack on Georgia, Government Websites Down or Replaced With Fakes

Russia has been accused of attacking Georgian government websites in a cyber war to accompany their military bombardment. In a statement released using a replacement website built on Google's blog service, the Georgian Ministry of Foreign Affairs has said: "A cyber warfare campaign by Russia is seriously disrupting many Georgian websites, including that of the Ministry of Foreign Affairs." more»

Day 30: Kaminsky DNS Bug Disclosure

In a highly anticipated presentation, Internet security researcher Dan Kaminsky today gave details of the much talked about Domain Name System (DNS) vulnerability issue which has been intensely covered since it was publicly announced a month ago on Jul 8th. Although original plans entailed keeping the bug details undisclosed for 30 days in order to allow for necessary security patches to be implemented around the world, details of the bug were eventually leaked-and-confirmed 13 days after its public announcement. Even so, just hours ago in jam-packed ballroom during the Black Hat conference, Kaminsky delivered his 100-plus-slide presentation detailing the DNS flaw that, if exploited, could potentially "destroy the Web". more»

ICANN Highlights DNS Vulnerability, Releases Domain Testing Tool

In response to the DNS vulnerability issue, the Internet Corporation for Assigned Names and Numbers (ICANN) has announced the release of an FAQ and a web based domain testing tool. From ICANN's announcement: "Due to the distributed nature of the DNS, no one organization can implement a fix for this vulnerability. It requires the cooperation of all name server operators and DNS software vendors. However, ICANN sees an important goal in spreading awareness of the need to update Internet infrastructure to cope with the threat. The organization has been undertaking significant outreach efforts to top-level domain operators to advise them on the issue." more»

Lawrence Lessig's Reaction to McCain's Technology Plan

In reaction to U.S. republican presidential candidate John McCain's release of his technology policy statement on August 14, Lawrence Lessig has released a video presentation criticizing the tech plan for lack of change to important issues such as broadband penetration declines in the country. Early during the video presentation, Lessig has this to say: "...the single most important fact about internet's development in last decade has been the extraordinary decline United States has faced with respect to our competitive partners. We started the Bush administration at no. 5, we will end at no. 22. And the question anybody should be asking about internet policy here, is why we did so poorly and what change there might be to reverse that decline..." more»

Daily Search Engine Usage Reaching Email Usage

Use of search engines on a daily bases has been steadily rising from about one-third in 2002 to current rate of just under 50% according to a recent report by Pew Internet & American Life Project. With this increase, the search engine use will soon be reaching that of email which is currently 60% of internet users. The study also points out that these "new figures propel search further out of the pack, well ahead of other popular internet activities, such as checking the news, which 39% of internet users do on a typical day, or checking the weather, which 30% do on a typical day." more»

UK Government Wants to Log Every Call, Text and Email

Britain's local councils, health authorities and hundreds of other public bodies may soon have the ability to access details of all personal text, emails and internet usage under UK's Home Office proposals published yesterday. According to a report from the Guardian, "ministers want to make it mandatory for telephone and internet companies to keep details of all personal internet traffic for at least 12 months so it can be accessed for investigations into crime or other threats to public safety." The Home Office says keeping communications data is critical in order to fight against terrorism. more»

John McCain Unveils His Technology Policy Statement

U.S. republican presidential candidate John McCain has unveiled his technology policy statement. The statement includes candidate's positions on major tech issues such as Net neutrality, patent protection and piracy, broadband availability, and privacy and particularly focuses on increased innovation, intellectual property protection, and preserving technology through market forces. more»

Blocking or Metering Broadband Access is a False Choice, Says New Report

n a report released today by the Free Press, Derek Turner, Research Director argues that, in light of recent FCC ruling against Comcast, it is a "false choice" to believe that "because application blocking is out of bounds, providers now will be forced to use some type of 'metering' to control network congestion." In other words, if ISPs are not allowed to block applications, then usage-based pricing is NOT their only other viable option, asserts Turner. more»

One of China's Largest ISPs Under DNS Cache Poisoning Attack

One of China's largest ISPs has recently fallen victim to the DNS vulnerability. The security company Websense has reported that the DNS cache on the default DNS server used by the China's Netcom customers has been poisoned. The incident was first discovered on Tuesday, Aug 19th, by Websense's Beijing lab. Webssense researchers say they have seen other DNS vulnerability attacks however decided to publicize this particular case because of its uniqueness. According to reports, hackers have only exploited one of Netcom's DNS servers in China. When China's Netcom customers mistype and enter an invalid domain name, the poisoned DNS server directs the visitor's browser to a page that contains malicious code. more»

Secret Arial Balloon Used During Defcon Finds 1/3 of Wireless Networks Unsecured

In the spirit of cyber security and the popular Defcon conference in Las Vegas, a group was successful in secretly launching a specially rented balloon used for real-estate arial photography, to scan the area for unsecured wireless networks. According to a report by Robert McMillan of IDG, the balloon, called "warballoon" scanned the Las Vegas strip and found that a third of about 370 networks were unencrypted. From the balloon's 15 story height, the group was able to survey about a 7 1/2 mile radius. Defcon director Jeff Moss has confirmed the report and a talk on warballooning adventures is scheduled today. more»

Criminals Breach Online Booking System of Best Western Hotel Chain, 8 Million Customer Data Stolen

An exclusive report from Scotland's Sunday Herald newspaper says that an international criminal gang has managed to steal the identities of an estimated eight million guests of the Best Western hotel chain in a hacking raid that could ultimately net billions of dollars in illegal funds. According to the report, late on Thursday night, a previously unknown Indian hacker successfully breached the IT defenses of the Best Western Hotel group's online booking system and sold details of how to access it through an underground network operated by the Russian mafia. It is a move that has been dubbed the greatest cyber-heist in world history. The attack scooped up the personal details of every single customer that has booked into one of Best Western's 1312 continental hotels since 2007. more»

Internet Companies in Negotiations for Agreement on Code of Conduct in China

Google, Microsoft and Yahoo, in negotiations with other Internet companies and human rights organizations, have reached an agreement on a voluntary code of conduct for activities in China and other countries that censor the Internet. The participants are reviewing the agreement for final approval. more»

U.S. Military to Spend $4.4M on Network Monitoring Upgrades in Wake of Sophisticated Cyber Attacks

BBN Technologies, an advanced technology solutions firm, has been awarded $4.4 million in funding from the Defense Advanced Research Projects Agency (DARPA) for a Scalable Network Monitoring program. "Scalable networking monitoring has become necessary as cyber attacks have grown more subtle and sophisticated," says BBN's announcement. "New technologies and applications provide new attack routes and have made traditional signature-based and anomaly detection-based defensive measures inadequate in both speed and sensitivity. To be effective in today's networks, detection algorithms must operate quickly, efficiently, and effectively in large, content-rich environments. To meet this challenge, the BBN team will develop a complete solution that is intrinsically scalable, designed for ultra high-speed deployment, and produces events that can be correlated with other network events to provide true positive alerts." more»

Google Further Expanding the Undersea Communications Cable System

Following last year's report on the Unity trans-Pacific submarine cable project, research company, TeleGeography reports today that "Google is working with a consortium of carriers planning to build an intra-Asian submarine cable system. The new cable, dubbed the Southeast Asia Japan Cable (SJC), would link Unity's landing station in Japan to Guam, Hong Kong, the Philippines, Thailand and Singapore." Report further indicates that the work is still in the planning phase. 'Given the current flurry of undersea cables under construction, the SJC cable will probably not be ready for service until 2011 at the earliest,' said TeleGeography analyst Alan Mauldin. more»

P4P Aims to Solve Bandwidth Challenges

Two professors from the University of Washington and Yale University, presenting at a conference in Seattle today, describe a new and faster data transfer technology across the Internet. Professors Arvind Krishnamurthy and Richard Yang believe their technology offers a better solution to current challenges facing broadband providers. Their algorithm, called P4P or "local file-sharing," finds the shortest path across the Internet by tracking users' locations -- improving both, download speeds by about 20% as well as bandwidth requirements. more»