Phishers Expand Number of Top Level Domains Abused, Policy Changes Found Effective in Prevention

The new Global Phishing Survey released by the Anti-Phishing Working Group (APWG) this month reveals that phishing gangs are concentrating their efforts within specific top level domains (TLDs), but also that anti-phishing policies and mitigation programs by domain name registrars and registries can have a significant and positive effect. The number of TLDs abused by phishers for their attacks expanded 7 percent from 145 in H2/2007 to 155 in H1/2008. The proportion of Internet-protocol (IP) number-based phishing sites decreased 35 percent in that same period, declining from 18 percent in the second half of 2007 to 13 percent in the first half of 2008. more»

If Obama Gets His Way, All Americans Would Have Broadband Internet Access

Barack Obama's Internet-fueled campaign has transformed the way Americans choose a president. Now, the president-elect's administration plans to change the way Americans -- and government -- use technology. If Obama gets his way, all Americans would have broadband Internet access, whether they live in big cities or remote villages. Online life would be safer, with better defenses against cybercriminals. And there would be greater access to government, with online services to let anyone question members of the president's cabinet or track every dime of the U.S. budget. "I think it's not going to happen in the first 100 days, but I think a lot of this can happen in the first term," Ben Scott, policy director of Free Press, a media reform organization based in Washington, said. more»

Proposal for Signing the DNSSEC Root

The U.S. National Telecommunications and Information Administration (NTIA) is soliciting comments on signing the DNSSEC root. Ignore the caption on the page: this is not about DNSSEC deployment, which is already happening just fine. It's about who gets to sign the root zone. more»

Why DNS is Broken, in Plain English

At ICANN's meeting in Egypt last week, I had the opportunity to try and explain to various non-technical audiences why the Domain Name System (DNS) is vulnerable to attack, and why that is important, without needing a computer science degree to understand it. Here is the summary. more»

Internet Black Boxes to Record Every Email and Website Visit in Britain

Under Government plans to monitor internet traffic, raw data would be collected and stored by the black boxes before being transferred to a giant central database. The vision was outlined at a meeting between officials from the Home Office and Internet Service Providers earlier this week. It is further evidence of the Government's desire to have the capability to vet every telephone call, email and internet visit made in the UK, which has already provoked an outcry. more»

More on 'Researchers Hijack Storm Worm to Track Profits'

Always good for information on the spam economy, Brian Krebs of the Washington Post has just published a truly fascinating article: Researchers Hijack Storm Worm to Track Profits. Bottom line: a one-in-twelve-million conversion rate of spam to sales seems to be enough to keep the spam economy going. The article covers a project by researchers at UC San Diego and UC Berkeley, who managed to infiltrate the Storm Worm bot network and take over a small portion of it. more»

Phishing Registrar Accounts: eNom is First Target

Criminals are now looking to use established domain names, via phishing targeted at domain registrars. This is possibly related to ICANN finally moving to stop the black hat registrars of the world. According to the first report on the matter sent yesterday to Registrar Operations (reg-ops) mailing list, the attacks seem to be run by gang of child pornography spammers. more»

Vint Cerf Short Listed as Obama's Chief Technology Officer, Say Washington Insiders

The proposed Technology Plan of U.S presidential candidate Senator Barack Obama includes a section titled "Bring Government into the 21st Century" which aims at using technology to reform U.S. government and enhancing the exchange of information between the federal government and citizens while ensuring the security of the nation's networks... om Lowry of BusinessWeek reports: "Among the candidates who would be considered for the job, say Washington insiders, are Vint Cerf, Google's (GOOG) "chief internet evangelist," who is often cited as one of the fathers of the Internet; Microsoft (MSFT) chief executive officer Steve Ballmer; Amazon (AMZN) CEO Jeffrey Bezos; and Ed Felten, a prominent professor of computer science and public affairs at Princeton University" more»

Toxic Information

U.S. intelligence officials are increasingly worried that hackers could wreak havoc on the financial system. Read the story here in National Journal. Not that we need it, but here's yet another reason to worry about havoc in financial markets: U.S. intelligence officials increasingly fear that computer hackers could wreck banks and large financial institutions, or send stock markets into one more panicked frenzy, by covertly manipulating data and spreading false information. more»

Aggressive Fake Antispyware Seller an Authorized Domain Registrar

A group known for aggressive distribution of bogus anti-spyware programs through hijacked and malicious websites is found to be also an authorized reseller of domain names. Brian Krebs of Security Fix reports that the gang is using its domain registration privileges to "ease the process of creating new websites used to push their invasive software." Kreb reports: "Klikdomains.com, also known as Vivids Media GMBH, sells Web site names in the .com, .net, .org, .info, .biz, .name, .us, and .in top level domains. Klikdomains is part of Klikvip.com, which has for at least the last three years hired affiliates to trick people into installing its fake antivirus and anti-spyware products... Klik is a reseller of domain registration services offered by India based registrar Directi Internet Solutions." more»

Are You Getting Your News From Spam? My Mother Does

This is a story about my mother and Obama. My mother: "Have you heard about Obama? Really impressive guy." Me: "What about him?" My mother: "x, y and z." Me: "Where did you hear about this?" My mother: "I read email too, you are not the only one who is into technology." Luckily, my mother bases her opinion on more than just spam messages... more»

Estonian Cyber Security Strategy Document: Translated and Public

The Estonians have a public version of their cyber security strategy translated into English (currently available offline only). The concept of a national strategy for cyber security is one which I am particularly fond of... The following is the Summary section from the document which might be of interest... more»

Internet Vigilantism

Atrivo (aka Intercage), a Concord, California-based Internet hosting service, disappeared from the Internet for around two days recently. They didn't go bankrupt or suffer a physical catastrophe. Their providers simply shut them down by refusing their traffic. This might very well be the first time in history that the Internet community, a cooperative association of networks with no governing body, has collectively put someone out of business, if only briefly. more»

U.S. Government Begins Largest Deployment of DNSSEC

Untied States government has launched an extensive deployment of DNS Security Extensions (DNSSEC) on the .gov top-level domain, and some expect that once that rollout is complete, banks and other businesses might be encouraged to follow suit for their sites. The National Telecommunications and Information Administration (NTIA), the arm of the U.S. government that oversees the Internet's DNS infrastructure, has not set a deadline for DNSSEC deployment for the root servers, .com or .net. "A DNSSEC signed root zone would represent one of the most significant changes to the DNS infrastructure since it was created; therefore any changes cannot be taken lightly considering that the Internet DNS is a global infrastructure on which the global economy relies,'' according to an NTIA statement. more»

Atrivo, Notorious U.S. Based ISP Completely Cut Off by Its Network Providers

The troubled California based commercial Internet service provider, Atrivo also known as Intercage, accused of serving spammers and cyber-crime groups, went offline after its last network backbone provider recently pulled the plug. Atrivo "ceased to be reachable from any points on the Internet early Sunday morning when the ISP's sole remaining provider -- Pacific Internet Exchange (PIE) -- stopped routing traffic for the troubled company," reports Brian Krebs of the Washington Post. more»