Press "Enter" to skip to content

Posts published in “Security”

2013 — That Was the Year That Was

By Christine Hall on January 1, 2014 |

Browsers, Business, Distros, Hardware, Internet, Media, Mobile, News, Patents, Politics and Security

2013 — That Was the Year That Was

Now that the celebrating is out of the way, I thought it might be time to take a look at some of the stories we covered on FOSS Force this year.

1. The NSA. The biggest story to come down the wire this year undoubtedly had to do with Edward Snowden’s revelations about the National Security Agency’s bag of dirty tricks. Even those of us who have long understood that the Internet isn’t necessarily a place to expect privacy were surprised at how deeply the NSA has managed to reach into the Internet. Odds are, if you’ve been using social networks, everything you’ve posted is now on file with the NSA. What’s worse, every email you’ve sent probably has a copy resting on a NSA server somewhere.

Continue reading2013 — That Was the Year That Was
Google Fires Back, Alan Turing Pardoned & More…Flag of Canada

Google Fires Back, Alan Turing Pardoned & More…

By FOSS Force on December 27, 2013 |

Business, Internet, Media, News, Patents, Politics and Security

FOSS Week in Review

Just because Christmas week is supposed to be a slow news week doesn’t mean it’s a no news week…

Good news, bad news on the phishing front

First the good news. According to security company Websense, the amount of phishing attempts we’re finding in our email dropped remarkably this year, from 1.12% of all email volume down to 0.5%. Now, the bad news. The folks doing the phishing are getting better at targeting their attempts, so they don’t need to send as many emails to hook their prey.

Continue readingGoogle Fires Back, Alan Turing Pardoned & More…
Target Breach Illustrates Internet WeaknessTarget POS

Target Breach Illustrates Internet Weakness

By Christine Hall on December 23, 2013 |

Business, Internet, News and Security

In October, 2000, when Microsoft was presumably working on what would become XP, they were hacked. Somebody broke into their systems and managed to at least look at source code for Windows and Office. The folks in Redmond dutifully called in the FBI, examined their code and found it hadn’t been compromised. Or so they said.

“It is clear that hackers did see some of our source code,” Ballmer announced to a group of reporters and programmers at a seminar he was attending in Stockholm. “I can assure you that we know that there has been no compromise of the integrity of the source code, that it has not been modified or tampered with in any way.”

Target POS
The point of sale locations at Target stores — ground zero for the latest data breach.
At the time, this was disturbing, more so than if it were it to happen today. It was also an eye opener.

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingTarget Breach Illustrates Internet Weakness
New Temp Patent Head, Amnesty for Snowden & More…Target logo

New Temp Patent Head, Amnesty for Snowden & More…

By FOSS Force on December 20, 2013 |

Business, Internet, News, Patents, Politics and Security

FOSS Week in Review

Credit card breach at Target affects over 40 million

Merry Christmas. Your bank account has been drained.

This week’s holiday cheer was marred for millions as they learned that their banking information might be in the hands of hackers.

Target has announced that over 40 million customer credit card transactions have been hijacked since Black Friday. The data was stolen from transactions at the retailer’s brick and mortar stores. Online transactions are evidently not affected. All information contained in a credit card’s magnetic stripe has been compromised, enough information to make counterfeit cards.

The story was originally made public on Wednesday by security expert Brian Krebs on his site KrebsonSecurity. This afternoon, Krebs wrote in an update that information pilfered from Target was making its way to the black market.

Continue readingNew Temp Patent Head, Amnesty for Snowden & More…
Android On Nokia, SCOTUS On Patents & More…Nokia Asha phones

Android On Nokia, SCOTUS On Patents & More…

By FOSS Force on December 13, 2013 |

Business, Distros, Hardware, Mobile, News, Patents, Security and Software

FOSS Week in Review

FreeBSD rethinks encryption after Snowden leaks

Only three months after the Snowden leaks on NSA snooping began, we learn from Ars Technica that the developers at FreeBSD have decided to rethink the way they access random numbers to generate cryptographic keys. Starting with version 10.0, users of the operating system will no longer be relying solely on random numbers generated by Intel and Via Technologies processors. This comes as a response to reports that government spooks can successfully open some encryption schemes.

Continue readingAndroid On Nokia, SCOTUS On Patents & More…
Linux Worm, Bad Patent Good & More…Marshall Federal Courthouse

Linux Worm, Bad Patent Good & More…

By FOSS Force on November 29, 2013 |

Business, Distros, Hardware, Internet, News, Patents, Politics, Security and Software

FOSS Week in Review

Good news & bad on the patent front

This week we received some good news and bad on the continuing patent wars.

First the bad news.

Down in the northeast Texas town of Marshall, an eight person jury has found that online retailer Newegg infringed on a patent held by TQP Development because they mixed the use of SSL and RC4 on their websites. The jury awarded $2.3 million, less than half of the $5.1 million that TQP’s damage expert had thought due.

Even though Newegg had a strong case, it’s not that much of a surprise that they lost, not in Marshall, where juries are infamous for siding with the plaintiffs on patent cases. Often these judgments are overturned on appeal. Make no mistake about it, Newegg’s attorney Lee Cheng plans to appeal. He made that very plain to Joe Mullin who covered the trial for Ars Technica:

Continue readingLinux Worm, Bad Patent Good & More…
Hacked by the NSABumblehive NSA

Hacked by the NSA

By Christine Hall on November 25, 2013 |

Business, Internet, News, Politics and Security

The Internet has become a neighborhood infested with cockroaches.

On Saturday, the Dutch newspaper NRC reported that the NSA has infected over 50,000 computer networks with malware designed to steal sensitive data. The allegation arises from examination of documents supplied by Edward Snowden and “seen by” NRC reporters.

“The malware can be controlled remotely and be turned on and off at will. The ‘implants’ act as digital ‘sleeper cells’ that can be activated with a single push of a button. According to the Washington Post, the NSA has been carrying out this type of cyber operation since 1998.”

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingHacked by the NSA

Google Pays States, Newegg Tackles Troll & More…

By FOSS Force on November 23, 2013 |

Browsers, Business, Distros, Internet, News, Patents, Security and Software

FOSS Week in Review

FBI claims U.S. computers breached by Anonymous

In an exclusive story published Saturday by Reuters, the FBI has claimed Anonymous has managed to hack into U.S. government computers and steal sensitive data. What’s more, they believe these intrusions have been going on for at least a year.

“The hackers exploited a flaw in Adobe Systems Inc’s software to launch a rash of electronic break-ins that began last December, then left “back doors” to return to many of the machines as recently as last month, the Federal Bureau of Investigation said in a memo seen by Reuters.

“The memo, distributed on Thursday, described the attacks as ‘a widespread problem that should be addressed.’ It said the breach affected the U.S. Army, Department of Energy, Department of Health and Human Services, and perhaps many more agencies.

“Investigators are still gathering information on the scope of the cyber campaign, which the authorities believe is continuing. The FBI document tells system administrators what to look for to determine if their systems are compromised.”

Continue readingGoogle Pays States, Newegg Tackles Troll & More…
Chrome Clamps Down, Bitcoin Vulnerability & More…

Chrome Clamps Down, Bitcoin Vulnerability & More…

By FOSS Force on November 8, 2013 |

Browsers, Business, Distros, Internet, Media, Mobile, News, Politics and Security

FOSS Week in Review

Swiss cloud with, presumably, no holes

Back when the Edward Snowden brouhaha first began, we said that this was going to have serious repercussions on the tech sector here in the United States, especially after it became evident that Microsoft was actively working with the spooks by allegedly designing back doors into their operating system and keeping federal intelligence agents informed about unpatched security holes that could be used against foreign governments and “terrorist,” which now days seems to be everyone who doesn’t work for the NSA, FBI or CIA.

Swisscom logoBrazil is already spending big bucks in an effort to make sure that no Internet cable entering their country goes anywhere near the US of A and is working to pass laws to make sure all Brazilian businesses use only servers located in-country. Similar efforts are underway in Europe, most notably in France and Germany.

Now the frugal Swiss are jumping on board, and they rightfully intend to profit from our stupidity by taking advantage of their strong privacy laws.

Continue readingChrome Clamps Down, Bitcoin Vulnerability & More…
WordPress Becomes Big Brother & More…WordPress logo

WordPress Becomes Big Brother & More…

By FOSS Force on November 3, 2013 |

Internet, Media, News, Politics, Security and Web Apps

FOSS Week in Review

Is Netflix coming soon to a Linux near you?

Saurav Modak at Muktware was observant enough to note last week that Netflix is now offering-up programming with a choice heretofore unavailable. For the time being they’re still pretty much married to Microsoft’s dead or dying Silverlight, but they’ve taken HTML5 on as a lover. This gives users of the popular movie outlet a choice that, at the very least, should make things easier for Linux users who insist on using the Netflix service:

“Although hackers have already made a workaround to stream Netflix videos in Linux machines, performance is generally low and video playback is not hassle free. Some workarounds include running the entire browser in Wine, or running a Silverlight plugin in Wine and make it compatible with the browser. But all of them come at a cost of performance. Switching to HTML5 from Silverlight will greatly reduce all these hassles, as all you will need is a latest standard compatible browser to stream movies and TV shows. This will also allow support for mobile devices and tablets which are adopting more HTML5 standards day by day.”

Continue readingWordPress Becomes Big Brother & More…
PHP Attacked, the Shuttleworth Tea Party & More…IT-oLogy's Todd Lewis

PHP Attacked, the Shuttleworth Tea Party & More…

By FOSS Force on October 26, 2013 |

Hardware, Internet, Mobile, News, Security and Software

FOSS Week in Review

NSA: Locking the barn door after the horse is stolen

On Monday, Reuters reported in an exclusive story that the NSA had failed to install some super duper software meant specifically to protect the agency from inside threats at the site in Hawaii where Eric Snowden downloaded thousands of classified documents. In other words, after spending who knows how much taxpayer money developing internal security software, made by Raytheon by the way, and getting it installed and tweaked at NSA installations everywhere, little Eric Snowden was shuffled off to one of the only, if not the only, locations where internal security wasn’t in place. In hindsight, this made the NSA akin to two lengths of case hardened steel chain being bound together by a link made from a paper clip.

Continue readingPHP Attacked, the Shuttleworth Tea Party & More…
Latest Articles