Press "Enter" to skip to content

Posts tagged as “security”

Brute Force Attacks on WordPress Sites Underway

By Christine Hall on February 10, 2014 |

Internet, News and Security

At about 1 p.m. this afternoon the security company behind the WordFence plugin for WordPress issued a security advisory via email informing users of their plugin that WordPress sites are currently under a brute force attack.

“As of 11am eastern time this morning we are monitoring the largest distributed brute force attack on WordPress installations that we’ve seen to date. The real-time attack map on www.wordfence.com became so busy that we’ve had to throttle the amount of traffic we show down to 4% of actual traffic.

“A brute force attack is when an attacker tries many times to guess your username password combination by repeatedly sending login attempts. A distributed brute force attack is when an attacker uses a large number of machines spread around the internet to do this in order to circumvent any blocking mechanisms you have in place.”

Continue readingBrute Force Attacks on WordPress Sites Underway
The People Vs the NSAThe Day We Fight Back banner

The People Vs the NSA

By Christine Hall on February 10, 2014 |

Internet, Politics and Security

There is a tablet in my house that blinks whenever my roommate has a message. I know this because for some reason it’s my job to keep it charged for her. It has front and back cameras. The built-in microphone and speakers are capable of holding a conversation in English–probably other languages as well. With what we know now, I must assume that the NSA has the ability to activate the cameras and microphone to run silently in the background, bypassing the light that indicates when the camera is in use.

The same is true of the other computers in my home, but to a lesser degree.

The Day We Fight Back banner
The Day We Fight Back banner.

The desktop I’m using to write this article doesn’t have a camera or a microphone. Nor does the old Dell laptop that gets used occasionally around the house. My other laptop, a newer Gateway, is equipped with a built-in camera and microphone, but I’ve never managed to get the microphone to work under Bodhi Linux. Not that I’ve tried very hard. I don’t Skype or anything, so a microphone is of very little use to me.

This is probably a good thing as it means the NSA can’t watch or listen to me as I use my desktop or Dell and they can’t eavesdrop when I’m on the Gateway. They can only steal my bank passwords, learn where I store data online and what social networking accounts are connected with me.

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingThe People Vs the NSA
Results for Our ‘Red Hat & the NSA’ PollRed Hat logo

Results for Our ‘Red Hat & the NSA’ Poll

By Christine Hall on February 5, 2014 |

Business, Distros, Politics, Polls and Security

It looks as if Red Hat has some work cut out for them if they care what impression folks in the FOSS community have about them. If the results of our Red Hat &the NSA poll are any indication, some people aren’t convinced that the most commercially successful Linux distro on the planet has clean hands when it comes to the whole NSA mess.

A few weeks back, in response to what I thought (and still think) were unfounded allegations that Red Hat has been working with the NSA spying efforts by doing things like building back doors into RHEL, we ran a poll that asked the simple question, “Do you think Red Hat is cooperating with the NSA by building back doors into RHEL?” The poll went up on January 23rd and was ended this afternoon.

Red Hat logo

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingResults for Our ‘Red Hat & the NSA’ Poll
Google Beats Troll, Ellison’s Oracle ‘Unbreakable’ & More…Michael Copps

Google Beats Troll, Ellison’s Oracle ‘Unbreakable’ & More…

By FOSS Force on February 1, 2014 |

Business, Internet, Mobile, News, Patents and Politics

FOSS Week in Review

NSA involved in industrial espionage

Another big non-surprise this week in the continuing saga of the NSA. It appears that our beloved spy agency has been using their secret powers for the purpose of uncovering industrial secrets from foreign companies. So much for the separation of business and state. Reuters reported that in a television interview with a German TV network, Edward Snowden said the agency doesn’t confine its intelligence gathering to items of national security.

“‘If there’s information at Siemens that’s beneficial to U.S. national interests – even if it doesn’t have anything to do with national security – then they’ll take that information nevertheless,’ Snowden said…”

Even the Republicans are jumping on the stop-the-NSA bandwagon, which is rather surprising.

Continue readingGoogle Beats Troll, Ellison’s Oracle ‘Unbreakable’ & More…

Chrome Eavesdropping, Balkanized Internet & More…

By FOSS Force on January 25, 2014 |

Browsers, Business, Hardware, Internet, News, Politics and Security

FOSS Week in Review

Sixteen-year-old wrote the code for Target breach

TargetMiamiThe press calls him a “nearly seventeen-year-old” and he’s reported to be one of the people behind the malware used to compromise credit card data at Target and other locations. By our way of counting, “nearly seventeen” means he is sixteen or, like the show tune says, “sixteen going on seventeen.” He lives in Russia and is said to be the author of the BlackPOS malware that was used against Target and might have been used against Neiman Marcus.

This info comes from Los Angeles based cyber-intelligence firm IntelCrawler, which says it’s also traced six additional breaches to BlackPOS. As noted on MarketWatch, despite authoring the malware, the kid is just a small fry in this affair.

Continue readingChrome Eavesdropping, Balkanized Internet & More…
Blackberry Trolls, Coke in Patent Suit & More…coke patent

Blackberry Trolls, Coke in Patent Suit & More…

By FOSS Force on January 11, 2014 |

Business, Internet, Mobile, Patents and Security

FOSS Week in Review

India drops deal with Google over spying fears

Since the Snowden leaks revealed that Microsoft has allegedly built back doors into Windows for the NSA, we’ve been saying that the spy agency’s actions are going to hurt the U.S. tech industry’s business abroad. Well, it’s started to happen. On Thursday, Reuters reported that India has decided to drop out of a planned partnership with Google designed to help voters access information.

“…the plan was opposed by the Indian Infosec Consortium, a government and private sector-backed alliance of cyber security experts, who feared Google would collaborate with “American agencies” for espionage purposes.”

cokeadThere’s even been more digital security news from the EU, where there’s been a scramble to address privacy and security issues since the NSA scandal began. On January 3, phoneArena.com reported that European phone makers have been coming out with pricey phones designed for the security conscious.

Mark our words. This is only the beginning.

Continue readingBlackberry Trolls, Coke in Patent Suit & More…
2013 — That Was the Year That Was

2013 — That Was the Year That Was

By Christine Hall on January 1, 2014 |

Browsers, Business, Distros, Hardware, Internet, Media, Mobile, News, Patents, Politics and Security

Now that the celebrating is out of the way, I thought it might be time to take a look at some of the stories we covered on FOSS Force this year.

1. The NSA. The biggest story to come down the wire this year undoubtedly had to do with Edward Snowden’s revelations about the National Security Agency’s bag of dirty tricks. Even those of us who have long understood that the Internet isn’t necessarily a place to expect privacy were surprised at how deeply the NSA has managed to reach into the Internet. Odds are, if you’ve been using social networks, everything you’ve posted is now on file with the NSA. What’s worse, every email you’ve sent probably has a copy resting on a NSA server somewhere.

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue reading2013 — That Was the Year That Was
Target Breach Illustrates Internet WeaknessTarget POS

Target Breach Illustrates Internet Weakness

By Christine Hall on December 23, 2013 |

Business, Internet, News and Security

In October, 2000, when Microsoft was presumably working on what would become XP, they were hacked. Somebody broke into their systems and managed to at least look at source code for Windows and Office. The folks in Redmond dutifully called in the FBI, examined their code and found it hadn’t been compromised. Or so they said.

“It is clear that hackers did see some of our source code,” Ballmer announced to a group of reporters and programmers at a seminar he was attending in Stockholm. “I can assure you that we know that there has been no compromise of the integrity of the source code, that it has not been modified or tampered with in any way.”

Target POS
The point of sale locations at Target stores — ground zero for the latest data breach.
At the time, this was disturbing, more so than if it were it to happen today. It was also an eye opener.

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingTarget Breach Illustrates Internet Weakness
New Temp Patent Head, Amnesty for Snowden & More…Target logo

New Temp Patent Head, Amnesty for Snowden & More…

By FOSS Force on December 20, 2013 |

Business, Internet, News, Patents, Politics and Security

FOSS Week in Review

Credit card breach at Target affects over 40 million

Merry Christmas. Your bank account has been drained.

This week’s holiday cheer was marred for millions as they learned that their banking information might be in the hands of hackers.

Target has announced that over 40 million customer credit card transactions have been hijacked since Black Friday. The data was stolen from transactions at the retailer’s brick and mortar stores. Online transactions are evidently not affected. All information contained in a credit card’s magnetic stripe has been compromised, enough information to make counterfeit cards.

The story was originally made public on Wednesday by security expert Brian Krebs on his site KrebsonSecurity. This afternoon, Krebs wrote in an update that information pilfered from Target was making its way to the black market.

Continue readingNew Temp Patent Head, Amnesty for Snowden & More…
Linux Worm, Bad Patent Good & More…Marshall Federal Courthouse

Linux Worm, Bad Patent Good & More…

By FOSS Force on November 29, 2013 |

Business, Distros, Hardware, Internet, News, Patents, Politics, Security and Software

FOSS Week in Review

Good news & bad on the patent front

This week we received some good news and bad on the continuing patent wars.

First the bad news.

Down in the northeast Texas town of Marshall, an eight person jury has found that online retailer Newegg infringed on a patent held by TQP Development because they mixed the use of SSL and RC4 on their websites. The jury awarded $2.3 million, less than half of the $5.1 million that TQP’s damage expert had thought due.

Even though Newegg had a strong case, it’s not that much of a surprise that they lost, not in Marshall, where juries are infamous for siding with the plaintiffs on patent cases. Often these judgments are overturned on appeal. Make no mistake about it, Newegg’s attorney Lee Cheng plans to appeal. He made that very plain to Joe Mullin who covered the trial for Ars Technica:

Continue readingLinux Worm, Bad Patent Good & More…
Latest Articles