Slashdot is powered by your submissions, so send in your scoop

 


Forgot your password?
Close
typodupeerror
×
Privacy

Submission + - Hackers Hijacking Security Cameras for Malware and Spying (cio.com)

Submitted by
Curseyoukhan
Curseyoukhan writes: "Tommy Stiansen, CTO of NorseCorp, an IT security company that delivers real-time cyber risk intelligence, says, "We are seeing a lot of unexplained devices communicating to our honeypots, for example CCTV cameras. We're seeing a lot of CCTV cameras attacking our honeypots."

Stiansen says that the codes in the CCTV cameras he’s examined have software developed in Asia and still has traces of the development code in them. In addition to that, the DVR boxes running the feeds use a traditional Linux pack that admins haven't done anything to secure.

"Administrators buy these cameras and install them straight on their network without realizing they are running a full Linux server," he says. "They're running a web system that has jQuery, cross-site scripting and all the vulnerabilities in the book in them.""
Science

Submission + - Dung Beetles Navigate by the Milky Way (sciencemag.org)

Submitted by sciencehabit
sciencehabit writes: A day in the life of a male dung beetle goes something like this: Fly to a heap of dung, sculpt a clump of it into a large ball, then roll the ball away from the pile as fast as possible. However, it turns out that the beetles, who work at night, need some sort of compass to prevent them from rolling around in circles. New research suggests that the insects use starlight to guide their way. Birds, seals, and humans also use starlight to navigate, but this is the first time it's been shown in an insect.
Security

Submission + - At Davos the Elite Ponder Stale Cybersecurity Issues—and Charlize Theron (cio.com)

Submitted by
Curseyoukhan
Curseyoukhan writes: "At the World Economic Forum in Davos, Switzerland—where the elite meet to secrete—much of the talk is about cybersecurity. Specifically, attendees are wondering if the U.S. government should be doing more to protect American companies. And, as is frequently the case at gatherings like this, the talk is out of date.

In case you are unfamiliar with the WEF, it’s where the rich and powerful and Charlize Theron* get together to discuss Very Important Issues without having to listen to the opinions of the hoi polloi.

Cybersecurity is on the minds of the Davos-ians because it could cost them money. Apparently they have just learned that "there is barely a large company out there today which has not had its infrastructure and systems breached.""

Comment Re:Holy shit... (Score 2) 215

by Curseyoukhan (#42671465) Attached to: The One Sided Cyber War
" I bet Fox News would love you." I bet you're wrong.

I like your snarky attitude. I deserve nothing less.

I am grateful to you for pointing out the things I screwed up on and will go correct them.

A) make it clear that I am referring to the first US cyber war -- not cyber war overall. B) I totally screwed up on the Flame/Stuxnet timing. C) Obama! My own friggin' fault for going for a very minor sarcasm when I should have double checked.

The Iranians being ranked among the big three when it comes to cyberwar is far too subjective a claim to take seriously. Remember when Iraq was a major threat? An earlier commenter referred to people who have secret information the rest of us don't have. As HL Mencken wrote: "The whole aim of practical politics is to keep the populace alarmed (and hence clamorous to be led to safety) by menacing it with an endless series of hobgoblins, all of them imaginary." Give me evidence or leave me alone.

"Second of all, the attacks were not at all "ineffective"; ask any Bank of America customer who uses online banking." As a matter of fact I did. I asked myself and you know what during the whole time that was going on I only had one problem getting to my account. Also, it's hard for me to equate inconveniencing some bank customers with wrecking Iran's uranium processing. Asking the NSA for help may mean the banks are being smart and anticipating problems, not that they are seeing them now. I didn't say the Iranians couldn't cause problems, just that they hadn't so far.

As to your point about the financial sector being a higher priority target. OK, but why aren't they also targeting other water/energy, etc? Why continue with one so far fruitless line of attack? Are they being lead by the Iranian equivalent of Douglas Haig?

That said, my apologies for my mistakes and very real thanks to you for pointing them out. If you send me an email with your name I will thank you in the post.

Cheers,

CvH
Government

Submission + - Cyber War is Upon Us–But Only One Side is Attacking (cio.com)

Submitted by
Curseyoukhan
Curseyoukhan writes: "The first shot was probably the release of Stuxnet sometime during or before 2009. Even though no one has officially claimed responsibility everyone knows who was behind it. Stuxnet hit with a bang and did a whole lot of damage to Iran’s uranium-enrichment capabilities. We followed up Stuxnet with Flame–the ebola virus of spyware.

What did the Iranians fire back with? A series of massive, on-going and ineffective DDoS attacks on American banks. This is a disproportionate response but not in the way military experts usually mean that phrase. It’s the equivalent of someone stealing your car and you throwing an ever-increasing number of eggs at his house in response.

It’s fascinating that Iran continues to do nothing more despite the fact that U.S. critical infrastructure currently has the defensive posture of a dog waiting for a belly rub. Keep that in mind the next time you hear that a "cyber Pearl Harbor" is imminent."
It's funny. Laugh.

Submission + - Why You Need to Protect Your Home from Cyber Pearl Harbor (Now!) (cio.com)

Submitted by
Curseyoukhan
Curseyoukhan writes: "At this very moment a terrorist hacker in Somewheristan is preparing to unleash what former Secretary of Defense Leon Panetta called a "cyber 9/11." With just a flick of a switch, we could all be left without electricity, water or Netflix for who knows how long.

Some of you probably laughed when I mentioned Netflix, but I did it for two reasons. First, to see if you are paying attention and, second, to get you thinking about your homes because, ladies and gentlemen, the home is the greatest and most-overlooked target today. Thankfully, my company — PurplexUs Inc. LLC — is here to help protect you and your home.

Bathroom scales, refrigerators, rice cookers, garage-door openers, ovens, clothes, washers, light switches and toothbrushes–do you know what they all have in common?

I didn’t think so.

All these devices can be used by a terrorist to kill now that they've been connected to the internet."
Science

Submission + - "Superomniphobic" nanoscale coating repels almost any liquid (gizmag.com) 1

Submitted by cylonlover
cylonlover writes: A team of engineering researchers at the University of Michigan has developed a nanoscale coating that causes almost all liquids to bounce off surfaces treated with it. Creating a surface structure that is least 95 percent air, the new "superomniphobic" coating is claimed to repel the broadest range of liquids of any material in its class, opening up the possibility of super stain-resistant clothing, drag-reducing waterproof paints for ship hulls, breathable garments that provide protection from harmful chemicals, and touchscreens resistant to fingerprint smudges.
News

Submission + - Cutting-edge tech giving Boeing 787 cutting-edge problems (cbsnews.com)

Submitted by
Curseyoukhan
Curseyoukhan writes: "Boeing is discovering the problem with using bleeding-edge tech. To improve fuel efficiency the 787 Dreamliner is more reliant on electric systems than any other commercial plane before it. For example, it has replaced its hydraulic systems with electronic ones. All those systems require nearly 1.5 megawatts of electricity. For the first time Boeing is using lithium-ion batteries, which weigh half as much as the nickel-metal hydride ones. So maybe it's no surprise that it has had problems with the electrical system and that one of those batteries caught on fire.

The 787 is also the most outsourced commercial plane in history. Boeing did that in order to speed up assembly and delivery. Not only has it slowed delivery but it likely also resulted in more problems in the assembly process."

Submission + - 3D Printable Ammo Clip Skirts New Proposed Gun Laws (forbes.com)

Submitted by Sparrowvsrevolution
Sparrowvsrevolution writes: Slashdot has closely followed the developing controversy around Defense Distributed, the group that hopes to create 3D printable guns to defeat gun control legislation. The group has yet to create an entirely 3D printable gun. But it's already testing the limits of gun control with a simpler invention: the 3D printable ammunition clip.

Over the past weekend, Defense Distributed successfully 3D-printed and tested an ammunition magazine for an AR semi-automatic rifle, loading and firing 86 rounds from the 30-round clip. That homemade chunk of curved plastic holds special significance: Between 1994 and 2004, so-called “high capacity magazines” capable of holding more than 10 bullets were banned from sale. And a new gun control bill proposed by California Senator Diane Feinstein in the wake of recent shootings would ban those larger ammo clips again. President Obama has also voiced support for the magazine restrictions.

Defense Distributed says it hopes to preempt any high capacity magazine ban by showing how impossible it has become to prevent the creation of a simple spring-loaded box in the age of cheap 3D printing. It's posted the 3D-printable magazine blueprints on its website, Defcad.org, and gun enthusiasts have already downloaded files related to the ammo holders more than 2,200 times.
Technology

Submission + - How The Cool Stuff At CES Will Ruin Your Life (itworld.com)

Submitted by
jfruh
jfruh writes: "Another CES has come and gone, and as usual the press has presented rather uncritically a list of super-cool gadgets that were unveiled at the show and that will make our world better. Let's leave aside the fact that many products show at CES never make it to market; Paul Roberts provides the pessimistic case on the big CES news, explaining how all these geegaws will strip away privacy, unleash an army of Clippys onto the world, and maybe even change human brains for the worse."
Privacy

Submission + - CES panel proves consumers would rather talk than act about online privacy (cio.com)

Submitted by
Curseyoukhan
Curseyoukhan writes: "There’s also the fact that they’re on a panel at CES. I am positive all six of these people are smart, thoughtful and pay attention to their online behavior. Who else would you want answering people’s questions? Who else could be less representative of the general population?

Another problem with the panelists’ answers is that they support the oft-repeated claim that privacy is the number one issue for Internet users. That claim is based on a lot of (well-done) interviews. However, here’s the trouble with using opinion surveys on something like this: Behavior doesn’t always match stated opinion. Even when it does the hugely different definitions of what privacy means makes the behavior itself questionable."

Slashdot Top Deals

The key elements in human thinking are not numbers but labels of fuzzy sets. -- L. Zadeh

Close