Penny Arcade On NPR 128
This morning on the NPR shuffle podcast, they included a segment about Penny Arcade. Seems only fair since NPR did Achewood a few months ago. If they just get XKCD on there, then the universe can rest.
CastleCops Anti-Malware Site Closes Down 68
Fortran IV writes "Volunteer-powered anti-malware site CastleCops appears to have closed shop. As of Tuesday, December 23, the CastleCops home page notes: 'You have arrived at the CastleCops website, which is currently offline. . . . Unfortunately, all things come to an end.' It was reported back in June that Paul Laudanski, founder of CastleCops and its parent Computer Cops LLC, was taking a full-time job with Microsoft and was 'looking for new management' for CastleCops. The site has also long had problems with funding and with hostile action from spammers. The actual shutdown seems to have taken the security community by surprise; as late as Tuesday evening Brian Krebs was still recommending CastleCops on his Security Fix blog."
Who Protects the Internet? 177
strikeleader writes "TechCrunch has an article from an interview with General Kevin Chilton, US STRATCOM commander and the head of all military cyber warfare.
Who protects us? 'Basically no one. At most, a number of loose confederations of computer scientists and engineers who seek to devise better protocols and practices — unincorporated groups like the Internet Engineering Task Force and the North American Network Operators Group. But the fact remains that no one really owns security online, which leads to gated communities with firewalls — a highly unreliable and wasteful way to try to assure security.'"
South Carolina Wants To Jam Cell Phone Signals 601
Corey Brook writes "The South Carolina state prison system wants the FCC to grant them and local officers permission to block cell phone signals. News has been out about the growing problem of them perps smuggling cell phones into prisons for a while now. Inmates use cell phones as commerce, to implement fraud, smuggle drugs and weapons, and to order hits. Of course, some may use it to just talk to a loved one any time they can." Hopefully movie theaters and restaurants do it next.
Obama's Mobile Phone Records Compromised, Shared 278
Tiger4 writes "Verizon has confirmed that some of its employees have accessed and perhaps shared calling records of President Elect Barack Obama (coverage at CNN, Reuters, AP). Verizon says the people involved have all been put on leave with pay as the investigation proceeds. Some of the employees may have accessed the information for legitimate purposes, but others may have been curiosity seekers and may have even shared the information around. The account was 'only' a phone, not a BlackBerry or similar device, and Verizon believes it was just calling records, not voicemail or email that was compromised. The articles do not mention the similarity to the warrantless wiretapping or hospital records compromises of recent months. But that immediately sprang to mind for me."
McColo Briefly Returns, Hands Off Botnet Control 242
A week ago we discussed the takedown of McColo (and the morality of that action). McColo was reportedly the source of anywhere from 50% to 75% of the world's spam. On Saturday the malware network briefly returned to life in order to hand over command and control channels to a Russian network. "The rogue network provider regained connectivity for about 12 hours on Saturday by making use of a backup arrangement it had with Swedish internet service provider TeliaSonera. During that time, McColo was observed pushing as much as 15MB of data per second to servers located in Russia, according to ... Trend Micro. The brief resurrection allowed miscreants who rely on McColo to update a portion of the massive botnets they use to push spam and malware. Researchers from FireEye saw PCs infected by the Rustock botnet being updated so they'd report to a new server located at abilena.podolsk-mo.ru for instructions. That means the sharp drop in spam levels reported immediately after McColo's demise isn't likely to last."
AIX On the Desktop Is Getting the Boot 366
flnca writes "Today, I was playing with the thought again to purchase an AIX workstation one day when I can afford them, and I was surprised to see that IBM is going to give its IntelliStation POWER Series workstations the boot in January '09. A black day for AIX on the desktop. I really wonder what's the problem there, warehouse costs? IBM has a history of burying its best stuff (like OS/2 for instance). Some years ago, I enjoyed hacking away on an RS/6000 workstation running AIX 4.2, and it was a pure joy. Not only the kernel, but also the admin tools, like smit and smitty. Their blade-centric solution uses Windows as a client for workstation application. This truly sounds like IBM wants AIX only for servers anymore. I'm not amused. Although, eXceed on Windows with an XDCMP server running on AIX might also be a viable solution ... whatever. But it can't beat a native POWER box sitting on your desk, that's for sure."
McColo Takedown, Vigilantes Or Neighborhood Watch? 194
CWmike writes "Few tears were shed when alleged spam and malware purveyor McColo was suddenly taken offline last Tuesday by its upstream service providers. But behind the scenes of the McColo case and another recent takedown of Intercage, a ferocious struggle is taking place between the purveyors of Web-based malware and loosely aligned but highly committed groups of security researchers who are out to neutralize them. Backers claim that the effort to shut down miscreant ISPs is needed because of the inability of law enforcement agencies to deal with a problem that is global in nature. But some question whether there is a hint of vigilantism behind the takedowns — even as they acknowledge that there may not be any other viable options for dealing with the problem at this point."
Politician Forces German Wikipedia Off the Net 569
Stephan Schulz writes "A German Member of parliament for a left-wing party, Lutz Heilmann, has obtained a preliminary injunction against the local chapter of the Wikimedia foundation, Wikimedia Deutschland e.V., forbidding the forwarding of the popular http://wikipedia.de to the proper http://de.wikipedia.org. Apparently Heilmann is not happy with the fact that his Wikipedia article (English version) contains information on his work for the former GDR Stasi, the much-hated internal secret service. Wikimedia Germany displays a page explaining the situation, and has announced that it will file an objection to get the injunction lifted. The German Wikipedia has more than 800,000 pages, and is hosted, like all Wikimedia projects, by the Florida-based Wikimedia Foundation, and hence beyond the effective reach of at least German politicians and judges."
Argentine Judges Disappear Celebrities From Internet 81
An anonymous reader writes "Since 2006, Internet users in Argentina have been blocked from searching for information about some of the country's most notable individuals. Over 100 people have successfully secured temporary restraining orders that direct Google and Yahoo! Argentina to scrub the results of search queries. The list of censorship-seeking celebrities includes judges, public officials, models and actors, as well as the world-cup soccer star and national team head coach Diego Maradona. Try it yourself — compare the results for a Yahoo! Argentina search for Diego Maradona (0 results) to a search at Yahoo! Mexico and Google Argentina (both with millions of results)."
Washington Post Blog Shuts Down 75% of Online Spam 335
ESCquire writes "Apparently, the Washington Post Blog 'Security Fix' managed to shut down McColo, a US-based hosting provider facilitating more than 75 percent of global spam. " Now how long before the void is filled by another ISP?
Hacker Admits To Scientology DDoS Attack 275
lbwbl writes with news that a New Jersey man will plead guilty to one felony count of 'unauthorized impairment of a protected computer' for his distributed denial of service attacks on Scientology websites as part of 'Anonymous' earlier this year. From Wired:
"He faces a likely sentence of 12 to 18 months in prison based on stipulations in his plea agreement, which also obliges him to pay $37,500 in restitution. ... Friday's case, in US District Court in Los Angeles, marks the first prosecution of an Anonymous member for a series of attacks against the Church of Scientology that began in mid-January. The secretive religious group strayed into Anonymous' sights after trying to suppress the publication of a creepy Tom Cruise video produced for Scientology members."
Name-Your-Cost Radiohead Album Pirated More Than Purchased 582
phantomfive writes "Forbes is reporting that despite Radiohead giving their latest album away 'for free', more copies of the album were pirated than downloaded from their site. Commentators offered up the opinion that this was probably more out of habit than malice. People download from regular BitTorrent sources, and may not have fully understood the band's very new approach to the subject. Regardless, Readiohead's efforts are having some measurable effect, as noted by the chairman of EMI: 'The industry, rather than embracing digitalization and the opportunities it brings for promotion of product and distribution through multiple channels, has stuck its head in the sand. Radiohead's actions are a wake-up call which we should all welcome and respond to with creativity and energy.'"
CastleCops.com Hit With Reputation-Based Attacks 79
An anonymous reader writes "The all-volunteer based online fraud fighting group CastleCops.com is currently the target of ongoing reputation-based attacks in which criminals use phished PayPal accounts to donate thousands of dollars to CastleCops from dozens of victims. This attack appears to be in response to a recent series of failed denial-of-service attacks against the CastleCops, Web site. From the story: 'A few donations were for as little as $1, while other fake donations ranged as high as $2,800. To the victims of the stolen PayPal accounts, it looks as if CastleCops is the one stealing their money, when in reality, it's the attackers. Also, the fraudulent activity seeks to ruin their relationship with PayPal.' In a comment left on Washingtonpost.com's Security Fix blog, CastleCops co-founder Paul Laudanksi says while the group's site remains under a heavy DDoS attack, it is currently down due to a hardware failure, not the attack itself."
Anti-Scammers Become Storm Botnet Victims 207
capnkr writes "It looks like the efforts of the anti-scammers at sites like 419eater, Scamwarners, Artists Against 419, and possibly others have become the target of the Storm botnet.
Spamnation has a post about it, and as of this writing none of the above listed sites are responding. Spamnation reports that CastleCops and other anti-spam forums are being DDoSed as well. Sounds like a massive, concerted effort against the folks who are fighting the good fight.
Although I hate it for the owners and admins of the above sites, I think it shows without a doubt that their efforts to 'get back' at the scammers are working."
