Follow Slashdot blog updates by subscribing to our blog RSS feed


Forgot your password?
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×
Wireless Networking

Submission + - Wireless Cybercriminals Target Clueless Vacationer

schwit1 writes: Story from Fox News about "The newest trend in Internet fraud is "vacation hacking," a sinister sort of tourist trap."

Cybercriminals are targeting travelers by creating phony Wi-Fi hot spots in airports, in hotels, and even aboard airliners.

In 2008, Silicon Valley-based AirTight Networks, a wireless security company, sent a team of "white-hat" hackers — good guys who try to thwart "black hat" hackers — around the world on an international airport study.

They checked the Wi-Fi networks at 27 airports — 20 in the U.S., five in Asia and two in Europe — and the results were not good.

And everywhere they looked, they found fake Wi-Fi hot spots set up by hackers phishing for suckers — and there were plenty of suckers to be had.

Comment Re:Say what? (Score 1) 72

If that's the case, I'm going to run a genetic code generator for a few thousand iterations, get some really meaningless routines, make a random main(), add some TicTacToe code, then submit it for review: HotTicTacToe as a 7MB binary... Let them figure it out.

Comment Re:Time to reconsider "anti-worms":? (Score 1) 239

Go for it. See if you can reverse engineer conficker's encrypted and digitally signed binaries. It's only RC4 and MD-6. MD-6 was only released a few weeks prior to the first wild sightings of version C. Still wanna mess with these guys? Then all you have to do is figure out which of the 50,000 domains spread across ~120 .tlds to register so you can put your binary on it for when conficker does it's daily payload check.

Or if you want, you can try to infiltrate it via its own P2P network. You better be quick, if conficker detects it is being debugged, it quits. Can't look at the code? Hmmm, maybe look at the p2p protocol? Doh! you cannot run wireshark on an infected system, conficker process kills just about anything you would use for disinfecting every second (though I might change the .exe name of a tool i was using). But even then you have to figure out the digital signature before conficker will run your binary, it's a 4096 bit key, you better get started. Bonus points for breaking it before the authors update it.

This worm is piece of work. It memory patches your dns resolver. It kills your security products. With it's encryption, every copy is different. It hides with random file name, in several locations, date same as your kernel, and the registry entries get pretty names most would overlook on a quick glance. The ports it opens are a function of your IP address, so you cannot just look for port xyz traffic, but a remote conficker can figure out which ports should be open for your IP. It does updates with a plain URL that no IDS could catch without red flagging genuine HTTP requests. It closes it's infection vector but opens another back door. It pokes holes in your firewall, and gives them pretty names too. But wait there's more! It tries to spread through network shares with weak passwords and copies itself to the modern sneakernet of USB drives. Its IP scanner even avoids unregistered address space.

The authors of this worm seem to be a few steps ahead of everyone. It's weaknesses get patched, it's vulnerabilities get updated. As long as we have people running pirated copies of Windows, or people too afraid to auto-update for whatever reason, we better get used to things just "living" in the internet. Anti-worm? goodluckwiththat!

Comment Re:Other countries (or: Is it over please?) (Score 1) 1912

I find this interesting. I am amazed at how much other countries cover US elections. Canada had elections a few weeks back, they are one of our two neighbors and I saw nearly zero coverage in US media. We never hear about other countries elections, maybe the UK. Last time before that was something in Israel, something about Hamas being terrorists.

I can imagine few in any other country gives a rats ass about our election. But it gets pushed so much. Is that media conglomeration pushing agenda? Does it matter to someone in Australia, or Tanzania, or India, or France, or Netherlands, that much? Why don't we get bombarded over here with other countries and their politics and elections? Is it just that I am reading the english language version of those sources and only seeing stories about US? I hear non-Americans having an opinion on which candidate they like! I never overhear discussions on who the next King of Belgium or Italy is going to be, much less anyone over here having an opinion or even being informed.

At any rate, I apologize. We are just as tired of it as you are. It is broken beyond our control, has taken on a life of its own, and is rapidly getting worse. Our only hope is that it will collapse on itself.

Comment Re:Obama (Score 1) 1912

Enjoy traveling by airplane. Get on an airplane without taking off my shoes. Believe that America would never torture anyone, and everyone received due process. Click on a odd ball link about terrorism and wonder if I am being put in a database somewhere. Bring a screwdriver or nail clippers with me on an airplane. Use the word terrorist in a post and wonder if I am being put in a database somewhere. Believe my communications were not monitored.

Have faith in the election process.

Feel proud to be an American Citizen.

You must live in a cave if your life has not been impacted by this president.


Submission + - New Apple 10.4.11 Update Bricks Some Macs?

g-san writes: Apparently some Mac users are having problems with the latest 10.4.11 update, yours truly included. The problem renders the Mac useless on reboot after the 10.4.11 update fails. You may wish to hold off on installing 10.4.11 unless you have a few hours to kill. Also note the Geniuseses at the Apple stores are recommending full disk wipe but data can be recovered via Firewire.

Submission + - Upgrading Hard Drive in Sony HDR-SR1 HDD Camcorder

clarkbox2 writes: "Here is an interensting page detailing the cracking open of a $1400 camcorder just released by Sony. The pictures and text describe the opening of the outer shell, revealing the 1.8" Toshiba hard drive within. The HDR-SR1 ships with a tiny 30gb hard drive, allowing for 4 hours of recording in full HD. Great pictures showing the steps to recording bliss... now where to get a battery capable of lasting for 12+ hours of full HD video??"

Submission + - U.S. Government Censors New York TImes

saxoholic writes: A friend of mine sent me to this which discusses the U.S. Government heavily censoring a New York Times article, so the New York Times is publishing the article with all the censored information literally blacked out.

in addition, "...the Times will instruct readers where they can find the omitted information in other (unclassified) publications — like, for instance, in Leverett's paper on the same topic called "Dealing with Tehran," published through the Century Foundation."

Slashdot Top Deals

Consultants are mystical people who ask a company for a number and then give it back to them.