Tag: newstrack

Robots make up half of web traffic

114More than half of traffic on the World Wide Web is mostly created by robots reporting on the activities of humans.

According to security outfit Incapsula in 2014, bots roaming the internet represented 56 percent of total web traffic. This is a decrease from 2013, when bots represented 61.5 percent of total internet traffic.

The majority of these bots are ‘good’ bots which include ‘crawlers’ that index web pages for search engines, social networking platforms, RSS feeds and translation services.

Incapsula is worried about an increasing number of ‘bad’ bots, which pose a threat to websites. The worst are ‘impersonator’ bots which are malevolent intruders engineered to circumvent common security measures. They have increased by 15 percent in the last two years.

Incapsul’s Igal Zeifman said that more than 90 percent of all cyber attacks that are executed by bots and  the worst case scenario really depends on the attacker’s intentions and the target.

“Bots can spam, scam, spy, execute denial of service attacks and hack – they can do whatever a human hacker ‘teaches’ them to do, only on a much (much) bigger scale – and this arguably delays the internet’s growth, both as a medium and as a place of business.”

The overall decrease in bot traffic is the result of a steady drop in good bot activity. RSS services are dying and Google’s RSS service, Google Reader, shutdown in July 2013.

Zeifman said click-fraud bots that undermine the advertisers’ profitability are also growing in number.

“I think that today most advertisers have accepted the fact that some of their online budget will be lost on bots. However, I also believe that, as these losses continue to grow, the need for bot filtering solutions will become more and more clear,” he said.

 

 

TorrentLocker has trapped 39,000 victims

mantrap Cybercriminals behind the TorrentLocker malware may have earned as much as $585,000 over several months from 39,000 PC infections.

But apparently more than 9,000 of the victims were from Australia thanks to a poisoned website which claimed to be the Australia Post newspaper.

TorrentLocker is one of several ransomware threats that have emerged in the wake law enforcement action against CryptoLocker earlier this year.

TorrentLocker demands payment of up to $1,500 in Bitcoin to unlock victim’s encrypted files. Whether victims pay depends on how much they value files.

Security vendor ESET said that the hackers behind TorrentLocker put extra effort into defrauding Australian computer users via a several bogus websites for Australia Post and the NSW Office of State Revenue.

The hackers were more successful Turkey which made 11,700 infections, but that country has a bigger population with less crocodiles. Italy, the UK, the Czech Republic, and Netherlands all had infections of between 4,500 and 2,280 each, which was also on the higher side.

Few victims actually paid. According to ESET researcher and author of the report, Marc-Etienne M.Léveillé, only 1.44 percent or 577 of the infections translated in to payment for the hackers. Still, based on the Bitcoin exchange rate of $384.94 on November 29, TorrentLocker’s operators may have earned between anywhere between $292,700 and $585,401, which is not bad money.

The PCs were infected by spam email that encourages the victim to open what appears to be a document but is in fact an executable file that will install the malware and encrypt the files.

Messages included tricking victims into opening files marked unpaid invoices, package tracking and unpaid speeding tickets.

“For example, if a victim is believed to be in Australia, fake package tracking information will be sent spoofed to appear as if it comes from Australia Post. The location of the potential victim can be determined by the top level domain used in the e-mail address of the target or the ISP to which it is referring,” ESET notes in its report.

The fake Australian domains the attackers have bought for the campaign include sites that look like the legitimate Australia Post domain austpost.com.au. These are austpost-tracking.com and austpost-tracking.org. Domains they have acquired to appear like the NSW Office of State Revenue’s real domain osr.nsw.gov.au include the bogus domains nsw-gov.net and osr-nsw-gov.net.

TorrentLocker’s “side task” is to steal the address book from email clients on the infected machine and contains code that enables this feature for Thunderbird, Outlook, Outlook Express and Windows Mail.

Snapchat CEO wanted $40 million behind the scenes

Evan_Spiegel,_founder_of_Snapchat The Sony hacking has revealed that Snapchat, and its CEO Evan Spiegel might have been involved in trying to get himself some lucrative deals involving secondary shares in the company.

According to Business Insider  the inbox of Sony Entertainment CEO Michael Lynton was exposed by the hackers. Lynton is a Snapchat board member, and the emails from him to another Snapchat board member Mitch Lasky of Benchmark Capital are exposed.

In November of 2013, the pair suggested that Spiegel may have tried to get $40 million flogging secondary shares of his company.  Secondary shares give company insiders some of an investor’s money in exchange for stock.

On October 31 at 2:43, Lasky wrote that Spiegel proposed a new deal today to Tencent that includes $40 million in secondary shares for him. Lasky was cross he was never told about it.

At the time, Snapchat had rejected an acquisition offer from Facebook. New emails confirm the offer was over $3 billion.

Snapchat never raised money from Tencent. It was reportedly in talks to raise $200 million. Tencent was a previous investor. And Spiegel had previously taken $10 million for him and his cofounder off the table.

Snapchat raised $50 million a month later from Coatue, a hedge fund with offices in New York and Silicon Valley. Its Silicon Valley offices are on Sand Hill road, right next to Andreessen Horowitz, and the rest of tech’s elite venture capitalists.

We will never know if Spiegel and his cofounder ever got their $40 million.

Sony sued by former employees

sony_logo_720Sony has been sued by two former employees for failing to protect their personal data during the recent mega-hack of the company.

The former employees say the movie studio of failed to protect Social Security numbers, healthcare records, salaries and other data from computer hackers.

A proposed class action lawsuit against Sony was filed in Los Angeles. It alleges that the company failed to secure its computer network and protect confidential information.

Sony is already reeling from the disclosures in documents released by the hackers, which have exposed internal discussions to the great unwashed.

The lawsuit seeks class action status on behalf of all former and current employees of Sony in the United States whose personally identifiable information was compromised in the breach.

Sony “knew or should have known that such a security breach was likely” given a 2011 hack of its PlayStation video game network and recent data breaches at retailers, the lawsuit said.

Sony agreed to pay $15 million to  make the PlayStation case go away.  The plaintiffs are asking for compensation for any damages as well as credit monitoring services, identity theft insurance and other assistance.

India bans OnePlus smartphone

flaggOnePlus is about to see its products banned in India after a ruling by the Delhi High Court that has prohibited the company from importing, marketing and selling its flagship device.

Local manufacturer Micromax that says OnePlus is infringing on the former’s exclusive deal with Cyanogen to make the Yu series of smartphones running on CyanogenMod, with the first device slated to launch tomorrow.

OnePlus ships the One with CyanogenMod on-board, so the Delhi High Court banned the company from importing and marketing any phones with CyanogenMod’s logo on the back.

OnePlus said it was working on its own ROM to power the One but it will take until February to get it ready. Cyanogen had confirmed that it would not be offering updates to the Indian variant of the One, so OnePlus will have its work cut out getting itself ready.

The OnePlus was popular and has already gone out of stock from Amazon India, which is the only retailer for the device.

The Delhi High Court has said that OnePlus can sue Cyanogen as per Californian laws for breaching its contract. It looks like the case will run and run, but it does mean that the product will be locked out of the lucrative Indian market.

Verizon’s end-to-end encryption has back door

back-doorUS carrier Verizon really does not understand why people want end-to-end encryption on their phone lines.

The outfit just announced that it is bringing in an expensive service which guarantees security by providing the sort of encryption on the line which users want following the Edward Snowden revelations.

Verizon Voice Cypher, the product introduced with the encryption company Cellcrypt, offers business and government customers’ end-to-end encryption for voice calls on iOS, Android, or BlackBerry devices equipped with a special app. The encryption software provides secure communications for people speaking on devices with the app, regardless of their wireless carrier, and it can connect to an organization’s secure phone system. All this will cost you $45 per device each month.

All sounds good but then comes the part which Verizon and Cellcrypt fail to understand why people want their product in the first place.

Cellcrypt and Verizon both say that law enforcement agencies will be able to access communications that take place over Voice Cypher, so long as they are able to prove that there is a legitimate law enforcement reason for doing so.

Seth Polansky, Cellcrypt’s vice president for North America, said building technology to allow wiretapping was not a security risk. “It’s only creating a weakness for government agencies,” he says. “Just because a government access option exists, it doesn’t mean other companies can access it.”

While Verizon is required by US law to build networks that can be wiretapped, the Communications Assistance for Law Enforcement Act requires phone carriers to decrypt communications for the government only if they have designed their technology to make it possible to do so. All Verizon and Cellcrypt needed to do is structure their encryption so that neither company had the information necessary to decrypt the calls, they would not have been breaking the law.

Verizon believes major demand for its new encryption service will come from governmental agencies conveying sensitive but unclassified information over the phone. It might have a point – such agencies want encryption and do not have to worry about others snooping on them.

 

BT writes £12.5 billion cheque for EE

handsetBT has confirmed it will acquire EE in a move that will scare the beejeesus out of the UK mobile market.

Buying EE will give BT the biggest 4G network in the UK which it is says will complement its fibre network.

BT had been using EE’s network for its mobile virtual network operator deal, but hopes the deal will enable it to create a complete network for its customers so they are using its services, whether at home on fixed connections or on the go using the mobile services, or its existing WiFi services.

It also gets 24.5 million customers currently on the EE network.

We expect to see deals involving telephone, mobile phone, broadband and mobile services in one bundle.

BT accountants already think that they will save a pile through network and IT rationalisation as well as in areas of procurement, marketing and sales costs.

Still it is bad news for O2 which was touted to be the other company that BT was thinking of buying. The decision not to go with O2 will be a blow to the Spanish Telefónica which had been keen to flog its business unit in the UK.

If approved the deal will mean Deutsche Telekom as a 12 percent share in BT and a seat on the company’s board. Orange will take just a four percent share and will not have a seat on the board.

It is not all clear sailing though. The deal has to be approved by the Ofcom regulator.  While it is not likely to block the deal, the combined entity could be forced to dispose of some spectrum. BT’s Openreach and Wholesale units might have to be hived off from the main company.

 

Snowden taught companies something

Edward_SnowdenAfter years of ignoring warnings from experts, companies and individuals started to take security more seriously after the Snowden leaks, according to a new survey.

More than 39 per cent have taken steps to protect their online privacy and security because of spying revelations by one-time NSA employee Edward Snowden, according to the Centre for International Governance Innovation (CIGI).

The survey found that 43 percent of Internet users now avoid certain websites and applications and 39 percent change their passwords regularly.

The survey reached 23,376 internet users in 24 countries and was conducted between October 7 and November  12.

More than 39  percent of those surveyed indicated they are taking steps to safeguard their online data from government prying eyes.

Writing in his blog, Security specialist Bruce Schneier said that Snowden’s whistleblowing on the NSA is having an enormous impact.

“I ran the actual numbers country by country, combining data on Internet penetration with data from this survey. Multiplying everything out, I calculate that 706 million people have changed their behavior on the Internet because of what the NSA and GCHQ [a British intelligence and security organization] are doing.”

This means that two-thirds of users indicated they are more concerned today about online privacy than they were a year ago. When given a choice of various governance sources to effectively run the world-wide Internet, a majority chose the multi-stakeholder option — a “combined body of technology companies, engineers, non-governmental organizations and institutions that represent the interests and will of ordinary citizens, and governments.”

A majority indicated they would also trust an international body of engineers and technical experts to store their online data, while only 36 percent of users would trust the United States to play an important role in running the Internet.

Nearly three-quarters of the Internet users surveyed indicated they want their online data and personal information to be physically stored on a secure server in their own country.

Those surveyed also indicated that 64 percent are concerned about government censorship of the Internet and 62 percent are worried about government agencies from countries other than the US secretly monitoring their online activities

Another notable finding was that 83 percent of people believe that affordable access to the internet should be a basic human right.

 

Samsung and Apple back together

Samsung HQ Silicon Valley - MM picThe dark satanic rumour mill has manufactured a hell on earth yarn which claims that Apple is now back in love with Samsung and the pair have produced a new monstrous off-spring called the A9 chip.

According to the Korean IT News  Samsung Electronics has begun production of ‘A9,’ the application processor for Apple’s next-generation smartphone. It applies the 14nm FinFET microprocess for system semiconductors, for the first time.

Samsung began production of Apple’s A9 in the Austin plant in the US using the 14nm FinFET technology. Samsung has production lines capable of FinFET process production in Austin, US and Giheung, Korea, but began to produce A9 only in Austin as it is in the initial stage.

The outfit said that it would start production of the 14nm FinFET chip at the end of this year, but did not disclose whether the company received an order from Apple for the production of A9 chips or whether the production line is actually running.

Samsung is happy with the yield of the 14nm FinFET process, and supplied samples as good as finished products early enough.

The Austin plant began official production first at Apple’s request, and industry insiders said it is a move to produce the chip in the US, not Korea. They guessed that the Austin plant was chosen because of the next-generation chip’s problems with performance security and supply.

The initiation of the A9 chip production enabled Samsung to recover the foundry quantities from Apple, which have been discontinued for some time, and get the upper hand in the 14nm FinFET technology competition with TSMC, killing two birds with one stone.

However, this is clearly a burying of the hatchet between the two companies. Apple and Samsung stopped AP production as they were embroiled in patent litigation back in 2012. It appears that Apple has been lured back to Samsung with its winsome 14nm FinFET ways.

Relationship counsellors are quick to warn that it is early days yet.  Apple has been seeing other people during the break. Taiwan’s TSMC began the risk production of the 16nm FinFET plus (16FF+) process, and began to produce chips in July earlier than originally anticipated Q3.

Apple is effectively two timing the rivals. Shuttling between Samsung and TSMC, if TSMC’s production line is stabilised in the future, there is no knowing how SEC will respond.

Samsung’s foundry business was hit hard when Apple orders stopped. Although the entire semiconductor business is booming, securities companies predict that the system LSI business, including the foundry business, will suffer a loss to the tune of KRW800 billion this year. SEC is expected to recover sales loss to a certain extent with the production of Apple A9.

 

Sony was going to be a fake pirate

 0099413191_LEmails found by hackers turning over Sony have revealed a cunning plan by Sony’s TV and movie division to flood pirate sites with fake files.

The plan was to circulate a fake version of a television show on torrent sites but instead of a full file it was just going to promote the real show and explain where to buy content.

The idea was praised for being “clever” but spiked because of a strict policy against using torrent sites.

Pamela Parker, a senior executive in the division responsible for international television content, wrote in an email that was leaked to the public after hackers attacked Sony Pictures Entertai​nment that she loved the idea.

“Unfortunately the studio position is that we absolutely cannot post content (even promos) on torrent sites,

“The studio spends millions of dollars fighting piracy and it doesn’t send a good message if we then start using those same pirate sites to promote our shows.”

Sony’s lawyers were also concerned that official use of torrent sites would complicate any lawsuits the industry might want to bring against them in the future.

Paula Askanas, executive vice president of communications for international television, said in another leaked email that there was some concern that doing anything could inhibit the MPAA in a future lawsuit going after the sites.

The matter came up back in March, just after the second season of the thriller series “Hannibal”—which Sony says is one of its most-pirated shows in Europe—had premiered in the US and was starting to show up on illegal filesharing sites.

The plan, which was championed by Polish marketing employee Magda Mastalerz, was to upload a 60-second “Hannibal”-themed anti-piracy ad to popular torrent sites disguised as the first episode. The promo was aimed at convincing people in Central Europe to stop downloading and watch the show legally on the Sony-owned channel AXN.

Sony’s lawyers and the executive vice president responsible for intellectual property quickly struck it down. The final decision: “no one is allowed to use these pirate sites as marketing tools,” as Askanas wrote.

 

Dutch prepare to take on Google

boyne2_1Search engine outfit Google could face fines of up to $18.6 million if it does not stop violating the privacy of internet users in the Netherlands, the Dutch data protection agency warned.

The DPA said that Google is breaching the country’s data protection act by using people’s private information such as browsing history and location data to target them with customised ads.

Google has until the end of February to change how it handles the data it collects from individual web users or will have to start writing cheques.

The company’s handling of user data under its new privacy guidelines, introduced in 2012, has also been under investigation in five other European countries – France, Germany, Britain, Italy and Spain.

Jacob Kohnstamm, chairman of the Dutch DPA appears to have had a gutsful of Google prevaricating.

“This has been ongoing since 2012 and we hope our patience will no longer be tested,” said.

Google needs to adequately inform users in advance and ask for permission before it uses data in this way, the DPA said.

It ordered the company to stop the violations or face incremental fines up to a maximum of 15 million euros. It said Google must start informing users of its actions and seeking their consent.

Google should be careful, the Dutch managed to humiliate the British Empire on more than one occasion and a tech Empire should be a doddle.

 

Apple engineer admits blocking rivals

two-applesA former iTunes engineer told a federal antitrust case he was involved in a project “intended to block 100 per cent of non-iTunes clients” and “keep out third-party players” that competed with Apple’s iPod.

Plaintiffs subpoenaed the engineer, Rod Schultz, to show that Apple tried to suppress rivals to iTunes and iPods. They argue that Apple’s anticompetitive actions drove up the prices for iPods from 2006 to 2009. They want $350 million in damages, which could be tripled under antitrust laws.

Schultz said he was an unwilling witness and did not want to talking about his work on iTunes from 2006-2007, part of which was code-named “Candy”.

However, in 2012 Schultz wrote an academic paper citing “a secret war” Apple fought with iTunes hackers. In the paper, he wrote, “Apple was locking the majority of music downloads to its devices.” Judge Yvonne Gonzalez Rogers did not admit the paper as evidence in the case.

Outside the courtroom, Schultz said the early work of his former team reflected the digital-music market’s need for copyright protections of songs. Later, though, he said it created “market dominance” for the iPod.

Schultz was the final witness in the case after a 10-year legal battle. The testimony has offered a view into how digital music evolved in the mid-2000s as Apple co-founder Steve Jobs and other Apple executives were shaping technology and a new marketplace.

Apple argues, and Schultz agreed, that it released many improvements to iTunes, and not isolated changes to stifle competition. Apple says the security measures that Schultz worked on were designed to protect its systems and users’ which would have been compromised by other players and file formats.

Judge Rogers said she plans to send the case to the jury early next week.

 

Sony gets grumpy at newspapers

GodSilenceThe movie and music maker Sony has decided that the best way to stop people talking about the hack of its networks is to ask news organisations to stop reporting it.

Sony told some news organisations to stop publishing information contained in documents stolen by hackers who attacked the movie studio’s computer network last month.

The New York Times, The Hollywood Reporter and Variety published stories reporting that they had each received a letter from David Boies, a lawyer for Sony, demanding that the outlets stop reporting information contained in the documents and immediately destroy them.

The studio “does not consent to your possession, review, copying,  dissemination, publication, uploading, downloading or making any use” of the information, Boies wrote in the letter.

New York Times spokeswoman Eileen Murphy told Reuters that : “Any decisions about whether or how to use any of the information will take into account both the significance of the news and the questions of how the information emerged and who has access to it.”

The unidentified hackers have released troves of documents that include employee salaries and financial information, marketing plans and contracts with business partners. Newspapers have obtained some mileage from an exchange in which Co-Chairman Amy Pascal joked about President Barack Obama’s race.

Pascal is meeting civil rights leader Reverend Al Sharpton, whose spokeswoman says he is weighing whether to call for her resignation.

Seagate builds cut-price 8TB hard drive

phpgheqmoSeagate has just announced its ‘Archive HDD’ series which offers densities of 5TB, 6TB, and 8TB for a cut price. Not only is 8TB grabbing the headlines, it costs $260.

Seagate is bringing out shingled magnetic recording, which it thinks will be the next new thing.  Having had shingles we don’t think it is something we would like our hard-drive to suffer from, but at those densities and prices we are included to let the thing suffer.

SMR aligns drive tracks in a singled pattern. With this design, Seagate is able to cram much more storage into the same physical area. Seagate isn’t the first out the door with an 8TB model, however, as HGST released one earlier this year. In lieu of a design like SMR, HGST decided to go the helium route, allowing it to pack more platters into a drive.

SMR is a little more elegant, and a bit cheaper.

Like most other high-density drives, Seagate’s Archive HDD series spins at about 5400 RPM which is a little on the slow side. It means it is good for regular storage, not data like games or applications.

Still you might need a couple of these drives — 8TB is a lot of data to lose at once and you are going to need a lot of redundancy if you buy one.

 

Spanish press backtracks on Google News

web-abc-madrid_sevillaAfter Google stopped printing news snippets on its News page from Spanish newspapers, the websites of those esteemed organs died.

Now it seems that the Spanish newspapers are asking the government to step in to force Google back.

Google shut its Google News service in Spain after the country bought in a new copyright law which would have forced Google to pay for the use of news snippets.

The Spanish Newspaper Publishers’ Association (AEDE) issued a statement last night saying that Google News was “not just the closure of another service given its dominant market position”, recognising that Google’s decision: “will undoubtedly have a negative impact on citizens and Spanish businesses.

“Given the dominant position of Google (which in Spain controls almost all of the searches in the market and is an authentic gateway to the Internet), AEDE requires the intervention of Spanish and community authorities, and competition authorities, to effectively protect the rights of citizens and companies”.

In other words, Google has the newspaper industry by the short and curlies and if the Spanish government does not do something quick, there will not be an industry to moan about the search engine’s control.

The only workable option is to take the route followed in Germany: to give Google a special deal that allows it to carry on as before, but without having to pay — which would gut the new copyright law completely.

It would also mean that Google would not only be allowed to do what it likes, but continue to have total control of the world’s media. It seems the Spanish Newspapers have found out the hard way that Google already uses its algorithm to decide what is news and which magazines have a right to exist