Archives
Categories
Category Archives: Security
CISPA: The Fight for Privacy Continues
The price of freedom, it is said, is eternal vigilance. That has been demonstrated once again in the ongoing legal struggle over privacy on the Internet. The celebration and congratulations among the people who united to defeat SOPA, the “Stop Online Piracy Act“, the last proposed draconian legislation aimed at protecting copyright and intellectual property, had not even ended before another such bill was proposed. This one is called CISPA, the “Cyber Intelligence Sharing and Protection Act“, which indicates it’s a somewhat different beast than SOPA, directed against hackers rather than file-sharers. (You can download a PDF of the actual bill, H.R. 3523, here.) It’s not quite SOPA risen like a zombie from the grave, but it is written in such ambiguous language that many privacy advocates consider it even more insidious and potentially harmful. CISPA, opponents claim, allow “cyber entities” such as ISPs, social networks, and cell phone and other service providers, to circumvent Internet privacy laws. It allows the government to monitor online communications if it suspects any kind of cybersecurity threat to be involved. And since the bill does not really define cybersecurity, that leaves the door wide open, allowing virtually anyone to be spied on for any reason. Not only the government is given this power. If a cyber entity thinks a threat is involved, it can take action. The only safeguard built in is that it cannot be done for “unfair competitive advantage”. All that’s … Continue reading
Posted in News, Security
Tagged CISPA, copyright, cybercrime, EFF, file sharing, Protect IP Act, security, SOPA
Comments Off
Flashback Trojan is a Warning to Mac Owners
It finally happened: for the first time, Macintosh computers have been attacked by a trojan virus in a big way. Few viruses have ever targeted them before, and for decades Apple owners were told simply not to worry, that viruses were a Microsoft problem. Now the owners of over a half-million Mac OS X computers share the pain – and some of the vulnerability – that Windows users have long been familiar with. The malware is called Flashback, and was discovered not long ago by Kaspersky Labs, a leading Moscow-based software security firm. Flashback can hijack a Mac without even an administrative password, due to its exploit of a flaw in Java. Though discovered last September, Oracle, the company that makes Java, patched the hole back in February, but that didn’t solve the problem. It turns out Apple ships its own version of Java, and their patches weren’t issued until early April. (Obviously, the company has a learning curve about prompt and effective security responses in front of them.) By now there are a lot of infected Macintoshes – not really all that many by Windows standards, but it can still spoil your day if you have one. The virus masquerades as an installer for Adobe’s Flash, and it can install itself. All you have to do is visit an infected website with an unprotected computer. As of the latest reports, the trojan has created a botnet – a network … Continue reading
IRS helps enable online tax fraud
Your friends at the Internal Revenue Service are eager to get everyone to do their federal taxes online. But in their efforts to make everything quick and easy, they’ve wound up helping Internet tax scammers, too. And it’s not a phishing scheme or involves hacking, but is based on filing false online returns and collecting the refund. So this tax season, the government is warning people of the dangers. Identity thieves are very busy – last year, the IRS identified nearly a million fraudulent returns to the tune of $6.5 billion. Over half of these were related to identify theft, which is three times the amount of just three years before. And those are just the ones caught before any refunds had been issued. The IRS can’t, or won’t, even estimate how much money they’ve actually sent to scammers. Tax fraud has become an epidemic especially in areas like South Florida, with some gangs replacing drug sales and robberies with online crimes committed with iPads. Gangs even hold work parties to teach each other and commit hundreds of crimes in a single session. So many local officials are complaining about the lack of governmental concern and effective action. Working the fraud, authorities claim, is quite simple, and there are even written tutorials for thieves. The criminals first acquire victims’ Social Security numbers and other personal information. Perhaps they buy the data from insiders with access to medical or financial records or … Continue reading