Crazy cyber-attack map

[Monte Carlo]

Loving this but is it real?

 

http://www.sicherheitstacho.eu/

[PK htiw klaw eriF]

Loving this but is it real?

Russians spending their days attacking people electronically? Very likely.

[Gorgon]

Could be legislation and logistics, that it's easier to set up in Russia if you want to run a hacking campaign. Russian hackers are cheap and talented and very much for hire.

[Gorth]

It's those you don't notice that worries me.

[Raithe]

Well the past few years has a lot of the international police pretty much saying that a ridiculously large percentage of all organised cyber-crime is in some way backed by the assorted Bratva and Vory groups from Eastern Europe / Russia way.

 

It's kind of quirky how it breaks down. Cyber-Espionage tends to be China, Cyber-Crime (ala Botnet's, ID theft, credit card fraud etc) tends to the Bratva and Vory if we're talking the big, organised crime.

[Meshugger]

[Raithe]

In another semi-tangent..  Reuters - US Cyberplans call for more routine scanning of private web traffic

 

The U.S. government is expanding a cybersecurity program that scans Internet traffic headed into and out of defense contractors to include far more of the
country's private, civilian-run infrastructure.
 

As a result, more private sector employees than ever before, including those at big banks, utilities and key transportation companies, will have their emails and Web
surfing scanned as a precaution against cyber attacks.

 

Under last month's White House executive order on cybersecurity, the scans will be driven by classified information provided by U.S. intelligence agencies - including data from the National Security Agency (NSA) - on new or especially serious espionage threats and other hacking attempts. U.S. spy chiefs said on March 12 that cyber attacks have
supplanted terrorism as the top threat to the country.

 

The Department of Homeland Security will gather the secret data and pass it to a small group of telecommunication companies and cybersecurity providers that have employees holding security clearances, government and industry officials said. Those companies will then offer to process email and other Internet transmissions for critical
infrastructure customers that choose to participate in the program.

 

By using DHS as the middleman, the Obama administration hopes to bring the formidable overseas intelligence-gathering of the NSA closer to ordinary U.S. residents without triggering an outcry from privacy advocates who have long been leery of the spy agency's eavesdropping.

 

The telecom companies will not report back to the government on what they see, except in aggregate statistics, a senior DHS official said in an interview granted on condition he not be
identified.

 

"That allows us to provide more sensitive information," the official said. "We will provide the information to the security service providers that they need to perform this function." Procedures are to be established within six months of the order.

 

The administration is separately seeking legislation that would give incentives to private companies, including communications carriers, to disclose more to the government. NSA Director General Keith Alexander said last week that NSA did not want personal data but Internet service providers could inform the government about malicious software they find and the Internet Protocol addresses they were sent to and from.

 

"There is a way to do this that ensures civil liberties and privacy and does ensure the protection of the country," Alexander told a congressional hearing.

 

SENSITIVE INFORMATION SHARING

 

In the past, Internet traffic-scanning efforts were mainly limited to government networks and Defense Department contractors, which have long been targets of foreign espionage.

 

But as fears grow of a destructive cyber attack on core, non-military assets, and more sweeping security legislation remained stalled, the Obama administration opted to widen the program.

 

Last month's presidential order calls for commercial providers of "enhanced cybersecurity services" to extend their offerings to critical infrastructure companies. What constitutes critical
infrastructure is still being refined, but it would include utilities, banks and transportation such as trains and highways.

 

Under the program, critical infrastructure companies will pay the providers, which will use the classified information to block attacks before they reach the customers. The classified
information involves suspect web addresses, strings of characters, email sender names and the like.

 

Not all the cybersecurity providers will be telecom companies, though AT&T Inc is one. Raytheon Co said this month it had agreed with DHS to become a provider, and a spokesman said that customers could route their traffic to Raytheon after receiving it from their communications company.

 

As the new set-up takes shape, DHS officials and industry executives said some security equipment makers were working on hardware that could take classified rules about blocking traffic and act on them without the operator being able to reverse-engineer the codes. That way, people wouldn't need a security clearance to use the equipment.

 

DEEP PACKET INSPECTION?

 

The issue of scanning everything headed to a utility or a bank still has civil liberties implications, even if each company is a voluntary participant.

 

Lee Tien, a senior staff attorney with the nonprofit Electronic Frontier Foundation, said that the executive order did not weaken existing privacy laws, but any time a machine acting on classified information is processing private communications, it raises questions about the possibility of secret extra functions that are unlikely to be answered definitively.

 

"You have to wonder what else that box does," Tien said.

 

One technique for examining email and other electronic packets en route, called deep packet inspection, has stirred controversy for years, and some cybersecurity providers said they would not be using that. In deep packet inspection, communication companies or others with network access can examine all the elements of a transmission, including the
content of emails.

 

"The signatures provided by DHS do not require deep packet inspection," said Steve Hawkins, vice president at Raytheon's Intelligence and Information Systems division, referring further questions to DHS.

 

The DHS official said the government is still in conversations with the telecom operators on the issue.

 

The official said the government had no plans to roll out any such form of government-guided close examination of Internet traffic into the communications companies serving the general public

 

[JFSOCC]

So we give up more and more of our privacy in the name of security. I won't stand for it.

[Meshugger]

I do not think that by sitting will make it any better either.

Edited March 24, 2013 by Meshugger

[babaganoosh13]

Places like Google, Yahoo, PayPal, banks ect. should have this simple security feature:

 

If someone is trying to access an account from a different hemisphere, don't let them on unless they arranged it ahead of time. Perhaps with a check box in security features. I'm just sayin'.

[NOK222]

Could be real, could be not, I see this as mass hysteria in order to infringe on our rights.

[Walsingham]

At 2 and a half million attacks from Russia alone (according to that link) I'd say it's a serious issue.

 

I believe that "ze barbarians" are one of many reasons why we're witnessing the death throes of the net as we've got used to it. Free traffic brings free exploitation.

 

Fundamentally, and because these is a free-wheeling forum, I'll ask a test question:

 

What does UK PLC gain by exposing our 'net to Russia? Besides Oby, of course.

[Gorth]

At 2 and a half million attacks from Russia alone (according to that link) I'd say it's a serious issue.

 

I believe that "ze barbarians" are one of many reasons why we're witnessing the death throes of the net as we've got used to it. Free traffic brings free exploitation.

 

Fundamentally, and because these is a free-wheeling forum, I'll ask a test question:

 

What does UK PLC gain by exposing our 'net to Russia? Besides Oby, of course.

Free porn, cheap viagra and second hand AK-47's?

[obyknven]

Russian hacker the best.

 

http://www.bbc.co.uk/news/technology-21954636

Global internet slows after 'biggest attack in history'

 

[LadyCrimson]

Haven't noticed any slowdowns anywhere myself. I must not surf that part of the internet.

[Gfted1]

Me either. Would have never known anything happened if I didnt read about it.

[Walsingham]

 

Russian hacker the best.

 

http://www.bbc.co.uk/news/technology-21954636

Global internet slows after 'biggest attack in history'

 

Russian cholera also best.

[obyknven]

Anonymous do it again

http://youtu.be/lVeVSr2Iu6I

 

OpIsrael PDF of 35,000 Alleged Mossad Agents
http://cryptome.org/2013/03/mossad-opisrael.pdf

OpIsrael XLSX of 35,000 Alleged Mossad Agents
http://cryptome.org/2013/03/mossad-opisrael.zip