government – Page 55

Russian man gets longest-ever US hacking sentence, 27 years in prison

Images of Seleznev with stacks of cash were found on his laptop following his 2014 arrest in the Maldives. (credit: Department of Justice ) Russian hacker Roman Seleznev was sentenced to 27 years in prison today. He was convicted of causing more than $169 million in damage by hacking into point-of-sale computers. Seleznev, aka “Track2,” would hack into computers belonging to both small businesses and large financial institutions, according to prosecutors. He was arrested in the Maldives in 2014 with a laptop that had more than 1.7 million credit card numbers. After an August 2016 trial, Seleznev was convicted on 38 counts, including wire fraud, intentional damage to a protected computer, and aggravated identity theft. The sentence is quite close to the 30 years that the government asked for. Prosecutors said Seleznev deserved the harsh sentence because he was “a pioneer” who helped grow the market for stolen credit card data and because he “became one of the most revered point-of-sale hackers in the criminal underworld.” Read 6 remaining paragraphs | Comments

H-1B visa applications cap out in just five days

Enlarge / The Chet Holifield Federal Building in Laguna Niguel, California. Tens of thousands of visa applications were delivered to the building last week, which is home to one of several USCIS service centers. Last Monday, the government began accepting applications for H-1B visas that are often granted to foreign tech workers. Trucks full of thick Fedex applications lined up before dawn to get their applications in. By Friday, the door was shut. US Customs and Immigration Service (USCIS) said on Friday they have already maxed out , hitting the limit of 65,000 H-1B visas set by Congress and an additional 20,000 visas that are reserved for applicants who have masters degrees. It’s the fifth year in a row that the cap has been met within five days. Some H-1B employers aren’t subject to the visa cap, including universities and some non-profits. Read 3 remaining paragraphs | Comments

See more here:
H-1B visa applications cap out in just five days

Hundreds of Cisco Switches Vulnerable To Flaw Found in WikiLeaks Files

Zack Whittaker, writing for ZDNet: Cisco is warning that the software used in hundreds of its products are vulnerable to a “critical”-rated security flaw, which can be easily and remotely exploited with a simple command. The vulnerability can allow an attacker to remotely gain access and take over an affected device. More than 300 switches are affected by the vulnerability, Cisco said in an advisory. According to the advisory, the bug is found in the cluster management protocol code in Cisco’s IOS and IOS XE software, which the company installs on the routers and switches it sells. An attacker can exploit the vulnerability by sending a malformed protocol-specific Telnet command while establishing a connection to the affected device, because of a flaw in how the protocol fails to properly process some commands. Cisco said that there are “no workarounds” to address the vulnerability, but it said that disabling Telnet would “eliminate” some risks. Read more of this story at Slashdot.

View original post here:
Hundreds of Cisco Switches Vulnerable To Flaw Found in WikiLeaks Files

The US Army Finally Gets The World’s Largest Laser Weapon System

It’s been successfully tested on trucks, as well as UAVs and small rockets, according to a video from Lockheed Martin, which is now shipping the first 60kW-class “beam combined” fiber laser for use by the U.S. Army. An anonymous reader quotes the Puget Sound Business Journal: Lockheed successfully developed and tested the 58 kW laser beam earlier this year, setting a world record for this type of laser. The company is now preparing to ship the laser system to the U.S. Army Space and Missile Defense Command/Army Forces Strategic Command in Huntsville, Alabama [according to Robert Afzal, senior fellow for Lockheed’s Laser and Sensor Systems in Bothell]. “We have shown that a powerful directed energy laser is now sufficiently light-weight, low volume and reliable enough to be deployed on tactical vehicles for defensive applications on land, at sea and in the air…” Laser weapons, which complement traditional kinetic weapons in the battlefield, will one day protect against threats such as “swarms of drones” or a flurry of rockets and mortars, Lockheed said. Read more of this story at Slashdot.

Rare Nuclear Test Films Saved, Declassified, and Uploaded to YouTube

From 1945 until 1962, the United States conducted 210 atmospheric nuclear tests—the kind with the big mushroom cloud and all that jazz. Above-ground nuke testing was banned in 1963, but there are thousands of films from those tests that have just been rotting in secret vaults around the country. But starting today you… Read more…

Taken from:
Rare Nuclear Test Films Saved, Declassified, and Uploaded to YouTube

‘We Didn’t Lose Control Of Our Personal Data — It Was Stolen From Us By People Farmers’

Sir Tim Berners-Lee, the inventor of the worldwide web, wrote an open-letter over the weekend to mark the 28th anniversary of his invention. In his letter, he shared three worrisome things that happened over the last twelve months. In his letter, Berners-Lee pointed out three things that occurred over the past 12 months that has him worried: we do not assume control of our personal data anymore; how easy it is for misinformation to spread on the web; and lack of transparency on political advertising on the web. Cyborg rights activist Aral Balkan wrote a piece yesterday arguing that perhaps Berners-Lee is being modest about the things that concern him. From the article: It’s important to note that these (those three worrisome things) are not trends and that they’ve been in the making for far longer than twelve months. They are symptoms that are inextricably linked to the core nature of the Web as it exists within the greater socio-technological system we live under today that we call Surveillance Capitalism. Tim says we’ve “lost control of our personal data.” This is not entirely accurate. We didn’t lose control; it was stolen from us by Silicon Valley. It is stolen from you every day by people farmers; the Googles and the Facebooks of the world. It is stolen from you by an industry of data brokers, the publishing behavioural advertising industry (“adtech”), and a long tail of Silicon Valley startups hungry for an exit to one of the more established players or looking to compete with them to own a share of you. The elephants in the room — Google and Facebook — stand silently in the wings, unmentioned except as allies later on in the letter where they’re portrayed trying to “combat the problem” of misinformation. Is it perhaps foolish to expect anything more when Google is one of the biggest contributors to recent web standards at the W3C and when Google and Facebook both help fund the Web Foundation? Let me state it plainly: Google and Facebook are not allies in our fight for an equitable future — they are the enemy. These platform monopolies are factory farms for human beings; farming us for every gram of insight they can extract. If, as Tim states, the core challenge for the Web today is combating people farming, and if we know who the people farmers are, shouldn’t we be strongly regulating them to curb their abuses? Read more of this story at Slashdot.

See the article here:
‘We Didn’t Lose Control Of Our Personal Data — It Was Stolen From Us By People Farmers’

Intel Security Releases Detection Tool For EFI Rootkits After CIA Leak

After WikiLeaks revealed data exposing information about the CIA’s arsenal of hacking tools, Intel Security has released a tool that allows users to check if their computer’s low-level system firmware has been modified and contains unauthorized code. PCWorld reports: The release comes after CIA documents leaked Tuesday revealed that the agency has developed EFI (Extensible Firmware Interface) rootkits for Apple’s Macbooks. The documents from CIA’s Embedded Development Branch (EDB) mention an OS X “implant” called DerStarke that includes a kernel code injection module dubbed Bokor and an EFI persistence module called DarkMatter. In addition to DarkMatter, there is a second project in the CIA EDB documents called QuarkMatter that is also described as a “Mac OS X EFI implant which uses an EFI driver stored on the EFI system partition to provide persistence to an arbitrary kernel implant.” The Advanced Threat Research team at Intel Security has created a new module for its existing CHIPSEC open-source framework to detect rogue EFI binaries. CHIPSEC consists of a set of command-line tools that use low-level interfaces to analyze a system’s hardware, firmware, and platform components. It can be run from Windows, Linux, macOS, and even from an EFI shell. The new CHIPSEC module allows the user to take a clean EFI image from the computer manufacturer, extract its contents and build a whitelist of the binary files inside. It can then compare that list against the system’s current EFI or against an EFI image previously extracted from a system. Read more of this story at Slashdot.

University of California, Berkeley, To Delete Publicly Available Educational Content

In response to a U.S. Justice Department order that requires colleges and universities make website content accessible for citizens with disabilities and impairments, the University of California, Berkeley, will cut off public access to tens of thousands of video lectures and podcasts. Officials said making the videos and audio more accessible would have proven too costly in comparison to removing them. Inside Higher Ed reports: Today, the content is available to the public on YouTube, iTunes U and the university’s webcast.berkeley site. On March 15, the university will begin removing the more than 20, 000 audio and video files from those platforms — a process that will take three to five months — and require users sign in with University of California credentials to view or listen to them. The university will continue to offer massive open online courses on edX and said it plans to create new public content that is accessible to listeners or viewers with disabilities. The Justice Department, following an investigation in August, determined that the university was violating the Americans With Disabilities Act of 1990. The department reached that conclusion after receiving complaints from two employees of Gallaudet University, saying Berkeley’s free online educational content was inaccessible to blind and deaf people because of a lack of captions, screen reader compatibility and other issues. Cathy Koshland, vice chancellor for undergraduate education, made the announcement in a March 1 statement: “This move will also partially address recent findings by the Department of Justice, which suggests that the YouTube and iTunes U content meet higher accessibility standards as a condition of remaining publicly available. Finally, moving our content behind authentication allows us to better protect instructor intellectual property from ‘pirates’ who have reused content for personal profit without consent.” Read more of this story at Slashdot.

See original article:
University of California, Berkeley, To Delete Publicly Available Educational Content

More Fast Food Restaurants Are Now Automating

An anonymous reader writes: Wendy’s is adding self-service ordering kiosks “to at least 1, 000 restaurants, or about 15% of its stores, ” reports the Los Angeles Times, while McDonald’s and Panera Bread are now planning to add kiosks to every restaurant. “Lots of restaurants, not just fast-food chains, are really trying to mitigate the costs of higher wages, ” says one market research firm, while also citing a survey which found 40% of millennials willing to use kiosks (compared to 30% of restaurant-goers overall). But in some cases this means more work for human employees. Quartz points out that McDonalds doesn’t plan to reduce its workforce after installing kiosks, and Panera Bread “has said that at some locations where it has ordering kiosks, it has actually increased human hours to help the kitchen keep up with the higher number of orders that come in through the more efficient ordering system.” Read more of this story at Slashdot.

See more here:
More Fast Food Restaurants Are Now Automating

Bill Would Legalize Active Defense Against Hacks

Trailrunner7 quotes a report from On the Wire: A new bill intended to update the Computer Fraud and Abuse Act would allow victims of computer attacks to engage in active defense measures to identify the attacker and disrupt the attack. Proposed by Rep. Tom Graves (R-Ga.), the bill would grant victims of computer intrusions unprecedented rights. Known as the Active Cyber Defense Certainty Act, the legislation seeks to amend the CFAA, the much-maligned 1986 law that is used in most computer crime prosecutions. The proposed legislation includes the caveat that victims can’t take any actions that destroy data on another person’s computer, causes physical injury to someone, or creates a threat to public safety. The concept of active defense has been a controversial one in the security community for several years, with many experts saying the potential downside outweighs any upside. Not to mention that it’s generally illegal. Read more of this story at Slashdot.

Original post:
Bill Would Legalize Active Defense Against Hacks

Ken May

Tag: government