wired – Page 16

Stuxnet spawn infected Kaspersky using stolen Foxconn digital certificates

Some of the malware that infected the corporate network of antivirus provider Kaspersky Lab concealed itself using digital certificates belonging to Foxconn, the electronics manufacturing giant and maker of the iPhone, Xbox, and other well-known products. Cryptographically generated credentials are required to install drivers on newer, 64-bit versions of Windows. Foxconn used one such certificate when installing several legitimate drivers on Dell laptop computers in 2013. Somehow, the attackers who infected the Kaspersky Lab network appropriated the digital seal and used it to sign their own malicious drivers. As Ars explained last week, the drivers were the sole part of the entire Duqu 2.0 malware platform that resided on local hard drives. These drivers were on Kaspersky firewalls, gateways, or other servers that had direct Internet access and were used to surreptitiously marshal sensitive information in and out of the Kaspersky network. Not the first time The Foxconn certificate is the third one used to sign malware that has been linked to the same advanced persistent threat (APT) attackers. The Stuxnet malware, which reportedly was developed by the US and Israel to sabotage Iran’s nuclear program, used a digital certificate from Realtek, a hardware manufacturer in the Asia Pacific region. A second driver from Jmicron, another hardware maker in the Asia Pacific, was used several years ago to sign Stuxnet-related malware developed by some of the same engineers. Like the previous two certificates, the one belonging to Foxconn had never been found signing any other malicious software. Read 9 remaining paragraphs | Comments

Read the original:
Stuxnet spawn infected Kaspersky using stolen Foxconn digital certificates

Xbox 360 backward compatibility coming to Xbox One

LOS ANGELES—While Microsoft’s pre-E3 press conference focused largely on newer video games, the event also filled in a pretty major gap for hardware-upgrading holdouts: backward compatibility. Starting later this year, the company’s newest console, the Xbox One, will support a limited number of older Xbox 360 games. Gamers will have two ways of playing old games that are part of the backward-compatible initiative. If users already purchased the games digitally through Xbox Live, they can simply log in and re-download the game on Xbox One without paying any additional cost. If they own the game as a disc, they’ll have to download the game to their Xbox One hard drive, and the system will then check for the disc before launching the game. Technical details on how this works are still unknown. The hardware of the Xbox 360 is very different from the hardware of the Xbox One, and pure emulation of the kind used in console emulators such as MESS and arcade emulators like MAME is technically improbable ; Xbox 360 is simply too fast and too new. The limited compatibility and need to download even those games that are owned on disc suggests to us that some mix of recompilation and emulation is in use. Read 4 remaining paragraphs | Comments

Excerpt from:
Xbox 360 backward compatibility coming to Xbox One

Intercepted WhatsApp messages led to Belgian terror arrests

The FBI has been lobbying hard to get unfettered access to the messages passed by encrypted messaging services. But they apparently didn’t need that level of access to WhatsApp messages sent between members of an alleged Chechen jihadist group operating in Belgium. According to a report by Bloomberg , a pair of men were arrested and warrants were issued for three others for allegedly preparing for a terrorist attack in Belgium. The arrests followed raids in which 16 people were detained, which Belgian law enforcement officials said was the result of “working with U.S. authorities to monitor suspects’ communications on WhatsApp Inc.’s messaging service,” Bloomberg’s Gaspard Sebag reported. The police investigation began after they obtained information about a man who had returned to Belgium after fighting as a jihadi in Syria. Ars reached out to WhatsApp and to Facebook, which completed its acquisition of WhatsApp in October. A spokesperson from Facebook declined to comment on the matter. But WhatsApp began providing end-to-end (E2E) encryption of its messages last November with the incorporation of security researcher Moxie Marlinspike’s WhisperSystems encryption protocol TextSecure. In theory, if TextSecure were in use by the alleged terrorists, the content of their messages would have been very difficult to read; the TextSecure protocol continuously changes pairs of encryption keys with each new message. But it’s uncertain that the messages were encrypted—particularly since E2E encryption is not supported by the Apple iOS version of WhatsApp, and group messages and images aren’t supported by TextSecure yet. Read 2 remaining paragraphs | Comments

View article:
Intercepted WhatsApp messages led to Belgian terror arrests

US Army website defaced by Syrian Electronic Army

Early today, the official website of the US Army (www.army.mil) was defaced by attackers claiming to be with the Syrian Electronic Army. In addition to a message on the page claiming attribution, the attackers also included a pop-up message to anyone visiting: “Your commanders admit they are training the people they have sent you to die fighting.” One of several messages popped up by the defaced Army.mil sites. At the time of publication, the Army main homepage is down, although other Army websites have not been affected. However, the website of the US Strategic Command —the joint Department of Defense command overseeing space and nuclear forces—is also down, as is the official page for US Cyber Command hosted on its domain. Screenshots of the attack were posted this afternoon on a Syrian Electronic Army Twitter account, one which has in the past posted links to “leaked” files about connections between the US, Turkish, and Saudi Arabian governments and Syrian rebels. This account has also previously shared information about defacements of other websites (including that of the International Business Times and the Telegraph last year) and the hijacking of Twitter accounts belonging to a number of western media outlets. The SEA claims to have created its own distribution of Linux based on Ubuntu for use by its supporters. Read 1 remaining paragraphs | Comments

Read the original:
US Army website defaced by Syrian Electronic Army

County sheriff warrantlessly used stingray 500+ times, claims to have no records

The Sacramento County Sheriff’s Department (SCSD), the largest law enforcement agency in California’s capital region, has operated a stingray at least 500 times without a warrant in the last decade. But if you asked SCSD directly, even recently they wouldn’t give you a definite figure. As part of an ongoing investigation into stingray use nationwide, Ars filed a public records request with the SCSD this year. And at the end of April, the SCSD responded. The department claimed that “no responsive documents exist,” essentially saying that there are no records detailing how many times its stingray has been used. That seemed a bit odd because in 2013, local Sacramento television station News 10 obtained a Homeland Security grant application written by the SCSD. The proposal aimed to upgrade the department’s stingray capabilities, and as part of its justification, the SCSD claimed to know how successful its device has been: Read 23 remaining paragraphs | Comments

More:
County sheriff warrantlessly used stingray 500+ times, claims to have no records

Yes, you’ll be able to do clean installs of the free Windows 10 upgrade

Windows 10 will be offered as a free upgrade to most Windows 7 and 8 users for one year after its July 29 launch. This has led, inevitably, to a number of questions about what happens to those who want or need to reinstall their operating system. Microsoft’s Gabe Aul has provided some much-needed clarification on this issue. On Twitter he confirmed that once upgraded , Windows 10 users will be able to perform clean installs of the operating system at any time, even after the one-year free period has ended. Users won’t be required to install Windows 7 or 8 and then re-upgrade, and they won’t need the Windows 7 or 8 product key , with Aul confirming that clean installs from an ISO will be possible. There’s still some uncertainty about Microsoft’s promise to provide free updates to the operating system for the “supported lifetime” of the hardware it’s installed on, especially in regard to the impact that hardware upgrades will have on this. This question has always been a little awkward for Windows licenses; a newly built machine clearly needs a new license (which won’t be free ), but an old machine upgraded piece by piece to be a new machine will probably be able to keep its free license, especially if the upgrades are staggered so that the product activation threshold is never hit. What does this mean for the “supported lifetime”? Is it extended indefinitely? Read 1 remaining paragraphs | Comments

See more here:
Yes, you’ll be able to do clean installs of the free Windows 10 upgrade

Comcast issuing $5 credits after Internet outage caused by DNS failure

Comcast customers on the West Coast will be able to get $5 credits due to a multihour Internet outage that happened Monday night. Though Internet service providers might offer refunds to customers who call and complain, they aren’t generally in the habit of proactively issuing refunds after outages. But Comcast, the country’s largest cable and broadband company, has been trying to improve its reputation for awful customer service . “We are directly reaching out to those who reported problems last night to offer our apologies and a credit for lost service,” Comcast Senior VP Mark Muehl wrote in a blog post yesterday. The credit will be $5, USA Today reported . Read 6 remaining paragraphs | Comments

Follow this link:
Comcast issuing $5 credits after Internet outage caused by DNS failure

Nvidia announces G-Sync for laptops, reveals low-level tech details

The big news from Nvidia might be the release of the GTX 980 Ti , but the company has also announced some updates for G-Sync. The variable refresh rate technology, which synchronizes the refresh rate of a compatible monitor to the frame rate of a game, is finally making the jump from desktop to laptop. Upcoming laptops from Gigabyte, MSI, Asus, and Clevo are all set to support the technology, and will feature 75Hz panels from 1080p all the way up to UHD (4K). Desktop users aren’t being forgotten either: There are some new monitors—including a lust-worthy 34-inch 21:9 75Hz IPS Acer X34 panel—featuring an updated G-Sync module that finally contains more than just a single DisplayPort input. Interestingly, G-Sync for laptops makes use of the embedded DisplayPort (eDP) standard, a standardised interface for hooking up display panels directly to internal graphics cards. On the desktop, G-Sync can only be used with compatible monitors that contain Nvidia’s G-Sync module. Read 10 remaining paragraphs | Comments

More:
Nvidia announces G-Sync for laptops, reveals low-level tech details

Comcast 2Gbps fiber to launch “in a bunch of markets this month”

Comcast’s plan to launch a 2Gbps fiber-to-the-home service by the end of May didn’t come to fruition, but the company says the rollout is being delayed only briefly and will go live in numerous cities this month. Comcast originally said that its “Gigabit Pro” service would be available during May in the Atlanta metro area, Nashville, Greater Chicago, and four cities in Florida (Miami, Fort Lauderdale, West Palm Beach, and Jacksonville). Rollouts in June were to follow in Chattanooga, Tennessee; Northwest Indiana; and several parts of California (Chico, Fresno, Marysville/Yuba City, Merced, Modesto, Monterey, Sacramento, Salinas, San Francisco Bay Area, Santa Barbara County, Stockton and Visalia metro areas.) Customers in Atlanta and West Palm Beach who wanted to order Gigabit Pro complained about the lack of availability on the company’s support forums . A Comcast employee originally said the service “will be available in your area [Atlanta] come early May” but amended that to May 28 and finally told customers, “The launch of this has been temporarily delayed. No tentative date has been announced yet.” Read 8 remaining paragraphs | Comments

US airport screeners missed 95% of weapons, explosives in undercover tests

Transportation Security Administration screeners allowed banned weapons and mock explosives through airport security checkpoints 95 percent of the time, according to the agency’s own undercover testing. ABC News reported the results on Monday, but Ars could not independently confirm them. According to ABC News, a Homeland Security Inspector General report showed that agents failed to detect weapons and explosives in 67 out of 70 undercover operations . The report said: Homeland Security Secretary Jeh Johnson was apparently so frustrated by the findings he sought a detailed briefing on them last week at TSA headquarters in Arlington, Virginia, according to sources. US officials insisted changes have already been made at airports to address vulnerabilities identified by the latest tests. It’s been a bad past two days when it comes to the government’s anti-terror strategy. The ABC News revelation came a day after a Senate impasse Sunday allowed parts of three terrorism-fighting aspects of the USA Patriot Act to expire, including the bulk telephone metadata program that Edward Snowden disclosed. Lawmakers are trying to broker a deal to the legislation that is needed, according to Sen. Dan Coats (R-Ind.) because terrorists “want to kill us all.” Read 1 remaining paragraphs | Comments

Taken from:
US airport screeners missed 95% of weapons, explosives in undercover tests

Ken May

Tag: wired