It has been a busy few days in the infosec environment with a number of different articles and patches. This is just the latest collision in societies ever challenging ecology of digital information ownership.
OpenSSL have pushed 7 new patches to different versions of their packages from Low to Moderate severities in their Security Advisory 11/6. For anyone up to date (you did patch for Heartbleed right?) with the OpenSSL packages, the latest 1.0.2b, 1.0.1n, 1.0.0s and 0.9.8zg contain the majority of the fixes.
Kaspersky have released information at a press conference detailing that their network was attacked by what they have dubbed Duqu 2.0. As Eugene stated:
“It’s almost a mix of Alien, Terminator and Predator, in terms of Hollywood,”
Duqu 2.0 looks to be the next generation Duqu which had clear ties to 2010’s Stuxnet and we all know the outcome of that story. It used 3 zero days to gain entry and once the machines were compromised resided completely in RAM and wrote no files to the disk or registry. Machines that were powered off were reinfected once they were booted by other machines that were also compromised.
“To get rid of [the] malware, it’s very simple — turn off all computers in network for half an hour, then the system will be clean.”
Westnet was an Australian ISP that was bought by iiNet in 2008. iiNet is now one of Australia’s largest ISP’s and has a steady growing userbase. A legacy Westnet system was owned with the hacker claiming access to 30,827 customer details.
Australia Set To Block Websites
Continuing with news from .au, a bipartisan report into proposed legislation to force Australian ISP’s to block access to websites linked with piracy recommends the bill be passed. This paves the way for the parliament to pass the bill into law.
The bill will allow copyright holders to apply for a federal court order that will force ISP’s to block customers accessing international websites serving pirated material.
This is adding to the story in Australia where there is a lot of movement in piracy and the protection of customers privacy rights.
UK Stingray Towers
Sky News has come across 20 rogue IMSI Stingray mobile towers around London that can be used to eavesdrop on mobile users. There’s a bit of toing and froing with the government departments in “I can neither confirm nor deny” type statements.
However, the most interesting thing from the article is:
“Some of what we would like to talk about to get the debate informed and logical, we can’t, because it would defeat the purpose of having the tactics in the first place. Frankly, some of what we need to do is intrusive, it is uncomfortable, and the important thing is we set that out openly and recognise there are difficult choices to be made.”
This seems to be the trend at the minute with society wanting to know more about their privacy rights in specific scenarios but departments not able to divulge information as it negates the premise of intelligence gathering. We are left in this awkward space of needing to trust government agencies, oversight committees or the government itself. Which brings us to the next article.
White House Legally Requests FISA Ignore Ruling Making Bulk Surveillance Illegal
- The Second Circuit Court of Appeals ruled bulk collection of telephone metadata is unlawful. – http://www.wired.com/2015/05/breaking-news-federal-court-rules-nsa-bulk-data-collection-illegal/
- The Obama Administration makes a legal request to the Foreign Intelligence Surveillance court (FIS) to ignore the ruling.http://www.theguardian.com/world/2015/jun/09/obama-fisa-court-surveillance-phone-records
There are a lot of moving parts with this issue including that the FIS isn’t mount by the Second Circuit’s ruling and that the Administration claims it’s doing so to easily move towards the beginning USA Freedom Act.
In any case it gives an indication (especially in policy) to the struggles with privacy rights and the gathering of information.
Please Don’t Compromise Our Encryption
Two different industry bodies (The Information Technology Industry Council and the Software and Information Industry Association) which represent a number of big players including Apple, Google, Facebook, IBM and Microsoft have directed a letter to President Obama and the FBI Director stating that they “are opposed to any policy actions or measures that would undermine encryption as an available and effective tool.”
This comes after debates over whether Congress will pass legislation to allow law enforcement to bypass encryption methods.