"The only thing that stands between a man and what he wants from life is often merely the will to try it and the faith to believe that it is possible."

The Latest

A Lot of Data

Monday, June 15, 2009

Knowledge: Every day, 15 petabytes of new information is created, which is more than eight times the information stored in all the libraries in the U.S. While consumers generate 70 percent of that figure, enterprises will be responsible for maintaining 85 percent of it.

Posted by Carlos Olin at 9:35 AM 0 comments  

The Next Mainframe: A Wild West

Monday, June 1, 2009

Botnet ensnares government PC's

Darren Waters, BBC News

Almost two million PCs globally, including machines inside UK and US government departments, have been taken over by malicious hackers.

Security experts Finjan traced the giant network of remotely-controlled PCs, called a botnet, back to a gang of cyber criminals in the Ukraine.Several PCs inside six UK government bodies were compromised by the botnet.Finjan has contacted the Metropolitan Police with details of the government PCs and it is now investigating.A spokesman for the Cabinet Office, which is charged with setting standards for the use of information technology across government, said it would not comment on specific attacks "for security reasons"."It is Government policy neither to confirm nor deny if an individual organisation has been the subject of an attack nor to speculate on the origins or success of such attacks."He added: "We constantly monitor new and existing risks and work to minimise their impact by alerting departments and giving them advice and guidance on dealing with the threat."It is the second time in a year that PCs inside government departments have been hacked to form part of a botnet.On this occasion, the machines were infected with software which allowed them to be taken over and enslaved in the botnet due to vulnerabilities in web browsers.

At the mercy

Once a machine has been compromised, it can be instructed to download further software, which puts the machine at the mercy of malicious hackers.The compromised PCs are capable of reading e-mail addresses, copying files, recording keystrokes, sending spam and capturing screen shots.Once a single machine inside a corporate network has been made part of the botnet it puts other machines on the network at risk.The Cabinet Office would not give details of what the compromised machines had been instructed to do, nor the names of the different government departments that had been infiltrated.The cyber criminals, who have not been caught, were selling access to the compromised machines, thought to be mainly PCs inside companies, on a hackers' forum in Russia.One thousand machines were being sold at a time for between $50 and $100.Finjan reports that the botnet is under the control of six criminals who are able to remotely control the infected machines.

Different organisations

Almost half of the infected machines were in the US. Six percent of the botnet, about 114,000 machines from 52 different organisations, were from the UK, among them a single PC inside the BBC's network.Many of the infected machines will have been caught by routine information security policies at firms, as it was in the case of the BBC, but Finjan says many of the botnet PCs are still active.More than 70 different national government agencies from around the world were caught up in the malicious network.Yuval Ben-Itzhak, chief technology officer for Finjan, told BBC News: "When we looked at the network domain names to see where the [compromised PCs] come from we were surprised to see many government networks, including UK government computers."Obviously we reported it and they have now dealt with it. There were six UK agencies with at least one computer in each department that was running the bot."I'm not at liberty to name the actual agencies - but this isn't a unique story to the UK, they were running in many other non-UK, government bodies too."

Government bodies

A number of different government bodies are responsible for IT security and deployment across the UK.They include the Central Sponsor for Information Assurance, the National Technical Authority for Information Assurance, and the the Centre for the Protection of National Infrastructure (CPNI), the government body which is part of the British Security Service and responsible for providing security advice to organisations that make up critical services in the UK.All of the infected machines were Windows-based PCs and the vulnerability was targeting security holes in Internet Explorer and Firefox.Mr Ben-Itzhak said: "What is unique is the number the size of the network. When we look at a similar network last year they were in the hundreds of thousands. Now were looking at mega-size botnets."

In contact

A spokeswoman for the Metropolitan Police said: "This is an ongoing investigation. We are aware of this botnet and are taking appropriate action."Large botnets can be used to co-ordinate attacks to knock parts of the network, or specific websites, offline, called a Distributed Denial of Service attack.Last year, the CPNI told a Cabinet Office-commissioned independent review that stopping such attacks was difficult.It said: "The attacks are relatively low in sophistication, but have been highly effective due to the large number of compromised machines involved."It is difficult to defend against a sophisticated Distributed Denial of Service attack without impacting legitimate business use."The CPNI recommended that the best defence against these attacks was appropriate monitoring of the network.http://news.bbc.co.uk/2/hi/technology/8010729.stm

Posted by Carlos Olin at 12:09 PM 0 comments  

We're not talking about your grandfather's socialism. In fact, there is a long list of past movements this new socialism is not. It is not class warfare. It is not anti-American; indeed, digital socialism may be the newest American innovation. While old-school socialism was an arm of the state, digital socialism is socialism without the state. This new brand of socialism currently operates in the realm of culture and economics, rather than government—for now.

Instead of gathering on collective farms, we gather in collective worlds. Instead of state factories, we have desktop factories connected to virtual co-ops. Instead of sharing drill bits, picks, and shovels, we share apps, scripts, and APIs. Instead of faceless politburos, we have faceless meritocracies, where the only thing that matters is getting things done. Instead of national production, we have peer production. Instead of government rations and subsidies, we have a bounty of free goods.

When masses of people who own the means of production work toward a common goal and share their products in common, when they contribute labor without wages and enjoy the fruits free of charge, it's not unreasonable to call that socialism.

In the late '90s, activist, provocateur, and aging hippy John Barlow began calling this drift, somewhat tongue in cheek, "dot-communism." He defined it as a "workforce composed entirely of free agents," a decentralized gift or barter economy where there is no property and where technological architecture defines the political space. He was right on the virtual money. But there is one way in which socialism is the wrong word for what is happening: It is not an ideology. It demands no rigid creed. Rather, it is a spectrum of attitudes, techniques, and tools that promote collaboration, sharing, aggregation, coordination, ad hocracy, and a host of other newly enabled types of social cooperation. It is a design frontier and a particularly fertile space for innovation.

Posted by Carlos Olin at 12:00 PM 0 comments  

Blog Archive