The Biggest Cyber War in History! Cyber-attack on Spamhaus slows down the internet

(RT) The biggest cyber-attack in history has caused a worldwide web slowdown as the battle between an anti-spam group and a Dutch web host continues to heat up.

The largest known distributed-denial-of-service (DDoS) attack in history was sparked when the non-profit group Spamhaus placed CyberBunker on a real-time blacklist of sites to be blocked for spreading spam earlier this month.

The (DDoS) attacks – which flood targeted web servers with fake traffic to make them inaccessible – have reportedly caused millions to experience delays with services such as the Netflix video-streaming service and made other sites temporarily unavailable. Experts fear the web congestion could lead to banking and email system slowdowns around the world.

Spamhaus servers were at one point being inundated with 300 billion bits per second (300Gbps) of data, three times larger than the previous record attack of 100 Gbps, Darren Anstee from Arbor Networks Solutions told IBTimes UK.

Image from cyberbunker.com

Spamhaus, which helps email providers filter out spam and other questionable content, first reported the attacks on March 20.

Steve Linford, chief executive for Spamhaus, told the BBC that this scale of attack could knock down government Internet infrastructure.

“If you aimed this at Downing Street they would be down instantly,” he said. “They would be completely off the Internet.”

Linford noted that “when there are attacks against major banks, we’re talking about 50 gbs.”

Five separate cyber-police-forces are investigating the incident, he added, though he could not disclose any further details.

Spamhaus further accused Cyberbunker of collaborating with criminal gangs from Eastern Europe and Russia to carry out the attacks.

Image from cyberbunker.com

‘Cyberbunker not behind current attacks’

Cyberbunker, which operates out of a “secretive nuclear bunker,” prides itself on rebuking “authorities regarding the rights of individuals. ” The firm, boasts they will provide bandwidth to anything but child pornography or terrorism related content.

Sven Olaf Kamphuis, an internet activist and self-described spokesman for Cyberbunker, reportedly told the New York Times the ongoing attack was retaliation for Spamhaus “abusing their influence.”However, later on Wednesday Kamphuis told RT’s news video agency RUPTLY via Skype that quotes attributed to him by the NYT were part of a campaign of “misinformation” against Cyberbunker, which he says is not currently carrying out DDos attacks against Spamhaus.

“There has been some misinformation from the New York Times that it’s me carrying out the attacks. Spamhaus have pissed off a lot of people over the past few years by blackmailing ISPs and carriers into disconnecting clients without court orders or legal process whatsoever,” he said.

“At this moment we are not even conducting any attacks because people from our group stopped any attack yesterday morning,” he said. “So if they are still under attack which I think they are because I get news feeds that they are still under attack then it’s now other people attacking them.” He argues that such publicized cyber-attacks do serve a function, as they put the “mafia tactics” of Spamhaus in the public spotlight, which he claims are currently “the largest threat” to Internet freedom.

“Well, I think the cyber-attacks do put things under public discussion and that in the case of Spamhaus was urgently needed, because they have been operating in the background, claiming to be spam fighters and a little non-profit and at the moment it is becoming all the more clear what they really are. People that work at internet providers have always known this,” Kamphuis said.

“People who work at abuse desks or as providers, know that if you don’t give Spamhaus their way, they will list your entire provider and at that point all of your customers will start to complain that 1/3 of the internet no longer accepts email to start with. If they put you on drop a whole bunch of American providers no longer accept your backups, so you can no longer communicate with half of the sites hosted in the United States. It is a massive problem when one little offshore from the Bahamas gains such an influence on the internet that they can have such an impact.”

Image from cyberbunker.com

SpaceX’s capsule arrives at ISS

A privately-owned unmanned US space capsule docked at the International Space Station bringing food, scientific materials and crucial equipment to the space outpost.

Related articles

• SpaceX’s capsule arrives at ISS (space-travel.com)
• SpaceX’s capsule near ISS for rendezvous (bigpondnews.com)
• SpaceX capsule to reach ISS today (cnn.com)
• SpaceX capsule arrives at ISS after thruster glitch (abc.net.au)
• NASA: SpaceX Dragon capsule to reach ISS on March 3rd at 6:01AM ET (engadget.com)
• Watch live: SpaceX’s Dragon capsule will rendezvous with the ISS today at 3:30AM ET (engadget.com)
• SpaceX Dragon Capsule Will Dock With The ISS Sunday Morning (businessinsider.com)
• SpaceX cargo capsule cleared for Space Station docking (news.yahoo.com)
• SpaceX Dragon successfully reaches ISS (slashgear.com)
• SpaceX Dragon Capsule Cleared To Dock With ISS On Sunday & Visible In Southern Night Sky (huffingtonpost.com)

Are YOUR online communications safe? – 5 ways to avoid pulling a Petraeus

The extramarital affair scandal engulfing former CIA director David Petraeus have brought massive public attention to the convoluted U.S. laws governing e-mail privacy. We’ve got some quick tips for keeping your electronic communiques private.

Before getting into the more technical side of things, there are some simple behavioral changes you can make.

Always log out of your e-mail when you’re done using it. This goes for any online service, including social networking sites. Logging out prevents a cached password from keeping you signed in even after the browser has been restarted.

Never use your preferred personal e-mail account for highly sensitive communication. Set up new e-mail account that’s not connected to you in any way, and is only used for communicating with that one person. It’s a good idea to keep sensitive information out of your subject line, too.

Change your location so that your IP address changes. Pick up your butt and head across town to a restaurant or cafe with Wi-Fi that’s not in your usual haunts list, some place that’s not near your home, office, or hotel. Access your alternative e-mail account only from a one of these alternative locations, and do not under any circumstances log on to any of your “regular” accounts from that alternative location. Those easily could be used to track your movements and connect you “secret” account to your main ones.

Masking your IP address sounds technical, but it can be as simple as installing a program. E-mail is less like a sealed letter, and more like a postcard — with the proper know-how, it’s not all that hard to flip it over and read it. The most direct way to do it is to use a reputable service like TOR (download for Windows | Mac) or HotSpot Shield (download for Windows | Mac).

Using PGP encryption remains the most effective way to make the inherently insecure e-mail a safer way to communicate. PGP is not particularly easy, however, and works best with a desktop e-mail client like Outlook or Thunderbird — both of which are falling out of use as webmail continues to dominate. There is no major webmail service that supports PGP encryption, although there are services like CounterMail (which I haven’t used yet) that do.

The best way to avoid the pitfalls of Petraeus is to simply think about what you’re doing, of course, and maybe to knock off cheating on your spouse if you’re in a high-level government position dealing with national security concerns.

by Seth Rosenblatt – CNET News

Original article appears here

Torrent Lovers REJOICE! Maxxo lets you download anonymously and FREE!

If You are like me, you love to download torrent files, but there was always that looming risk involved. Who’s watching what I download? Will I get a Copyright infringement letter from my ISP? Etc. Etc.  Well fear not!  A new service called Maxxo has come to the rescue.

(TorrentFreak) Maxxo is a relatively young cloud hosting and synchronization service and one that’s not afraid to launch a disruptive feature. Starting this week the company officially adds support for BitTorrent downloads, allowing users to download torrent files quickly and anonymously. When BitTorrent downloads are completed the files automatically sync to all connected devices.

With dozens of million of users Dropbox is the leading cloud hosting and synchronization service.

The convenience of dropping files into a folder to automatically sync them online and with other devices appeals to a large audience, but some want even more features.

Earlier this year many BitTorrent users got excited by the launch of a new Dropbox app that enabled the downloading of torrents directly to Dropbox folders. Unfortunately, this enthusiasm quickly faded when Dropbox banned the app over piracy concerns.

According to Dropbox the app’s features “could be perceived as encouraging users to violate copyright using Dropbox.”

Luckily, there are also companies who see BitTorrent for the neutral technology that it is. The relatively new Dropbox competitor Maxxo is a good example, underlined by their launch this week of BitTorrent support as a native feature.

This means that besides backing up and syncing files across devices, Maxxo also enables users to download torrents. Users can simply drop a .torrent file into the Maxxo interface and right-click to start the download.

“By using BitTorrent through Maxxo our users can download files fast and completely anonymously,” Maxxo CEO Luka Hovat told TorrentFreak. “It’s a feature that none of our competitors have.”

Because all torrent downloads go directly though Maxxo’s servers, users don’t have to worry about being watched by third parties.

Maxxo downloads torrents

Maxxo offers free accounts which are limited to five gigabytes of storage and a maximum of two simultaneous BitTorrent transfers. Paid users can download 10 torrent files at a time and have higher storage and transfer limits.

For the occasional BitTorrent user Maxxo is a pretty suitable remote download service, or a “seedbox” with automatic sync across multiple computers. TorrentFreak briefly tested the service and aside from the occasional hiccup, most of the torrent files we tried downloaded just fine.

Maxxo is currently Windows only but they are working on a Mac application, as well as support for mobile devices. BitTorrent support aside, it also allows users to create lists of friends to easily share files with.

Related articles

• How to Create a Super Private BitTorrent Community for You and Your Friends [BitTorrent] (lifehacker.com)
• How To Create An Ultra-Private BitTorrent Community For You And Your Friends (lifehacker.com.au)
• Rutgers, NYU, and Houston Top University BitTorrent List (geekosystem.com)
• uTorrent Increases Privacy By Randomizing Peer-IDs (ibtimes.com)
• Top Universities Based on BitTorrent Usage (hackcollege.com)
• Here’s How BitTorrent Aims To Change How Artists Are Paid For Their Work (businessinsider.com)
• Pirate Bay Moves to The Cloud, Becomes Raid-Proof (torrentfreak.com)
• Torrent? You’re probably being watched (stuff.co.nz)
• Top 10 BitTorrent Sites of 2012 (zeropaid.com)

How Facebook Design Is Tricking You Into Sharing Info

A Great Must Read Article for Boing Boing and Gizmodo about Facebook Privacy.

You already know that Facebook and privacy don’t really get along, but many “improvements” to the service are making it easier and easier to share everything without even knowing. Avi Charkham rounded a bunch of these tricks up over at TechCrunch, and they’re as subtle as they are sketchy.

Some of the changes seem to play on psychology, like swapping out the old pair of “Allow, Don’t Allow” buttons for just one that says “Play game” that you either click, or don’t. Others, are sort of flagrant once you’ve noticed them. One Charkham describes as the “The Tiny Hidden Info Symbol Trick” is of those ones. From TechCrunch:

In the old Design Facebook presented a detailed explanation about the “basic” information you’re about to expose to the apps you’re adding. In the new design they decided to hide that info. If you pay careful attention you’ll see a tiny little “?” symbol and if you hover over it you’ll discover that this app is about to gain access to your name, profile pic, Facebook user ID, gender, networks, list of friends and any piece of info you’ve made public on Facebook. Quite a lot of info for a 20×10 pixel tiny hidden info symbol don’t you think?!

Full size

Facebook is a free service so you are the product; none of this should really come as a surprise. Still, its interesting—if also a bit scary—to see the design choices intended to make you part with your personal information. [TechCrunch via Boing Boing]

Demonoid suffers DDoS attack

My favorite website, Demonoid, had been under attack for the past few days.

(via ZDNet) Demonoid has been hit by a massive Distributed Denial of Service (DDoS) attack, bringing down the famous BitTorrent tracker to its knees. The torrent website has been inaccessible to its millions of users for more than a day and is expected to remain offline for quite some time.

As you can see in the screenshot above, Demonoid is currently serving up the following error message:

Server too busy

The action you requested could not be completed because the server is too busy.

Please try again in a few minutes

Do not click reload – Use the following links
Clicking reload will get you this page again

Click here to return to the homepage or Click here to go back

I said this attack was “massive” because it has resulted in a series of problems that may take a while to address. Over the years, Demonoid has been down many times, sometimes disappearing for months.

“It started as a DDoS but then it caused a series of problems,” Demonoid’s admin told TorrentFreak. “These problems need to be fixed before the site can go back up, and it’s a complicated fix this time. There might have been an attack from another angle, an exploit of sorts, but it’s hard to tell right now without a full check of everything. Our human resources became limited in the last few months. All tech issues are handled just by me now and there is no one else to take the job. I’ll fix the site as soon as possible, but it might be a while this time.”

It’s currently unclear whether or not the attack against Demonoid was anti-piracy related. Either way, Demonoid’s users have to find an alternative for their downloading needs while they wait for its return. (By Emil Protalinski )

See also:

Related articles

• Super-Charged DDoS Attacks Spike In 2012 (techweekeurope.co.uk)
• If you launch a DDoS attack against Amazon, it’s unwise to brag about it.. (nakedsecurity.sophos.com)
• Web Forwarding during recent DDoS Attacks (easydns.org)
• Wikileaks has been under DDoS attack for the last three days (zdnet.com)
• Zemra botnet used for DDoS version of the protection racket (securitybistro.com)
• The Pirate Bay: Anonymous not behind DDoS attack (digitaltrends.com)
• The Pirate Bay suffers DDoS attack (networkworld.com)
• The Pirate Bay returns, Anonymous hater takes credit for DDoS (zdnet.com)
• 123-Reg Currently Under A Massive DDoS Attack (techfleece.com)
• Update on the Recent Distributed Denial of Service (DDoS) Attack on SurvivalBlog (survivalblog.com)

NASA peaks our “Curiosity” with latest Mars mission

 

NASA’s newest mission could be right out of Hollywood.  “Curiosity” is NASA’s most ambitious Mars rover mission yet.

Related articles

• A ‘Curiosity’ Quiz: How Well Do You Know NASA’s Next Mars Rover? (space.com)
• Despite Risk, Experts Bet on New Mars Rover’s Audacious Landing Plan (space.com)
• NASA Moves Old Spacecraft to Track New Mars Rover’s Landing (space.com)
• New Mars Rover Could Far Outlive Its Lifespan (livescience.com)
• Free Mars Rover Landing Game From NASA Touches Down For Kinect (g4tv.com)
• NASA Rover To Explore Strange Martian Mountain (huffingtonpost.com)
• NASA’s Curiosity rover to explore bizarre Martian mountain (+video) (csmonitor.com)
• Mars Orbiter Adjusts, Rover Gets Twitter Account [Greg Laden’s Blog] (scienceblogs.com)
• Ready for Curiosity’s Tricky Mars Landing (zen-haven.dk)
• NASA Releases Kinect Mars Rover Game (escapistmagazine.com)

 

Holy Botnet Batman! – Study shows Religious Sites Carry More Viruses than Porn Sites

.

Security software firm Symantec‘s annual internet security threat report was released Tuesday. Symantec reported religious sites were found to have triple the average number of threats per infected site than were pornographic sites.

Related articles

• Religious websites riskier than porn for online viruses: study (rawstory.com)
• Religious websites contain more malware than porn sites (bgr.com)
• Religious Sites Carry More Malware Than Porn Sites, Security Firm Reports (networkworld.com)
• Porn Sites Safer to Browse Than Blogs (gadgetreview.com)
• Religious Sites More Dangerous Than Porn, Security Firm Says (manolith.com)

Ubuntu 12.04 – 11.0 XBMC Eden in the official repositoriess

11.0 xbmc Eden, the famous Media Center, is now available directly from the official repositories of the next version 4.12 lts precise pangolin of Ubuntu . This follows its integration into the deposits of the distribution Debian. So now to install the stable version no need to add a PPA repository. The only difference with the stable version of PPP, for licensing reasons, is the support for playing DVD videos unless you install libdvdcss2. Installing XBMC on Ubuntu 4.12

The procedure is simplified and becomes simply:

sudo  apt-get  install xbmc libdvdread4

and for DVD playback:

sudo  / usr / share / doc / libdvdread4 / install-css.sh

Related articles

• XBMC Eden Available in Ubuntu 12.04 (omgubuntu.co.uk)
• XBMC Accepted into Debian (xbmc.org)
• XBMC Eden in Debian and Ubuntu (jorgecastro.org)
• Oli Warner: How to fix the 100% CPU issue in XBMC (thepcspy.com)
• Ubuntu One Indicator Updated for Precise (ubuntuvibes.com)
• Next Generation Ruby packages for Ubuntu (brightbox.co.uk)
• Install Beautiful FS Icons Set in Ubuntu (ubuntuvibes.com)
• XBMC 11.0 released (icrontic.com)
• XBMC 11.0 – Eden (xbmc.org)

Who’s tracking YOU? “Collusion” lets you see exactly who in real time!

Collusion for Chrome is a browser extension that maps out where your info gets sent around as you browse. It aims to help you understand how, where and when these connections happen.

 

Related articles

• Collusion for Chrome Displays Realtime Tracking Information (ghacks.net)
• Three Browser Extensions Every Teacher Should Try (freetech4teachers.com)
• This Chrome browser extension will let you download APK files from the Android Market – to your desktop [Sideloading] (technologytell.com)
• block MacKeeper and other browser ads (applehelpwriter.com)
• Nifty Multi-Browser Extension Lets You Pause YouTube, Vimeo & Hulu Videos For Later (socialtimes.com)
• Facebook scammers host Trojan horse extensions on the Chrome Web Store (infoworld.com)
• Writing Browser Extensions – Comparing Firefox, Chrome and Opera (nparashuram.com)
• Digg reworks its browser extensions, Boxee app (news.cnet.com)
• Scammers host trojan horse extensions via the Chrome web store (theinformativereport.com)
• Missing e {browser extension for tumblr}: Tumblr to Continue Allowing Browser Extensions (shortformblog.tumblr.com)