Villainy Of The Most Atrocious Sort

March 25, 2020 by Marc Handelman in Turpitude, Crime, Cyber-Knavery, Cybercrime, Must Read

via Raphael Satter, Jack Stubbs and Christopher Bing, writing at Reuters comes this well-crafted reportage, detailing a new malicous attack on the World Health Organization and mounted by currently-surveilled foul-villains-of-the-cyber-kind. Most Assuredly Today's Must Read.

'The attempted break-in at the WHO was first flagged to Reuters by Alexander Urbelis, a cybersecurity expert and attorney with the New York-based Blackstone Law Group, which tracks suspicious internet domain registration activity. Urbelis said he picked up on the activity around March 13, when a group of hackers he’d been following activated a malicious site mimicking the WHO’s internal email system.' - via Raphael Satter, Jack Stubbs and Christopher Bing, in a report for *Reuters

Classic Facebookery: Zuckerberg, Harms Suffered

October 03, 2019 by Marc Handelman in Crime, Criminal Enterprise, Facebookery, Information Insecurity, Data Theft

via Kate Cox, come this well-crafted piece at Ars Technica, detailing new defensive machinations undertaken by Facebook, Inc. (Nasdaq: FB) attorney's and (as a matter of course) Mark Zuckerberg)...

"Facebook's $5 billion settlement with the Federal Trade Commission this summer smashed records: the FTC had never before fined any company such a hefty amount. But even though critics immediately lambasted the deal as a comparative slap on the wrist for Facebook, which earned about $56 billion in revenue in 2018, newly released documents show that the company was working hard to avoid any penalty at all—and its arguments then are just a prelude to defenses it may mount now, as dozens of state, federal, and international probes pile up around it." - via Kate Cox, comes this superlative piece at Ars Technica

Who’s Watching The Criminal Enterprise Known As Facebook Watch You?

August 23, 2019 by Marc Handelman in Facebookery, Crime, Death of Privacy, Must Read

via Bhaskar Chakravorti, PhD - the Dean of Global Business, The Fletcher School at Tufts University, comes this thought provoking piece targeting Facebook Inc.'s (NASDAQ: FB) new 'Privacy Cop'. Certainly, today's Must Read.

'In my opinion, in order to be effective, there are three main privacy-related concerns the FTC’s newly designated cop would need to look out for: the potential for genuine violations of users’ privacy; the targeted spread of harmful content, especially resulting in election manipulation and ethnic violence; and instances of collecting and harvesting far more data than is warranted to provide services to users.' - via Bhaskar Chakravorti, PhD Dean of Global Business, The Fletcher School at Tufts University

Teach Your Children Well...

August 09, 2019 by Marc Handelman in Greed, Crime, Criminal Enterprise, Tech Leveraged Crime

Unfortunately for AT&T (NYSE: T) and it's Customers, that sdmonition didn't include AT&T employees.

Satya Nadella's Microsoft Agrees To Pay Criminal Fine To Settle Federal Anti-Bribery Charges

July 23, 2019 by Marc Handelman in Crime, Criminal Enterprise

Reuter's reporter Jonathan Stempel (with editing by Dan Grebler and Chizu Nomiyama details news of a settlement in the Microsoft Eurozone bribery case brought by United States Federal prosecutors.

The Department of Justice announced yesterday (20190722) the defendant (Microsoft Corporation (NASDAQ: MSFT) has agreed to pay $25.3 Million USD to settle violations of the United States Bribery Statutes, when the Redmond, Washington software leviathan decided it should bribe government officials in Hungary and other countries in the Eurozone to gain ill-gotten gains.

Low-Hanging, The Fruits Are

July 16, 2019 by Marc Handelman in Low-Hanging Fruit, Malware, Information Security, Crime, Criminal Enterprise, Must Read

via Threatpost author Lindsey O'Donnell, come this remarkably lucid, well crafted interview piece dissecting the nature of low-hanging fruits, where the fruits under scrutiny are in fact cities themselves, specifically - Atlanta. Ensconced (if you will) in the Peach State... Most certainly Today's Must Read.

Office Depot & Support.com Cough Up $35,000,000: FTC Smackdown Of Scammer Corporations

March 29, 2019 by Marc Handelman in Corporate Corruption, Corporate Evil, Criminal Enterprise, Crime

via Jon Brodkin, writing at Ars Technica, comes the story of a total of $35 million dollars paid by two sketchy retail corporations (Office Depot and it's partner in crime - Support.com) in the US, whom have fallen from grace most profoundly. Read it and rejoice for a US Federal Agency living up to it's mandate and doing the Rght Thing.

The FTC yesterday announced that Office Depot and its software supplier, Support.com, have agreed to pay a total of $35 million in settlements with the agency. Office Depot agreed to pay $25 million while Support.com will pay the other $10 million. The FTC said it intends to use the money to provide refunds to wronged consumers. - via Jon Brodkin, writing superb reportage at Ars Technica

Cybersecurity Vendor Extortion

March 20, 2019 by Marc Handelman in Crime, Criminal Enterprise, Information Security

via Kate Fazzini, writing at CNBC, comes a tale of sweaty desperation, criminal extortion and the appalling dearth of morality in the so-called 'Cybersecurity Marketplace'. Detailing what she describes as 'aggressive tactics' - in reality, simple, single-source extortion - as exhibited by 'cybersecurity vendor salespeople - and their ilk. Today's Must Read.

"The cybersecurity vendor marketplace is growing so crowded that some companies have been resorting to extreme tactics to get security executives on the phone to pitch their products, including lying about security emergencies and threatening to expose insignificant breaches to the media." - via Kate Fazzini, writing at CNBC

Facebookery: The Tell-All App

February 23, 2019 by Marc Handelman in Facebookery, Crime

via Sam Schechner, writing at The Wall Street Journal (Warning: Paywall), comes a story of immense Facebookery that serves to reinforce the notion of user distrust from the top to the bottom at the now embattled Social Data Vacuuming firm. I give them (at most) five more years, what's your wager of the company's lifespan?

"Under pressure over its data collection, Facebook Chief Executive Mark Zuckerberg said last year that the company would create a feature called “Clear History” to allow users to see what data Facebook had collected about them from applications and websites, and to delete it from Facebook. The company says it is still building the technology needed to make the feature possible." - via Sam Schechner, writing at The Wall Street Journal, in his piece on tell - all apps

Gangster of Digitals

February 19, 2019 by Marc Handelman in Facebookery, Illicit Data Use, Information Security, Crime, Criminal Enterprise

via Jon Brodkin, writing at Ars Technica, in which, the Good Mr. Brodkin details the United Kingdom's House of Commons excoriating report on the antics of Facebook, Inc. (NYSE: FB) and it's 'bad boy' CEO Mark 'Sweaty' Zuckerberg. Enjoy the report...

CircleCity Con 5.0, 2018, Wolfgang Goerlich's & Zachary Sarakun's 'Classic Cons in Cryptocurrency' →

July 10, 2018 by Marc Handelman in Conferences, Education, Information Security, Cryptocurrency, Crime, Circle City Con

Facebook+CambridgeAnalytica = Facebookery At It's Finest

July 07, 2018 by Marc Handelman in Data Theft, Information Security, Blatant Stupidity, Crime, Criminal Enterprise

via Graham Cluely's timely security blog, comes the story of Carole Cadwalladr whom, in her day job, is famous for her highly competent reportage at The Guardian. The specific reporting series is here. Detailing not-so-secret fundamental security and privacy flaws; all combined into a porridge with both blatant stupudity and greed as spices, in which, the aforementioned porridge turns out to be a not-so-tasty dish for Facebook Inc. (NASDAQ: FB) and Cambridge Analytica (now in receivership)... If you spend any time contemplating the evil that is Facebook, read Carole Cadwalladr's work and you'll experience a Silicon Valley revelation (perhaps some avocado toast will calm you down). Today's Must Read!

BGP Management SNAFU Culprit in Amazon Attack? →

May 02, 2018 by Marc Handelman in Network Security, Network Protocols, Information Security, Crime, Criminal Enterprise

via Dan Goodin's typically superlative prose, at Ars Technica, in which, Dan details the issues, titled 'Suspicious Event Hijacks Amazon Traffic For 2 Hours, Steals Cryptocurrency' comes the root cause of the Amazon Route53 debacle. Additionally, a great tell-all piece entitled 'Another BGP Hijacking Event Highlights the Importance of MANRS and Routing Security' (discussing the same issues as Mr. Goodin), via The Internet Society's Megan Kruse and Aftab Siddiqui is also worthy of note. Fundamentally, the IETF should step up it's efforts to deal with these issues (and perhaps take MANRS into consideration ASAP. It is important to note that the Internet Engineering Task Force (IETF) is an organized activity of The Internet Society's, and has been for more that a decade. Both posts are Today's Must Read.

Synthetics →

March 08, 2018 by Marc Handelman in Synthetic Identites, Identity Theft, Identity Management, Identity, Crime, Criminal Enterprise

via Peter Rudegeair and AnnaMaria Andriotis - writing at The Wall Street Journal - comes a good example of crime reportage, regaling us with an exposé of pernicious criminality within the Identity Theft arena: The utilization of Synthetic Identities leveraged to abscond with fungible assets... In this case, to the tune of billions of dollars. While not new - as the article erroneously claims in both it's title and body copy - the use of synthetic identities targeting our children's identities and unused Social Security Numbers has been an ever-increasing fraud modality for a number of years. Today's Must Read.

Ad-Network Concealing Monero Mining Software In.... Ads! →

March 01, 2018 by Marc Handelman in Crime, Criminal Enterprise, Crapware

Whew... I thought it was late-stage Meltdown on my Intel i7 Mac evidenced by the recent reoccurring & frenzied beach-ball-from-hell... Now, I know it's concealed Coinhive mining crapware scarfin' all the cycles - thereby making all my base belong to them...

Coinhive Cryptojacker, The Prevaler →

February 12, 2018 by Marc Handelman in Crime, Cryptocurrency, Cryptomining, Information Security, Cloud Security, Web Security

Check Point Software Technologies Ltd. has noted (via the comapny's well traveled blog) a new milestone for malicious wares/scripts et cetera; this time Coinhive takes the blue ribbon award for the most pernicious installations on our beloved interwebs, according to the Check Point's research.

Criminal Prediction Software Accuracy Under Scrutiny →

January 23, 2018 by Marc Handelman in Crime, CJIS, Predictive Studies, Data Sciences, Big Data, Recidivism, Recidivism Prediction, Physical Security

News of evidence - via a Dartmouth research program team (Julia Dressel and Hany Farid) - of potentially flawed prediction algorithms in a mission critical software product (Correctional Offender Management Profiling for Alternative Sanctions (COMPAS)) utilized by a large number of jurisdiction in the United States and Canada... Read the abstract and full research report in J. Dressel el al., “The accuracy, fairness, and limits of predicting recidivism,” Science Advances 4, No. 1 (17 January 2018) (DOI: 10.1126/sciadv.aao5580) or download the study's PDF. Enjoy.

Citation: J. Dressel, H. Farid, The accuracy, fairness, and limits of predicting recidivism. Sci. Adv. 4, eaao5580 (2018).

Aid and Comfort, The Let's Encrypt Certificate Story →

July 17, 2017 by Marc Handelman in Network Security, Network Protocols, Networks, Criminal Enterprise, Crime, Cybernetic Crime, Information Security

Or, How Good Intentions Often Go Awry.

Bangkok Click Agriculture →

June 15, 2017 by Marc Handelman in Criminal Enterprise, Crime

...meanwhile, in clickfarming news, comes word - via The Bangkok Post - of a Thai law enforcement action targeting clickfarm miscreants, consequently, no clickfarm for you!.

Just 'Kuzz →

May 22, 2017 by Marc Handelman in All is Information, Criminal Enterprise, Crime, Alternate Attack Analysis, Information Security, Cybernetic Crime, Resource Theft

via Phys.org, comes a brief news item targeting the trojan exploit dubbed 'Adylkuzz', and it's mining feature. Additionally, read the highly detailed Proofpoint post, of which, contains the true gist of this trojan, as it were..

'Instead of completely disabling an infected computer by encrypting data and seeking a ransom payment, Adylkuzz uses the machines it infects to "mine" in a background task a virtual currency, Monero, and transfer the money created to the authors of the virus.' - via Phys.org

BGP Related Issues, Along With Malicious Redirection Predicated On Fraudulent Routes To Blame