av Mikael Winterkvist | dec 29, 2020 | Lästips

Amerikanska Wired ger igenom årets värsta intrång, hack.
WHAT A WAY to kick off a new decade. 2020 showcased all of the digital risks and cybersecurity woes you’ve come to expect in the modern era, but this year was unique in the ways Covid-19 radically and tragically transformed life around the world. The pandemic also created unprecedented conditions in cyberspace, reshaping networks by pushing people to work from home en masse, creating a scramble to access vaccine research by any means, generating new fodder for criminals to launch extortion attempts and scams, and producing novel opportunities for nation-state espionage.
Here’s WIRED’s look back at this strange year and the breaches, data exposures, ransomware attacks, state-sponsored campaigns, and digital madness that shaped it. Stay safe out there in 2021.
Källa: The Worst Hacks of 2020, a Surreal Pandemic Year
av Mikael Winterkvist | dec 29, 2020 | Lästips
Safe-Inet, VPN, skulle var ett säkert, absolut säkert sätt att dölja sina aktiviteter ute på nätet och VPN-lösningen blev snabbt populär bland kriminella. Tisdagen före julhelgen slog Eurpol till tillsammans med en rad polismyndigheter. Wired har hela historien.
AS 2020 COMES to a close, it is perhaps only fitting that the US government and private sector are both scrambling to grasp and mitigate the fallout of a massive hacking spree widely attributed to Russia. There will be more news to come about the SolarWinds supply chain attack and possible other elements of the extensive campaign, but in the meantime officials, security practitioners, and researchers are all puzzling over questions of where to draw the line on global espionage and how to deter destructive and otherwise unacceptable hacking.
To understand where things stand today, it’s important to take a look back at the Trump administration’s approach to cybersecurity policy, its merits (some of them accidental), and its shortcomings. Read on below for president-elect Joe Biden’s first substantive commentary on how his administration may approach the increasingly crucial, yet tricky, question of how to enforce effective global norms in cyberspace.
Wired
av Mikael Winterkvist | dec 25, 2020 | Lästips

Under Trumps tid i Vita Huset så har en lång rad myndigheter, övervakningsorganisationer och funktioner monterats ned helt eller har fått se sina anslag kraftigt nedskurna. Ett sådant område är övervakningen av datorsystem. Trump sparkade chefen för the Cybersecurity and Infrastructure Security Administration (CISA) och har upprepade gånger tonmat ned attacks rich intrång – Solarwinds är bara det senaste exemplet.
Amerikanska Wired har granskat och gått ungdom faran med att montera ned skyddet mot dataattacker.
WHEN IT COMES to cybersecurity policy, the Trump administration’s head and body have rarely seemed to agree. Take the past two months, for instance. In late October, the president made an absurd declaration at a campaign rally that “nobody gets hacked.” That same week, the Cybersecurity and Infrastructure Security Administration (CISA), Justice Department, and Treasury Department all took separate, landmark steps to counter Russian hacking—unsealing an indictment against six hackers in Russia’s GRU military intelligence agency, imposing new sanctions on the Moscow research institute responsible for a uniquely dangerous piece of malware, and warning of an ongoing hacking campaign believed to be carried out by the FSB.
A few weeks later, Donald Trump lost the election and laid the blame on false conspiracy theories about electoral hacking and fraud. When CISA released a statement lauding the election as the ”most secure in American history,” contradicting the president’s claims, Trump summarily fired CISA director Chris Krebs. This year was finally capped off by revelations of a disastrous hacking campaign that hijacked the software updates of IT management firm SolarWinds to breach a slew of federal agencies and tech firms. Now, even as attorney general William Barr and secretary of state Mike Pompeo have pointed to Russia as the culprit, Trump has responded by downplaying the crisis, suggesting intrusions might have been carried out by China instead.
Wired
av Mikael Winterkvist | dec 19, 2020 | Lästips

Facebook har attackerat Apple i en rad tidningsannonser som köpts och publicerats i flera av USAs största dagstidningar. Detta sedan Apple beslutat att rulla ut en teknisk lösning som krftigft försvårar den sociala mediajättens möjligheter att samla in användares information.
Kara Swisher, känd amerikansk journalist och teknikskribent har givit sin syn på en striden mellan Apple och Facebook:
If there’s anything that Facebook has learned from its many years of cozying up to the Trump administration, it’s figuring out that shamelessness works.
That is the only explanation I can come up with after seeing the social networking giant’s righteous ad campaign this week against Apple.
Casting itself as the protector of small businesses in full-page ads in — irony alert — big newspapers, Facebook is criticizing Apple for planning to give users of its popular devices like the iPhone more control over the data they share with third-party apps.
Starting next year, Apple will ask mobile users to “opt in” to accept third-party tracking of their digital activity (right now, the system defaults to tracking and requires users to “opt out” if they don’t want to be followed). Facebook relies on tracking to target ads at customers.
New York Times
av Mikael Winterkvist | dec 8, 2020 | Lästips

Det finns en rad allvarliga buggar i iOT-enheter, uppkopplade prylar, som aldrig kanske kommer att åtgärdas och som därmed är ett hot mot vår säkerhet. Det handlar om allvarliga buggar i allt från kameror till routrar och väderstationer.
Det är buggar i kommunikatiopnsprotokoll, de funktioner som de här produkterna kommunicerar via (TCP/iP) och det är buggar som finns i miljontals enheter.
YES, AT THIS point it’s a cliche that cheap, generic internet of things products can harbor vulnerabilities that potentially expose millions or even billions of devices. And yet it’s no less urgent each time. Now, new research from the IoT security firm Forescout highlights 33 flaws in an open source internet protocol bundles that potentially expose millions of embedded devices to attacks like information interception, denial of service, and total takeover. The affected devices run the gamut: smart home sensors and lights, barcode readers, enterprise network equipment, building automation systems, and even industrial control equipment. They’re difficult if not impossible to patch—and introduce real risk that attackers could exploit these flaws as a first step into a vast array of networks.
Wired
av Mikael Winterkvist | dec 5, 2020 | Lästips

Quibi skulle bli en utmanare till Netflix med korta avsnitt anpassade för en mobil skärm. Jeffrey Katzenberg, tidigare chef på Disney, höll i rodret och en lång rad investerare hade satsat stora summor.
Quibi satsade hundratals miljoner dollar på innehåll, marknadsföring och på en tjänst som skulle bli stor, snabbt. Quibi fick aldrig fart på sin tjänst, lockade aldrig några stora skaror cigh ganska snart stod det klart att den nya videotjänsten hade problem, allvarliga problem på mer ön ett plan.
BBC har intervjuer flera anställda för att få svar på frågan varför Quibi misslyckades?
BBC