Ransomware Attack Locks the Internet Service in Public Schools of Rockford





Due to a ransomware attack, the public schools in Rockford, Illinois are working without the internet service; whether it may be phone or a computer system everything has been affected.

The schools originally experienced the problem with its phone and internet services on Friday yet classes for around 28,000 students in 47 schools resumed by Monday in spite of outages as yet impacting the school buildings and the nearby district offices.

The ransomware in this way distinguished is said to be a kind of malware, or malevolent software, regularly spread through emails containing link or attachments that 'encrypt' a user's documents or systems, preventing them from accessing the data.

In a statement on Monday, the school officials said that experts are helping the district's technology team assess the outage. The locale says its authorities are attempting to get a 'complete picture' of the episode and see how it impacts its data.

However it is still under wraps as to with whom the school district is working with to thusly find the root cause of the whole problem, whether it is working with local, and state or federal law enforcement agencies.


Hackers Working For the Chinese Government Tracking Movements of Ethnic Uighurs




Hackers working for the Chinese government are said to have been tracking the movements of ethnic Uighurs, a mostly Muslim minority, which is viewed as a security threat by Beijing. The hacks are a part of a rather extensive cyber-espionage campaign focused on “high-value individuals” such as diplomats and foreign military personnel, the sources said.

As a part of the campaign, various groups of Chinese hackers have compromised telecoms operators in nations including Turkey, Kazakhstan, India, Thailand and Malaysia, the four sources said.

China is currently confronting growing international criticism over its treatment of Uighurs in Xinjiang , as the members from the group have been subject to mass confinements in what China calls  “vocational training”  centres as well as 'widespread state surveillance'.

The nation has more than once denied association in any cyber-attacks or any abuse of the Uighur people, whose religious and cultural rights Beijing says are completely ensured, and the Chinese Foreign Ministry said any hacking charges should be upheld by legitimate proof.

“We would again like to stress that China is a resolute safeguarder of internet security. We consistently and resolutely oppose and crack down on any forms of internet attacks,” a ministry statement said.

While government authorities in India and Thailand declined to remark in regards to the specific telecoms operators that were undermined, officials in Malaysia, Kazakhstan and Turkey refused to promptly react to the requests for comments.


Can we control our internet profile?

"In the future, everyone will be anonymous for 15 minutes." So said the artist Banksy, but following the rush to put everything online, from relationship status to holiday destinations, is it really possible to be anonymous - even briefly - in the internet age?

That saying, a twist on Andy Warhol's famous "15 minutes of fame" line, has been interpreted to mean many things by fans and critics alike. But it highlights the real difficulty of keeping anything private in the 21st Century.

"Today, we have more digital devices than ever before and they have more sensors that capture more data about us," says Prof Viktor Mayer-Schoenberger of the Oxford Internet Institute.

And it matters. According to a survey from the recruitment firm Careerbuilder, in the US last year 70% of companies used social media to screen job candidates, and 48% checked the social media activity of current staff.

Also, financial institutions can check social media profiles when deciding whether to hand out loans.

Is it really possible to be anonymous in the internet age?

Meanwhile, companies create models of buying habits, political views and even use artificial intelligence to gauge future habits based on social media profiles.

One way to try to take control is to delete social media accounts, which some did after the Cambridge Analytica scandal, when 87 million people had their Facebook data secretly harvested for political advertising purposes.

- Netflix Cambridge Analytica film- Social media is 'like a crime scene'

- Facebook to pay $5bn to settle privacy concerns

- Is leaving Facebook the only way to protect your data? While deleting social media accounts may be the most obvious way to remove personal data, this will not have any impact on data held by other companies.

Fortunately, in some countries the law offers protection.

Cars connected with internet vulnerable to hacking








A nonprofit group Consumer Watchdog along with car industry technologists has issued a warning for all the cars that have Internet connections to safety critical systems. 

The report “Kill Switch: Why Connected Cars Can Be Killing Machines And How To Turn Them Off,” finds out that the cars are highly vulnerable to fleet wide hacks, if their safety systems are connected to internet. 

The automakers have disclosed this vulnerability to their investors, but they are compelling them to use the new features as it is very much fascinating to the market. 

“Connecting safety-critical systems to the Internet is inherently dangerous design,” said Jamie Court President of Consumer Watchdog.  “American car makers need to end the practice or Congress must step in to protect our transportation system and our national security.”

The report warns: “Recent reporting about United States efforts to counter Russian cyber-attacks with its own online infiltration indicate that we increasingly live in the era of cyber warfare. An attack targeting transportation infrastructure is a growing possibility.  Most concerning is that automotive industry executives are aware of these risks, yet are proceeding nonetheless to deploy these technologies, putting corporate profits ahead of consumer safety and national security.”

According to the Consumer Watchdog’s report, the car connected with an Internet kill-switch that physically disconnects the Internet from safety-critical systems. To stop this, the future designs should completely isolate safety-critical systems from infotainment systems. 


The report was prepared by a  group of more than 20 car industry engineers and insiders, but they choose to remain anonymous for fear of losing their jobs. 

Russia to create a National Internet filtering system that allows only WhiteListed sites


By 2020 Russia will launch a national web-filtering system, intended to protect children from the negative and dangerous content.

Denis Davydov, the head of the Secure Internet League, said that there are two versions of the project:

1. Traffic filtering in educational institutions.

2. Traffic filtering by default for all users.

With the second option users will be able to access unfiltered content, if they write a statement to provider or if they remove the checkbox in the account Settings.

Nowadays the League of Secure Internet has a "white list" of websites. It has more than 1 million resources.

Igor Ashmanov, IT businessman, thinks that the idea of "white lists" of websites is not viable. According to the expert, the system of "smart" operational filtering, which blocks prohibited content, is very important and necessary.

"We support the idea of ​​restricting children's access to unwanted content and have been working in this direction for a long time", the official representative of "MegaFon" Julia Dorokhina said.

- Christina


NoScript Anywhere (NSA) Firefox Security Add on Available for Mobiles

NoScript Anywhere (NSA) is one of Famous Firefox Add on that provides protection from Cross site Scripting ,Clickjacking,etc. It blocks malicious script.  Now this extension is available for Mobile Operating systems also(Android and Maemo builds).

This is first complete version(NoScript 3 alpha 9) of Noscript extension for mobile. NSA provides features like Desktop version. Like Desktop version, You can allow javascript in trusted sites (whitelist) and block for all other sites(Blacklist).

Features:
  • Easy per-site active content permissions management.
  • The first and most powerful anti-XSS (cross-site scripting) filter available in a web browser.
  • ClearClick, the one and only effective client-side protection against Clickjackings available on the client side.
  • ABE (App Boundaries Enforcer), a true webapp firewall inside your mobile browser to protect your router and web applications against CSRF and DNS rebinding attacks.
  • Restartless: no need to restart after you install the add on.
  • new page permission editing UI, specifically redesigned for smartphone usage and easily accessible by tapping on a navigation bar icon.
Blocks XSS Attack(Malicious Javascript)

Blocks Clickjacking Attack

Install NSA 3 Alpha 9 now:

Google partnered with Citizens Advice Bureau provides Online Security Tips


Google joined with Citizens Advice Bureau  and provides Online security tips with title" Good to Know".  This page gives public awareness about the Online risks and need of Security.  The topics separated as four categories namely
  • Stay safe Online
  • Your Data on Google
  • your data on Web
  • Manage your Data
Stay Safe Online:
This section provides basic Online security tips about:
  • Phishing and malware attacks(If you are reader of eHackingNews, then you might aware of it).
  • importance of Sign out(most of users fail to sign out.  if you are in public cafe, others can steal your accounts)
  • Secure Connection(https://)
  • Online shopping safety
  • 2-Step Authentication service(Mobile Authentication service that will send random authentication number, whenever you login to gmail)
  • Mobile Security
Your Data on Google:
It covers about the Google search logs and web history and more.

Your data on Web:
Basic knowledge about the Importance of cookies, accounts and IP address.

Manage Your data:
This section covers about the Google Dashboard, How to manage cookies, and more..

Good To Know is available here:
http://www.google.co.uk/goodtoknow/

Every Internet users must read this page in order to protect them self from online risks. 

Note:
If you want more security tips, you can check our Security Tips Blog: http://www.breakthesecurity.com. We have cover this topic before 6 months.  Also we have developer HashCodeCracker to check the Password Strength.

    Your Browser Matters ~Website to Rate the Browser Security , Microsoft


    Microsoft launched a website named as Your Browser Matters for checking the security of your browser.  Whenever a visitor browse the site, It judge the browser security and return the score out of Four points.  The score is based on the protection over the Security risks such as phishing,malware and some other threats.

    Looks like Microsoft launched this web application in order to create public awareness about the browser and Internet risks. 

    Score Results in Different Browsers:
    When i visit that site through my Firefox 6, it displayed 2 out of 4. For google chrome it shows 2.5 out of 4. I come to know that IE9 have 4 out of 4 score(i never used it).  For IE7 , it is 1 out of 4.  It refused to rate safari browser.

    How the Grading System works? 

    Your Browser Matters rate the browser based on the following factors:

    #.Protection Against Malware/Virus Downloads(1 Point):
    Internet browser must give protection against the Malware/Virus Downloads by restricting malware distributing websites. Microsoft developed IE9(Internet Explorer 9) with this protection.  IE9 scored 1 point here. But Mozilla and Chrome scored 0.

    #.Blocking Phishing Sites(1 Point):
    It should detect the Phishing sites and provide protection against them. IE9 scored 1, Firefox=1,Chrome=1

    #. Protection Against Browser Attack(1 point):
    Securing Extensions and an Effective Sandbox; also includes points for auto-updating, and a restriction for extensions and plugins. IE 9 = 1 point, Firefox = 0.5, Chrome = 1.

    #. Protection Against Website Attack:
    There are a lot of options here including blocking insecure content on webpages (which is kind of more annoying than what it’s worth, in my view), sanitizing HTML, and protecting against “Clickjacking.” IE 9 = 1 point, Firefox = 0.5, Chrome = 0.5.

    So the total score for Firefox=2 ,Chrome=2.5 ,IE9=4.