News & Updates

By Waqas

Brian Krebs, the famous Infosec journalist whose website KrebsOnSecurity was targeted with a massive amalgamation of Mirai botnets to launch a notorious DDoS attack in October 2016, has managed to identify the perpetrator of the crime. It seems Brian Krebs has been working hard to unmask the creator of Mirai botnet that has been creating havoc […]

This is a post from HackRead.com Read the original post: Researcher claims to expose identity of Mirai Botnet Author

Source: https://www.hackread.com/feed/

Enlarge / A scene from Prelude to Axanar. (credit: Axanar)

On Friday, litigants announced a settlement to end a contentious copyright lawsuit over a short film and a proposed feature-length film based in the Star Trek universe. The lawsuit was filed last year and involves Star Trek fan-fiction producer Axanar Productions, Paramount Studios, and CBS.

The parties did not disclose all the details of the settlement, which is sealed from the public record. But a joint statement from Axanar and the plaintiffs noted that the defendants “acknowledge that both films were not approved by Paramount or CBS and that both works crossed boundaries acceptable to CBS and Paramount relating to copyright law.” A spokesperson from Axanar told Ars Technica in an e-mail “we’re not paying anything,” with respect to the settlement.

The settlement will also require the fanfic producer to “make substantial changes to Axanar to resolve this litigation.” According to a statement from Axanar, this includes changing the proposed feature-length film into two 15-minute short film episodes, which will be posted on YouTube without advertising from which Axanar could earn revenue. The 20-minute Prelude to Axanar will be allowed to stay on YouTube.

Read 9 remaining paragraphs | Comments

Source: http://feeds.arstechnica.com/arstechnica/index/

The popular investigator Brian Krebs published the details of his investigation on the identity of the Mirai author Anna-Senpai.

In the last months, the Mirai bot monopolized the attention of the media, it was used to power the massive DDoS attack against the Dyn DNS service causing an extended Internet outage.

A large portion of Internet users was not able to reach most important web services, many websites like including Twitter, GitHub, PayPal, Amazon, Reddit, Netflix, and Spotify were down for netizens in the US.

The same IoT botnet was used to launch a massive Distributed Denial of Service (DDoS) attack against the website of the popular cyber security investigator Brian Krebs who decided to investigate about the author of the dangerous malware.

In October a hacker released the source code of the Mirai malware, a reference to the malicious code was spotted by Brian Krebs on the popular criminal hacker forum Hackforum. The Hackforum user with moniker “Anna-senpai” shared the link to the source code of the malware “Mirai.”

“The leak of the source code was announced Friday on the English-language hacking community Hackforums. The malware, dubbed ‘Mirai’ spreads to vulnerable devices by continuously scanning the Internet for IoT systems protected by factory default or hard-coded usernames and passwords.” reported Krebs.

mirai author botnet

The Mirai malware was specifically designed to infect Internet of Things (IoT) devices using the credential factory settings, a circumstance that is quite common in the wild.

Brian Krebs believes to have discovered the real identity of the mysterious Anna-senpai, his name is Paras Jha, the owner of a distributed denial-of-service (DDoS) attack mitigation company ProTraf Solutions.

“After months of gathering information about the apparent authors of Mirai, I heard from Ammar Zuberi, once a co-worker of ProTraf President Paras Jha.

Zuberi told KrebsOnSecurity that Jha admitted he was responsible for both Mirai and the Rutgers DDoS attacks. Zuberi said when he visited Jha at his Rutgers University dorm in October 2015, Paras bragged to him about launching the DDoS attacks against Rutgers.” wrote Krebs.

“He was laughing and bragging about how he was going to get a security guy at the school fired, and how they raised school fees because of him,” Zuberi recalled.  “He didn’t really say why he did it, but I think he was just sort of experimenting with how far he could go with these attacks.””

The man alleged created the Mirai botnet and spread it to recruit the largest number of IoT devices.

Krebs reported that in 2014, an earlier variant of the Mirai botnet was used to launch DDoS attacks against Minecraft servers which can generate up to US$50,000 a month.

Krebs discovered that Jha along with other players developed the Mirai bot and used it to power an attack against the Minecraft servers to lure disgruntled customers. The providers that ignored Jha’s requests were hit by massive DDoS attacks.

Krebs explained that Jha contacted upstream providers to request the shutdown of rival IoT firms, then he developed the Mirai bot to attack rival Qbot botnets.

Krebs cited a Webinar presented on December 16, by the experts at the firm Digital Shadows that exposed the findings on the investigation about the Mirai author’s real life identity. According to Digital Shadows, the person behind the Anna-Senpai moniker also used the nickname “Ogmemes123123” and the email address [email protected] He also discovered that the Mirai author has used another nickname, “OG_Richard_Stallman,” a clear reference to the founder of the Free Software Foundation. The [email protected] account was also used to register a Facebook account in the name of OG_Richard Stallman.

That Facebook account reports that OG_Richard_Stallman began studying computer engineering at New Brunswick, NJ-based Rutgers University in 2015., the same University attended by Paras Jha. The Rutgers University suffered a series of DDoS attacks on its systems since 2015, the attacker suggested the school purchase a DDoS mitigation service.

Krebs also highlighted that the skills listed on Jha’s LinkedIn page are the same of the Mirai author Anna-senpai ‘s HackForums.

The Krebs’s analysis is very intriguing and full of details … enjoy it!

medianet_width=’300′; medianet_height= ‘250’; medianet_crid=’762221962′;

Pierluigi Paganini

(Security Affairs – Anna-senpai, Mirai Author)

The post Which is the real identity of the Mirai Author Anna-Senpai? appeared first on Security Affairs.

Source: Security affairs

FCC Republican Commissioner (and soon-to-be Chairman) Ajit Pai. (credit: FCC)

President Donald Trump will select Republican Ajit Pai to become chairman of the Federal Communications Commission, Politico reported today.

“Two industry sources” who are familiar with the decision said an announcement could be made as soon as today, the report said. Pai would become chairman immediately, without needing to be confirmed by the Senate, because he is already a member of the commission. New commissioners must be approved by the Senate, but the president can select the chair from among the commissioners without any additional approvals.

Pai was widely expected to be appointed chairman on at least an interim basis, but Politico says Trump is appointing him as a long-term chair. That would mean Pai could lead the commission throughout Trump’s four-year term in the White House.

Read 10 remaining paragraphs | Comments

Source: http://feeds.arstechnica.com/arstechnica/index/

Paramount

Jam-packed with fantastic character actors, full of ridiculously insane fight scenes, and centered on a functionally impossible piece of technology, xXx: Return of Xander Cage is everything you need from an action flick. There’s a thin scrim of a plot involving an evil laptop called Pandora’s Box, whose superpowers involve “spying on everybody,” “controlling satellites,” and injecting hostile poop emojis into Web sessions. Just kidding about that last bit. This movie does not know about Web sessions. But I’m not kidding about how Vin Diesel’s performance as “underground blogger” Xander Cage is goofily badass, and the hijinks of his crew are equally fun.

This is the third xXx film, though only the second with Vin Diesel. Ice Cube took the X helm for the second movie, and this flick picks up basically a few years after that. There’s still a secret international X program associated with various intelligence agencies, and the X agents are all underground rebel celebs who do things like skateboard for great justice.

Read 8 remaining paragraphs | Comments

Source: http://feeds.arstechnica.com/arstechnica/index/

Enlarge / A 12-year-old boy in Texas checks his arm after receiving an HPV vaccination. (credit: Getty | The Washington Post )

Nearly half of all men in the US have some type of genital human papillomavirus infection—and about 25 percent have a type linked to cancer, according to a study appearing Thursday in JAMA Oncology.

The study is the first to look at the prevalence of HPV among American men. Much of the past attention paid to HPV has focused on women, because the virus is the cause of nearly every case of cervical cancer in the US. For this reason, health experts have been recommending since 2006 that girls and young women get vaccinated against HPV.

Experts updated that recommendation to include boys and young men in 2011, but the new study shows that few are actually getting those shots—just 10 percent were vaccinated. But with the new prevalence data, the authors suggest that vaccinating men may not only prevent thousands of cancer cases, but it could also be key to stamping out cancer causing-HPV transmission overall.

Read 10 remaining paragraphs | Comments

Source: http://feeds.arstechnica.com/arstechnica/index/

Recently Apple released a new Feature for iPhone and iPad users, but it was so buggy that the company had no option other than rolling back the feature completely.

In November, Apple introduced a new App Store feature, dubbed “Notify” button — a bright orange button that users can click if they want to be alerted via iCloud Mail when any game or app becomes available on the App Store.


Source: http://feeds.feedburner.com/TheHackersNews

Enlarge / Venus, as seen by the Akatsuki spacecraft, displaying the bow-shaped feature. Lighter colors reflect higher light emissions; the white regions are about 233 Kelvin. (credit: ©Planet-C)

The Akatsuki spacecraft arrived in orbit of Venus in December 2015, and it quickly captured a very strange feature: an atmospheric disturbance in the shape of a bow. The feature is enormous, stretching from the planet’s north pole to its south (10,000 kilometers, or 6,200 miles in total), and it’s visible in both infrared and (dimly) ultraviolet light.

Images from this mission were recently released, and researchers have had the chance to review them and do some science. They’ve concluded that the mysterious structure is probably a gravity wave, caused by mountains on the surface and propagating up into the atmosphere. It’s “the only reasonable interpretation,” according to a new paper on the feature.

Gravity waves—not to be confused with gravitational waves, the kind recently observed by LIGO—are waves in a fluid, like water or air, caused by gravity. When some of the fluid is displaced upwards, gravity tries to correct it and restore equilibrium, a process that creates waves. The Earth’s atmosphere also has gravity waves created by the influence of mountains, which displace air upwards.

Read 9 remaining paragraphs | Comments

Source: http://feeds.arstechnica.com/arstechnica/index/

Enlarge / Donald Trump takes the oath of office Friday, becoming the 45th president of the United States.

Donald J. Trump won the US presidency in November on a campaign that repudiated both his opponent and the Obama administration. Today he took the oath of office and became the nation’s 45th president—despite the political pundits and polls predicting victory for his Democratic rival, Hillary Clinton.

The Republican’s ascendancy from billionaire real estate mogul to the world’s most powerful elected official promises to usher in a new era, one that includes a remaking of the Supreme Court and alterations of US policy when it comes to space, broadband, healthcare, manufacturing, immigration, cyber defense, the environment, and even foreign relations (from diplomacy to the reliance on foreign labor enjoyed by companies like Apple). All of these potential changes only seem more imminent due to the fact that the newly inaugurated Trump, and his Vice President Mike Pence, enjoy a GOP-controlled House and Senate.

“The time for empty talk is over. Now arrives the hour of action,” Trump said after he was sworn in by Chief Justice John Roberts. Moments later, Trump added: “We stand at the birth of a new millennium, ready to unlock the mysteries of space, to free the earth from the miseries of disease, and to harness the energies, industries and technologies of tomorrow. A new national pride will stir ourselves, lift our sights and heal our divisions.”

Read 45 remaining paragraphs | Comments

Source: http://feeds.arstechnica.com/arstechnica/index/

Enlarge (credit: Chris Young)

AT&T has raised its non-contract phone activation and upgrade fee from $20 to $25, the latest increase for a fee that didn’t even exist until July 2015.

As the mobile carrier switched from contracts to device payment plans, AT&T initially did not charge an activation and upgrade fee for customers who brought their own phone or bought one from AT&T on an installment plan. But in July 2015, AT&T started charging a $15 activation fee to customers who don’t sign two-year contracts. (AT&T also raised the activation/upgrade fee for contract customers from $40 to $45 in July 2015.)

The activation fee for non-contract customers was raised from $15 to $20 in April 2016 and was just raised again to $25, PhoneScoop reported today. The $25 fee is charged for new activations or upgrades when customers purchase devices on installment agreements, AT&T says. Customers who bring their own phone to the network are charged the $25 fee when they activate a new line of service, but not when they upgrade phones on an existing line.

Read 4 remaining paragraphs | Comments

Source: http://feeds.arstechnica.com/arstechnica/index/