Tag: security

  • Radioactive tool is going lacking in Malaysia

    A symbol for radioactivity on a radioactively-contaminated container once used to transport nuclear fuel rods Symbol copyright Getty Pictures

    Malaysia is attempting to find a radioactive software which went lacking from a pickup truck in advance this month.

    Government say the radioactive substance throughout the radiography software may unfold dangerous contamination if dismantled improperly.

    There also are fears it would be used as part of a weapon – a so-referred to as grimy bomb – if it fell into the wrong palms.

    Government have showed the tool is missing however have insisted that “the whole thing is under keep watch over”.

    The lacking object is utilized in commercial radiography – it belonged to an organization that does exams, calibrations and inspections for oil and fuel firms and other heavy business corporations.

    The 23kg (50lbs) huge steel tube with a sporting handle had reportedly been used to identify cracks in metal.

    It accommodates the radioactive isotope iridium-192 which is able to cause radiation exposure or be used as a weapon if blended with a traditional explosive tool.

    The Inspector-Normal of Police Mohamad Fuzi Harun mentioned an analogous incident took place remaining year and that there has been no data on that instrument either, the Bernama news agency stated.

    the man who hunts ‘hidden’ radioactive objects Reality Check: Where are the world’s nuclear weapons?

    Police and local media have distinct how the instrument was once being carried on the back of a truck within the capital, Kuala Lumpur.

    It were used at one site on the outskirts of the town and was once then pushed to another area.

    Upon arrival, the drivers noticed the tool used to be lacking. the two males have been taken in for questioning however have in view that been released.

    there may be hypothesis the instrument might both were stolen or fallen off the pickup at the same time as driving.

    A police reputable stated an research had been launched with out giving further details, local media mentioned.

    Deputy Home Minister Azis Jamman showed the incident had taken position but insisted “everything is under keep watch over”.

  • US threatens more motion towards Turkey until pastor freed

    Pedestrians near a foreign exchange office in Istanbul Image copyright Getty Photographs

    The U.s. has threatened to impose more financial sanctions on Turkey if it doesn’t unfastened a detained American pastor.

    Andrew Brunson has been held in Turkey for nearly years over alleged links to political groups.

    The dispute over his liberate has noticed the 2 former allies put price lists on one another’s goods.

    This has worsened a main issue for Turkey’s foreign money, the lira, which has misplaced about a 3rd of its worth towards the greenback due to the fact January.

    This has precipitated widespread selling in different emerging markets, sparking fears of a global trouble.

    The foreign money had recovered relatively earlier this week after the federal government larger price lists on imports from the u.s. of vehicles, alcoholic beverages and leaf tobacco.

    But the restoration was overshadowed by way of the contemporary threats from the u.s..

    Last week, the us doubled its tariffs on metal imports from Turkey, and on Thursday, US Treasury Secretary Steven Mnuchin stated: “We’ve extra that we are making plans to do in the event that they don’t unencumber him Mr Brunson temporarily.”

    ‘Patriotic hostage’

    Turkey is accusing Mr Brunson – who operates a small church in Izmir – of having links to the outlawed Kurdistan Employees Celebration and the Gulenist motion, which Turkey blames for a failed coup years ago.

    Mr Trump stated in a tweet on Friday that Turkey “has taken advantage of the U.s.a. for plenty of years” and that Mr Brunson used to be a “patriotic hostage”.

    “We Will pay nothing for the discharge of an innocent man, however we’re reducing on Turkey,” he said.

    The influential Protestant evangelical church in the us is an enormous give a boost to base for Mr Trump.

    The dispute with Turkey comes at a time whilst Mr Trump is fighting a business conflict with China.

    Turkey’s principal bank stated on Monday that banks could be given the entire liquidity they wanted, as it seeks to keep cash flowing in the financial system.

    There are indicators that the weak point in Turkish currency markets is already spreading.

    South Africa’s rand, Russia’s rouble, the Indian rupee and Indonesia’s rupiah have all taken successful from the crisis in Turkey.

  • Trump ends ex-CIA head John Brennan’s security get admission to

    Former CIA director John Brennan. File photo Image copyright Reuters Image caption John Brennan stepped down as CIA director in January 2017

    Donald Trump has revoked the security clearance of ex-CIA leader John Brennan, denying the u.s. president’s critic of any get right of entry to to sensitive data.

    White House press secretary Sarah Sanders announced the decision by means of studying an announcement from Mr Trump.

    The commentary brought up Mr Brennan’s “erratic conduct and behavior”.

    Mr Brennan said Mr Trump’s performance at a briefing after July’s summit with Russian President Vladimir Putin used to be “nothing in need of treasonous”.

    Trump aspects with Russia against FBI at Helsinki summit Trump Russia affair: Key questions responded

    Last yr, Mr Brennan mentioned an investigation into possible collusion between Trump marketing campaign officials and Russia all over the united states presidential elections in 2016 used to be “well-founded”.

    Image copyright Getty Pictures Symbol caption President Trump is reviewing get right of entry to to classified knowledge to a couple of other former top-rating US officials

    “Historically, former heads of intelligence and regulation enforcement businesses were allowed to preserve get entry to to labeled knowledge after their executive carrier in order that they can consult with their successors, regarding matters about which they will have different insights and as a professional courtesy.

    “Neither of those justifications supports Mr Brennan’s persisted get entry to to labeled information.”

    The commentary added that Mr Trump was also reviewing get right of entry to to categorised information for former FBI leader James Comey, who he fired closing 12 months, former director of national intelligence James Clapper, former Nationwide Safety Agency director Michael Hayden and former lawyer normal Sally Yates, amongst others.

    What have they stated?

    John Brennan: He has defined Mr Trump’s performance at a joint information conference with President Putin in Helsinki, Finland, as “nothing wanting treasonous”.

    James Comey: He has known as the president “morally not worthy” to guide. His memoir, The Next Loyalty, likened Mr Trump to a mob boss.

    Six explosive new claims via James Comey

    James Clapper: He has stated the Watergate scandal “pales compared” to the Russia collusion inquiry dogging the Trump presidency.

    Michael Hayden: In a unadorned jab at the Trump administration, the former NSA director tweeted a photo in June of a Nazi dying camp with the caption: “Other governments have separated mothers and youngsters.”

  • Hackers ‘targeting US mid-time period elections’

    Voters wait in line in front of a polling station to cast their ballots in the US presidential election in Scottsdale, Arizona on 8 November 2016 Image copyright AFP Symbol caption The U.s. mid-time period elections will take place on 6 November

    At Least three congressional applicants had been centered by way of hackers prior to the united states mid-term elections, in keeping with Microsoft.

    Tom Burt, an govt on the firm, made the revelation during a security conference panel in Colorado.

    The 3 candidates appear to had been targeted by means of phishing attacks, he told the audience.

    One cybersecurity expert mentioned the hacking used to be most likely an attempt to “undermine the democratic procedure”.

    US voters will go to the polls on 6 November to opt for a swathe of recent participants of Congress, senators and state governors.

    Phishing attacks

    The tech giant found out the plain foul play after checking faux Microsoft internet domains that had been associated with espionage in 2016.

    a group exploiting the domain names is understood via many as “Fancy bear” but has been dubbed “Strontium” by way of Microsoft.

    Some cybersecurity firms, including SecureWorks and Mandiant, imagine the hackers are associated with Russian intelligence.

    Russia has consistently denied allegations of hacking.

    Mr Burt instructed the Aspen Safety Forum attendees: “Earlier this 12 months, we did uncover that a fake Microsoft domain have been based because the landing web page for phishing assaults and we saw metadata that suggested the ones phishing assaults were being directed at three applicants who have been all standing for election in the mid-term elections.”

    In other words, the hackers attempted to trick the applicants into visiting a bogus Microsoft site.

    Media playback is unsupported on your instrument

    Media captionThe US Director of Nationwide Intelligence reacts to Putin discuss with information: ‘That’s going to be special…’

    Mr Burt didn’t identify the affected candidates however stated they had been all potentially “attention-grabbing goals from an espionage point of view”.

    He added that the hackers weren’t a hit in gaining access to the three applicants and that the faux Microsoft domain were taken down.

    The hackers may had been seeking to acquire get right of entry to to the candidates’ private messages or emails, for example, said cybersecurity skilled Prof Alan Woodward on the College of Surrey.

    “If You can clutch emails… you’ll be able to start making people glance unhealthy,” he mentioned.

    “i think the primary reason is to undermine the democratic process so it doesn’t matter which candidate they be able to subvert.”

    In comments to the click all the way through his seek advice from to Helsinki in advance within the week, President Trump stated “no” when asked if he thought that Russia used to be continuing to intervene in American elections.

    However, his press secretary Sarah Huckabee Sanders claimed that the president if truth be told had answered “no” to a question of whether or not he would be taking further questions.

    Last week, the united states Director of National Intelligence said Russian makes an attempt at hacking US objectives remained “persistent… irrespective of whether it is election time or not”.

    Prof Woodward advised the BBC: “every single intelligence agency, together with the British ones, have said it’s ongoing, it’s an ongoing onslaught and the finger turns out to point at Russia.”

    (more…)

  • Nasa to hack Mars rover Chance to fix ‘amnesia’ fault

    Mars rover Opportunity Image copyright NASA Image caption “Where am I?” – the Mars rover Possibility helps to keep wiping its own data

    Mars rover Chance, which has been exploring the Crimson Planet for greater than 10 years, is suffering from memory issues, Nasa has mentioned.

    The six-wheeled vehicle – not to be puzzled with Curiosity, which introduced in 2011 – assists in keeping resetting unexpectedly.

    The Possibility workforce thinks an age-comparable fault affecting the flash reminiscence utilized by the robotic is to blame.

    It believes it has found some way to hack the rover’s software to disregard the faulty section.

    Speaking to Discovery Information, Nasa venture supervisor John Callas outlined how his team intended to solve the problem.

    Symbol copyright NASA Symbol caption The rover can nonetheless function with the reminiscence fault, however Nasa is keen to fix the issue

    the issue with Chance is that its non-unstable reminiscence is suffering from a fault, more than likely associated with the hardware’s age.

    It signifies that while the rover attempts to save lots of telemetry information to the flash memory it fails, and so it then writes it to the unstable memory as a substitute. Whilst the rover powers down, the information is then wiped.

    “So now we’re having these occasions we name ‘amnesia,’,” explained Mr Callas in Discovery Information.

    “That Is the rover seeking to use the flash reminiscence, however it wasn’t able to, so instead it makes use of the RAM… it retail outlets telemetry information in that risky memory, but when the rover is going to sleep and wakes up once more, all the data is gone.

    “So that is why we call it amnesia – it forgets what it has done.”

    Antique rover

    The issues have gotten more critical, Nasa says, with the reminiscence factor causing the rover to reset itself, and in a few instances stop communicating with project keep an eye on altogether.

    In an strive to resolve the issue, the Nasa crew is trying to “hack” the rover’s software in order that it ignores the erroneous a part of its flash reminiscence, and as a substitute writes, permanently, to the wholesome hardware.

    Image copyright NASA Symbol caption Opportunity has lasted on Mars far longer than Nasa ever anticipated

    the process will take a couple of weeks, Mr Callas instructed Discovery News. Alternatively, he introduced that opportunity is ageing and will be heading in opposition to the top of its useful existence.

    “It Is like you have an getting old determine, that is in a different way in excellent well being – possibly they go for a little jog on a daily basis, play tennis each day – however you never recognize, they may have a major stroke proper within the center of the night time,” he stated.

    “So we’re all the time cautious that something may just happen.”

    although the rover fails now, it’s going to have without difficulty exceeded the initial purpose of spending 3 months on the Crimson Planet.

    Ten years after it first landed, Opportunity has lined 26 miles (41.8km) of the Mars surface, and sent again essential intelligence in regards to the planet’s biological make-up.

  • Spanish soccer league defends telephone ‘spying’

    Spain goalkeeper David De Gea Symbol copyright Getty Pictures

    Spanish soccer league L. A. Liga has defended the privateness coverage of its app after admitting it was once accessing the microphone and GPS of Android customers.

    It mentioned it had been looking to monitor down venues illegally broadcasting matches, by means of matching audio data and call area.

    The app, downloaded greater than 10 million times at the Google Play Retailer, has been criticised via fans.

    Los Angeles Liga said it wanted to “give protection to clubs and their lovers from fraud”.

    The broadcasting of soccer matches in public places without a paid licence value the sport an estimated ONE HUNDRED FIFTY million euros (£132m; $177m) a yr, it said.

    the brand new serve as was enabled on Friday, EIGHT June.

    In a press release on its site (in Spanish), L. A. Liga stated that it had asked for consent on the element at which the app was both put in or up to date.

    It brought it had won the microphone information handiest as code in preference to audio, and that it will fit that code with audio information from a match.

    The app has been hit with a string of poor reviews because the news spread on social media.

    Several have accused La Liga of the usage of their telephones so as to undercover agent on them.

    Leaving a assessment at the Google Play Store, one accused the app of turning customers into police informants without them realising.

    “Spying on you via microphone!” wrote every other.

  • Sensible lock will also be hacked ‘in seconds’

    Tapplock smart lock Image copyright Tapplock Symbol caption The padlocks are broadly available within the UNITED KINGDOM and value round £EIGHTY

    A hi-tech padlock secured with a fingerprint may also be opened by somebody with a smartphone, security researchers have discovered.

    On its website, Tapplock is described because the “world’s first smart fingerprint padlock”.

    But researchers stated it took just FORTY FIVE mins to search out some way to unlock any Tapplock.

    In response, the firm acknowledged the flaw and mentioned it used to be issuing “the most important security patch”.

    In a blogpost, safety skilled Andrew Tierney from Pen Test Partners (PTP), defined how he had hacked the lock.

    “you’ll be able to simply walk as much as any Tapplock and liberate it in under two seconds. It requires no ability or wisdom to do this.”

    He said he was once “so astounded” by means of how easy it used to be that he ordered another lock in case his first attempt were a fluke.

    The lock’s device doesn’t take even easy steps to secure the information it proclaims, he mentioned, leaving it open to a couple of “trivial” attacks.

    The “best flaw” in its design is that the unlock key for the instrument is definitely came upon because it is generated from the Bluetooth Low Energy ID that is broadcast by the lock.

    Anyone with a telephone would be able to pick out up this key if they scanned for Bluetooth devices whilst just about a Tapplock.

    Using this key in conjunction with instructions broadcast by means of the Tapplock might permit attackers successfully open any one they discovered, mentioned Mr Tierney.

    Dragons’ Den

    In response, Tapplock said in a statement that it was issuing a tool replace.

    “Please be attentive to update your app as soon as it turns into available for your region. We extremely counsel you furthermore mght upgrading the firmware of your locks to get the newest protection.

    “This patch addresses a number of Bluetooth/verbal exchange vulnerabilities that can permit unauthorised customers to illegally achieve access. Tapplock will proceed to observe the latest security trends and supply updates from time to time.”

    It thanked PTP for alerting it to the issue.

    Canadian company Tapplock raised greater than $330,000 (£247,000) on crowdfunding website online Indiegogo after being featured on Dragons’ Den Canada.

    The funding helped advance the Tapplock One That has been broadly featured on system web sites and has received a global layout award.

    Tapplock One house owners, according to its creators, need now not remember that mixture codes or keys to release a padlock, but as a substitute can simply swipe with a finger.

    as well as, the lock can be managed by means of a cellphone so it will also be opened remotely to let different relied on people get at no matter what it protects.

    Mr Tierney got interested in testing Tapplock’s claims after he noticed YouTuber JerryRigEverything defeat its physical safety.

    The YouTuber found that the back of the padlock may simply be removed to let attackers liberate the device. On The Other Hand, this weak point was traced to inaccurate production and a subsequent check confirmed other locks have been protected from this type of attack.

    Rather than look into the lock’s physical layout, Mr Tierney checked out the instrument it ran to manage who can use it.

    “Surprised” via what he found, Mr Tierney contacted Tapplock who stated they had been aware of the flaw.

    The company was given time to correct the problem sooner than the firm he works for went public with its findings.

    He advised the good lock company to warn customers about the issue.