Cyber Intelligence Sharing and Protection Act (or CISPA) is in the air and while it looks like the Congress is finally taking cybersecurity really seriously, this law has an oppressive aura pretty much like that of SOPA and it doesn’t look too good.
According to Electronic Frontier Foundation, CISPA is written vaguely and it may take away the freedom of individual users as it opens the door for massive spying. In the name of cybersecurity, it will allow ISPs, media sites and even cyberlockers to give away user information to the government without repercussions–which many privacy advocates believe goes beyond the pale.
Moving on, Dinei Florencio and Cormac Herley published papers under Microsoft Research which claims that cybercrime is grossly exaggerated with a reported $100 billion worth of annual casualties. The determination is normally done by survey and poses great statistical challenges where respondents can claim to have lost $2 million more to cybercrime than they actually did. Cybercrime surveys “are so compromised and biased that no whatever can be placed in their findings,” they said.
Meanwhile, Apple is dealing with another backdoor Trojan called Backdoor.OSX.SabPub.a following the Luckycat campaign. There’s a link between the two which is the command-and-control (C&C) at IP 199.192.152 that’s used in both Trojans. Not too long ago, Apple also released two updates to resolve the issue of previous malware BackDoor.Flashback.39 and hunt the Trojan author.
Anonymous also carries on with their mission of disrupting governments they don’t like and launched yet another DDoS attack on the US Department of Justice website. The initial cyber onslaught against cia.gov and justice.gov was initiated by Brazilian hacktivist Havaittaja (moniker) “for the lulz.” This caused the CIA to go down for 45 minutes while justice.gov was shutdown.
The US government’s also got recent accomplishments by capturing hacker Higinio O. Ochoa III who was charged of hacks into US law enforcement agencies about three weeks ago. He operates under the name Cabincr3w and is said to be affiliated with Anonymous. But the rather peculiar thing about the incident was the method that led to Ochoa’s capture. Through some basic snooping in the cyberspace, authorities found the photo used by the hacker to announce that he “pwned” the sites that he hacked which had his girlfriend’s breasts on it. If he weren’t such a nincompoop.