In 2015, Israeli government hackers saw something suspicious in the computers of a Moscow-based cybersecurity firm: hacking tools that could only have come from the National Security Agency.
Israel notified the NSA, where alarmed officials immediately began a hunt for the breach, according to people familiar with the matter, who said an investigation by the agency revealed that the tools were in the possession of the Russian government.
Israeli spies had found the hacking material on the network of Kaspersky Lab, the global anti-virus firm under a spotlight in the United States because of suspicions that its products facilitate Russian espionage.
Almost all AV these days uses more than simple known code fingerprints; additionally they use, e.g., heuristic scanning. Probably the fingerprints are not the concern because anybody who buys the product gets a copy of the fingerprints in a file. Probably it's exposing potential flaws in the scanner logic that is the concern.
They do that here in the US also, it's called (unsurprisingly, perhaps) "Amazon Locker". It used to be free but around a year or so ago I think they started charging a fee for using them.
Congress shall make no law respecting an establishment of religion, or prohibiting the free exercise thereof; or abridging the freedom of speech, or of the press; or the right of the people peaceably to assemble, and to petition the Government for a redress of grievances.
Seriously. How is the First Amendment being violated here?
1. Comcast is a religion?
2. Comcast is not being permitted to state their side?
3. Comcast is being prevented from staging a march down Main Street?
4. Comcast is being denied the right to petition the government to let them out of their contract?
No.
Comcast says it’s a “recognized provider of protected speech under the First Amendment and, as such, may not be singled out for undue burdens that infringe on such rights.”
I guess that "Nuclear Powered Megaphone Company" will also qualify as a recognized provider of protected speech under the First Amendment and therefore the potential for radiation leakage will be ignored so as not to cut into their profits.
PureVPN specifically chose Hong Kong (HK) for its headquarter because there are "No Mandatory Data Retention Laws" in Hong Kong
We are therefore, not legally obliged to store user data and share it with anyone.
Since PureVPN is committed to freedom, and doesn't support crime, we will only share information with authorities having valid subpoenas, warrants, other legal documents or with alleged victims having clear proof of any such activity. It goes without saying that we will only do so in the best interest of our customers and our company. When and if a competent court of law orders us or an alleged victim requests us (that we rigorously self-assess) to release some information, with proper evidence, that our services were used for any activity that you agreed not to indulge in when you agreed to our Terms of Service Agreement, then we will only present specific information about that specific activity only, provided we have the record of any such activity.
Personally I am glad that there are ways to connect malicious activities like this to the malefactor. The guy is getting what he deserves.
The New York Times link I posted shows the layout of the murderer's hotel suite and the location of a bunch of firearms and ammunition within it. It also describes some of the arsenal:
Police officials confirmed the authenticity of the photographs of the scene at the gunman’s hotel suite.
From his perch on the 32nd floor of the Mandalay Bay Resort and Casino, the gunman, who was identified by the police as Stephen Paddock, used rapid-fire weapons to shoot at concertgoers at a music festival.
At least three AR-15-style rifles were visible on the floor and on the furniture, along with at least a dozen high-capacity magazines, which can hold up to 100 rounds. (A standard American infantry soldier's magazine is 30 rounds.)
Are you saying that it's fake? Or do you just not like NYT no matter what they publish?
The top export destinations of North Korea are China ($2.34B), India ($97.8M), Pakistan ($43.1M), Burkina Faso ($32.8M) and Other Asia ($26.7M). The top import origins are China ($2.95B), India ($108M), Russia ($78.2M), Thailand ($73.8M) and the Philippines ($53.2M).
When I experienced identity theft it wasn't through bogus charges on my credit card (which my bank normally picks up on right away) but through about a dozen newly-opened store-specific credit card purchases and utility bills in places between 1,000 and 4,000 miles away from where I live.
That's not something I could have easily monitored by just checking my bank's website.
In my case the perpetrator was caught by police in another state within a day or two of my first learning about the first bogus account. Not everybody is so lucky.
I'm going to take a wild guess and say that your company was probably trying to sell their product(s) to the federal government (in the US at least), not just displaying the code for random consumer software.
In the case discussed here I think that China is demanding access to any code that runs within the country. So the average person who wants to run "CandyLand" on their phone can rest assured that the code isn't stealing their PII or, worse, that they are exchanging encrypted political opinions with other CandyLand users.
Slashdot Mirror
He didn't say he actually used the tools afterwards. What do you think ebay and craigslist are for anyway?
https://www.washingtonpost.com/world/national-security/israel-hacked-kaspersky-then-tipped-the-nsa-that-its-tools-had-been-breached/2017/10/10/d48ce774-aa95-11e7-850e-2bdd1236be5d_story.html
Almost all AV these days uses more than simple known code fingerprints; additionally they use, e.g., heuristic scanning. Probably the fingerprints are not the concern because anybody who buys the product gets a copy of the fingerprints in a file. Probably it's exposing potential flaws in the scanner logic that is the concern.
An especially good deal if you're an Amazon Prime member: https://www.amazon.com/U-S-Military-Surplus-Medical-Tools/dp/B00ZAGG0NK
They do that here in the US also, it's called (unsurprisingly, perhaps) "Amazon Locker". It used to be free but around a year or so ago I think they started charging a fee for using them.
No. Stealing South Korean military intelligence is not their business.
This is their business: https://www.nytimes.com/2017/10/07/business/north-korea-embassies.html
Seriously. How is the First Amendment being violated here?
No.
I guess that "Nuclear Powered Megaphone Company" will also qualify as a recognized provider of protected speech under the First Amendment and therefore the potential for radiation leakage will be ignored so as not to cut into their profits.
Personally I am glad that there are ways to connect malicious activities like this to the malefactor. The guy is getting what he deserves.
In a way that's correct though. The question is in fact a duplicate. The answer however is different now.
Are you saying that it's fake? Or do you just not like NYT no matter what they publish?
Since we are exchanging cliche aphorisms, here's a good one:
The right to swing my fist ends where the other man’s nose begins.
Your poignant trotting out of a sentence from the second amendment illuminates this week's success story:
https://www.nytimes.com/interactive/2017/10/04/us/vegas-shooting-hotel-room.html
Sometimes working for family just isn't a good idea. But at least you got to use your own email account for awhile.
What would be the point if the wedding ring still couldn't unlock his smart phone?
Just download the emergency broadcasts before the hurricane starts and listen to them later in the comfort of your soon to be destroyed home.
All you smart people and you can't come up with this obvious solution! Come on guys!
I'll just leave this here:
https://www.ftccomplaintassistant.gov/
Yeah, and the baseball team used Apple Watches to steal signs from the opposition:
http://mlb.nbcsports.com/2017/09/05/report-major-league-baseball-determines-red-sox-illegally-used-technology-to-steal-signs-from-the-yankees
But wait, maybe they were using some 400 pound hacker sitting on his bed in his parent's basement. It could be. We don't know.
May I correctly assume that you don't walk naked around your own home or do you - and live in a very hip small town?
http://atlas.media.mit.edu/en/profile/country/prk
When I experienced identity theft it wasn't through bogus charges on my credit card (which my bank normally picks up on right away) but through about a dozen newly-opened store-specific credit card purchases and utility bills in places between 1,000 and 4,000 miles away from where I live.
That's not something I could have easily monitored by just checking my bank's website.
In my case the perpetrator was caught by police in another state within a day or two of my first learning about the first bogus account. Not everybody is so lucky.
Google is 10 times better than any other 99.99% uptime service, so 9 hours.
I'm going to take a wild guess and say that your company was probably trying to sell their product(s) to the federal government (in the US at least), not just displaying the code for random consumer software.
In the case discussed here I think that China is demanding access to any code that runs within the country. So the average person who wants to run "CandyLand" on their phone can rest assured that the code isn't stealing their PII or, worse, that they are exchanging encrypted political opinions with other CandyLand users.
Just sayin'
I'm sorry but citation needed please.
Doing so would entail substantial financial risk for the Trump business conglomerate:
https://www.bloomberg.com/news/articles/2016-12-02/ivanka-trump-s-china-sewn-line-turns-profit-at-a-political-cost
http://www.businessinsider.com/ivanka-trump-clothing-line-made-in-china-hong-kong-2017-2
This need not be viewed as some dastardly plot by an evil corporation.
Maybe they just want to be able to use the speakers as microphones once in a while to catch up on what you've been talking about lately.