Kaspersky

There was a great article from the Council on Foreign Relations regarding the hypocrisy surrounding Kaspersky since the U.S. government earlier this month banned federal agencies from using Kaspersky Lab software.  Best Buy is getting in on the action and will stop selling Kaspersky products because of possible(?) ties to the Russian government.  Why doesn’t Best Buy get rid of some of the other shit-for-security products on its shelves as well if it’s so concerned about security?

The U.S. House Science Committee received a classified briefing Tuesday related to Kaspersky.  I’d really wish some more details over the alleged collusion between Kaspersky and the Russian government would see the light of day.

And what would a Kaspersky post be without an RT link!?  ‘It’s crazy’: Kaspersky Lab attacked in US only for being Russian, says founder

Coast Guard Prints Spare Parts While at Sea

Wow, imagine the possibilities….

The U.S. Coast Guard is developing the use of 3-D printers to create spare parts on board its ships.The technology has already been used to produce spare parts, and is now being trialed more widely to print parts that are not normally kept on vessels and which may be difficult to source. The Coast Guard said this will improve mission readiness and logistical support.

“Sometimes those parts have lead times of weeks… maybe months, depending on the workload of the manufacturer,” said Captain Joseph Dugan, manager for the National Security Cutter Program.

HT: CIPS

Army Halt Use of Chinese-Made DJI Drones

Citing a worry over “cyber vulnerabilities,” the U.S. Army this week ordered that all drones built by China-based DJI, the world’s biggest drone maker, be immediately removed from Army service. The order comes following a classified study of the issue completed in May by the Army Research Laboratory, and the simultaneous release of a Navy memorandum titled “Operational Risks with Regards to DJI Family of Products.”

He says NASA and the Department of Energy have already stopped using DJI products. When Egan looked into why, he says they weren’t allowed to use the drones “because they are Chinese.”

HT: http://www.airspacemag.com/daily-planet/us-army-stops-using-chinese-made-dji-drones-180964324/

U.S. Courts WIRETAP REPORTS ARCHIVE

Some interesting data in the Statistics section on the U.S. Courts website.   Neat to view different states and their wiretap costs, quantities and type (narcotics, homocide, gambling)

http://www.uscourts.gov/Statistics/WiretapReports/WiretapReports_Archive.aspx

I’m disappointed to see no one has created an app on Data.Gov with the above data.  I couldn’t find anything from the US Courts on data.gov (i.e. bankruptcy).  Who has free cycles!?

Do they have your dox!?

AboutTheData.com just publicly launched this week. It’s brought to you by Acxiom, one of the web’s advertising heavy hitters. After verifying your identity the site allows you to view all of the marketing data they’ve collected about you (demographics, family, loans, auto/home, employment, education etc). They’re also very nice —- they let you update the information in case it’s not accurate! I found my dox to be lacking — not surprising as I don’t believe I’m any of Acxiom’s target demographics.

More from NYTimes here

Another breach notification…

Dear valued community members,

On the 22nd of July 2013, it was discovered that unauthorized access to our website and database has been obtained on the 20th of July.
The method is similar to the hacks that were recently conducted at other websites, even though those sites used other software.
One of the admin accounts password was discovered, and from there further escalation wasn’t too difficult considering admin privileges can do just about anything.

Unfortunately, we are 100% sure that our user database has been stolen.
As such we HIGHLY RECOMMEND, even implore you, to:
1.) Change your password on other websites you are using, if you use the same password there. This is very important to do, as it also will help prevent other websites being hacked through your compromised password, if it is compromised.
2.) Change your password here on our website.
3.) If you use the password you use here anywhere else, say for example to login to your webhost, it is highly urged to change it.
4.) Please note that personal messages may have also been compromised. We don’t know for sure if the hacker only downloaded the user tables or not, although that’s the only thing he/she is after. If they did: keep in mind that passwords you shared through PM should now be considered vulnerable. It’s best not to take the risk and gamble, and just change any password you shared through PM as well.
5.) Charter members, current and past, are encouraged to change ALL passwords if they ever sent any in to us. That would include FTP.

Please keep in mind:
This is !!NOT!! a security issue with the SMF software. If you are running the latest SMF version you have nothing to fear from this hack if you use different passwords.

The method used by the hacker is that a database is downloaded from another hacked website, the passwords are attempted to be decrypted and if it is successful: they try to login to other websites using that username & password, or try to cross-reference by using password reset links.
Unfortunately for us, a Administrator used the same password elsewhere on another site and access to our site was obtained when the password from the other hacked site was successfully decrypted. As a result, the hacker was able to login here with admin rights.
Hundreds of websites have been hacked lately by using this method, so you are highly encouraged to change your passwords…

… And remember: don’t use the same password on multiple sites!
It helps to prevent hacks like this.

Thank you for your consideration and we deeply apologize for any inconvenience this causes for you.
By changing your passwords, you will help ensure that other sites do not fall victim to this method of hacking and help put a halt to the hacking spree that has affected hundreds, if not thousands, of websites already.

Any questions, please do feel free to ask.
Please stay on topic.

Kind regards,
Board of Directors
Simple Machines

Announcement URL: http://www.simplemachines.org/community/index.php?topic=508232.new#new