Thursday, November 4, 2010

Burma hit by massive net attack

An ongoing computer attack has knocked Burma off the internet, just days ahead of its first election in 20 years.

The attack started in late October but has grown in the last few days to overwhelm the nation's link to the net, said security firm Arbor Networks.

Reports from Burma say the disruption is ongoing.

The attack, which is believed to have started on 25 October, comes ahead of closely-watched national elections on 7 November.

International observers and foreign journalists are not being allowed into the country to cover the polls - which many Western leaders have said will not be free or fair.

It will raise suspicions that Burma's military authorities could be trying to restrict the flow of information over the election period.

Cyber attack

The Distributed Denial of Service (DDoS) attack, as it is known, works by flooding a target with too much data for it to handle.

The "distributed" element of it means that it involves PCs spread all over the world. These networks of enslaved computers - known as "botnets" - are typically hijacked home computers that have been compromised by a virus.

They are typically rented out by cyber criminals for various means, including web attacks. They can be called into action and controlled from across the internet.

Burma links to the wider net via cables and satellites that, at most, can support data transfers of 45 megabits of data per second.

At its height, the attack was pummelling Burma's connections to the wider net with about 10-15 gigabits of data every second.

Writing about the attack, Dr Craig Labovitz from Arbor Networks said the gigabits of traffic was "several hundred times more than enough" to swamp these links.

The result, said Dr Labovitz, had disrupted network traffic in and out of the nation.

He said the attack was sophisticated in that it rolled together several different types of DDoS attacks and traffic was coming from many different sources.

At time of writing attempts to contact IP addresses in the block owned by Burma and its telecoms firms timed out, suggesting the attack is still underway.

"Our technicians have been trying to prevent cyber attacks from other countries," a spokesperson from Yatanarpon Teleport told AFP.

"We still do not know whether access will be good on the election day."

Mr Labovitz said that he did not know the motivation for the attack but said that analysis of similar events in the past had found motives that ran the gamut "from politically motivated DDoS, government censorship, extortion and stock manipulation."

He also noted that the current wave of traffic was "significantly larger" than high profile attacks against Georgia and Estonia in 2007.



Powered by WizardRSS | Full Text RSS Feeds

Facebook eyes mobile domination

Facebook has set out a strategy it hopes will make it as dominant in mobiles as it is in social networks.

At the heart of its plans is making the mobile phone a more social experience and offering shopping discounts.

The company announced the opportunity for businesses to offer deals to users via their phone.

Facebook also revealed plans for a single sign-on that lets users log in to other phone applications with their Facebook name and password.

Third party developers are also being offered the chance to add a social layer to their applications, the company said at an event at its Palo Alto offices.

The bid to combine "mobile, social, local" comes as the number of phones proliferate throughout the world.

More than 200 million people are now using Facebook across various mobile platforms, with the company claiming that this is bigger than the iPhone or Android user base.

A year ago, the social networking giant had 65 million mobile users.

Mobile users are also twice as active on Facebook as people who are logging on via personal computers.

"There is obviously a lot of change in the mobile space and also a revolution happening in the social space," said Mark Zuckerberg, cofounder of Facebook.

"What we have seen is you can rethink any product and rethink it to be social. Mobile is a big area of expansion and a huge new space.

"Combining those things together brings big opportunities for new companies to be built and for industries to be disrupted."

Game changer

Industry watchers at the event said the single biggest disruption that Facebook introduced was the ability for businesses to offer deals to users who check into the site's Places feature.

That product was launched in September and allows users to share with their friends where they are and figure out who is nearby.

One of the first partnerships Facebook announced was with the clothing company Gap. It plans to run a campaign offering a free pair of jeans to the first 10,000 users who check in to their local Gap store using Facebook's mobile application.

In total, Facebook has partnered with 22 major retailers including H&M, Starbucks, McDonalds and the Palms Hotel in Las Vegas.

Small and medium sized businesses with a Facebook page will also be able to offer deals through Facebook's mobile application.

"This deals product is a game changer," said Augie Ray from analyst firm Forrester.

"When you consider that check-in sites like Foursquare has five million users and Facebook has 500 million, you begin to get a sense of where this can scale.

"While so many people were eager to try out Facebook Places, it didn't become that widely adopted because there was no end benefit to the user. That all changes now and helps make Facebook the dominant force on mobile right now," Mr Ray told BBC News.

Susan Etlinger, a senior analyst with Altimeter Group, said the deals feature takes Facebook in a whole new direction.

"Facebook is moving into social commerce for real. This will take Facebook out of its comfort zone in a lot of ways and bring them closer to brands.

"They need to be careful. The first group of deals looks nice and looks like they offer value. They will have to continue to maintain that experience because they have a lot of brand equity riding on this," Ms Etlinger added.

Google and Yahoo are also aggressively trying to tap into users on the go and competing for a share of the growing mobile advertising market.

Analysts have estimated that mobile advertising revenue in the US, for example, will rise to $3.1bn (�1.9bn) in 2013 from $320m in 2009.

Privacy concerns

As always when Facebook introduces new features or products, the issue of privacy reared its head, with concerns being centred more on the developers using third-party applications to extract users' data.

"While I think Facebook does a good job on this issue, I worry that third parties might accidentally disclose information inappropriately," said Larry Magid, co-founder of ConnectSafely.org.

"Facebook is, in a sense, endorsing their application developers and the developers are getting access to location information. The concern is what level of security do the app developers have in place to make sure that information never gets out to the wrong people.

"It's bad enough if people's posts get out there, but location is something very special and Facebook understands that it needs a better level of protection," said Mr Magid.

Facebook's vice president of mobile Erick Tseng tried to allay fears.

"Nothing has changed with the announcement today in terms of security and privacy. It is the exact same model that we have had," he said.

"Today, we have 550,000 different games and applications running the same single sign-on model. Whenever any application violates our terms of service we will shut down that app."

Last week, Facebook pulled the plug or denied access to "communications channels" on around a dozen application developers who violated their terms of service.

Following an investigation into online privacy by the Wall Street Journal, Facebook said last month that, in some cases, user IDs were inadvertently being passed onto applications, which is against the company's policy.

Facebook phone

At the Palo Alto event, Mr Zuckerberg also killed off the constant industry chatter that Facebook will release its own smartphone to compete with the iPhone and Android devices.

"What a novel idea," Mr Zuckberberg told reporters and developers.

"Our goal is to make everyone social. If you are building an iPhone your goal is to get as many phones out there. Our goal is to be social."

Those hoping for the company to announce an iPad application were disappointed.

"The iPad? The iPad isn't mobile. It's a computer," said Mr Zuckerberg.

"It's not a mobile platform the same way a phone is."



Powered by WizardRSS | Full Text RSS Feeds

PM's London Silicon Valley vision

Prime Minister David Cameron is set to unveil plans to transform London's East End into one of the "world's great technology centres".

Firms including Google and Facebook are to invest in the East London Tech City, he will say in a speech later.

He hopes the area, which includes Olympic Park, will challenge California's Silicon Valley as a global hub for technology.

Mr Cameron is to make his announcement in Shoreditch, east London.

The initiative reflects his plan to create private sector jobs to fill the hole left by public sector spending cuts.

In a speech to businesses and entrepreneurs, Mr Cameron will say: "Right now, Silicon Valley is the leading place in the world for hi-tech growth and innovation.

"But there's no reason why it has to be so predominant.

'Creativity and energy'

"Our ambition is to bring together the creativity and energy of Shoreditch and the incredible possibilities of the Olympic Park to help make east London one of the world's great technology centres."

He says the response from international technology firms and venture capitalists to the government's proposals had been "overwhelming".

Firms planning to invest in the area, which will stretch from Old Street to the Olympic Park, include Cisco, Intel and British Telecom.

The Olympic Park Legacy Company will provide office space in the Olympic Park.

Mr Cameron will say the government is committed to ensuring that the UK can become "the most attractive place in the world" for innovative firms to start up.



Powered by WizardRSS | Full Text RSS Feeds

Record label abandons piracy case

The Ministry of Sound has been forced to suspend its plans to pursue thousands of people alleged to have shared music illegally online.

Its solicitors had been trying to get a court order to obtain the names and addresses of the connection owners.

Attempts to obtain the details had been delayed following concerns from BT about how its customers' data would be used and stored.

The case was abandoned after it emerged that BT had deleted 80% of the data.

The ISP - one of three targeted by the Ministry of Sound's solicitors - said 20,000 of the 25,000 requested details had been deleted to comply with data retention policies. BT said it held data for 90 days before deleting it.

"The Ministry of Sound and its solicitors are well aware of this," said a spokesperson for BT.

"Upon request from Ministry of Sound, we saved as much of the specific data sought as we reasonably could and any not preserved must have been too old."

But Ministry of Sound CEO Lohan Presencer said that it was "very disappointing that BT decided not to preserve the identities" of the alleged file-sharers.

"Given that less than 20% of the names remain and BT costs have soared from a few thousand pounds to several hundred thousand pounds, it makes no economic sense to continue with this application."

Despite the setback, the firm said that it was now "more determined than ever to go after internet users who illegally upload our copyrighted material".

"We will be making further applications for information from all ISPs."

BT said its "door remains open to Ministry of Sound and any other rights holder who want to enforce their rights in a fair way through an established legal process".

'Contentious practice'

The record label's solicitors Gallant Macmillan intended to use the data from BT and other ISPs to send out letters to consumers.

The letter states that the firm has cause to believe that someone using a specific IP address (the electronic identity assigned to a person's broadband connection) has illegally downloaded or shared music from the Ministry of Sound.

It then asks users to sign an undertaking not to do so in the future and requests "compensation and costs".

The concept of sending out thousands of letters demanding compensation to users suspected of file sharing has proved contentious.

The BBC has been contacted by a number of people saying they were wrongly accused by a law firm called ACS:Law, which does not represent Ministry of Sound in the current case.

UK consumer group Which? also says it has also received a number of complaints.

ACS:Law is under investigation by the Solicitors Regulation Authority over its role in sending letters to alleged pirates.

No case has ever come to court.

New approach

The Ministry of Sound's decision to stop pursuing the case is the latest twist in its attempts to obtain the data.

An earlier attempt was thwarted when BT succeeded in obtaining an adjournment to the case, saying that the firm needed to see details of the security system that would be used to store its customers' data before it could comply with any order to hand it over.

Its request followed a high-profile data breach at ACS:Law that saw thousands of customers' details from various ISPs - including BT-owned PlusNet - published online.

The details had been collected by the law firm following a court order that forced the ISPs to hand over the details.

The leak occurred after net activists launched a "denial of service" attack on ACS:Law's website.

The company's e-mail database and a series of internal documents were published online in the process of restoring the website.

The leak prompted BT to take a tougher stand before handing over data. It suspended complying with the orders on 29 September until it could agree a new approach with law firms involved in the practice.

"The safeguards we aim to establish via the court are on the security of data handling, a threshold for providing a customer's details based on a minimum number of separate incidents, the tone of contact with broadband subscribers and a reasonable approach to financial compensation sought," said a BT spokesperson.



Powered by WizardRSS | Full Text RSS Feeds