Security Alerts & News
by Tymoteusz A. Góral

#1403 Building a new Tor that can resist next-generation state surveillance
Since Edward Snowden stepped into the limelight from a hotel room in Hong Kong three years ago, use of the Tor anonymity network has grown massively. Journalists and activists have embraced the anonymity the network provides as a way to evade the mass surveillance under which we all now live, while citizens in countries with restrictive Internet censorship, like Turkey or Saudi Arabia, have turned to Tor in order to circumvent national firewalls. Law enforcement has been less enthusiastic, worrying that online anonymity also enables criminal activity.

Tor's growth in users has not gone unnoticed, and today the network first dubbed "The Onion Router" is under constant strain from those wishing to identify anonymous Web users. The NSA and GCHQ have been studying Tor for a decade, looking for ways to penetrate online anonymity, at least according to these Snowden docs. In 2014, the US government paid Carnegie Mellon University to run a series of poisoned Tor relays to de-anonymise Tor users. A 2015 research paper outlined an attack effective, under certain circumstances, at decloaking Tor hidden services (now rebranded as "onion services"). Most recently, 110 poisoned Tor hidden service directories were discovered probing .onion sites for vulnerabilities, most likely in an attempt to de-anonymise both the servers and their visitors.
Read more
#1406 Research: Companies fear mobile devices as massive cybersecurity threat
#1405 Cybercrime and cyberwar: A spotter's guide to the groups that are out to get you
#1404 How one man could have owned GitHub, and what happened next…
#1403 Building a new Tor that can resist next-generation state surveillance
#1402 New version of Cerber ransomware distributed via malvertising
#1401 Dropbox hackers stole e-mail addresses, hashed passwords from 68M accounts
#1400 Fairware attacks targeting Linux servers
#1399 So much for counter-phishing training: Half of people click anything sent to them
#1398 Thousands of security threats happen every five minutes: Trend Micro VP
#1397 SWIFT warns banks of more cyberattacks
#1396 Chrome 53 fixes address spoofing vulnerability and 32 other bugs
#1395 Hackers stole over 43 million accounts in 2012 breach
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12