hacking

Yet another cat fight between Google and Microsoft

There’s a cat fight happening between Google and Microsoft. Basically, Google has a policy to publicly disclose any bugs it finds within 90 days of informing the software provider. In this case, it was a bug in Windows that allowed a person’s system to be taken over. It’s not easy to do, but possible nevertheless.

The 90 window passed with still no fix from Microsoft, so Google went ahead and published the bug for all hackers to learn. Microsoft did issue a fix just two days after Google went public, and obviously isn’t happy with Google. As a Microsoft representative wrote:

Although following through keeps to Google’s announced timeline for disclosure, the decision feels less like principles and more like a “gotcha”, with customers the ones who may suffer as a result. . .What’s right for Google is not always right for customers. We urge Google to make protection of customers our collective primary goal.”

So who’s right, who’s wrong?

Read Full Article

Lizard Squad: so scary, yet so stupid

Lizard Squad is pissing me off. First, because I couldn’t play Destiny or go on the PlayStation Network for several days because the hacker group launched DDoS attacks that brought it down. Second, because it appears at least one or them did it for money, and small money at that.

According to The Guardian, Lizard Squad launched Lizard Stresser, a service that can be used to take down any website or network for only $6, upwards to $500. The attacks on Sony and Microsoft were supposedly a “huge marketing scheme” for this DDoS service.

How…incredibly short sighted. $6?? A good coder can earn so much more doing something legitimate. The world is your oyster and the best thing you can do is charge peanuts to do evil?

The thought of every Dick and Jane spending just a few bucks to cause havoc over the smallest slight is disturbing.

Read Full Article

The Interview is more like the confusion

I am a little confused by all the hubbub the The Interview movie has generated.

Did the North Korean government really do it? I have no doubt there’s a hacker unit in their intelligence agency — there’s probably one in every agency — but why would you target a movie or a Japanese entertainment studio of all things? I understand The Interview is offensive to North Koreans, but the movie isn’t even out yet so how would they even know just how bad it is.

If I was the head of that agency I’d target something more important. Something that would actually matter to national security and strategy. I wouldn’t expose my country to something as mundane as a movie, and a comedy at that.

I’m also a little confused with Sony. They pulled the movie because theaters didn’t want to show it? Everyone’s talking about this movie; it’s a goldmine with all the publicity it has generated. If I ran a movie theater I’d be falling all over myself to show it.

Read Full Article