This is the real story of the Afghan biometric databases abandoned to the Taliban

technologyreview.com

By capturing 40 pieces of data per person—from iris scans and family links to their favorite fruit—a system meant to cut fraud in the Afghan security forces may actually aid the Taliban.By 

August 30, 2021

afghans targeted by biometric data

ANDREA DAQUINO

As the Taliban swept through Afghanistan in mid-August, declaring the end of two decades of war, reports quickly circulated that they had also captured US military biometric devices used to collect data such as iris scans, fingerprints, and facial images. Some feared that the machines, known as HIIDE, could be used to help identify Afghans who had supported coalition forces.

According to experts speaking to MIT Technology Review, however, these devices actually provide only limited access to biometric data, which is held remotely on secure servers. But our reporting shows that there is a greater threat from Afghan government databases containing sensitive personal information that could be used to identify millions of people around the country. 

MIT Technology Review spoke to two individuals familiar with one of these systems, a US-funded database known as APPS, the Afghan Personnel and Pay System. Used by both the Afghan Ministry of Interior and the Ministry of Defense to pay the national army and police, it is arguably the most sensitive system of its kind in the country, going into extreme levels of detail about security personnel and their extended networks. We granted the sources anonymity to protect them against potential reprisals. 

Related Story

Tiếp tục đọc “This is the real story of the Afghan biometric databases abandoned to the Taliban”

An ninh mạng hay an toàn dữ liệu cho Việt Nam?

TS – 11/05/2018 08:00 – Hảo Linh

Việt Nam không thể chống đỡ những cuộc tấn công của các nhóm tin tặc chuyên nghiệp và được sự hậu thuẫn của chính phủ các nước khác nếu không thể làm chủ được các thiết bị phần cứng và phần mềm trong hệ thống mạng.


Catalog gián điệp của Cơ quan an ninh Mỹ NSA cho thấy cơ quan này có vô vàn các công cụ cài cắm vào hầu hết các thiết bị phần cứng và giải pháp phần mềm trong hệ thống mạng.

Hệ thống mạng của Việt Nam rất dễ bị tổn thương

Giữa năm 2016, sau chiến thắng của Philippines trước Tòa án Trọng tài thường trực PCA, bác bỏ tuyên bố của Trung Quốc về đường chín đoạn trên Biển Đông, Philippines và Việt Nam trở thành mục tiêu tấn công của các nhóm tin tặc Trung Quốc. Nổi cộm lên vào thời điểm đó, là một loạt sân bay lớn của Việt Nam (bao gồm cả sân bay Nội Bài và Tân Sơn Nhất) bị vô hiệu hóa toàn bộ màn hình hiển thị và loa phát thanh, thay vào đó là những thông tin xúc phạm và xuyên tạc về chủ quyền biển đảo của Việt Nam. Cùng với đó là thông tin cá nhân của 400.000 khách hàng hạng Bông Sen Vàng của Vietnam Airlines bị phát tán trên mạng và bản thân trang web của hãng hàng không này cũng bị thay đổi giao diện và nội dung.

Tiếp tục đọc “An ninh mạng hay an toàn dữ liệu cho Việt Nam?”

Vietnamese cybersecurity expert tops world white-hat hacker ranking

Chia sẻ | FaceBookTwitter Email Copy LinkInterested029/07/2021    09:12 GMT+7

Nguyen Tuan Anh, security expert of Viettel Cyber Security, surpassed more than 25,000 “white hat hackers” in the world to top the June 2021 rankings of Bugcrowd, the world’s largest security vulnerability search platform.

Chuyên gia an ninh mạng Việt Nam đứng đầu bảng xếp hạng hacker mũ trắng thế giới
Tuan Anh found 55 security holes on Oracle’s E-Business Suite product, a widely used software suite in the corporate environment, including a serious vulnerability could allow hackers to take control of the software remotely.

Previously, Nguyen Tuan Anh also topped Bugcrowd’s ranking in April 2021. With nearly 200 discovered security holes, Tuan Anh has received the title “Most Valuable Professional” (MVP) of Bugcrowd for 4 times.

In 2020, he found 55 security holes on Oracle’s E-Business Suite product, a widely used software suite in the corporate environment, including a serious vulnerability could allow hackers to take control of the software remotely. E-Business Suite is a popular product used by large enterprises and organizations in the world (with 20% of enterprises in the Top 500 fortune globally using it).

Tiếp tục đọc “Vietnamese cybersecurity expert tops world white-hat hacker ranking”

Iran behind threatening pro-Trump emails to U.S. voters, feds say

Politico

Federal officials also said Iran and Russia have obtained voter registration data.

John Ratcliffe

Director of National Intelligence John Ratcliffe called the measures “desperate attempts by desperate adversaries.”
| Gabriella Demczuk /The New York Times via AP

By ERIC GELLER

10/21/2020 07:49 PM EDT

Updated: 10/21/2020 08:54 PM EDT

The Iranian government is behind recent emails threatening Americans with retribution if they do not vote to reelect President Donald Trump, national security officials said on Wednesday.

In addition, Iran and Russia have obtained the voter registration data of some Americans, Director of National Intelligence John Ratcliffe said during an abruptly scheduled evening news conference.

Tiếp tục đọc “Iran behind threatening pro-Trump emails to U.S. voters, feds say”

US announces charges against Chinese, Malaysian hackers

US federal prosecutors say the hackers worked to steal identities and video game technology, plant
US federal prosecutors say the hackers worked to steal identities and video game technology, plant ransomware, and spy on Hong Kong activists. (Photo: AFP/Nicolas Asfouri)

17 Sep 2020 12:49AM(Updated: 17 Sep 2020 03:15PM) CNA

WASHINGTON: The US Justice Department on Wednesday (Sep 16) announced charges against five Chinese nationals and two Malaysians who ran global hacking operations for at least six years to steal identities and video game technology, plant ransomware, and spy on Hong Kong activists.

Tiếp tục đọc “US announces charges against Chinese, Malaysian hackers”

Jury Finds Russian National Guilty of High-Profile Hacks

SAN FRANCISCO (CN) — A 12-person jury found a trail of digital bread crumbs led to Yevgeniy Nikulin as the hacker responsible for three data breaches in 2012 at LinkedIn, Dropbox and Formspring and the theft of more than 100 million user credentials.

The trail began with Nick Berry, a LinkedIn engineer whose personal computer was hacked in March 2012. By installing a malicious software program that allowed him to gain access to Berry’s Virtual Private Network— the means by which Berry could log to log in to work remotely— the hacker infiltrated the company’s internal database of user credentials. Tiếp tục đọc “Jury Finds Russian National Guilty of High-Profile Hacks”

Deepfakes đe dọa doanh nghiệp

By Nguyễn Vũ 3/8/2019, 06:36

TBKTSG – Lâu nay khi nói đến deepfakes, tức kỹ thuật dùng trí tuệ nhân tạo và học máy để làm ra các video giả, người ta chỉ nghĩ đến loại video giả các chính trị gia nói chuyện trên trời dưới đất hay loại video các nhân vật nổi tiếng như David Beckham kể chuyện tiếu lâm bằng tiếng Việt. Thế nhưng, vừa có những cảnh báo bọn lừa đảo dùng công nghệ này để giả danh chủ doanh nghiệp đánh lừa nhân viên để chiếm đoạt tiền bạc. Tiếp tục đọc “Deepfakes đe dọa doanh nghiệp”

U.S. Escalates Online Attacks on Russia’s Power Grid

A heating power plant in Moscow. Officials described the move into Russia’s grid and other targets as a classified companion to more publicly discussed action directed at Moscow’s disinformation and hacking units around the 2018 midterm elections.CreditCreditMaxim Shemetov/Reuters

WASHINGTON — The United States is stepping up digital incursions into Russia’s electric power grid in a warning to President Vladimir V. Putin and a demonstration of how the Trump administration is using new authorities to deploy cybertools more aggressively, current and former government officials said.

In interviews over the past three months, the officials described the previously unreported deployment of American computer code inside Russia’s grid and other targets as a classified companion to more publicly discussed action directed at Moscow’s disinformation and hacking units around the 2018 midterm elections.

Read more on New York Times >>

Finally, Assange Will Face the Legal Cases Against Him

Cully Stimson  /  The Daily Signal

Julian Assange supporters demonstrate outside of Westminster Magistrates’ Court in London on April 11. After weeks of speculation, the WikiLeaks founder was arrested by Metropolitan Police inside the Ecuadorian Embassy in London. (Photo: Alberto Pezzali/NurPhoto/Getty Images)

 

WikiLeaks founder Julian Assange is finally going to face the music. According to many across the political spectrum, he is no hero. To a handful of others, he is.

For the last seven years, Assange has avoided accountability for his conduct by holing up in the Ecuadorian Embassy in London, at a cost of over $3 million. But that ended this week. At a news conference on Thursday, Ecuadorian President Lenin Moreno said, “We’ve ended the asylum of this spoiled brat.” Tiếp tục đọc “Finally, Assange Will Face the Legal Cases Against Him”

Làn sóng phản đối bủa vây Huawei

  • TRƯỜNG SƠN
  • 25.02.2019, 09:29

TTCT – Nước Mỹ dưới triều Tổng thống Donald Trump đã “tuyên chiến” với Huawei và liên tục kêu gọi các nước khác, nhất là đồng minh của Washington, cũng cấm cửa hãng công nghệ viễn thông hàng đầu Trung Quốc. Vì đâu nên nỗi?

Cả thế giới lo ngại “gián điệp số” đánh cắp công nghệ từ Trung Quốc

Huawei là một công ty sản xuất chip giá rẻ cho các nhà cung cấp thiết bị viễn thông lớn nhất thế giới trước khi phát triển không ngừng và vươn vai thành gã khổng lồ công nghệ Trung Quốc. Tiếp tục đọc “Làn sóng phản đối bủa vây Huawei”

In Vietnam, Fake Death Certificates Are Weaponized to Hack Facebook Accounts

Published on Monday, 24 December 2018 16:00Written by Saigoneer.

Vietnam’s fake document industry has upgraded for the information age.

Vietnam has one of the largest populations of Facebook users in the world. According to Noudhy Valdryno, a representative from Facebook’s Asia-Pacific Division, the country has 42 million daily users, accounting for 17% of Southeast Asia’s total 242 million. With a robust local Facebook user base comes darker implications, however, such as the manifestation of fake news, bullying or porn bots. Tiếp tục đọc “In Vietnam, Fake Death Certificates Are Weaponized to Hack Facebook Accounts”

Ván cờ thế Huawei – 6 kỳ

***

Ván cờ thế Huawei – kỳ 1: Đòn đáp trả của Bắc Kinh

15/12/2018 11:41 GMT+7

TTO – Việc Trung Quốc và Canada bắt giữ công dân của nhau cho thấy vụ việc bà Mạnh Vãn Chu – giám đốc tài chính toàn cầu (CFO) Tập đoàn Huawei – bất ngờ bị bắt tại Vancouver đang trở thành một ván cờ đầy cân não giữa các tay chơi lớn.

Ván cờ thế Huawei - kỳ 1: Đòn đáp trả của Bắc Kinh - Ảnh 1.

Thông tin chính quyền Canada bắt giữ bà Mạnh Vãn Chu – giám đốc tài chính toàn cầu của Tập đoàn Huawei (Hoa Vi) của Trung Quốc – đã thu hút sự chú ý của công luận ngay vào thời điểm thế giới vừa tạm thở phào khi Mỹ và Trung Quốc tạm đình chiến thương mại trong ba tháng. Tiếp tục đọc “Ván cờ thế Huawei – 6 kỳ”

China’s hacking against U.S. on the rise – U.S. intelligence official

Computer code is seen on a screen above a Chinese flag in this July 12, 2017 illustration photo. REUTERS/Thomas White/Illustration

NEW YORK (Reuters) – A senior U.S. intelligence official said on Tuesday that Chinese cyber activity in the United States had risen in recent months, targeting critical infrastructure in what may be attempts to lay the groundwork for future disruptive attacks.

“You worry they are prepositioning against critical infrastructure and trying to be able to do the types of disruptive operations that would be the most concern,” National Security Agency official Rob Joyce said at a Wall Street Journal cybersecurity conference. Tiếp tục đọc “China’s hacking against U.S. on the rise – U.S. intelligence official”

Microsoft uncovers more Russian hacking ahead of midterms

Microsoft has uncovered new Russian hacking efforts targeting U.S. political groups ahead of the midterm elections.

The company said Tuesday that a group tied to the Russian government created fake websites that appeared to spoof two American conservative organizations: the Hudson Institute and the International Republican Institute. Three other fake sites were designed to look as if they belonged to the U.S. Senate. Tiếp tục đọc “Microsoft uncovers more Russian hacking ahead of midterms”

Facebook says it just found 652 fake accounts out of Russia — and Iran

Twitter found and suspended Iran-linked accounts as well.

Facebook’s Mark Zuckerberg testifies before two Senate committees in April 2018.
Chip Somodevilla/Getty Images

Facebook revealed on Tuesday that it has removed about 650 pages, groups, and accounts it determined are part of a coordinated disinformation campaign out of Russia — and Iran. Also on Tuesday, Twitter said it had suspended 284 Iran-linked accounts.

Menlo Park, California-based Facebook said that it has scrapped 652 fake accounts and pages that targeted Facebook users in the United States, United Kingdom, Latin America, and the Middle East. Facebook said that it undertook four separate investigations into aspects of the suspicious activity, three of which were related to Iran, and the fourth to Russian military intelligence services. The Iranian and Russian campaigns were unrelated, Facebook CEO Mark Zuckerberg said in a call with reporters on Tuesday evening.

Zuckerberg said Facebook banned the fake accounts and announced the decision was “because authenticity matters, and people need to be able to trust the connections that they make on Facebook.”

This is the second time in less than a month that Facebook has identified and removed suspicious activity on its platform, and it comes amid concern that Russia and others are trying to disrupt the 2018 midterm elections. Facebook has stepped up enforcement as a result of those concerns, but it’s not clear whether any of the activity Facebook revealed Tuesday was specifically targeted at swaying the November contest in the US.

Tiếp tục đọc “Facebook says it just found 652 fake accounts out of Russia — and Iran”