Telecommunications wholesaler Platform Networks last week revealed that it had been on the receiving end of a six-month-long hacking attack. In a business climate where businesses are regularly hacked and hide the details for as long as possible, Platform took the rare step of coming forward with the information that they’d been hacked, and involving the Australian Federal Police (AFP).
Investigations by the company and by the AFP culminated in last week’s arrest of David Cecil, an unemployed truck driver from Cowra, who police allege is responsible for the attacks on Platform Networks, and other targets.
The news created a stir in the Australian telecoms and mainstream media, thanks to Platform’s affiliation with the National Broadband Network (NBN); as a telco wholesaler, Platform plans to offer NBN access to small to medium ISPs and telcos.
But while some reported that the attack was actually an assault on the NBN itself, NBN Co took great pains to point out that Platform had not even connected services to the NBN when it was attacked.
David Hooton, Platform Networks’ Managing Director, said in a letter to Platform customers last week that the attack “was not focused on either Platform Networks or any of its customers specifically”.
But if Platform wasn’t the focus of the attack, who or what was? We spoke to Hooton in order to shed a little light on the hacker’s intended target, and other matters relating to the attack.
According to Hooton, there was no specific target. Like a gunman firing into a crowd, the attacker took aim at the entire internet, and Platform Networks was the unfortunate recipient of the bullet.
“This kind of stuff is normally started by someone running port scans and vulnerability scans across the entire internet. They find a web script or something or other […] which they can actually compromise or use to do whatever they want to do,” Hooton says.
“In this instance, the reason that we’ve been involved has been not because this person has seen us as being a soft target, and bombarded us specifically. it would be because in this event, we were part of a greater scanning of what could only really be described as pretty much the entire internet,” he says.
Hooton says that Platform was merely a “bystander” who happened to get wind of some form of malicious activity and who then took the opportunity to observe an unsuspecting hacker at work.
Keeping a close eye
The story starts in December 2010, when Platform noticed an anomalous pattern of traffic on its servers.
In a high-volume hosting environment, such patterns of network traffic are not uncommon, Hooton says. At times, these fluctuations are merely the work of a buggy script on a web server or a virus. but sometimes, they are ripples left in the wake of a malicious interloper.
“from our perspective, it took quite a long time to establish whether that was or wasn’t that kind of traffic we were seeing,” Hooton says.
And as soon as equipment became compromised, Platform was “immediately” aware, he says.
According to Hooton, the company took the machines that were affected by that traffic and “sandboxed them off into a secure area on the network, so that we could monitor them very closely and collect evidence”.
And it seems no customer data was affected.
“The AFP themselves have made a statement specifically stating that there has been no corporate, confidential or customer information that has been in any way compromised,” Hooton says.
As far as specifics go, Platform can’t divulge too many details, due to the ongoing nature of the AFP case against the alleged hacker. but, Hooton does explain what the company normally does in a case such as this.
“We’ll go in and investigate, work out why we’re seeing that traffic. if anything actually happens to the server, we’ve got disaster recovery systems, and also internal security audits which we perform on a very regular basis, that actually flag that for us,” he says.
A matter of disclosure
This story is striking for a number of reasons, but principally for the fact that Platform engaged with the authorities once it realised one of its systems had been compromised, rather than hide that information away from the eyes of the public.
“We take a fairly passive approach to this kind of thing, first and foremost to make sure that we can work out specifically what the [activity] is, what impact it has to us and to others. And then we basically create a case internally – we sit and monitor and watch and gather information that allows us to act appropriately,” Hooton says.
In some cases, the result of this monitoring is just a call to a customer to inform them they have a rogue web script on a web server or some equipment that needs some attention.
But in this instance, Hooton says, “Our investigations led us to believe that the number of people being affected by this particular incident, and the severity of the effect that it has been had on the other people, were large enough for us to work with law enforcement. The appropriate action was for us to work with the AFP.”
As to any suggestion that the hacker behind the Platform attack is the same person who perpetrated the attack that brought Distribute.IT to its knees, Hooton says he can’t comment.
More details to come
Platform has promised a detailed report
According to the first report, Apple’s patent application entitled “Computer Input Device Including a Display Device” demonstrates how Apple could embed a multi-touch display on top of the company’s existing multi-touch Magic Mouse, bringing new functionality to the input device.
Mighty Mouse with virtual number keypad
In one prominent example of the technology, Apple shows a virtual number keypad displayed on an Apple mouse very close in appearance to the company’s Mighty Mouse that was shipping at the time of the patent application filing, allowing for easy data entry without the user needing to remove his or her hand from the mouse.
Apple discusses several options for how the display technology could be employed, but focuses primarily on using “collimated glass” fibers extending through the entire body of the mouse. Images to be displayed could be stored within the mouse itself, transmitted from a computer, or even simply be a magnified version of text or images located underneath the mouse.
In its second report, Patently Apple points to an Apple patent application entitled “Method and Apparatus for Localization of Haptic Feedback”, which describes the use of a virtual keyboard with mechanical actuators to allow the device to provide tactile feedback when keys are activated.
iMac with virtual keyboard (left); Layout of actuators for haptic feedback (right)
In particular, Apple discusses means of improving the localization of such haptic response to key activation, seeking to create a better user experience than that available through current haptic feedback input devices that typically vibrate the entire input surface upon key activation, a mechanism that is particularly troubling for multi-touch based systems. Apple’s proposed system includes a significant number of actuators embedded under the display in locations where users are expected to engage key presses, combining those actuators with methods for suppressing the propagation of vibrations to keep them localized to the region of the key activation.
Such systems could lead to new virtual keyboards offering the flexibility of key layouts easily customized to the task at hand and yet retaining many of the benefits of current mechanical keyboards when it comes to tactile registration of keystrokes.
Powered By iWebRSS.com
While Apple has expressed interest in near field communications (NFC), the short-range wireless technology used for such applications as “tap and go” credit and debit card payments and public transportation fare payments, the company has obviously yet to deploy the technology in its iPhone line.
But as picked up by Engadget, Japanese carrier Softbank is taking steps to bring limited NFC functionality to the iPhone in the form of NFC “seals” or stickers, satisfying the demands of customers in a country where NFC has seen strong adoption.
Japanese carrier Softbank has responded to complaints about the iPhone 4′s NFC deficit — the FeliCa payment system is pretty popular over in the land of sumo, sushi and sun-rising — by introducing a new “seal” for the back of Apple’s latest and greatest. It sticks on, covering almost the entire rear, but is apparently thin enough not to get in the way of using one of Apple’s own Bumpers alongside it.
According to the specifications detailed in the Softbank press release, the sticker is made of polyurethane, weighs 14 grams (0.5 ounces), and covers the entire back of the device with the exception of the camera area. Stickers for three different mobile payment services will be available beginning in February and will be priced at about $36.
As Engadget notes, the sticker doesn’t appear to interact with the iPhone in any way, simply acting as a traditional dumb NFC terminal, but will allow users of some of the most common mobile payments solutions in Japan to ensure that they have their payment methods as long as they have their iPhones in their pockets.
Powered By iWebRSS.com
The iPhone is now the fifth best-selling phone brand in the entire Japanese market, IDC Japan found on Wednesday. Owed mostly to the iPhone 4 launch and shipping 1.06 million phones, Apple climbed from seventh place in the first half of the year to 12.2 percent between July and September. It had never been above 10 percent in the past, the study said….
See the rest here:
iPhone up to fifth place in whole Japanese phone market
MPEG LA, the group that oversees licensing for a number of Internet media standards, today announced that Internet broadcast content using the H.264 video coding standard will remain royalty-free for the entire life of the license, quashing fears that the standard could suddenly become subject to royalty payments in 2016 after the current licensing term expires and is required to be renewed.
MPEG LA announced today that its AVC Patent Portfolio License will continue not to charge royalties for Internet Video that is free to end users (known as “Internet Broadcast AVC Video”) during the entire life of this License. MPEG LA previously announced it would not charge royalties for such video through December 31, 2015, and today’s announcement makes clear that royalties will continue not to be charged for such video beyond that time.
H.264 is the video content standard that has been embraced by a broad array of content providers including Apple, which owns several of the patents included in the technology’s portfolio. Today’s announcement also paves the way for H.264 to become the standard video format for HTML5, which had seen some contributors, such as Mozilla and Opera, supporting Ogg Theora as a royalty-free video standard.
Earlier this year, Google announced its own video standard, WebM, claiming that it would be a royalty-free alternative to H.264. Questions were raised, however, about whether WebM truly could be royalty-free, with MPEG LA even going as far as to suggest that it was looking into putting together a patent pool to assert the rights of intellectual property holders associated with the WebM/VP8 standard.
Powered By iWebRSS.com
AT&T and ‘The Switch’ Join the iAd Rotation
Monday August 23, 2010 04:16 PM EST
Written by Eric Slivka
Silicon Alley Insider provides a walkthrough of two new iAds that have just gone live, featuring Apple’s U.S. iPhone partner AT&T and “The Switch”, a new movie with Jason Bateman and Jennifer Anniston that debuted this past weekend.
The AT&T ad focuses on the carrier’s new $15-per-month Data Plus plan, carrying the tag line “Now your entire family can afford the mobile internet.” The various ad panels outline the carrier’s Data Plus ($15/200 MB) and Data Pro ($25/2 GB) plans and offer estimates and tools to help users decide which plans would be right for them given their mobile activities. The company also pushes its Wi-Fi hotspots, available to its cellular data customers free of charge.
The iAd for “The Switch” offers a variety of features, including a tool for finding nearby theaters showing the film, trailers and commercials, a photo gallery, character bios, and a humorous “quiz” to help users decide whether they are ready to be parents. The ad also features a mini-game called “Build a Baby”, which lets users assemble various combinations of hair, eyes, and mouths to create unique “baby” faces. The resulting images can be saved to the users’ Camera Roll photo folders.
Rating (15 Positives; 21 Negatives)
[ 15 comments ]
Tweet
Powered By iWebRSS.com
The conversation was published Thursday by The Boy Genius Report and linked to by more than three dozen other sites. In it, a writer pretending to be Apple’s CEO tries several times to mollify a customer called “Tom” who is furious about the iPhone 4′s widely reported signal attenuation problem. In separate e-mail messages Jobs purportedly tells “Tom,” who grows angrier with each exchange.
Boy Genius Report had originally published and vouched for the emails claiming the exchange was legitimate. Apple PR says the entire conversation was fabricated. The statements originally attributed to Steve Jobs included:
“No, you are getting all worked up over a few days of rumors. Calm down.”
“You are most likely in an area with very low signal strength.”
“You may be working from bad data. Not your fault. Stay tuned. We are working on it.”
“Retire, relax, enjoy your family. It is just a phone. Not worth it.”
Note that even before Apple PR’s response, BGR had already retracted the last statement that they had originally attributed to Steve Jobs. The “Retire, relax, enjoy your family. It is just a phone. Not worth it.” statement was later attributed to the customer, not Steve Jobs. Though, now it appears the entire exchange was fabricated. Adding further doubt to the motivation behind the original email poster, AppleInsider reports that the emailer had shopped the story around to several sites. It’s not clear if BGR paid for the the rights to publish the story.
As promised, Apple early today began taking pre-orders for its new iPhone 4, although only the black model was immediately available. Around 6 a.m. ET, however, the iPhone 4 page on Apple’s U.S. online store was returning an “Oops! An error occurred” message. Minutes later, the entire store went down.
See the article here:
iPhone 4 pre-orders bring down Apple store
It’s an iPhone case (works with 3G / 3GS) that is covered with more than 1000 Swarovski crystal bits for that extra sparkly look. For only US$184, you can be one of only 100 people on the entire planet Earth to own one of these …
Continue reading here:
Found Footage: Swarovski crystal Apple rainbow logo iPhone case
It’s an iPhone case (works with 3G / 3GS) that is covered with more than 1000 Swarovski crystal bits for that extra sparkly look. For only US$184, you can be one of only 100 people on the entire planet Earth to own one of these …
View original post here:
Found Footage: Swarovski crystal Apple rainbow logo iPhone case