GeekSpeak for 2008-08-23

Online Crime with Coreflood

Joe Stewart from [SecureWorks|http://www.secureworks.com/] chats with the Geeks about malware and online crime. [Joe’s report on Coreflood|http://www.secureworks.com/research/threats/coreflood-report/] shows how complicated and cleaver internet criminals have become.

Tibet album may have spurred China iTunes block

An album supporting Tibetan freedom may have led China’s government to sever access to Apple’s iTunes Store. This week, Chinese users of iTunes have found themselves unable to access the online store, something that Apple acknowledged but would not say whether it was a technical glitch or a move on the part of the censors.

States seek workarounds for e-voting systems

The U.S. presidential election of 2008 has already decided one issue: Electronic voting systems still have a long way to go before they are trusted. Under the Help America Vote Act (HAVA) of 2002, states were given federal funds to buy electronic voting machines that satisfied certain certification guidelines. Six years later, many states are left with machines that have no independent audit trail, making any recount essentially a sham. As the presidential election for 2008 nears, states are dumping touchscreen voting machines that have no audit trail and looking for ways to shore up the physical security of the systems.

Gmail Account Hacking Tool

Or “How I Learned to Stop Worrying and Love TLS/SSL Encryption.”

To fix, log into GMail and click on [Settings|http://tinyurl.com/3j6cdp], located in the top right corner of the web page. Then, at the bottom of the page, set your browser connection to “Always use https”.

Comcast Sending Users to the DSL Slow Lane

Using too much bandwidth? Comcast will offer cable prices for DSL speeds.


!Joe Stewart

[joestewart_informal_300.jpg| [Joe|http://joestewart.org/] is the Director of Malware Research at [SecureWorks|http://www.secureworks.com/]. He researches unusual Internet activity to discover emerging threats, new attack techniques and the latest malicious code. Prior to this role, Joe was an intrusion analyst where he handled millions of security events for SecureWorks’ clients while monitoring their corporate networks from the Secure Operations Center . He is a SANS Global Information Assurance Certified Incident Handler (GCIH) and has been in the information security field for eight years. Joe is a frequent commentator on security issues for leading media organizations such as The Wall Street Journal, The New York Times, MSNBC, Washington Post, Bloomberg and others. Additionally, Joe has published numerous security research papers on Sobig, Migmaf, Sinit, Phatbot and other cyber-threats and attack techniques.]

!!Learn more about the Coreflood trojan:

! Security Sites