Monday, September 28, 2015

Do you imagine entering a cash dispenser which starts to spit out money?

According to the legend, back in the 90s, a Spanish hacker used to connect to a cash dispenser in Alicante to jump to internet from there. But he touched something and the machine started to change the bank balances of the passbooks introduced by the costumers. The cash dispenser gave 2 millions to a sailor who just landed, and he ran to spend all the money in parties. 20 years later the cash dispensers are still a toy for hackers and cybercriminals. Today we'll also talk about a new DDoS attack and the adventures of the secret agencies which spy us.

We also heard that some cybernetic bank thiefs used to take the money of their thefts from there: they programmed the cash dispenser to spit out the money in a determinate day and hour, and notify someone of the group to be there. Today the “game” is with malware: we know at least four virus in the last years, inoculated in the ATMs to steal them. The infected ATM becomes”out of service” until someone who knows the password go for the money.

Attacking unintentionally 

The criminals are also moving forward in the field of DDoS bombing, which usually give them good revenues in blackmails or attacks against rival companies. It was discovered a new technique for the DDoS what uses the web infrastructure of the network ads: a malicious ad causes that the traffic of visitors of the web could be launched against the attacked site. On the attack investigated were achieved 275.000 HTTP petitions per second.

They see what you see

We finish with two pieces which should be read closely. Both are based in documents that Edward Snowden”borrowed” from the North American National Security Agency. The first one explains the monitoring of the Britain secret service over the british and no british population in 2007-2008. They would have monitored online radio programs which heard by millions of people, their interaction in social networks or which pornographic videos they see.

Go for the encryption

The second text we recommend explains how the NSA and the Britain secret services would have broke the encryption used by millions of people to protect their bank communications, health data and even e-mails. It would be on progress, among others, a program of 250 million dollars a year to push technology companies to put backdoors in their products.

The question we always do to ourselves before this kind of revelations is: if these agencies did this ten or five years ago, what are they doing now? Happy Monday! Next Monday starts in Albacete the Navaja Negra-ConectaCon convention, which reunites a great part of the Spanish cybersecurity community. There are still a few tickets. 


Post a Comment