Friday, October 20, 2017

Be careful with the postman

In 1844, a tremendous uproar broke out when Giuseppe Mazzini, an Italian exiled in London, convinced himself that the British government read his correspondence. To prove his theory, Mazzini decided to send letters to himself, including in the envelope seeds, tufts of hair and grains of sand. On receiving his letters without trace of the aggregates, confirmed his suspicion. Mazzini launched a complaint that ended in the abolition of the power of the mail to open private correspondence.


To this day many basic rights stagger, this week the privacy received a great blow. The attack arrived earlier this week accompanied by chaos in the WIFI network. For those who haven´t yet realized, which will be few, the exploit that has achieved has been KRACK resulting in situations of decryption, replay packets, hijacking TCP connection, injection of HTTP content among others.

One of those who carry off the award of ignoring privacy has been Russia, which this week launched the big news: Telegram, a speed and security-focused messaging application, has been fined for refusing to decrypt messages from their users. What was the excuse? It was the lack of cooperation with security services. What stands out here is not the fine that the courier company will have to pay, which has been rather symbolic, but what this whole plot represents. When "the above" talk about security they allow themselves the luxury of overlooking the privacy of millions of users. Of course, save yourself in case you think of refusing to cooperate.

One element that has a lot to do with privacy is the IP address. This is normally used by authorities to try to identify a criminal. The problem comes when using CG-NAT, resulting in a much more complicated situation: tens and even hundreds of users sharing the same IP. That´s why Europol has complained and asked the population to limit its use as it interferes in their work in the identification of cybercriminals, but no one has considered to find another way to solve the problem that does not involve the restriction by thousands of users?

When privacy comes to debate, users are often the ones who lose the most. The European Commission is considering giving more power to the police in order to decipher private messages with the aim of capturing terrorists. Support for judicial authorities in the problems encountered in deciphering private messages, together with the mention of the term "terrorism", are powerful enough to be able to summon the perfect excuse and bring to the fore the privacy of users . Encryption is a delicate issue; it is advisable to walk with feet of lead.

The privacy of the users is not the only thing is for sale in the hidden part of the network, but also the methods to steal your money. When talking about Dark Web comes to mind a dark and depraved image of the Internet that we all know, but the buy-sell in this part of the network will never cease to amaze us. The new article available: a kit that allows the hacking of ATMs. For the small amount of $ 1,500 the theft of money from a cashier will be as easy as connecting a USB. And, for the most lost, comes up with operating instructions and videos. Kaspersky was the first to sign up so much to be able to block the virus.

There is no need to remember that privacy is not something that should be allowed to play. In these times, every action, movement and almost thought passes through the network, leaving your privacy exposed is to leave you exposed to possible manipulation. You have to have a lot of eye, because this time, some seeds will not show us if our "correspondence" is being opened.

0 comments:

Post a Comment