Free Republic
Browse · Search
Topics · Post Article

Skip to comments.

Internet security is broken, and no one knows how to fix it
IHT ^ | 12/07/08 | John Markoff

Posted on 12/08/2008 8:16:52 PM PST by TigerLikesRooster

Internet security is broken, and no one knows how to fix it

By John Markoff

Sunday, December 7, 2008

SAN FRANCISCO: Internet security is broken, and nobody seems to know quite how to fix it. Despite the efforts of the computer security industry and a half-decade struggle by Microsoft to improve the security of its Windows operating system software, malicious software is spreading faster than ever.

The so-called malware surreptitiously takes over a PC and then uses that computer to spread the software to other machines exponentially. Computer scientists and security researchers acknowledge that they cannot get ahead of the onslaught.

As more business, commerce and social life has moved onto the Web, gangs of elusive criminals thrive on an underground economy of credit-card thefts, bank fraud and other scams that rob computer users of an estimated $100 billion a year, according to a conservative estimate by the Organization for Security and Cooperation in Europe. A single Russian company that sells fake antivirus software, which actually takes over a computer, pays its distributors as much as $5 million a year.

With vast resources from stolen credit card and other financial information, the cyberattackers are handily winning a technology arms race. "Right now the bad guys are improving more quickly than the good guys," said Pat Lincoln, director of SRI International's Computer Science Laboratory.

A well-financed computer underground has built a major advantage by working in countries that have global Internet connections but ineffectual law enforcement agencies that have little appetite for prosecuting offenders who are bringing in significant amounts of foreign currency.

That was driven home late last month when RSA Fraud Action Research Lab, a security consulting group, reported that it had discovered a cache of a half-million credit-card numbers and bank-account log-ins, ...

(Excerpt) Read more at ...

TOPICS: Business/Economy; News/Current Events; Technical
KEYWORDS: bot; computersecurity; internet; zombie
When one of these malware sees new antivirus program installed, it launches attack on the antivirus program and the computer basically locks up.

I think these things evolve faster because some state security agencies encourage and profit from it. This is the state-sponsored problem.

1 posted on 12/08/2008 8:16:53 PM PST by TigerLikesRooster
[ Post Reply | Private Reply | View Replies]

To: TigerLikesRooster

Thsi will all go away at the ascension of The One (piss be upon him), for all good things shall come forth from His hands.

2 posted on 12/08/2008 8:19:59 PM PST by Old Sarge (For the first time in my life, I am ashamed to be an American)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Old Sarge
I thought this was going to be a thread on why the Obama Birth Cert filters weren't working.


3 posted on 12/08/2008 8:22:23 PM PST by Political Junkie Too (You can never overestimate the Democrats' ability to overplay their hand.)
[ Post Reply | Private Reply | To 2 | View Replies]

To: TigerLikesRooster

“A single Russian company that sells fake antivirus software, which actually takes over a computer, pays its distributors as much as $5 million a year.”

Hope this ain’t Kaspersky. LOL

4 posted on 12/08/2008 8:22:52 PM PST by headstamp 2 (Been here before)
[ Post Reply | Private Reply | To 1 | View Replies]

To: TigerLikesRooster

It’s kinda funny, since switching to 64bit Vista I haven’t had one issue, then again I don’t download odd things and am careful, most computer users aren’t and don’t try to educate themselves on how to prevent infection.

Microsoft actually has quite a few new security features that it put into Vista that are seldom mentioned that have made it far more secure.

None the less, most of the security issues can be prevented by the user, problem is that as long as there are people that don’t properly protect themselves, there will always be virii

5 posted on 12/08/2008 8:30:20 PM PST by gjones77
[ Post Reply | Private Reply | To 1 | View Replies]

To: gjones77
Long live MS and Steve Ballmer! /sarc
6 posted on 12/08/2008 8:32:23 PM PST by TigerLikesRooster (kim jong-il, chia head, ppogri, In Grim Reaper we trust)
[ Post Reply | Private Reply | To 5 | View Replies]

To: gjones77

Is that so? Have you checked out their security bulletins lately? I decided to abandon Windows entirely last year, not because it’s a bad product, but it’s not secure enough, plus eats up a lot of memory which can go to other apps instead. I chose Ubuntu, a distro of Linux, being easiest to master, but Apple would be a sfer bet for the technically challenged.

7 posted on 12/08/2008 8:39:42 PM PST by QenBirQeni
[ Post Reply | Private Reply | To 5 | View Replies]

To: QenBirQeni

I have checked them, and most have been addressed.

I’m quite familiar with Linux also, I dual boot with OpenSuse since I like having more control.

And I hate to tell you, there’s no such thing as a completely secure OS, even OS X is vulnerable to attack.

There are virii written in java that are platform independent, so running linux isn’t a garuantee against attack.

If you think it is, then you’re in even worse shape than some Windows users.

8 posted on 12/08/2008 8:46:03 PM PST by gjones77
[ Post Reply | Private Reply | To 7 | View Replies]

To: QenBirQeni


9 posted on 12/08/2008 8:47:51 PM PST by Publius6961 (Change is not a plan; Hope is not a strategy.)
[ Post Reply | Private Reply | To 7 | View Replies]

To: gjones77
This is how easy it is to get download protection
10 posted on 12/08/2008 8:48:25 PM PST by erman
[ Post Reply | Private Reply | To 5 | View Replies]

To: gjones77

Didn’t claim there’s virus free OS. But the overabundance of those written for Windows OS’s is unquestionable. Besides, there is no real flexibility with the kernel in Windows, although I admit, technical knowledge is necessary to protect oneself.

P.S: Since have moved to Slackware

11 posted on 12/08/2008 8:50:04 PM PST by QenBirQeni
[ Post Reply | Private Reply | To 8 | View Replies]

To: TigerLikesRooster

this article, originally published in the NY Times last week, is disappointing. I do not understand how a virus can be installed in a computer that is simply hooked up to the internet. The article does nothing to explain how this occurs

12 posted on 12/08/2008 8:58:14 PM PST by 1955Ford
[ Post Reply | Private Reply | To 1 | View Replies]

To: QenBirQeni
I run Linux at home. While I'm happy to see Linux getting ever easier to use, and gaining popularity... I'm also a little concerned that as it does, it will get more attention from the black hats. Sure, Linux is fundamentally more secure than Windows. However, a big part of the reason there are so few Linux viruses/worms/etc. is that it simply is not profitable for anyone to put the effort into it.

If you could write a program to attack Linux, or more probably one of the common programs (eg. FireFox, Evolution, Konqueror, Open Office...) it wouldn't spread that far or that fast - just not enough machines. Most Linux users are still geeks, and they probably know almost as much about their systems as the malware writers. (in contrast to many windows users who can barely find the start menu) Linux problems would be (relatively) quickly discovered, squashed, and a patch issued.

13 posted on 12/08/2008 9:10:34 PM PST by CodeMasterPhilzar
[ Post Reply | Private Reply | To 11 | View Replies]

It’s not unknown how to stop it.

It is no longer script kiddies and small bots. It’s high level organized crime and it is centralized in the controllers for the bots. The controllers have been found and disconnected. They move, but can be found again - and the operators can be rolled up.

Government and law enforcement can stop a great deal of this. If they’d get a clue and give a damn.

It would help a great deal to fix Windows or stop using it, but even without this a great deal more can be done.

14 posted on 12/08/2008 10:05:34 PM PST by D-fendr (Deus non alligatur sacramentis sed nos alligamur.)
[ Post Reply | Private Reply | To 8 | View Replies]

To: 1955Ford

Simple... he starts pinging your ports. Certain ports have certain functions.

Do you have file sharing turn off? Danged sure better have.

Do you have Preview turned on in whatever MS email program your using?
If so, you basically open ALL emails by default.

15 posted on 12/08/2008 10:12:35 PM PST by djf (...heard about a couple livin in the USA, he said they traded in their baby for a Chevrolet...)
[ Post Reply | Private Reply | To 12 | View Replies]

To: CodeMasterPhilzar

Look, while it’s true that Linux’s popularity is at a slow rise, it is possible to attack a Linux box. Some self-described black haters on many online groups use Linux boxes for their attacks. Where Linux has the upper hand is it’s separation of user and administrator, something that is missing in Windows. I’m not too familiar with Mac OS, but having been based on UNIX surely it has the capabilities of separating users and administrator priviledges.

Also, regardless of what critics of Linux say, I don’t believe viruses will be a major factor in the Linux world simply because of it’s open nature - people naturally prefer cooperation rather than attacks among each other. It’s completely non-commercial in nature, thus seen as more democratic and not “evil” as is the image of MS. I know, it may be a stretch, but whatever.

The main problem with Windows and its vulnerabilities is it’s resistance to change. Some black hatters attack Windows systems for fun or to test their skills, others to make a statement, and worse of all to steal user information and ID. MS does a poor job of isolating the kernel or major systems from outside attack. It’s just poor design in terms of security.

Ultimately, Linux is the best choice when it comes to inofrmation defense, especially in this age of interconnectivity. In the end it is up to the user and not the vendor of the OS to see to their digital safety. Using simple techniques such as clearing their cache, history, and never storing online passwords, separating accounts, closing ports, running virus scanns, utilizing firewalls, and generally not clicking on links that say “Want a bigger penis? Click here” and not answering unsolicitied emails. The list of things one can do to protect oneself is large. Reiterating my point: Linux is the safest for those who are not technically challenged, but ultimately you get what you pay for.

16 posted on 12/08/2008 10:31:08 PM PST by QenBirQeni
[ Post Reply | Private Reply | To 13 | View Replies]

To: TigerLikesRooster


17 posted on 12/08/2008 11:48:29 PM PST by Bellflower (A Brand New Day Is Coming!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: TigerLikesRooster
Internet security is broken, and no one knows how to fix it

There's nothing wrong with Internet security, except possibly the authentication and identification of mail servers.

The problem is in the devices connected to the 'Net. And the most problematic devices are those running Microsoft software.

18 posted on 12/09/2008 9:05:17 AM PST by justlurking (The only remedy for a bad guy with a gun is a good guy with a gun.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: erman

LMAO! You got me! Your post is almost 3 years old and you still got me!

While backing up my hard drive getting ready for a clean install (too much junk, it’s time), I was looking for what was new in the world of computer security. :)

I am still laughing!

19 posted on 09/06/2011 10:39:31 AM PDT by Protect the Bill of Rights
[ Post Reply | Private Reply | To 10 | View Replies]

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794 is powered by software copyright 2000-2008 John Robinson