Over the past few years, malicious software – which blocks access to computers – has been spreading at an alarming rate, targeting hospitals, telecommunications, and corporate offices worldwide. These attacks began when information of a software vulnerability originally discovered by the National Security Agency (NSA) was stolen and leaked by a criminal group known as Shadow Brokers.
By Hannah Beldotti
Facebook is a social media platform available to anyone and everyone; ranked first on “Most Famous Social Network Sites Worldwide for January 2018,” it is heavily popular with a wide range of ages. Most people use it to connect with old friends and share updates on their life, however, within the last three weeks, many users have deleted their accounts including celebrities such as, Cher, Will Ferrell, and Elon Musk. Explaining the reasoning behind their actions, Cher stated, “it was very hard, but there are some things more important than money,” along with Will Ferrell who said he was, “very disturbed to hear about Cambridge Analytica’s misuse of millions of Facebook user’s information.” In the recent weeks, it has been revealed that Facebook exploited at least 87 millions user’s information to a firm known as Cambridge Analytica through a third-party source. Cambridge Analytica is a consulting firm which provides many different data-driven services. Continue reading “#DeleteFacebook”
For as long as people have been writing software there have always been simple coding mistakes which could open doors to hackers; allowing them to access secure information, delete important files, and “carrying out political mischief.” A new program, created by the Columbia University School of Engineering and Applied Science, called Shuffler presents a new method to providing protection against such attacks. To prevent possible attacks, Shuffler allows programs “to continuously scramble their code as they run, effectively closing the window of opportunity for an attack.”
“‘Shuffler makes it nearly impossible to turn a bug into a functioning attack, defending software developers from their mistakes,'” said the study’s lead author, David Williams-King, a graduate student at Columbia Engineering. “‘Attackers are unable to figure out the program’s layout if the code keeps changing.'”
Shuffler has been developed to randomize small blocks of a program’s code every 20 to 50 milliseconds, “imposing a severe deadline on would-be attackers. Until now, shifting around running code as a security measure was thought to be technically impractical because existing solutions require specialized hardware or software.” Running alongside the code it protects, Suffer even randomizes its own program to provide the best possible security.
The Shuffler program, however, is not yet available to the public. Researchers say they want to improve its ability to defend against “exploits that take advantage of server-crashes” as well as makinging it easier to use on untested software. “‘Billions of lines of vulnerable code are out there,'” said the study’s senior author, Junfeng Yang, a computer science professor at Columbia Engineering and member of the Data Science Institute. “‘Rather than finding every bug or rewriting all billions of lines of code in safer languages, Shuffler instantly lets us build a stronger defense.'”
A large scale denial of service attack (aka a “DDoS”) has most likely affected your browsing on your favorite websites today. Such sites, such as Twitter, Netflix, Amazon, Paypal, or even Reddit, have been attacked. A DDoS attack, according to USA Today, is when “someone, or a group of people, floods a particular site or service with large amounts of fake traffic in an attempt to overwhelm the system and take it offline.”
The issues have been addressed, and mostly pertained to the East Coast. All should be back online now. For more information click here. Have a wonderful weekend!
By David DiMolfetta