WannaCry: por qué los expertos creen que puede haber otro ciberataque muy pronto – El Mostrador

Expertos en informática advierten que un nuevo ataque global con un brote de ransomware es “inminente” y que incluso podría ser lanzado el lunes. BBC Mundo te cuenta los detalles y cómo protegerte de estos virus.

Fuente: WannaCry: por qué los expertos creen que puede haber otro ciberataque muy pronto – El Mostrador


When it comes to surveillance, there is everything to play for | James Ball | Comment is free | theguardian.com

When it comes to surveillance, there is everything to play for | James Ball | Comment is free | theguardian.com.

Against a backdrop of hacks and terror attacks, it’s possible that surveillance powers will be further strengthened
Man looking through binoculars
‘Major players are starting to regard privacy as a selling point: Google and others are encrypting ever more of their traffic.’ Photograph: Tom Jenkins

Looking back at 2014 from the perspective of a surveillance reformer is a short and dispiriting task: almost nothing good happened.


La red Tor sufre un ataque que puede haber dejado a sus usuarios al descubierto

La red Tor sufre un ataque que puede haber dejado a sus usuarios al descubierto.

Los desarrolladores han anunciado que las conexiones a la red han sido vulneradas desde finales de enero

Es probable que el atacante anónimo haya obtenido las direcciones IP y el historial de navegación de un número de usuarios indeterminado

Los nodos maliciosos fueron bloqueados el pasado 4 de julio. Si usas Tor debes actualizar a la última versión lo más rápido posible

 

 

Logotipo Tor

Miles de usuarios se conectan diariamente a la red Tor para salvaguardar su privacidad. / The Onion Router

 

 

¿Te has conectado a la red Tor en el último medio año? Si tu respuesta es afirmativa es posible que tu conexión haya sido rastreada por un atacante anónimo. Según han anunciado los desarrolladores en el blog oficial del proyecto el 30 de enero de este año se introdujeron unos nodos maliciosos que pasaron desapercibidos durante cinco meses hasta el pasado 4 de julio, cuando finalmente se descubrieron y eliminaron de la red.

El proyecto de software libre The Onion Router intenta construir una red superpuesta a internet que proporcione un alto nivel de anonimato, y es usada a diario por millones de activistas, periodistas e individuos preocupados por su privacidad online.

Se rumorea que el ataque se basa en un paperque se iba a presentar a principios de agosto en la conferencia Black Hat, uno de los encuentros sobre ciberseguridad más importantes del mundo. Los dos investigadores de la universidad Carnegie Mellon cancelaron la charla por las presiones de sus abogados. Esto lleva a que los responsables de Tor barajen la posibilidad de que el ataque fuera el resultado de esa investigación, aunque no se puede descartar que haya detrás alguna agencia gubernamental como la NSA o el GCHQ.


Cryptolocker: what you need to know | Technology | theguardian.com

Cryptolocker: what you need to know | Technology | theguardian.com.

What happens when a computer is infected with the malicious software, and what should you do to protect your files?

 

 

Viruses such as Cryptolocker can be attacked by taking down the servers that control them.
Viruses such as Cryptolocker can be attacked by taking down the servers that control them. Photograph: imagebroker/Alamy

 

Cryptolocker is back in the headlines, thanks to a coordinated effort to take down the computers and criminals that run the notorious “ransomware”. But what is it? And how can you fight it?

Cryptolocker is ransomware: malicious software which holds your files to ransom

The software is typically spread through infected attachments to emails, or as a secondary infection on computers which are already affected by viruses which offer a back door for further attacks.

When a computer is infected, it contacts a central server for the information it needs to activate, and then begins encrypting files on the infected computer with that information. Once all the files are encrypted, it posts a message asking for payment to decrypt the files – and threatens to destroy the information if it doesn’t get paid.

The authorities have won users a two-week window of safety

The National Crime Agency (NCA) announced yesterday that the UK public has got a “unique, two-week opportunity to rid and safeguard” themselves from Cryptolocker. The agency didn’t go into more detail, but it seems likely that at least one of the central servers which Cryptolocker speaks to before encrypting files has been taken down.

The NCA has also taken down the control system for a related piece of software, known as GameOver Zeus, which provides criminals with a backdoor into users’ computers. That back door is one of the ways a computer can be infected with Cryptolocker in the first place.

What that means is, until the window is closed – and the virus cycles to new servers – users who are infected with Cryptolocker won’t lose their files to encryption. As a result, these users have the chance to remove the virus before it destroys data, using conventional anti-virus software. In other words, there has never been a better time to update the protection on your computer.

But watch out – while the servers that control Cryptolocker are out of action, it’s possible to be infected with it and not know. If you don’t keep your computer clean, then at the end of the two-week period, you could be in for a nasty surprise.