A sophisticated cybercrime group that has maintained an especially devious Trojan horse for nearly three years has stolen login credentials of close to 300,000 online bank accounts and almost as many credit cards during that time, according to reports released today by RSA FraudAction Research Lab. The spyware is called Sinowal Trojan, also known as Torpig and Mebroot. RSA reports that their findings are based on data collected on this Trojan over the course of almost three years -- including information regarding its design and its infrastructure. Findings indicate that this may be one of the most pervasive and advanced pieces of crimeware ever created by fraudsters, say RSA experts. more
Hoang v. Reunion.com sidesteps an eagerly anticipated legal dispute over the legality of commercial address book scraping and 'send-to-a-friend' emails, and also highlights the damage that can cascade when a federal Circuit Court woefully misreads a statute. more
ICANN introduced a requirement for domain name registrars to send out annual notices to all their customers (registrants) to check the Whois on their domain names to ensure the information is correct. While this seemed fairly reasonable (if cumbersome), the fact is it confuses the heck out of people -- and creates a whole lot of confusion for registrants. But that was a problem we could deal with. Fast-forward to October, 2008... more
In follow up to reports on ICANN's termination of notorious domain name registrar, EstDomains due to fraudulent activities, the Internet oversight agency is now preparing to transfer domain names of its customers to other registrars... However the question asked by experts is whether any other registrar would have an interest in inheriting EstDomains questionable domain names. more
As we continue our ride toward the exhaustion of IPv4 addresses, Regional Internet Registries public discussion groups remain filled with endless discussions on how large swaths of allocated IPv4 addresses are unused, should be reclaimed or recycled one way or another, maybe be put on the free market and sold to the highest bidder or parsed out in more egalitarian controlled ways. Although everyone now accepts the notion of IPv4 address exhaustion, it seems to be for some an invisible glass wall and for others a gold brick wall worth the death of the internet to get a piece of it. more
Like several other engineers, I'm disturbed by the white spaces debate because it focuses on what I regard as the wrong question. The White Space Coalition argues that showing that a system can be constructed that prevents interference between White Space Devices and television broadcast signals compels the Commission to offer up the White Spaces for unlicensed use. This is far from obvious. more
After more than two years of work behind closed doors, the Global Network Initiative is launching this week. That's the corporate code of conduct on free speech and privacy I've been talking about in generalities for quite some time. By midnight Tuesday U.S. East Coast time, the full set of documents and list of initial signatories will be made publicly available at globalnetworkinitiative.org. more
Navigation Catalyst Systems (NCS) has settled the well publicized cybersquatting lawsuit brought against it by Verizon. The terms of the settlement are simple and straight forward, amounting to little more than an agreement by NCS to no longer register domains similar to Verizon's trademarks again. No money was apparently paid by NCS as part of the resolution. more
My friend Kevin Thompson over at Cyberlaw Central reminded me this morning in this post that President Clinton signed the Digital Millennium Copyright Act ten years ago today. Tempus fugit. It's interesting to reflect on how this critical piece of legislation has affected (I think fostered) the growth of the online infrastructure with its safe harbor provisions found at 17 U.S.C. 512. more
Alternate DNS root server, the Open Root Server Network (ORSN) is shutting down. The project which began almost six years ago, is set to close at midnight on the last day of 2008. The following is part of the official statement released for the closure: Since start of operation in 2002 ORSN was a political alternative to ICANN/IANA operated root server network. It was also well known for technical innovation by providing IPv6 support before it was introduced in the ICANN/IANA operated root servers..." more
The vote that Federal Communications Commissioners are planning for November 4 is not as important as the voting we'll do on that day, but it does matter a lot to the future of the United States. Unless the forces opposed to progress manage to postpone FCC action (which they are trying very hard to do), the FCC could decide to set the stage for another generation of innovative products with which the US will strengthen its competitive position in global markets... more
Last week's emergency petition by the broadcasters to delay the FCC's Nov. 4 vote is just part of the white spaces atmosphere right now. Ars Technica reports that the mud is really flying -- the broadcasters are accusing proponents of white space use of wanting to kill off television. It's a familiar argument -- "If you do Y, broadcast television as we know it will be destroyed." more
Igor Schegolev, the Russian Minister of Telecom and Mass Communications spoke at the opening of the InfoCom 2008 exhibition in Moscow. Among other things, which made news (for example, that the Russian government will be implementing a free and open source based operating system on all computers in the Russian schools), he also made the following remarks - translated by me in English. more
In follow up to its earlier announcement this year regarding the relaxation of rules for the introduction of new Top-Level Domains, the Internet Corporation for Assigned Names and Numbers (ICANN) yesterday released a draft version of the Applicant Guidebook for those interested in applying for a new generic Top-Level Domain (gTLD). Although application comes with a hefty entry fee of close to $200,000, the development of new gTLD introductions will be of particular interest to trademark owners as well as any other company involved with domain names. Among various issues, the guidebook aims at addressing concerns such as who would qualify for '.apple' or '.amazon' gTLDs. more
In order to provide more security for the Domain Name System (DNS), a group of large domain-name registries and registrars has got together with IT security providers and government agencies to launch a new workgroup: the "Registry Internet Safety Group" (RISG). The announcement was made by the Public Internet Registry, which operates the .org domain, and its backend provider Afilias. more
A World-Renowned Source for Internet Developments. Serving Since 2002.