A secure democratic Net is a fundamental right

The last weeks arab and jewish hackers have been publishing credit cards and other personal information from each other country or financial institutions or economic interests. They have also been defacing and ddossing some infrastructure and making claims about cyberwar that made worldwide headlines.

Things have also quieted down a bit and the published lists have many doubles, fakes and aren't as enormous as acclaimed (I have so many hunderdthousand accounts or credit cards or this and that....)

But this doesn't mean that those cyberincidents are without any effect. First of all, the Israeli government had to attribute resources and time to respond to those leaks and attacks - even if they are so called the best cyberwar prepared country according to a new report (how you proof that is something I don't understand because if they were so prepared how did this happen ?)

Secondly, online ebanking and commerce is about online trust and in some country some banks had some trouble with this since those attacks and had to invest in security again and lost some business.

"Customers at some Saoudi local banks have withdrawn their money and closed their accounts in the wake of reports that hackers have accessed some credit card accounts.
http://zionops.wordpress.com/2012/01/31/saudi-banks-probe...

The same reports says that most of the creditcards and accounts that were published were in fact the result of phishing (update your bank, email or facebook account and click here etc......) which didn't mean that there were no effects for the victims. Some of the Saoudi banks had set up teams of 15 people to go through all the transactions on the published accounts and to take the necessary measures. (What does your bank do when your account is published together with 3000 or half a million others ?)

There was already the request for the official emails of Palin and the Bush White House, but now it is coming down to lower levels of office. The newspaper Mercury News asked and got all the internal emails between the police department and the City Hall of Oakland when they decided to break up the Occupy movement there in october 2011 with nearly military enforcement and riots as a consequence, leading to hundreds to be arrested or detained (and making the international headlines)

After the Freedom of Information request more than 4000 internal recent emails were released to the press who published them on Documentcloud which is a platform used by several newsorganizations (why do it yourself if you can do it better together) where they can host thousands of documents in seperate databases, making it easier to search and archive and connect documents and people.

After the publication a crowd-searching analysis was set up by which people online got as fast as possible through the thousands of documents trying to find the most interesting or astonishing, the contradictions and connections. This was coordinated through Twitter with a special hashtag.

An example of an email who by this way came to the attention of the journalists is here (you have to allow all services in your browser if you have a high level of protection). This example shows that the local economic development manager went to local business after the raid to get quotes the mayor could use to show the "business support" for his intervention.

You may also find the emailaddresses also of the people who protested against this operation with an email and maybe didn't intend to be known as such.

So do we have to prepare our officials to the fact that everything they do during their worktime or that has something to do with their official business (in whatever emailaddress) can and will be public at some time in the future (or much sooner than that) ? I am always so astonished to what people write in emails - as if that is a private and secure conversation. Emails will NOT go away, even if you throw away your own copy.

ACTA: ACTA is an international trade agreement that criminalizes intellectual property theft across borders. Its targets are both those counterfeiting physical goods as well as folks pirating digital content. The U.S. signed it in 2010 along with six other nations, including Japan and Canada. Last week ACTA was in the news as the EU and Poland signed the treaty as well, much to the dismay of some of their citizens and politicians. Other countries have until March of next year to join — and trade groups representing the content industry would dearly like everyone to join.

SOPA/PIPA: The Stop Online Piracy Act and the Protect IP Act were companion bills that were proposed last year in the House and Senate respectively. As of last week, they have been shelved thanks to a massive online and offline protest spearheaded by web giants and communities such as Wikipedia and Reddit.

The Trans-Pacific Partnership Agreement (or ACTA 2.0): The TPP is currently being negotiated in Los Angles as a wide-reaching trade agreement between Singapore, Chile, New Zealand, Brunei, Australia, Peru, Vietnam, and the United States. It includes provisions about everything from labor conditions to tariffs, but it also has provisions on intellectual property, which have caught the eye of consumer-rights groups.
http://gigaom.com/2012/01/30/acta-2-0-is-like-a-backdoor-...

There are worldwide a lot of actions against these new international legal frameworks - even if some of the oritginal most hardest punishments and controls have been retired from the text (or the leaked public version which is no guarantee). In principle there are three main problems

* a law should be set up and controlled by parliament and not like the international free-trade agreements (and the intergouvernmental non-agreements in Europe about the Euro), if there is going to be a new law and punishment you are entitled to have your say in it (through a really democratic parliament)

* a nation shouldn't be 'infected' with bad laws from another country through these secretive international agreements and other nations shouldn't have jurisdiction in or over our own countries (you always know where it starts but never where it ends)

* each individual should have the benefit of the doubt and should keep his privacy and his full democratic rights wherever he lives and whatever he does (even if he is committing a crime, that doesn't make him a person without any rights).

THe basic problem is that the entertainment industry hasn't adapted at all at the new digital environment and isn't willing to adapt and so wants to try to keep things a bit under control with all these controls and new frameworks while they know that it won't change a thing. As long as you can't watch online tv series from the US or other parts of the world at the same time as the home audience and have to wait 6 months to 2 years before you can watch it on your own television, you are creating pirates. As long as you have to pay the same price for the download of a single that has been sold millions of times and has been earned back thousands of times as for a new song that still has to be earned back one percentage of production and marketing costs, you are creating pirates. As long as there are no legal alternatives that are interesting, economical and easy to use, you are creating pirates. And if there is something that is appearing through most of the research is that those who download the most, also spend the most on entertainment but are in fact 'tasting' the free version before buying the full version with all the extra effects and add-ons and so on. Because in the end there is nothing like having the original in your hands.

And maybe there is too much identical crap around that is already boring after having it heard three times or seen once. Which is strange in a connected world where we should have been put into contact with thousands of new musicans, creators, writers and artists inspiring us with different and unexpected emotions and interpretations. The problem here is that the entertainment industry has become sometimes too much of an industry that isn't enough entertaining any more to keep us hooked enough to get out the money.

What people also seem to forget. When I was much younger I went to the library and copied my favourite lp's on those cassettes or I copied the Top of the Pops on the radio, playing it afterwards in my walkman.  It seems easier by now, but even than when I had enough pocket money I went to the store and bought that really good lp of Pink Floyd, ACDC and the rest (and I still have them, the originals).

And maybe there is another thing for the entertainment industry, you can't expect people to pay each time again when you have decided to change the format. You went from VHS to DVD (and some other fucked up formats for people who feel themselves losers now) and now we should pay for Blue Ray or from LP to CD to download ? And that for the SAME price for the same artist for the same title ? For what, some better sound, some better effects ? My DVD-CD's are technically so vulnerable that I have to make backups from them if I want to be sure not to 'lose' them untill you come up with another 'Format'.

It is also surprising that it seems possible to do all these things against copythiefs and that the same thing takes years to do even the most simplest things against international cybercrime (and finance them adeaquatly).

we have for the moment a national strike going on

a big success for the unions, a failure according to others

some thought in the unions that twittering would be a good idea

only they seem to have forgotten that those who are twittering aren't members of unions and mostly don't sympathize with unions and strikes and think they don't need them and will do everything by themselves

so no you should keep away from mediums you will never prevail in

your public is on the workfloor, in the factories and people working too hard to be twittering nonsense all day :)

the left should first build a huffingtonpost like portal and progressive hostingplatform

and not fragment itself in hundreds of different little sites and projects

So imagine that you throw out of your party a member of parliament and her partner who was a president of your youth organisation

imagine that relations have gone totally sour and that war has been declared

so what happens when they start leaking old emails that get your party in problems (like your most important minister in the Flemish government)

well you can counterattack and find anything dirty on him that is available (like negationist or antijewish remarks on his Facebook pages)

but in the end, he still has 24.000 internal emails on his hand that he won't used if you leave him alone (telling this in an interview that everybody can read)

you can always find interesting stuff in 24.000 emails, people write the most stupid things in email (and on Facebook and twitter)

but there is another question

didn't nobody let him sign a confidentiality agreement

didn't nobody organize his departure in a normal matter, so that all the internal documents and emails would have been destroyed or transferred

and this shows why it is a bad idea to let people download email from online servers (you never know where they will end up)

and I didn't see any disclaimer on the email, prohibiting public disclosure

and who will be responsable if somebody hacks his computer and steals all these emails and throw them all online (wouldn't be the first nor the last one)

Most of the servers of Megaupload are still ready to become operational again (except probably for those in Holland and the States, there goes a lot of their business). If they can get the operation back again (that is someone signing orders and checkbooks) the millions of files can become operational again under another name (Google gives us 8 million active links on the domainname). 

Secondly numerous other services and new possibilities are popping up while a whole bunch of other services is under investigation or is closing down or throwing away masses of files (millions in total) has planned meetings with the FBI or is invited to a hearing. This means that the searchengines and the linklists that aren't updating daily have an enormous load of dead links. Links to downloadable content should be not older than a week.

1. FileServe - Closing does not sell premium.
2. - FileJungle - Deleting files. Locked in the U.S..
3. - UploadStation - Locked in the U.S..
4. - FileSonic locked all downloads by third parties  (under FBI investigation).
5. - VideoBB - Closed! would disappear soon.
6. - Uploaded - Banned U.S. and the FBI went after the owners who are gone.
7. - FilePost - Deleting all material (so will leave executables, pdfs, txts)
8. - Videoz - closed and locked in the countries affiliated with the USA.
9. - 4shared - Deleting files with copyright and waits in line at the FBI.
10. - MediaFire - Called to testify in the next 90 days and it will open doors pro FBI (expect it to close or delete everything 'interesting')

Online streamingsites are also under investigation and some have already been closed down. For many youngster this is enough, they don't have to download the movie, they just want to see it (and the real freaks will buy the movie if they like it so much).

Another element that wasn't mentioned in the media at all was that Megaupload was going to change its businessmodel in the coming months (making it hard to pursue an ongoing investigation) in which artists would be paid for their FREE downloads (advertising en premium contracts) and would receive 90% of the sum people paid for other downloads. Hear that Apple and the Music companies, paying the artists 90% of the price. An overhead of only 10%. Okay you would be probably responsable for your own marketing and advertising and so on, but you would be better able to control the costs of that overhead and change marketingstrategy and so on when you aren't happy.

Filesonic (all my links here to filesonic documents have gone dead) has changed itself overnight without warning into an online backup company (good luck with that :) )

You should also read this very interesting article about how the feds found a way to prosecute and scare all the others (it is called commercial copyright infringement)

source (dutch)

Everybody agrees that there is nothing as dangerous as scada interfaces that are just on the internet (even if we put a few securitylayers around them) .  Scada is the special software and code written to control industrial production sites and water, electricity and other networks. They shouldn't been on the internet or connected to the internet and they haven't been developed to be connected to the internet but because of so many reasons that have nothing to do with security, some are and this is a problem.

A problem because security on the internet depends of so many different factors and can become a problem because of so many individual or combined issues that you can ask yourself if it is all worth it (especially the money you have to put into it).

and there is a database of those systems and those you can find only with networkscanning (not google-searching) and thought they were safe because they were not in Google (as if hackers only used Google).

It is called sodanhg.com and is online since several years and sells databases of vulnerable infrastructure and let you have some free information also

so a dutch securityresearcher used the database and started twittering the different vulnerable systems after a while... which made the headlines

He explained that he contacted the national cert but that they didn't want to tell him what they would do with the information, who would get the credit and so on and so he stopped talking to them and sending them information.

Which is a bit silly. I always send the information (also those that I don't publish here) to the cert from the moment I see a Belgian aspect and it is not my job to ask who gets credit or who does what (they are supposed to do something with it in the best of their capabilities

You shouldn't expect something in return when you are a security-activist, you should expect that some-one will do something with it (and you leave some time if that is necessary) between the moment you see it and send it to the CERT and the moment you have published it).

If you are in it for the fame and the money you should go and work for a securityfirm.

1. jace.n5usr.net/ord?station:%7Cslot:/Drivers/... -

   Config · Drivers · LonNetwork · MainHVAC · nviFilePos · Logout. Property Sheet, Object to oBIX, Slot Sheet. nviFilePos (lonworks:NetworkVariable)
   
2. jace.n5usr.net/ord?station:%7Cslot:/Drivers/... -

   Config · Drivers · LonNetwork · MainHVAC · Points · NumericSwitch1 · Logout. Property Sheet, Object to oBIX, Slot Sheet ...
   
    
3. 206.216.159.139/ord?station:%7Cslot:/Energy/... -
   

   Meter 1 Summary. 1.2 kW-hr. Previous Day. Current Day. 0 kW-hr. 15-Jan-12 11:40 PM EST. Current Demand. 0.00 kW. Meter 2 Summary. Current Day. 0.8 kW- ...
   
4. 63.224.84.183/ord?station:%7Cslot:/ -
   

   WatersideLofts. Username: Password:
   
5. axdemo.tridium.net/ord?station:%7Cslot:/... -

   Home Config Services WeatherService Orlando Airport. Logout. Orlando Airport (weather:WeatherReport). Provider. AG, AK, AL, AR, AS, AW, AZ, BB, BH, CA ...
   
6. axdemo.tridium.net/ord?station:%7Cslot:/... -
   

   Home Config Services WeatherService Orlando Airport Thursday. Logout. Thursday (weather:Forecast)
   
    
7. 209.254.21.226:8280/ord?station:%7Cslot:/Drivers/.../points/...

   Java Plug-In support is required.
   
8. 209.254.21.226/ord?station:%7Cslot:/

   Press Demo Config. Logout.
9. axdemo.tridium.net/ord?station:%7Ch...schedule... - 
   10+ items – Home · Vykon Building Demo · Graphics · Building · Floor 1 ...
   

   Rob's Schedule	Date: 17 Jun 2012
   Per	Reference: slot:/Schedules/Holiday

10. 206.216.159.139/ord?station:%7Cslot:/Energy/... -
    Meter 1 Summary. Meter 2 Summary. Last 24Hrs · Last 7Days. Last Month. Current Demand. 1.88 kW. Current Day. 0.8 kW-hr. Meter Total. 10677.63 kW-hr ...
11. aecabin.tzo.com/ord?station:%7Cslot:/...do7/... - 
    BooleanCov (history:BooleanCovHistoryExt). Status, {ok}. Fault Cause. Enabled. false, true. Active Period, Basic Active Period. Active. false, true. History Name ...
12. axdemo.tridium.com/ord?station:%7Cslot:/... -
    

    Connected Users Report · Daily History Report · Daily Point Status Report. The above report examples are created using standard Hx Pages with bound tables.
    
13. 206.216.159.139/ord?station:%7Cslot:/Energy/... -
    

    Meter 1 Summary. Meter 2 Summary. Last 24Hrs. Last 7Days. Last Month. Current Demand. 0.00 kW. Current Day. 0.6 kW-hr. Meter Total. 10687.47 kW-hr ...
    
14. www.plexml.net/ord?station:%7Cslot:/ - 

    Press Demo Config. Logout. To continue please select the appropriate view from the buttons below. Welcome to the PleXML press demonstration. 21-Jan-12 ...
15. 203.122.195.160/ord?station:%7Cslot:/Guest - 
    logo. 129 Greenhill Road BMS. Username: Password:

Scientology finds Brussels and Belgium very important because it is the capital of Europe and it will try whatever means possible to get some European funds for its projects or to participate in such projects under whatever cover.

This is the message

Adress:
Scientology HQ Belgium
100, Rue of Law.
Brussels 

Freedom of assembly and freedom of assembly is a public and political freedom generally regarded as fundamental and under which a group of people has the opportunity to meet temporarily in one place, peacefully and unarmed, in any lawful purpose andcomply with the Act. It is named in Article 20 of the Universal Declaration of Human Rights.

Here's a video   http://anonbelgium.blogspot.com

comment : back to your roots, where it all began ?

if you want to read a bit, this looks like a good Google search 

and especially this internal email from one of the senior clergy who is now disputing the management

* there are a lot of big numbers flying around (so many hundred thousand of creditcards, facebook or other accounts for example) - they seem mostly fake or exaggerated (for some you have to pay with clicking on an ad before you can download them)

* for the first time other creditcards not from an arabic country or jewish state or organisation are being published without mentioning the site (garbage dumping). 

* some say that the cyberincidents are over because the other side has given up

it just seems ongoing for a while

new files are listed here

http://www.diigo.com/list/mailforlen/leaks?order_by=0