A secure democratic Net is a fundamental right

The biggest City of Flanders, Antwerp will have a big electoral showdown fight coming october 2012 and the nerves have already reached the sky/limit and we are still months away (and 24hours can be years in politics)

now it seems that there was a database accessable to all the people working in cityhall on the internet that shouldn't have been there

it was a database with all the administrative and judicial convictions because of local reglementations and rules

the local administrator said that he had to deplace the file and didn't see that it was accessable to all

no harm done

but it shows that important information should be isolated in every way (hardware and access) so that it is always totally clear immediately that if it goes out of the cage, it will have no protection

even for an administrator in a hurry

it also shows the importance of double authentification for important information (where ever the information is place, you can only access it if you have the right usb stick or card or whatever you are using)

There was already the request for the official emails of Palin and the Bush White House, but now it is coming down to lower levels of office. The newspaper Mercury News asked and got all the internal emails between the police department and the City Hall of Oakland when they decided to break up the Occupy movement there in october 2011 with nearly military enforcement and riots as a consequence, leading to hundreds to be arrested or detained (and making the international headlines)

After the Freedom of Information request more than 4000 internal recent emails were released to the press who published them on Documentcloud which is a platform used by several newsorganizations (why do it yourself if you can do it better together) where they can host thousands of documents in seperate databases, making it easier to search and archive and connect documents and people.

After the publication a crowd-searching analysis was set up by which people online got as fast as possible through the thousands of documents trying to find the most interesting or astonishing, the contradictions and connections. This was coordinated through Twitter with a special hashtag.

An example of an email who by this way came to the attention of the journalists is here (you have to allow all services in your browser if you have a high level of protection). This example shows that the local economic development manager went to local business after the raid to get quotes the mayor could use to show the "business support" for his intervention.

You may also find the emailaddresses also of the people who protested against this operation with an email and maybe didn't intend to be known as such.

So do we have to prepare our officials to the fact that everything they do during their worktime or that has something to do with their official business (in whatever emailaddress) can and will be public at some time in the future (or much sooner than that) ? I am always so astonished to what people write in emails - as if that is a private and secure conversation. Emails will NOT go away, even if you throw away your own copy.

ACTA: ACTA is an international trade agreement that criminalizes intellectual property theft across borders. Its targets are both those counterfeiting physical goods as well as folks pirating digital content. The U.S. signed it in 2010 along with six other nations, including Japan and Canada. Last week ACTA was in the news as the EU and Poland signed the treaty as well, much to the dismay of some of their citizens and politicians. Other countries have until March of next year to join — and trade groups representing the content industry would dearly like everyone to join.

SOPA/PIPA: The Stop Online Piracy Act and the Protect IP Act were companion bills that were proposed last year in the House and Senate respectively. As of last week, they have been shelved thanks to a massive online and offline protest spearheaded by web giants and communities such as Wikipedia and Reddit.

The Trans-Pacific Partnership Agreement (or ACTA 2.0): The TPP is currently being negotiated in Los Angles as a wide-reaching trade agreement between Singapore, Chile, New Zealand, Brunei, Australia, Peru, Vietnam, and the United States. It includes provisions about everything from labor conditions to tariffs, but it also has provisions on intellectual property, which have caught the eye of consumer-rights groups.
http://gigaom.com/2012/01/30/acta-2-0-is-like-a-backdoor-...

There are worldwide a lot of actions against these new international legal frameworks - even if some of the oritginal most hardest punishments and controls have been retired from the text (or the leaked public version which is no guarantee). In principle there are three main problems

* a law should be set up and controlled by parliament and not like the international free-trade agreements (and the intergouvernmental non-agreements in Europe about the Euro), if there is going to be a new law and punishment you are entitled to have your say in it (through a really democratic parliament)

* a nation shouldn't be 'infected' with bad laws from another country through these secretive international agreements and other nations shouldn't have jurisdiction in or over our own countries (you always know where it starts but never where it ends)

* each individual should have the benefit of the doubt and should keep his privacy and his full democratic rights wherever he lives and whatever he does (even if he is committing a crime, that doesn't make him a person without any rights).

THe basic problem is that the entertainment industry hasn't adapted at all at the new digital environment and isn't willing to adapt and so wants to try to keep things a bit under control with all these controls and new frameworks while they know that it won't change a thing. As long as you can't watch online tv series from the US or other parts of the world at the same time as the home audience and have to wait 6 months to 2 years before you can watch it on your own television, you are creating pirates. As long as you have to pay the same price for the download of a single that has been sold millions of times and has been earned back thousands of times as for a new song that still has to be earned back one percentage of production and marketing costs, you are creating pirates. As long as there are no legal alternatives that are interesting, economical and easy to use, you are creating pirates. And if there is something that is appearing through most of the research is that those who download the most, also spend the most on entertainment but are in fact 'tasting' the free version before buying the full version with all the extra effects and add-ons and so on. Because in the end there is nothing like having the original in your hands.

And maybe there is too much identical crap around that is already boring after having it heard three times or seen once. Which is strange in a connected world where we should have been put into contact with thousands of new musicans, creators, writers and artists inspiring us with different and unexpected emotions and interpretations. The problem here is that the entertainment industry has become sometimes too much of an industry that isn't enough entertaining any more to keep us hooked enough to get out the money.

What people also seem to forget. When I was much younger I went to the library and copied my favourite lp's on those cassettes or I copied the Top of the Pops on the radio, playing it afterwards in my walkman.  It seems easier by now, but even than when I had enough pocket money I went to the store and bought that really good lp of Pink Floyd, ACDC and the rest (and I still have them, the originals).

And maybe there is another thing for the entertainment industry, you can't expect people to pay each time again when you have decided to change the format. You went from VHS to DVD (and some other fucked up formats for people who feel themselves losers now) and now we should pay for Blue Ray or from LP to CD to download ? And that for the SAME price for the same artist for the same title ? For what, some better sound, some better effects ? My DVD-CD's are technically so vulnerable that I have to make backups from them if I want to be sure not to 'lose' them untill you come up with another 'Format'.

It is also surprising that it seems possible to do all these things against copythiefs and that the same thing takes years to do even the most simplest things against international cybercrime (and finance them adeaquatly).

So imagine that you throw out of your party a member of parliament and her partner who was a president of your youth organisation

imagine that relations have gone totally sour and that war has been declared

so what happens when they start leaking old emails that get your party in problems (like your most important minister in the Flemish government)

well you can counterattack and find anything dirty on him that is available (like negationist or antijewish remarks on his Facebook pages)

but in the end, he still has 24.000 internal emails on his hand that he won't used if you leave him alone (telling this in an interview that everybody can read)

you can always find interesting stuff in 24.000 emails, people write the most stupid things in email (and on Facebook and twitter)

but there is another question

didn't nobody let him sign a confidentiality agreement

didn't nobody organize his departure in a normal matter, so that all the internal documents and emails would have been destroyed or transferred

and this shows why it is a bad idea to let people download email from online servers (you never know where they will end up)

and I didn't see any disclaimer on the email, prohibiting public disclosure

and who will be responsable if somebody hacks his computer and steals all these emails and throw them all online (wouldn't be the first nor the last one)

* there are a lot of big numbers flying around (so many hundred thousand of creditcards, facebook or other accounts for example) - they seem mostly fake or exaggerated (for some you have to pay with clicking on an ad before you can download them)

* for the first time other creditcards not from an arabic country or jewish state or organisation are being published without mentioning the site (garbage dumping). 

* some say that the cyberincidents are over because the other side has given up

it just seems ongoing for a while

new files are listed here

http://www.diigo.com/list/mailforlen/leaks?order_by=0

We have said from the beginning that the operation against Megaupload - which was prepared during a year - was so important because they wanted to send a very important message. You may be the biggest and you may be in Hong Kong but we will still shut down - even if no international treaties or new laws in the US are being voted.

You will read a lot in the coming weeks in the press about the finances of Megaupload and every aspect of the investigation will be publicized.

It didn't miss their effect, those online filesharing servers all around the world (but some may have the same owners so don't let you be impressed by the number of domainnames) are taking three kinds of actions

First : no American IP adresses so the US justice department don't have a legal basis to start an investigation (but that is a bit weak especially if you are hosting US material)

Secondly : no rewards for people who are uploading copyrighted content, the so-called affliates. Off course how can you say that you didn't know that there was copyrighted content on your sites when you were paying people for sharing files that are clearly identifiable as copyrighted content

Thirdly (the most drastic) is to stop all sharing of files with others - at least untill private sharing has been set up (in which you share only with people you know or give access to)

Fourth  deleting masses of files and users, in the case of filesonic thousands (which will pose a problem for Google because it will have to delete thousands of links everyday to stay fresh and not send people to dead links all the time)

So how does a filesharing site stay out of the US law (and now you will see how difficult that it is)

No hosting in the US or by an US based company or a company that has business in the US

No  .com name and don't buy your dns name with an US based company or a company that has business in the US

No payment by creditcard or Paypal, remember wikileaks and surely not by banktransfer

No dns servers in the US 

So some companies will need several weeks to re-organize their services. The other problem of course is that by hosting your servers in China, Russia or another country out of the hands of the US justice Department you must host your servers in countries that are unreliable or blocked for securityreasons or can't deliver you the same quality of connection and service.

There are alternatives, alternative services and alternative means of transport. It is not up to me to explain them.

But this is the napster moment of the online sharing world. Sharing didn't stop after Napster, it only changed. It took a while but than it continued as never before.

At the other end I agree with those who say that if netflix and other online film and tvservices were available in Europe at the same price I would use them just as I am going to use deezer now it is available here. Why wait for a film for 6 months in Europe when it is already on the cinemas and the web. This off course changes the production process as translation will have to be done during the production of the program or film and not afterwards so that you would afterwards only add another months or so to get the different translations completed.

In the increasing dangerous cyberbattles between Zionist and Arabic hacker crews (in which it is sometimes difficult to differentiate between bluff and documented attacks) it is becoming clear that many innocent people will have at the least some negative effects.

First long lists of compromised accounts have been published without any linkage to either side but it is rumored that this is the rest or garbage from their attacks. The people on the list are neither Zionist neither Arabic but had some kind of account compromised. It is not clear where and when these accounts were compromised which adds to the confusion.

Secondly several international Arabic and jewish sites and forums in other countries have been hacked. The biggest one until now has been the hacking of the French CRIF where 13.000 accounts have been published.

but what it also means it that people who have at one time in their career subscribed to their newsletter or forum, because as a politician they thought that it was best to be informed (it can also be that many of them were also subscribed to palestinian or arab forums and newsletters) are now being branded and attacked as zionist and that may land them on attackpages and as a target in a cyberwar between hackercrews they didn't have anything to do with.

Not only it is so that CRIF.org was hacked a few days ago but they didn't tell anyone - or answer the rumors - and it wasn't even the first time in july (still present on pastebin.org)

so who do we find on these lists (with protected passwords but that you can only crack with software and not with online passwordscrackers but if you see the importance of these members, you can suppose that somewhere somebody is busy cracking those passwords hoping that it will give them access to other more important services)

a list of belgian, french and german parlementarians and senators (or people who were that a few years ago)

a list of members of the universities, press, jewish organisations and important businesses and financial institutions (axa, banksys etc....)

In the new settlements, announced in the High Court, a total of £645,000 was awarded to 15 hacking victims, with "substantial" damages awarded to three others. News International will be responsible for the legal costs, which are likely to be six-figure sums in most of the cases.

Confirmation that email hacking took place backs up the claim made last April by Sienna Miller that her email account had been accessed. An out-of-court settlement of £100,000 prevented further disclosures by the actress. The Independent has previously revealed that the Metropolitan Police's ongoing investigation into computer hacking, Operation Tuleta, has uncovered evidence that the former British intelligence officer Ian Hurst had his emails hacked as part of a NOTW commission. Eighteen other seized computers are being investigated by Tuleta officers for further evidence of illegal email access
http://www.independent.co.uk/news/uk/crime/we-hacked-emai...

former british intelligence officer losing his emails ?

two things

incompetence and state secrets

http://pastebin.com/DVJx1rpu

yep and there are Belgians in it .......

and if you want to have the rest, it is here

http://pastebin.com/u/RemainAnonOps

yes, also pornwebsites get breached or yes, if enough computers get infected and leak the passwords or if enough computers use fake webproxies that are only set up to intercepts accounts than you can lose your pornmemberaccount

this is the case with porn brazzers of which 600 accounts are published

strange that some people for this kind of website use their own personal or professional emailadress

http://pastebin.com/bvd2cFvY

and as long as the information stays online you can be find by Google as member of a pornwebsite

good jobhunting :)

Online retailer Zappos.com, a division of Amazon, is in the process of notifying the company's twenty-four million customers of a network security breach that exposed client records.

The company has indicated that names, email addresses, mailing addresses, and the last four digits of customer's social security numbers have been compromised.

The company stated that the databases that contain sensitive billing information, such as credit card numbers, was not accessed by hackers in the course of the breach, and that they are currently working with an investigation by law enforcement.
http://www.infosecisland.com/blogview/19393-Zapposcom-Hac...

so that is to say 24 million working emailaddresses to spam (or send viruses to)

the 4 last digits of the social securitycard (is like an ID) of your american clients (coupled with their real names and addresses) which make identity theft easier

real names and addresses if coupled with stolen creditcardinfo or online bankingaccounts

the sheer number makes it a multimillion operation and it may be difficult to send only an email because meanwhile spammers and scammers may have sent other mailings trying to make them click on phishing websites or files with zeroday viruses

it is not clear if the passwords of their accounts were also leaked, if so this would make it even more difficult as many users are using the same passwords for different online services

In October there were rumours that T-Mobile was hacked and that thousands of customers had lost some identification or account information.

1.     Linux http://TMobileWebServer1.cl.datapipe.net 2.6.18-194.26.1.el5 #1 SMP Fri Oct 29 14:21:16 EDT 2010 x86_64
2.     name name email phone pass
3.     Aden    Ryan    aden.ryan@glg.com       206-849-7858    5548    
4.     Anna    Friedges        afriedges@waggeneredstrom.com   425-638-7000    pass    
5.     Alexandra       Trask   Alexandra.Trask@t-mobile.com            112112  
6.     Alison  Russell         Alison.Russell32@t-mobile.com           112112  
7.     allen   locke   allen.locke@glg.com             glg5548        
8.     amy     brodie  amy.brodie@t-mobile.com                 112112  
9.     Andy    Colley  Andrew.Colley@t-mobile.com      425-350-9911    pass    
10.     Art     Lucero  Arturo.Lucero@t-mobile.com              WeCare  
11.     ben     kyan    benjamin.kyan@glg.com           112112  
12.     Bryan   Zidar   Bryan.Zidar@T-Mobile.com        425-378-6082    112112  
13.     Cathy   Kim     Catherine.Kim@t-mobile.com              112112  
14.     Cathy   Kim     Cathy.Kim@t-mobile.com          112112  
15.     Chris   Kent    chris.kent@glg.com      206-555-1212    112112  
16.     Chris   Elliott         Christopher.Elliott20@t-mobile.com      (425) 383-5476  pass    
17.     Daniel  Anderson        Daniel.Anderson68@t-mobile.com                
18.     Derric  Johnson         Derric.C.Johnson@t-mobile.com           112112  
19.     elektra         durkee  elektra.durkee@glg.com          glg5548        
20.     glenn   zaccara         glenn.zaccara@t-mobile.com              CaseyMan        
21.     Gordon  Shattles        gordon.shattles@t-mobile.com            112112  
22.     Grace   Higgins         Grace.Higgins1@t-mobile.com             112112  
23.     Graham  Crow    grahamc@waggeneredstrom.com     (206) 930-8264  auction        
24.     Jen     Peel    jen.peel@glg.com                112112  
25.     Jonathan        eliav   Jonathan.eliav@t-mobile.com             112112  
26.     katie   kirkland        katie.kirkland@glg.com  206-223-5548    glg5548        
27.     kristin         Lovelady        kristin.lovelady@glg.com                112112  
28.     Lisa    Reid    Lisa.Reid@t-mobile.com          112112  
29.     Michelle        Webb    Michelle.Webb12@t-mobile.com            112112  
30.     Mohamed         Saeed   mohamed.saeed@glg.com           5548    
31.     Patty   Raz     PRaz@Waggeneredstrom.com        (503) 443-7235  pass    
32.     Paula   Gottlob         Paula.Gottlob@t-mobile.com              tmo@6543        
33.     Peter   Dobrow  Peter.Dobrow@t-mobile.com               112112  
34.     Rebecca         Lyman   rebecca.lyman@glg.com   rebecca.lyman@glg.co    112112  
35.     Reid    Walker  Reid.Walker@t-mobile.com                      
36.     Robin   Handaly         Robin.Handaly@t-mobile.com              112112  
37.     Scott   Scheff  scott.scheff@glg.com            112112  
38.     Scott   Goldberg        scott.goldberg123@t-mobile.com          112112  
39.     Stephanie       Mrus    Stephanie.Mrus@t-mobile.com             112112  
40.     Test    Person  person@glg.com  206-555-1212    112112  
41.     Thomas  Harlin  Thomas.Harlin@t-mobile.com              112112  
42.     Troy    Edwards         Troy.Edwards45@T-Mobile.com     206-422-6600    112112 

the hackers give the following info

"Look at the passwords, epic fail. All the passwords are manually given to staff via an admin who uses the same set of passwords"

so this (sub?) set of the leak consists of 42 clients who had lost their password and got a new administrative one.

or this is a small subset of a larger leak or this is just a small lucky hack of the postbox, voipline or table of the helpdesk

T-mobile itself will have to do redo their research now before saying that they weren't hacked and that no information was lost

You remember the acts of sabotage against the French railways a few years ago which mobilized thousands of police and army to control if there were no other big objcts laying on the tracks that could derail a train.
Ultimately a few anarchists living in a farm (with a small shop and other community services for the small village they lived in – anarchism is also about selforganisation and self providing, in the 19th century anarchists were for example the first to set up community kindergardens for example)  were arrested and portraited as the most dangerous group since Action Direct (a more Marxist terrorist group from the dark 1980-1990’s in part of Europe (terrorism and repression and surveillance and extreme right groups and elites and all that)
Yesterday in Le Monde there was an interesting article about the preparations for the trial. One of the investigations that has been opened as a consequence is against the unnamed French intelligence service for illegal tapping of their telephone lines. The funny part is how they discovered it.
One day the man in the community shop saw that their  system of electronic payment didn’t work any more and the bank said that there was no problem at their sitde and that he had to phone the telephone company who sent a technician.
The technician opened the box outside of the box and found that a box was connected to the (wrong) telephone line (and tapping the commercial transactions instead of the conversations). Well, said the technicians it looks as if you are being tapped and  that the box is interfering with your financial transactions and I have to call my hierarchy to find out more. After a few conversations it became clear that they were being tapped indeed.
Only there was at the time no legal investigation against them and no permission was given to tap their telephone lines.
But maybe this is a new idea for economic espionage, monitoring the financial transactions so you can see when they make most money, what people are buying and so on.

first question

some of them are on an individual account of their ISP

question is if that is really in accordance with the reglementation

also because tor exists and entry points are also used for criminal activity which is in fact passing through your computer and their installations (even if there is also a lot of normal and political activity on tor but you know we have a very strict Belgian law on computercrime)

http://torstatus.rueckgr.at/index.php?SR=Name&SO=Asc

d51A42AE7.access.telenet.be [81.164.42.231]

d51A4A212.access.telenet.be [81.164.162.18]

ip-83-134-158-96.dsl.scarlet.be [83.134.158.96]

92.48-183-91.adsl-static.isp.belgacom.be [91.183.48.92]

d51A4C6A0.access.telenet.be [81.164.198.160]

38.40-182-91.adsl-dyn.isp.belgacom.be [91.182.40.38]

103.28-130-109.adsl-dyn.isp.belgacom.be [109.130.28.103]