GlobeImposter ransomware victims find themselves abandoned by their extortionists

It’s a bad day when your computers get hit by ransomware.

But it only gets worse when you realise that you not only don’t have backups, but also have no way of contacting the criminals who encrypted your data.

Smashing Security #063: Carole’s back!

Fitness trackers breaching your privacy, how anyone can create convincing celebrity porn, and how ransomware authors are getting ripped off by scammers.

All this and much much more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, who are joined this week by special guest Maria Varmazis.

Bitcoin hijack steals from both ransomware authors AND their victims

If you use a Tor-to-web proxy service you you are putting an enormous amount of trust in their hands that they are not meddling with the information you are seeing – or indeed the data that you are sending.

Read more in my article on the Hot for Security blog.

Firm offers up to $1 million for Tor zero-day exploits – but who will they sell them to?

A company is offering up to one million dollars in bounties for anyone who finds and reports exploitable zero-day flaws in the Tor Browser.

David Bisson reports.

Anonymous hacker took down 10,000+ dark web sites, including child abuse content

An Anonymous hacker claims they took down more than 10,000 dark web sites because they were hosting child abuse material and other harmful content.

David Bisson reports.

Onion Browser goes free for privacy-conscious iOS users, citing ‘recent events’

For over four years mobile app developer and privacy journalist Mike Tigas has been selling his browser which encrypts and tunnels users’ web traffic through the Tor network.

And now he’s made it free.

Tor users at risk of having their anonymity stripped via attacks exploiting Firefox zero-day

Attackers are currently exploiting a zero-day vulnerability in the Firefox web browser to strip anonymity from privacy-loving Tor users.

David Bisson reports.

Spam campaign tiptoes via Tor to deliver Cerber ransomware

A malicious spam campaign is using a Tor2Web proxy service in an attempt to infect users with Cerber ransomware without raising any red flags.

David Bisson reports.

Tor users in the States were hacked by Australian authorities

Joseph Cox at Motherboard writes: Australian authorities hacked Tor users in the US as part of a child pornography investigation, Motherboard has learned. The contours of this previously-unreported hacking operation have come to light through recently-filed US court documents. The case highlights how law enforcement around the world are increasingly pursuing targets overseas using hacking

MIT researchers unveil new anonymity scheme that could rival Tor

In response to the disclosure of vulnerabilities in Tor’s design, researchers at MIT have created Riffle, a system that allegedly provides better security and uses bandwidth more efficiently.

David Bisson reports.

Meet Eleanor, the Mac malware that uses Tor to obtain full access to systems

After your Mac gets hit by this malware you could be locked out of your computer, have it recruited into a botnet, or be blackmailed to regain access to your files.

David Bisson reports.

Mozilla asks court to force FBI into revealing potential Firefox zero-day vulnerability

The FBI collected the IP and MAC addresses of visitors to a child sexual abuse website. But how did they do it? Mozilla wants to know – but the FBI wants to keep details of the flaw it exploited secret.

Read more in my article on the Tripwire State of Security blog.

You know you’ve lost if terrorism means you start banning public Wi-Fi

After terrorists killed 130 people in Paris last month, it’s no surprise to see law enforcement looking to find “easy wins” to curb future attacks.

But blocking Tor and banning public Wi-Fi? That’s not the right response at all.

Agora, the dark web’s biggest marketplace, shuts over Tor privacy fears

Where would the dark web be without Tor?

Probably in the bright, uncomfortable spotlight of law enforcement if it doesn’t find an alternative method of cloaking itself.

Read more in my article on the Tripwire State of Security blog.

Fancy $110,000? Easy! Just be Russian and find a way of cracking Tor

It looks like Russia is looking for a way to crack down on those who try to hide their activities from law enforcement agencies and government censors.

Read more in my article on the Hot for Security blog.

Silk Road closed down by the FBI, alleged founder identified and arrested

According to FBI, Silk Road generated more than $1.2 billion in online sales during its three years of operation – a truly staggering figure, which gives an indication of the amount of criminal activity that passed through its systems.