Homeland Security Watch

News and analysis of critical issues in homeland security

March 5, 2013

Eight homeland security stories

Filed under: General Homeland Security — by Christopher Bellavita on March 5, 2013

Here are the first sentences from eight homeland security-related stories that got my attention last week.

 

1. Watch the New and Improved Printable Gun Spew Hundreds of Bullets (by Robert Beckhusen)

Late last year, a group of 3-D printing gunsmiths developed a key component for an AR-15 rifle that anyone with a 3-D printer could download and make at home. The problem: It only lasted six shots before snapping apart. Now the group is back with a new and improved receiver that can fire more than 600 rounds….

2. US hackers attacked military websites, says China’s defence ministry (Security Law Brief)
02/28/13: The BBC reports hackers from the US have repeatedly launched attacks on two Chinese military websites, including that of the Defence Ministry, officials say. The sites were subject to about 144,000 hacking attacks each month last year, two thirds of which came from the US, according to China’s defence ministry….

3. The Best Books About Biotechnology (by Alexis Madrigal)

I’ve spent the last few weeks creating a syllabus for myself on the world — people, techniques, theory, history — of biotechnology. I’ve talked with some scholars, accepted some Amazon recommendations, and done some rummaging around in bibliographies, but I’m only getting started. I thought I’d list my recent acquisitions here in hopes that you’ll help me flesh my little self-taught course out. You know how to get a hold of me: comments here, @alexismadrigal, or amadrigal[at]theatlantic.com. (Oh, and I’m also looking for journals and blogs that I should be keeping an eye on.)….

4. Climate Change and the Arab Spring (by Will Rogers)

On [February 28], … Caitlin Werrell and Francesco Femia of the Center for Climate & Security …[released] a new study on “Climate Change and the Arab Spring” that “outlines the complex pressures exerted by the effects of climate change on the convulsions which swept through the Middle East in 2010 and 2011, exploring the long-term trends in precipitation, agriculture, food prices, and migration which contributed to the social instability and violence which has transformed the region, and offering solutions for progress.”…

5. NJ Plans Mediation of Disputes Between Consumers and Insurance Companies (by recoverydiva)

One of the impediments to recovery often is due to disputes between homeowners or business owners and insurance companies. We saw that after Hurricane Katrina and we saw it more recently in Christchurch, NZ. This article explains a pending action by Gov Christie of N.J: N.J. to launch mediation program for Hurricane Sandy insurance disputes

6. Phishing Has Gotten Very Good (by Bruce Schneier)

[Ok, more than a few sentences]

This isn’t phishing; it’s not even spear phishing. It’s laser-guided precision phishing:

One of the leaked diplomatic cables referred to one attack via email on US officials who were on a trip in Copenhagen to debate issues surrounding climate change.
“The message had the subject line ‘China and Climate Change’ and was spoofed to appear as if it were from a legitimate international economics columnist at the National Journal.”
The cable continued: “In addition, the body of the email contained comments designed to appeal to the recipients as it was specifically aligned with their job function.”
[…]
One example which demonstrates the group’s approach [to phishing] is that of Coca-Cola, which towards the end was revealed in media reports to have been the victim of a hack.
And not just any hack, it was a hack which industry experts said may have derailed an acquisition effort to the tune of $2.4bn (£1.5bn).
The US giant was looking into taking over China Huiyuan Juice Group, China’s largest soft drinks company — but a hack, believed to be by the Comment Group, left Coca-Cola exposed.
How was it done? Bloomberg reported that one executive — deputy president of Coca-Cola’s Pacific Group, Paul Etchells — opened an email he thought was from the company’s chief executive.
In it, a link which when clicked downloaded malware onto Mr Etchells’ machine. Once inside, hackers were able to snoop about the company’s activity for over a month.

Also, a new technique:

“It is known as waterholing,” he explained. “Which basically involves trying to second guess where the employees of the business might actually go on the web.
“If you can compromise a website they’re likely to go to, hide some malware on there, then whether someone goes to that site, that malware will then install on that person’s system.”
These sites could be anything from the website of an employee’s child’s school – or even a page showing league tables for the corporate five-a-side football team.

[Schneier] wrote [the following] over a decade ago: “Only amateurs attack machines; professionals target people.” And the professionals are getting better and better.

This is the problem. Against a sufficiently skilled, funded, and motivated adversary, no network is secure. Period. Attack is much easier than defense, and the reason we’ve been doing so well for so long is that most attackers are content to attack the most insecure networks and leave the rest alone….

7. Why Sequestration Could Be Good For Airport Passenger Screening (by Justin Hienz)

… the length and speed of security lines at airports are a function of the TSA’s inefficient security methodology, not its budget and staff. Reduced federal funds will magnify this inefficiency, but to claim longer lines are purely a result of budget cuts is a cop-out. Sequestration is actually an opportunity for the TSA to abandon its insistence on screening all airline passengers, which demands extraordinary resources and manpower, and instead adopt a more efficient and effective approach. If it does, budget cuts might be the best thing that ever happened to airport screening….

8. Feds Say Man Deserved Arrest Because Jacket Said ‘Occupy Everything’ (by David Kravets)

A Florida man deserved to be arrested inside the Supreme Court building last year for wearing a jacket painted with “Occupy Everything,” and is lucky he was only apprehended on unlawful entry charges, the Department of Justice says.

The President Barack Obama administration made that assertion in a legal filing in response to a lawsuit brought by Fitzgerald Scott, who is seeking $1 million in damages for his January 2012 arrest inside the Supreme Court building. He also wants his arrest record expunged.

What’s more, the authorities said the former Marine’s claim that he was protected by the First Amendment bolsters the government’s position … because the Supreme Court building’s public interior is a First Amendment-free zone [sic] ….

Share and Enjoy:
  • Digg
  • Reddit
  • Facebook
  • Yahoo! Buzz
  • Google Bookmarks
  • email
  • Print
  • LinkedIn

1 Comment »

Comment by William R. Cumming

March 5, 2013 @ 8:27 am

Your oracle stories reveal deeper problems. Thanks Chris.

RSS feed for comments on this post.

Leave a comment

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>