{"id":6250,"date":"2017-01-22T14:53:32","date_gmt":"2017-01-22T22:53:32","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2017\/01\/22\/news-103\/"},"modified":"2017-01-22T14:53:32","modified_gmt":"2017-01-22T22:53:32","slug":"news-103","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2017\/01\/22\/news-103\/","title":{"rendered":"Security News This Week: Unmasking the Master of That Web-Crippling Botnet"},"content":{"rendered":"<p><img decoding=\"async\" src=\"https:\/\/assets.wired.com\/photos\/w_1164\/wp-content\/uploads\/2016\/12\/Mirai-01.jpg\"\/><\/p>\n<article class='content link-underline relative body-copy' data-js='content' itemprop=\"articleBody\">\n<div id=\"small-art\" data-share>\n<figure id=\"attachment_2133258\" class=\"carve wp-caption square alignnone  relative\" data-js=\"\">\n<div class=\"ui-social-wrapper image absolute top right\">\n<ul class=\"no-marg\">\n<li><a class=\"fb clearfix no-underline no-outline\" onclick=\"window.open( 'https:\/\/www.facebook.com\/dialog\/feed?display=popup&#038;app_id=719405864858490&#038;link=https%3A%2F%2Fwww.wired.com%2F2017%2F01%2Fsecurity-news-week-unmasking-master-web-crippling-botnet%2F&#038;picture=https%3A%2F%2Fwww.wired.com%2Fwp-content%2Fuploads%2F2016%2F12%2FMirai-01.jpg&#038;redirect_uri=https%3A%2F%2Fwww.wired.com%2F2017%2F01%2Fsecurity-news-week-unmasking-master-web-crippling-botnet%2F' , 'Facebook' , 'height=580, width=730' )\"><i aria-hidden=\"true\" role=\"presentation\" class=\"ui ui-social-xtra-sm ui-fb-xtra-sm active bg-fb\"><\/i><\/a><\/li>\n<li><a  class=\"pint clearfix no-underline no-outline\" onclick=\"window.open( 'https:\/\/pinterest.com\/pin\/create\/button\/?url=https%3A%2F%2Fwww.wired.com%2F2017%2F01%2Fsecurity-news-week-unmasking-master-web-crippling-botnet%2F&#038;is_video=true&#038;media=https:\/\/www.wired.com\/wp-content\/uploads\/2016\/12\/Mirai-01.jpg&#038;description=Security%20News%20This%20Week%3A%20Unmasking%20the%20Master%20of%20That%20Web-Crippling%20Botnet%20%7C%20%20%20%7C%20Credit%3AThen%20One%2FWired%20%7C%20From%20WIRED.com' , 'Pinterest' , 'height=580, width=730' )\"><i aria-hidden=\"true\" role=\"presentation\" data-js=\"social\"  class=\"ui ui-social-xtra-sm ui-pint-xtra-sm active bg-pint\"><\/i><\/a><\/li>\n<\/ul><\/div>\n<p><img decoding=\"async\" class=\"size-large wp-image-2133258\" srcset=\"https:\/\/assets.wired.com\/photos\/w_280\/wp-content\/uploads\/2016\/12\/Mirai-01.jpg 280w, https:\/\/assets.wired.com\/photos\/w_289\/wp-content\/uploads\/2016\/12\/Mirai-01.jpg 289w, https:\/\/assets.wired.com\/photos\/w_335\/wp-content\/uploads\/2016\/12\/Mirai-01.jpg 335w, https:\/\/assets.wired.com\/photos\/w_560\/wp-content\/uploads\/2016\/12\/Mirai-01.jpg 560w, https:\/\/assets.wired.com\/photos\/w_578\/wp-content\/uploads\/2016\/12\/Mirai-01.jpg 578w, https:\/\/assets.wired.com\/photos\/w_582\/wp-content\/uploads\/2016\/12\/Mirai-01.jpg 582w, https:\/\/assets.wired.com\/photos\/w_670\/wp-content\/uploads\/2016\/12\/Mirai-01.jpg 670w, https:\/\/assets.wired.com\/photos\/w_1164\/wp-content\/uploads\/2016\/12\/Mirai-01.jpg 1164w\" sizes=\"(min-width: 768px) 289px, (max-width: 767px) calc(100vw - (20px * 2)), 582px\" data-pin-description=\"Security News This Week: Unmasking the Master of That Web-Crippling Botnet\" src=\"https:\/\/assets.wired.com\/photos\/w_1164\/wp-content\/uploads\/2016\/12\/Mirai-01.jpg\" \/><figcaption class=\"wp-caption-text link-underline\"><!--Generated in 0.632 ms--> <span class=\"marg-r-micro\"><\/span><span class=\"credit link-underline-sm\"><span aria-hidden=\"true\" class=\"ui ui-illo inline-block ui-credit relative opacity-6 marg-r-sm no-caption\"><\/span>Then One\/Wired<\/span><\/figcaption><\/figure>\n<\/p><\/div>\n<p>Remember that nasty Mirai botnet, the one that broke the internet for millions of people last fall? Brian Krebs does. The security journalist was also the massive botnet&#8217;s first known victim, and he&#8217;s spent <a href=\"https:\/\/krebsonsecurity.com\/2017\/01\/who-is-anna-senpai-the-mirai-worm-author\/\" target=\"_blank\">hundreds of hours tracking down Mirai&#8217;s author<\/a>. <\/p>\n<p>The biggest security news this week was also the most surprising; in one of his last acts in office, (now former) President Obama <a href=\"https:\/\/www.wired.com\/2017\/01\/chelsea-manning-sentence-commuted-obama\/\" target=\"_blank\">commuted the sentence of WikiLeaks whistleblower Chelsea Manning<\/a>. Instead of serving out the rest of her 35-year sentence, she&#8217;ll be free in May. In other presidential news, it turns out the <a href=\"https:\/\/www.wired.com\/2017\/01\/wall-alone-cant-secure-border-no-matter-pays\/\" target=\"_blank\">wall Trump wants to build won&#8217;t do very much<\/a> to actually secure the border. It&#8217;s possible to <a href=\"https:\/\/www.wired.com\/2017\/01\/america-can-beat-russia-cyber-war-despite-trump\/\" target=\"_blank\">secure our cyber-defenses against Russia<\/a>, though&#8212;with our without Trump&#8217;s help.<\/p>\n<p>We also took a look into the future of warfare this week, specifically how the <a href=\"https:\/\/www.wired.com\/2017\/01\/better-way-marines-prepare-future-wars-sci-fi\/\" target=\"_blank\">Marines use sci-fi<\/a> to prepare for it. And into the past, thanks to a newly accessible stash of <a href=\"https:\/\/www.wired.com\/2017\/01\/ufos-psychics-spies-cia-just-put-12m-pages-files-online-start\/\" target=\"_blank\">12 million pages&#8217; worth of declassified CIA documents<\/a>. Elsewhere, a popular selfie app <a href=\"https:\/\/www.wired.com\/2017\/01\/meitu-viral-anime-makeover-app-major-privacy-red-flags\/\" target=\"_blank\">raised some privacy concerns<\/a>, and <a href=\"https:\/\/www.wired.com\/2017\/01\/get-even-easier-hide-dark-web\/\" target=\"_blank\">Tor has a plan to become more secret<\/a> than ever. Also? <a href=\"https:\/\/www.wired.com\/2017\/01\/squirrels-may-beat-power-grid-glad-not-russia\/\" target=\"_blank\">Squirrels<\/a>.<\/p>\n<p>And there\u2019s more. Each Saturday we round up the news stories that we didn\u2019t break or cover in depth but that still deserve your attention. As always, click on the headlines to read the full story in each link posted. And stay safe out there.<\/p>\n<h3><a href=\"https:\/\/krebsonsecurity.com\/2017\/01\/who-is-anna-senpai-the-mirai-worm-author\/\" target=\"_blank\">The Hunt for Mirai&#8217;s Author<\/a><\/h3>\n<p>Last fall, the Mirai botnet successfully made large portions https:\/\/www.wired.com\/2016\/10\/internet-outage-ddos-dns-dyn\/ of the internet unavailable to most of the Eastern seaboard. Since then, it\u2019s continued to pop up in various forms, though not as destructively. Now, Mirai\u2019s first known victim, security journalist Brian Krebs, believes he\u2019s sussed out the botnet\u2019s author, an individual using the name Anna-Senpai. It\u2019s a lengthy tale https:\/\/krebsonsecurity.com\/2017\/01\/who-is-anna-senpai-the-mirai-worm-author\/, but also a fascinating insight both into the botnet underworld, and one reporter\u2019s dogged determination to concover the truth.<\/p>\n<\/h3>\n<p><a href=\"http:\/\/motherboard.vice.com\/read\/hackers-steal-Forum-accounts-from-clash-of-clans-creator-supercell\" target=\"_blank\">Supercell, Maker of Clash of Clans, Has 1.1 Million Forum Accounts Hacked<\/a><\/h3>\n<p>The hacks keep on hacking. This week\u2019s most high-profile victim is Supercell, app developer and creator of popular games including Clash of Clans, whose forum accounts were raided in September of last year. There\u2019s no financial information in the 1.1 million-profile  trove, but it does include user names, email addresses, IP addresses, and hashed passwords that may not be robustly protected.  <\/p>\n<h3><a href=\"http:\/\/www.securityweek.com\/google-shares-details-its-security-infrastructure\" target=\"_blank\">How Google Secures All of the Things<\/a><\/h3>\n<p>Google this week detailed how it protects its cloud infrastructure, in a fascinating but pretty dense <a href=\"https:\/\/cloud.google.com\/security\/security-design\/\" target=\"_blank\">paper<\/a> that covers everything from custom hardware to operational security. It\u2019s not exactly light reading, but if you ever wondered why you don\u2019t read more stories about Google and its products getting hacked to pieces, here\u2019s your answer. <\/p>\n<\/h3>\n<p><a href=\"http:\/\/arstechnica.com\/security\/2017\/01\/its-shockingly-easy-to-hijack-a-samsung-smartcam-camera\/\" target=\"_blank\">Another Week, Another IoT Security Mess<\/a><\/h3>\n<p>The Internet of Things continues to be a bog of vulnerabilities. This week\u2019s horrors came from a Samsung SmartCam device, which researchers demonstrated was relatively easy to gain full control of remotely. The specific model affected is the SmartCam SNH-1011, and Samsung says it\u2019ll fix the vulnerability in an upcoming firmware update. Just think of it as the latest chapter in our ongoing saga of IoT Is More Trouble Than It\u2019s Worth.<\/p>\n<p><a href=\"https:\/\/www.wired.com\/2017\/01\/security-news-week-unmasking-master-web-crippling-botnet\/\" target=\"bwo\" >https:\/\/www.wired.com\/category\/security\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<div class=\"rss_thumbnail\"><img decoding=\"async\" src=\"https:\/\/www.wired.com\/wp-content\/uploads\/2016\/12\/Mirai-01-660x660.jpg\" alt=\"Security News This Week: Unmasking the Master of That Web-Crippling Botnet\" \/><\/div>\n<p>Each weekend we round up the news stories that we didn&#8217;t break or cover in depth but that still deserve your attention. The post <a href=\"https:\/\/www.wired.com\/2017\/01\/security-news-week-unmasking-master-web-crippling-botnet\/\">Security News This Week: Unmasking the Master of That Web-Crippling Botnet<\/a> appeared first on <a href=\"https:\/\/www.wired.com\">WIRED<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10378,10607],"tags":[7093,10495,10400,714,10612,10613],"class_list":["post-6250","post","type-post","status-publish","format-standard","hentry","category-security","category-wired","tag-hacks","tag-iot","tag-mirai","tag-security","tag-security-news","tag-security-news-this-week"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/6250","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=6250"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/6250\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=6250"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=6250"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=6250"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}