A new approach to Security? Post-Infection Thread Hunting

Reality update: A New Paradigm For Cyber Threat Hunting … :

Threat hunting requires a shift to a post-infection mentality and sets of tools such as SIEM (security incident and event management), EDR (endpoint detection and response) and NDR (network detection and response). Even with these tools, threat hunting is a challenge for a variety of reasons. For one thing, these solutions are “heavy.” They require some kind of data collection that involves installing agents on endpoints and/or hardware placed on networks. This can get quite expensive for a large enterprise.

Do good and talk about it might bring you to jail in the US

Reality update: Marcus Hutchins, WannaCry-killer, hit with four new charges by the FBI … :

I do not think the whole story is clear yet, but my intuition tells me to doubt the US version of this story – and I know many people are thankful to Mr. Hutchins for stopping Wannacry, however accidentally that may have been. But what is going on in the court room here? I can’t tell. But the sad part is – as long as it remains unclear, this guy is another Snowden, locked away from home:  

Hutchins, who is living in Los Angeles on bail, is unable to leave the United States since last year due to his pending criminal charges. Hutchins stormed to fame and hailed as a hero earlier last year when he accidentally stopped a global epidemic of the WannaCry ransomware attack that crippled computers all across the world.

Vacation in Russia anybody? Your VPN may be forbidden – and you could be fined…

Reality update: Russia to Fine Search Engines for Linking to Banned VPN services … :

According to the bill, individuals who break the law will face fine of 3,000 to 5,000 rubles (approx. $48 to $80), officials will face fines up to 50,000 rubles (approx. $800), and legal entities could be fined 500,000 to 700,000 (nearly $8,019 to $11,227), reports Russian State Duma Government site.

Roko’s Basilisk … a scary thought experiment

 Reality update: Roko’s Basilisk: The most terrifying thought experiment of all time. … :

Believing in Roko’s Basilisk may simply be a “referendum on autism,” as a friend put it. But I do believe there’s a more serious issue at work here because Yudkowsky and other so-called transhumanists are attracting so much prestige and money for their projects, primarily from rich techies. I don’t think their projects (which only seem to involve publishing papers and hosting conferences) have much chance of creating either Roko’s Basilisk or Eliezer’s Big Friendly God. But the combination of messianic ambitions, being convinced of your own infallibility, and a lot of cash never works out well, regardless of ideology, and I don’t expect Yudkowsky and his cohorts to be an exception. I worry less about Roko’s Basilisk than about people who believe themselves to have transcended conventional morality. Like his projected Friendly AIs, Yudkowsky is a moral utilitarian: He believes that that the greatest good for the greatest number of people is always ethically justified, even if a few people have to die or suffer along the way.

Side channel attacks via CSS in FF and Chrome…

Side-channel attacking browsers through CSS3 features | Security Research – Evonide https://www.evonide.com/side-channel-attacking-browsers-through-css3-features/

With the staggering amount of features that were introduced through HTML5 and CSS3 the attack surface of browsers grew accordingly. Consequently, it is no surprise that interactions between such features can cause unexpected behavior impacting the security of their users. In this article, we describe such a practical attack and the research behind it.

AI researchers boycott Nature magazine, for goid reason it seems

The public already pays taxes that fund our research. Why should people have to pay again to read the results? Colleagues in less well-funded universities also benefit. Makerere University in Kampala, Uganda, has as much access to the leading machine-learning research as Harvard or MIT. The ability to pay no longer determines the ability to play.

Why thousands of AI researchers are boycotting the new Nature journal | Science | The Guardian https://www.theguardian.com/science/blog/2018/may/29/why-thousands-of-ai-researchers-are-boycotting-the-new-nature-journal

Africa, the role model in gender equality – at least in Rwanda.

Reality update: Brilliance overtakes beauty as Ms Geek Africa spotlights tech genius | Lauren Gambino | Global development | The Guardian … :

Rwanda now leads the world in female representation in parliament, due in part to a quota system that reserves seats for women. Gender rights are enshrined in the national constitution and laws were changed to give women the right to inherit land and obtain credit.