* Posts by David Shaw

348 posts • joined 23 May 2007

Page:

My smartphone has wiped my microSD card again: Is it a conspiracy?

David Shaw

Try a High Endurance uSD card?

SanDisk HIGH Endurance microSDXC 64 GB per CCTV Domestic & Dashcam, read 100MB/s 40MB/s in write, Class 10, U3, V30, -15C to +85C.

about 20 euros here in Italy for product SDSQQNR-064G-GN6IA

W.D. claim “ High endurance lets you record and re-record

Writing and rewriting can take its toll on a memory card, but this card is built to stand up to the task. The 256GB capacity card is engineered to handle up to 20,000 hours of worry-free recording” and listening to Bowie?

I’ve moved to these cards for home CCTV & R-Pi DNS blocks, as AMZN sourced standard uSD have a limited life

Data: https://documents.westerndigital.com/content/dam/doc-library/en_us/assets/public/sandisk/product/memory-cards/high-endurance-uhs-i-microsd/data-sheet-high-endurance-uhs-i-microsd.pdf

Is a lack of standards holding immersion cooling back?

David Shaw

Some air-cooled multi GPU systems use air cooling

But the sheer noise from the many windy noise generators has annoyed the neighbours so much that we were pushed towards liquid cooling/immersive cooling. This just has the problem of not performing reliably for the months needed to ‘solve’ whatever cryptic problem was loaded. This short-term reliability problem will be overlayed with the long term reliability issues that will inevitably arise. tanstaafl applies.

Solution: keep simple, use air, place the systems where there are few neighbours….

Cyberwarfare looms as Russia shells, invades Ukraine

David Shaw

may be coincidence

but I’m getting a lot less spam from the spam-cannon this week…

Swipe left: Snoops use dating apps to hook sources, says Australian Five Eyes boss

David Shaw

"Nations running online foreign influence campaigns"

when I had a quick look once, I think I was able to add Ethiopia to that list of "Nations..."

Car radios crashed by station broadcasting images with no file extension

David Shaw

Similar problems in Northern Italy

Honda cars, 2019 models come with DAB+ radio.

Suddenly since mid 2021 the DAB+ receivers have been crashing, no output, unprintable characters as Station names etc.

I tried various levels of reset (you get a brief glimpse of an Android boot when you hold the Volume/Pwr button down for 30 seconds)

When I took to the Honda dealer, asking for a new car as the radio wasn't working (there's no ashtray, thankfully)

The dealer explained that ALL of their cars were crashing, but only in th north, Lombardy/Piedmonte/Veneto. They denied any update errors, said it's something environmental.

I think in this case it's perhaps due to incompatible? Swiss DAB+, which is guaranteed to undo within minutes, all of my resetting and stability nudges.

If I just scan Swiss and add Radio Svizzera Classica+ or perhaps the aptly named Radio SRF Virus+ then the whole RX shuts down.

So it's back to familiar italian scratchy FM, AFN_The_Eagle somewhat giving away the secret american nuclear airfields, or Radio Monte Carlo from Milan. In the old days, 80's, every village had their own Band II TX, now hundred FM channels playing the same track, blandness.

I do miss the Italian DAB mux, whch have both the hilarious BBC WS and some unidentifiable asian language channels...

Shut off 3G by 2033? How about 2023, asks Vodafone UK

David Shaw

Re: Fake BTS problem

Thanks for the time you took to reply, it's always a good idea to clarify things

No, of course we shouldn't force ppl to make fake 5G endpoints.

They have obviously already done that, the ones with a need, and appropriate funding.

You have to assume that everything is already (a bit) compromised, think of that famous UB40 cybersecurity ditty, featuring Herb Alpert on trumpet https://www.youtube.com/watch?v=jausD8qsnKU

(a hard example, why do my home Huawei routers insist on checking home at 3am each day, when I know that there isn't any new firmware available - must try some VM/ettercap chicanery on them?)

the point is, If an idiot such as me can make a fake 2G, GPRS, 3G service, out of cheap bits - then maybe sunsetting those technologies from critical stuff might be a great idea, or at least plan the transition, soonish.

I promise that I'll leave 5G alone. 5G could well be a great upgrade & there are a whole family of packet freq/bandwidth tech associated, such that low data IoT can fit in there. A quick look at Thales IoT showed them pushing mMTC massive Machine Type Communication for Smart Meters.

[URLLC Ultra-Reliable Low Latency Communication & eMBB enhanced Mobile Broadband was also on offer, for those who need moar/snappier]

(Yes, completely agree with you on the expected 5G speed, I only had a "4G" SIM , so was rather surprised to see the "5" appear anyway)

David Shaw

Fake BTS problem

Quite a few years ago, I was asked to look into the proliferation of fake GSM/UMTS base-stations. Entry level hardware was universal & cheap, much code was available online. I thought high value high-impact targets (capital cities, critical infrastructure, financial markets) would’ve dropped 2G, 2.5G, 3G by now?

Italian DigitalTerrestialTV has just started (yesterday , here in north) a roll-out of DVB-T/T2 mpeg4 mux, replacing mpeg2 systems, but freeing up a lot of old TV VHF/UHF spectrum for increasing the 5G telecoms capabilities. It’s a slow roll-out, taking about a year - but I’ve already noticed that I’m losing some of the other regional channels. Might need more antennas.

5G in central Milano was around 600 megabit/s to an (US mWave) iPhone, not quite sure I need that bandwidth at present, but some AR/VR types might be able to use it. There’s some business cases for 5G, probably another ‘wave’ or tech-bubble coming - when the 5G ‘killer-app’ is coded.

Ukraine blames Belarus for PC-wiping 'ransomware' that has no recovery method and nukes target boxen

David Shaw

name: semaphore!

there are so many FLAGS waving around, that it looks like an international Semaphore contest

.

.

.

.

.

.

.

and where's the El'Reg article on 5G FUBAR US?

(OK, found the 14th Jan one https://www.theregister.com/2022/01/14/5g_airliners_uk/ )

How to destroy expensive test kit: What does that button do?

David Shaw

The regional Tritium Handling Laboratory experimental facility had been completed on time, and within it’s (enormous) budget.***

A fax arrived at the research lab from head-office, marked “très importante”, “the project has been cancelled”

“Do not load the lab with the hot-stuff” The team thought, allegedly, we have this big, clean , enormous lab; We’ve got oodles of 3H , and that JET bellow to test. Hmmm, decisions……

They, I didn’t arrive at this lab until 3-yrs after the techies decision, had the choice to either measure Tritium permeation through a real joint torus bellow, or not press the green button - and instead start dismantling the whole clean building. (Would be infinitely more difficult once/if everything became just a smidgeon activated, contaminated, 12 year half-life etc)

So did they press Green for Go!

Or Red to Stop!

Do I drive past the ☢️ labelled “keep away” building each day & mentally salute the team of “Who Me’s”.

Or do I drive past the ornamental garden, site of a previous, temporary exhibit, that is lost to history?

Any guesses? :-)

*** Note. I just checked the project history, and the budget is (still) helpfully listed as Zero Cost

Phone jammers made my model plane smash into parked lorry, fumes hobbyist

David Shaw

Once upon a time I was asked to investigate radio problems similar to denial-of-service (jamming) or fake infrastructure (potentially worse)

Bought all the bits needed for well under £500

Set up a test, (on neutral diplomatic ground), but managed to accidentally ‘capture’ the GSM phone of the National Data Protection controller himself, as he was visiting a nearby department.

Where I have noticed active jamming, is the ISM band for car key signals, at some (international) motorway service stations - make sure that your car is locked physically.

It’s a very low cost attack nowadays.

De-identify, re-identify: Anonymised data's dirty little secret

David Shaw

UK telephone company

in a UK telephone company a certain group of staff, myself included, became concerned about our relative pay levels. We each anonymously wrote our take-home pay on a post-it, randomly secretly mixed them in a big envelope, then the senior guy wrote them up on the whiteboard.

The raw data was a big surprise, one employee of an Asian extraction went on to subsequently win his case in an employment tribunal, on the basis of that "employee satisfaction survey". It wasn't a fair fight tho' and he was pretty much destroyed (career & health) by the company on the way to his moral victory, and a couple of thousand quid payout, that didn't compensate for any of it. That UK telco company now no longer exists.

Oh, and in later career I published about deanonymising (not down to plaintext, but enough to profile streams for who/what/where/origin/political-leaning/etc) metadata of HTTPS over Wi-Fi by simple AI/ML pattern matching of the top 100 websites similar packet streams that I captured that same day.

At least where I did that research has published & verified pay & conditions equality for all staff, gender, origin etc. Nice to hope that they'll continue in business for quite a long while...

Evidence planted on laptops of jailed Indian activists, says forensics firm Arsenal Consulting

David Shaw

No comment

I don’t think I’m able comment on a tech/privacy/security situation due to UKs new national security laws.

It does seem to be reasonable (as in parliamentary/judiciary ok) for democratic states to legally lie, commit crimes, implant malware etc.

But it seems increasingly unwise to discuss any aspect of this, as that is illegal, or soon will be.

They’ll be arresting/imprisoning/shooting journalists next…

Russia spoofed AIS data to fake British warship's course days before Crimea guns showdown

David Shaw

This whole affair keeps bringing me back to those arrested US journalists and the subsequent pop-song & video hit

Sam Fender “it’s a high time for hypersonic missiles”

https://genius.com/Sam-fender-hypersonic-missiles-lyrics

actually worth quoting all his lyrics…

Dutch kids huff balloons in the parking lot

The Golden Arches illuminate the business park

I eat myself to death, feed the corporate machine

I watch the movies, recite every line and scene

God bless America and all of its allies

I'm not the first to live with wool over my eyes

[Verse 2]

I am so blissfully unaware of everything

Kids in Gaza are bombed and I'm just out of it

The tensions of the world are rising higher

We're probably due another war with all this ire

I'm not smart enough to change a thing

I have no answers, only questions, don't you ask a thing

[Chorus]

All the silver tongued suits and cartoons that rule my world

Are saying it's a high time for hypersonic missiles

And when the bombs drop, darling

Can you say that you've lived your life?

Oh, this is a high time for hypersonic missiles

[Verse 3]

Cities lie like tumours all across the world

A cancer eating mankind hidden in our blindside

They say I'm a nihilist 'cause I can't see

Any decent rhyme or reason for the life of you and me

But I believe in what I'm feeling, and I'm firing for you

This world is gonna end, but till then

I'll give you everything I've got

I'll give you everything I've got

[Bridge]

Oh, oh, oh, oh

Oh, oh (C'mon)

[Chorus]

All the silver tongued suits and cartoons that rule my world

Are saying it's a high time for hypersonic missiles

When the bombs drop, darling

Can you say that you've lived your life?

Oh, this is a high time for hypersonic missiles

[Outro]

They all do the same, only their names change, honey

You can join their club if you're born in to money

It's a high time for hypersonic missiles

And, oh, this is a high time for hypersonic missiles

And, oh, this is a high time for hypersonic missiles

Oh, this is a high time for hypersonic missiles

India approves 5G trials – if they don't use Chinese 5G kit

David Shaw

accidentally using 5G in Milan centre

an iPhone12 with a "4G SIM" suddenly lit up a "5", where the "4" used to be.

So I did a Speedtest and download was 617.9 Mbps. Ping 25 ms.

neat, I think this could be a revolutionary tech, replacing Wi-Fi inside the home, bringing 8K+ TV bandwidth. lots of unexpected uses in the near future, a big opportunity. I can't predict the half of the uses pending from 5G, and I saw TimBL writing his amazing Web.

I don't care which empire produces the tech, I consider myself constantly surveilled anyway. Just keep testing the tech and launch it when appropriate.

Be businesslike, there are risks to overt protectionism, blowback , as it were - so try and do it neutrally, unless there are economic factors that aren't yet clear which really require lawfare/sanctionware/warfare?

Here's what Russia's SVR spy agency does when it breaks into your network, says US CISA infosec agency

David Shaw

but when I registered my first .li domain

a few years ago I was immediately (within around 3-hours of registering) telephoned by a rather angry spook from #### who asked WTF I was up-to?

And they didn't ask me in Russian

I hope I didn't give anyone any ideas, my Lichtenstein based site (down at present for hosting change) http://###.li/ is Russian for "bowling ball"/"skittles", and isn't "hyi" in any way shape or form

weird stuff on the interwebs nowadays

UK prime minister Boris Johnson reluctant to reveal his involvement in the OneWeb deal

David Shaw

Re: £500million on a PR Exercise

or arrange satellite-based Internet-connectivity to remote regions of Elbonia, such that the younger citizens of these faraway places might all spontaneously wear the same color T-shirt or carry the same color umbrella...

.......it’d be great if they could bring faster broadband access to all of the UK, that’d be a revolutionary idea!

US Office of National Intelligence says Russia, Iran tried to mess with 2020 elections, China sat it out

David Shaw

Glenn Greenwald refutes much of the contents of this article

So whilst this (and many similar articles in the wider press) might be correct, a narrative expert posits that it’s just another nudge.

Worth reading here: https://greenwald.substack.com/p/journalists-illustrating-how-they

“Journalists, Illustrating How They Operate, Yesterday Spread a Significant Lie All Over Twitter

Eager to obtain vindication for the pre-election falsehood they spread about the Hunter Biden story, journalists falsely claim that the CIA blamed Russia for it”

Information war continues, it’s important to continue to read widely and make up your own informed mind

Loser Trump is no longer useful to Twitter, entire account deleted over fears he'll whip up more mayhem

David Shaw

Re: An elephant in the room

@CuChulainn: on-message with Dilbert, who's sensible creator is now suggesting that The Orange Idiot should resign immediately, amongst other relevant points. SA previously supported/interpreted bigly for right-pondians.

He's a bit worried about FOS

link here: http://www.scottadamssays.com/wp-content/uploads/2021/01/Episode-1248-Scott-Adams-President-Trumps-Final-Scorecard-Vatican-Blackout.mp3

or at least 'twas there a few minutes ago, no guarantee that it will be there later. Scott is worried.

Apple fires warning shot at Facebook and Google on privacy, pledges fight against 'data-industrial complex'

David Shaw

Re: the “data-industrial complex”

for example, from my point of view having done (legal) device tracking experiments, including 2.45/5GHz and GSM/3G; Apple's "Control Centre" Wi-Fi and BT "OFF", which isn't an off, but simply disconnects from current devices, whilst continuing to allow RF tracking, is a privacy fail.

Subtle, hiding the actual RF disconnect functions; but I can see why they do it as so many things in the Apple system "closed system-industrial complex" need pervasive and continuing access to all sorts of bandwidths & frequencies. (The ultrawideband RF chip in the new mini-speaker, for example)

but is anyone actually interested/worried concerning the rare possibilities of unique device tracking & privacy abuse?

how about the no-such-agency?

https://media.defense.gov/2020/Aug/04/2002469874/-1/-1/0/CSI_LIMITING_LOCATION_DATA_EXPOSURE_FINAL.PDF (333132 bytes Cybersecurity Requirements Center National Security Agency 3-page PDF)

lots of useful stuff, including "For iOS devices: Only use the Settings app to disable Wi-Fi/BT. Settings for these features in the control center may not work as expected. U/OO/155603-20 | PP-20-0535 | Aug 2020"

You're going to need to unwrap and rewrap those Pi-400 holiday gifts. There's a new Raspberry Pi OS Update

David Shaw

xmas pressies, scalping GPU's?

I didn't get the new R-Pi yet for the kids, instead have wrapped the fairly new fairly similar nVidia CUDA AI/ML R-pi type Jetson B01... (I can't afford the Petascale Integrated AI Workgroup Server Second-Gen DGX for them yet)

strangely, buying the jetson ($99 in USA) from AMZN ASIN dp/B084P23M3R for £124, when it arrived it had a radiospares part-number sticker on the box, and upon looking at their website RS UK 199-9831 discovered that it's only £99 direct from RS, but they have no-stock!

25% profit for someone

UK infoseccer launches petition asking government not to backdoor encryption

David Shaw

"Western law enforcement agencies maybe do not struggle....."

OMNISEC anyone?

(1) https://cryptomuseum.com/manuf/omnisec/index.htm

(2) https://www.thenationalnews.com/world/europe/report-claims-cia-used-second-swiss-encryption-firm-to-spy-on-governments-1.1119327

H2? Oh! New water-splitting technique pushes progress of green hydrogen

David Shaw

Palladium Silver hydride

Stores ~ 900 x the volume of the Palladium cube (with a bit of silver to cure embrittlement)

However this has killed cold-fusion experimenters.

I worked with H2 experiments, we never knew if one was burning (silently) tho’ we carried H2 detectors as a guide. Burning was good, not burning but leaking was more worrying if the value headed towards the LEL ~4%[http://conference.ing.unipi.it/ichs2005/Papers/120001.pdf]

Brit startup would like to beam 5G connectivity down at you from hydrogen-fuelled drones

David Shaw

Re: Reminds me

great album too

https://en.wikipedia.org/wiki/Captain_Lockheed_and_the_Starfighters

UEFI malware rears ugly head again: Kaspersky uncovers campaign with whiff of China

David Shaw

Re: Checksum? Hash?

"part of any regular virus scan"

the regular ongoing 'spam-cannon' related virus flinging that is done to my systems, some of the links, documents etc can be detected to have a virus , or come from a domain which is heavily virally active previously.

However when typically I check something 'very dodgy' with virustotal.com, now owned by google, some actual malware are only discovered by a single one of the fifty/sixty/seventy virtual environments.

(When my mac was hit by a javascript virus embedded in an email, only a single AV system detected it, 8 years later) how can this happen, why doesn't a regular scan detect these attacks

Well, the cyberattack pros have rooms with fifty/sixty/seventy PCs each running the latest AV engine, and tweak their code until no-one gets it; and/or some AV services (owned by google, say, or yandex) might be rather partial in their effectiveness - I see no ships!

I still have a few scanners, run them alternately, and VirusTotal.com (owned by slurp) is still just about working

The Viking Snowden: Denmark spy chief 'relieved of duty' after whistleblower reveals illegal snooping on citizens

David Shaw
Coat

Part of the interconnected matrix (their words) of tiered partner intelligence agencies were recently reined in, again, (an unusual situation - as our privacy mostly just gets worse)

BND here, being told off, for snooping on everyone

https://www.dw.com/en/german-intelligence-cant-spy-on-foreigners-outside-germany/a-53492342

David Shaw

Re: Hardly democratic ... but not unusual in dodgy business circles.

The only other country who recently arrested and imprisoned their spy-chief AND then their conservative president Park Geun-hye was South Korea

Aug 30, 2017 · Won Sei-hoon, former head of the National Intelligence Service arrested for political meddling, election fixing etc, [using dark money & keyboard-warriors to do the stuff that many countries are still doing]

Feb 7, 2020 · Seoul (AFP). A former South Korean spy chief received a seven-year jail sentence Friday for using taxpayer money for political meddling in favour of the then conservative government,... https://www.france24.com/en/20200207-former-south-korea-spy-chief-jailed-for-political-meddling

The wider problem is here, [according to Snowden) we have a matrix of tiered Intelligence Agencies ranged against us, the people, not against external hobgoblins. These agencies, the 17 in USA, the ones that we don't know about in UK, are all doing Danish/S.Korean tricks. In some countries, UK, well........

I'm impressed with Danish society, that they have sacked, maybe arrested these criminals, but they are not dealing with the bigger picture, the autocratic Russian KGB is certainly a threat, but the bigger threat plausibly comes from the anti-democratic functioning of our KGBs. Re-read Snowden, jtrig - tie it in with Cambridge Anal. tech, worry.

(See if you can find a more updated BBC ‘bubble’ story than this one? https://www.bbc.com/news/world-asia-40824793 , doesn’t seem to cover the fact that Korean “head of MI5” was re-arrested and jailed for longer, for doing his endemic intelligence tricks; BBC got no reporters?)

Physical locks are less hackable than digital locks, right? Maybe not: Boffins break in with a microphone

David Shaw

KEYS + LOCKS

after I'd apparently annoyed a major opponent or two, [doing what I was asked to do], after the bank notifying me of my needing to sign for the "routine" anti-terrorism check of my finances, I went on holiday to Spain. 5 years ago.

Strangely, the night that I arrived in Alicante, all my domotic IoT sensors went out. The vibration sensors stopped, the face-recognition cameras didn't.

the dual (seperate ISP) internet feeds cut out ADSL & microwave, entirely coincidentally.

On my return to Italy, after a pleasant time in those old days when viral pandemics weren't, I noticed that the garden IR cameras illuminators had been physically moved, even the one under the garden shed, that needs approx 9.8 Reg Standard Norris's of force to move.

I'd been visited! or very large garden Squirrels

Presumably, having gone to the effort of dismantling the infrastructure, then putting most of it , but not enough of it, back - I'd had internal visitors. (They missed the tiny chinese PIR GSM SMS matchbox) That means that my top of the line CISA un-bumpable/toothbrush resitant, unsplittable lock system, obviously has a national security theatre passkey. And my basic B&Q supermarket alarm system obviously has a national security theatre pass-pin. Which is fine.

I've left them in place, tho I might look at some ASSA Abloy, sorry CryptoAG door-lock, for more fun - I guess the likelyhood percentage of them being back-doored is around....

Ex-Apple engineer lifts lid on Uncle Sam's top-secret plan to turn customized iPod into 'Geiger counter'

David Shaw

Re: Good news!

I handed out hundreds of free DVD tails install/boot disks to random members of the public, at a expo, explaining how useful it could be to counter the rising crime threats to internet banking etc. this was of course, preSnowden

Imagine my surprise when a highly privileged member of staff (economist) came and denied/disrupted/destroyed/degraded etc my actions by asking endless meaningless questions, stopping me from handing out further copies....

....but that's the world we live in, where I am subjected to a physical military attack by a trained agent for trying to do something useful for humanity, we later had a few coffees as she was a nice agent

so I suggest you shouldn't search for a runtime boot DVD for The Amnesic Incognito Live System, and remember, finally, that recently "someone" created a whopping new 25% of TOR exit servers overnight. Which were kicked out from TOR as "untrustworthy", but reinstated a whole 24h later as "trusted" - impressive

yeah

Pretty wild that a malicious mailto: link might attach your secret keys and files from your PC to an outgoing message

David Shaw

exactly this. I was required to upload details of my "DUQU" attack from the usual suspects to my CERT. They required an encrypted email. I chose (randomly) one of our hundreds of offline PCs, in a random room. Composed the encrypted text and sent it.

cue: instantly vast numbers (twenty a week, up from zero) of 'spam' (stuff that pretended to be spam, containing lots of evil code), they carried on for weeks, also sent some, highly selectively, to just me & my boss, out of the thousands of staff at work. So obvious, you might have well have signed it Cheltenham & Gloucester Building Society.est1850 .#

My CERT was eventually satisfied; the 'masters of the internet' presumably now have my plaintext - guys/gals/inter: if you *really* need something, then just phone and ask - not everything needs to be put as highest priority in your plausibly-deniable-obfuscated-malware-SPAM-cannon

#other autocratic nations presumably similarly go after everything encrypted, but why don't I notice their attacks?

Clarke's Third Law: Any sufficiently advanced techie is indistinguishable from magic

David Shaw

microbalance....

we had a high temperature thermo-microbalance at work, you could weigh the sample(1), 0.897654321g then gently warm it up to 2000 K whilst recording the weight. This often changed in a nice predictable manner, especially when we flushed with argon to measure the delta-W without oxidation.

It was in a fume hood, on a massive marble table, sitting on a laminate sheet of cork, rubber, copper.

The four legs ended up in buckets of sand, supported on lead blocks etc etc. Overengineering!

This (Cahn) system didn't change weight when you went near it, tho' the older (Sartorious) was a bit iffy.

At one point, seeing as how an experiment could take a weekend, our Compaq 386 with 4 meg ram was doing a great job on data recording & we had a back up chart record. We started to notice big glitches on the normally smooth recorded data curves. Some days would record perfectly, other times had a few, or many big fuzzy incidents. It was resolved as we noticed a stiff brise one day, it was normally breezy, being near the coast....an isolated bit of the coast, ideal sort of place where you might put a research reactor. The brise was followed by a few more briseances, and we noticed that the next field was filled with soldiers playing games, with bombs. We negotiated a truce, and got the army to send us a fax about a day before blowing things up, such that we wouldn't run an experiment that day/weekend - and everything was fine, after that.

(1) superalloys, car-exhaust catalyst support materials, fusion reactor first-wall materials, carbon fibrous matrix...

When it comes to hacking societies, Russia remains the master at sowing discord and disinformation online

David Shaw

Re: Take your eyes off Russia for an instant

And this El’Reg article mentions UK based Integrity Initiative journalistic nudge clusters exactly where?

https://hansard.parliament.uk/commons/2018-12-12/debates/298F9A3C-307A-40ED-9CB1-3B2A98F14165/InstituteForStatecraftIntegrityInitiative

Answering my own question, I presume it is legal for the foreign office to fund integrity & the other home/world ‘attack’ disinformation groups that we run. After all, our agencies are allowed to break our own laws, when they need to. So, how is the GRU different? I presume corrupt Putie has granted his agencies their local-legality to do what they want...

Back to “Donnie”, I still haven’t seen any evidence that he is Putin oriented, I’m looking for it, in accurate news analysis stateside, for example by Chuck Ross, but there is still zero evidence - but we’ve had several years of nudge attack disinfo- and I don’t think it is all from the GRU. Enjoy.

Doctor, doctor, got some sad news, there's been a bad case of hacking you: UK govt investigates email fail

David Shaw

Re: If the Tories General Election pledge was to NOT sell of the NHS

As others have pointed out, the Daily Telegraph managed to published these documents TWO DAYS before “the Russians” “hacked” them from the former-disgraced-defence-minister‘s Gmail....

Sometimes stories are more made-up than anything, I suppose they always have been, just nowadays we occasionally notice

Psst.. You may want to patch this under-attack data-leaking Cisco bug – and these Ripple20 hijack flaws

David Shaw

Re: Phew

at least, with continuing lockdowns & related events, having your general aviation satnav's (possibly) encrypted by a thitd-party might have less effect than usual (affected by a Huawei reprisal attack on a major US IT company?, or it might just be the usual Russia/Ukraine hackers)

https://www.theguardian.com/business/2020/jul/24/smartwatch-maker-garmin-hit-by-outages-after-ransomware-attack

UK surveillance laws tightened up as most spying demands to be subject to warrants

David Shaw

Re: Still a Very Bad Law

strangely enough, I was phoned by my (italian) bank to come and sign to accept an anti-terrorism check on my finances, under the strict Italian privacy laws. They mentioned that 'it was purely routine' but it wasn't.

I have evidence that my house was broken into at the same time. I still haven't been notified that I have been the subject of a non-criminal investigation. It might be fun one day to ask a bit.

That's what happens when you sit as an official observer on some rather serious telco standards bodies for retained data, so now who else was on that committee?, hmm - the 3 russians busy with SORM & SORM II, the british 'expert' liasing with huawei UK research, the chinese themselves and then rather a lot of......

UK intel committee on Russia: Social media firms should remove state disinformation. What was that, MI5? ████████?

David Shaw

Re: What the..

Seems that Russian media, after the Scottish vote, pointed out that there were some dubious postal-vote practices. This was seen as bifurcation and an attempt at stirring mischief.

Yes, these bl00dy Russians do point out some naughty practices from time-to-time.

Craig Murray explains further on his blog , that weasel wording “undertook influence campaigns in relation to the Scottish independence referendum in 2014“ = afterwards!

David Shaw

On Sunday Night

a radio program mentioned that a certain British 'illionaire was having his m'learned friends to examine if his name was mentioned/wrongly/rightly/aaronically

As the "Russia" document has apparently come out, and I haven't heard anyone mentioning him, then who knows how many other ppl/states got to tidy-it-up, as well?

meanwhile on that specific point "social media companies to remove covert hostile state material"

where & when can I start submitting the hard examples that I have of covert & hostile, state-material, that is endemic on Social Media?

There are rather a lot of countries at it , admittedly in an A-Z list, Russia does feature, but so does A & B & C...etc

it'll be nice to get back to that internet of the early 2000's

pre institute of statecraft, integrity initiative clusters, SC (Strategic Communications), "VE Disrupt/Undermine" UK MoD project (WTF?)

sorry, I haven't yet read the equivalent name of the Russki groups, I'm sure there are loads. I have friends who were born in Soviet Kazakh republic, and in the 1970's they'd sometimes get a knock on the door "Go away comrade" - they were ordered - "The KGB need to use your apartment for a secret discussion for the next few hours" rather than build a perspex safe-house, 'bug free' the spooks would simply choose a random apartment, and do their stuff.

GCHQ's cyber arm report on Huawei said to be burning hole through UK.gov desks

David Shaw

Re: Wanted Urgently ....... Another Bletchley Park Type Colossus Program*

AMFM1 you mean GPO Martlesham heath , not a half rendering of the latin "to the stars" , missing off the "ardua" - by hard work... I've never heard anyone actually call it adastral

there are (about) seven experienced telco jobs available there, one of which suits me nicely, but Ipswich? https://www.innovationmartlesham.com/contact/job-vacancies/

(the National Telecoms lab that I was trained at had around 300 apprentoids at any one time, but as others mentioned above, the very wealthy manglement was more interested in race-horses than real things)

I met many martlesham seriously spooky GPO engineers working openly with the deeply spooky gov comms wonks in the various telecom standards setting groups, all serious, sensible chaps. keep up the good work.

however, some worrying data.....as Boots stores are closed around the country

http://career.huawei.com/reccampportal/portal5/social-recruitment.html?jobFamilyCode=&countryCode=#jobList

so a quick check, Huawei is recruiting 41 experienced telco people, for EU

+ 5-overseas Chinese graduates for Asia etc

+ 46-international telco type graduates

so seems to be approx 97 interesting jobs in Huawei versus rather a lot less in the UK (I managed to find another 5 engineering jobs for BT themselves, in UK)

anyway, if I was looking for a career, with a shiny new degree in telco, Huawei looks a bit more interesting than adastral park & their close to 'zero' salary

https://bt.taleo.net/careersection/pfengng/jobdetail.ftl?job=140048&tz=GMT

(salary to be the network ops engineer between UK & Dublin, is apparently, zero) sigh

David Shaw

Re: WTF ....... Is the service demented and infiltrated?

A British judge today found ex-MI6 spy Steele guilty of making things up, in his dossier(1)

https://justthenews.com/accountability/russia-and-ukraine-scandals/british-court-rules-against-christopher-steele-orders

So....., he's written a *new* dossier.....fast forward 4 years and...?

(1) Justice Mark Warby of the High Court of England and Wales ruled Wednesday that Christopher Steele violated a data privacy law by failing to check the accuracy of information in his infamous [the Trump] dossier, ordering the former spy’s firm [Orbis, not her Maj's MI6] to pay damages to two businessmen [Петр Авен & Михаил Фридман] he wrongly accused of making illicit payments in Russia.

I've just bought some cheap huawey 802.11ac routers for playing with, all fine until you plug THREE in, then they secretly form a mesh network, and all the passwords you set become a random one, as one of the routers becomes quietly in control......

Details of Beijing's new Hong Kong security law signal end to more than two decades of autonomy

David Shaw

Re: Ah yes, the old "Endangering National Security" line

‘nudge’

suppression polls

pessimistic op-eds

color revolution theme - is it “slipper” today or “umbrellas” again

media united - spook driven(1)

doesn’t smell like freedom & democracy here, there and everywhere!

(1) https://www.scmp.com/comment/opinion/article/3091438/us-has-been-exposed-funding-last-years-hong-kong-protests (Time mag reports NED, again)

Euro police forces infiltrated encrypted phone biz – and now 'criminal' EncroChat users are being rounded up

David Shaw

Re: journalists, lawyers, academics, domestic and foreign political campaigners – to name...

Alice, Bob, and ‘evil’ Mallory to name some more relevant characters

Only true boffins will be able to grasp Blighty's new legal definitions of the humble metre and kilogram

David Shaw

Re: Candela

ask NPL in Teddington?, I got them to admit privately last November that the ur-Kilo’s had been losing weight, and that wasn’t understood...

Remember that backdoor in Juniper gear? Congress sure does – even if networking biz wishes it would all go away

David Shaw

I’m surely not the only ‘GPO’ engineer to have plugged a handset into a circuit and checked for quality, left it plugged in and only occasionally listened? Some very foreign languages on those circuits....

Trouble is this trunk access node / distribution node was at Vauxhall Cross, Sarf Lundon, and it’s now had an american Embassy built on top of it, is that a big backdoor, or a big frontdoor?

Edit: actually, I suppose just knowing how many NKT wave division multiplexing fibres they had installed is a national s...

Defending critical national infrastructure... hmm. Does Zoom count as critical now?

David Shaw

Re: Does Zoom count as critical now?

On your tablet, can you simply use a browser web access to Zoom, [zoom.us/join] as presumably that is more often updated than any particular app dowload?

It's not every day the NSA publicly warns of attacks by Kremlin hackers – so take this critical Exim flaw seriously

David Shaw

do you want me to post the email embedded javascript obfuscated code that was included in an email from the BBC to a child of mine?, I attribute it to Gloucestershire.

Or I could add the mail-bomb script that the NSA embedded in a fake email to me "from the ITU"?

The Russian/GRU attack that I noticed was much more subtle, such that nobody seemed particularly interested - it involved a special offer on software, a slow social engineered creep of app permissions, to a full MITM - whilst pretending to be a cloud AV, over six months....

this information war stuff is very multilateral, read wider

Assange should be furloughed from Belmarsh prison, says human rights org. Here's a thought: He could stay with friends!

David Shaw

Sure...

a few more facts

https://www.ohchr.org/EN/NewsEvents/Pages/DisplayNews.aspx?NewsID=17012

The Working Group on Arbitrary Detention Deems the deprivation of liberty of Mr. Julian Assange as arbitrary

On 4 December 2015, the Working Group on Arbitrary Detention (WGAD) adopted Opinion No. 54/2015, in which it considered that Mr. Julian Assange was arbitrarily detained by the Governments of Sweden and the United Kingdom of Great Britain

and more recently , Belmarsh 2019

https://www.ohchr.org/Documents/Issues/Terrorism/FinalSRTStatementGA14Oct 2019.pdf (pdf, 6 pages)

Mr. Assange showed a pattern of symptoms typical for long-term exposure to psychological torture, I regret to report that none of the concerned States have agreed to investigate or redress their alleged involvement in his abuse as required of them under human rights law.

from Nils Melzer, United Nations special rapporteur on Torture, professor of international law at the University of Glasgow; holds the Human Rights Chair at the Geneva Academy of International Humanitarian Law and Human Rights in Switzerland

UK snubs Apple-Google coronavirus app API, insists on British control of data, promises to protect privacy

David Shaw

Re: Here in Belgium...

Hello Belgium, typing from Italy here, we can't yet see any travel, there are few planes, zero hotels

lockdown is being relaxed week by week starting next week, but the best offer is a travel within the same region (in my case Lombardy), and only occasionally to the neighbouring region (eg Piedmont) - if we go to Piedmont (which I can see from my window) then I will need all the certificates to travel, something to convince the military police (carabinieri), flying squad (pol-strada), police (polizia), local police (polizia locali, urbani, regionali, communale), tax-police (guardia di finanza) and forest police (really), any whom of which might demand WHY you are outside the home region?

I suppose as Italy has double the number of police-type officials than the UK, I can see why UK might be going for invasive digital technologies, UK plod don't do road-blocks, rather a lot of reliance on bulk-personal-datasets with fuzzy boundaries, rather overshared in teh past.

Italian beaches are getting ready to open, in Marche, Liguria etc - but it might just be for local consumption (from that actual region) law isn't yet clear, but might need 14 days iolation/quarantine after travel, there was a mention that any post-holiday isolation would be taken from annual holidays, and not paid otherwise.

back to Apple, has anyone else noticed how iOS devices are continuing to broadcast a Wi-Fi sharing hotspot from a fruity device with a SIM, even if said hotspot is turned OFF in Mobile Data, and OFF in Family Sharing. it is able to be turned ON, remotely, by any other apple device or Desktop that has same Apple ID... sounds like it is OFF in the same way that 'hiding' an SSID in Wi-Fi has little effect upon security.

at least their ultra-wide-band beacon in the newer iPhones is probably off, maybe

Zero-click, zero-day flaws in iOS Mail 'exploited to hijack' VIP smartphones. Apple rushes out beta patch

David Shaw

Re: It also bears repeating

Major government

Yep, I stored(*) all my mailboxes from around ‘08 when I was accidentally a consultant at the European Defence Agency and years later the free Bitdefender macOS AV found all sorts of historic goodies, sorry baddies at play. One bunch, obviously from Gloucestershire even slipped a few lines of malware script into the emails from BBC’s “the Secret Show” on CBBC to my nine-year old youth.

This was nicely confirmed by the BBC when I fairly recently complained to them about this alleged incident a decade earlier, targeting the family of a person of economic/scientific interest and my complaint was instantly treated as serious, escalated to a senior level of mismanagement and eventually analysed by their cyber security team & reported on, all highly unusual behaviour for our dear BBC.

The gov’s never give up either, as last year a phish email was sent to an aged parent’s iDevice. It was an impressive nation-state spoof that led to a zero-day website, which was gone minutes after the malware was delivered. These attacks are “expensive”, so mystify me, If our KGB wishes to know anything then just phone me up, I know they have my number as they’ve phoned me twice over the last decade - once pretending to be an Intel(chip) trying to send me a .pdf of the latest CPUs[**] and once when I registered my ‘play’ website in Lichtenstein- a scary phone call{***}

(* terrorbytes of Time Machine backups)

[** attempt to penetrate my work networks by socially engineered malware containing blob being phoned thru’ for acceptance before deployment; I declined, but they were very plausible & multilingual - from a UK 0345 number!]

{*** they have a job to do, hopefully some baddies are targeted, when they have the time/interest}

I assume my iPhone is stuffed with bad stuff from all sorts of other autocratic governments

Minister slams 5G coronavirus conspiracy theories as 'dangerous nonsense' after phone towers torched in UK

David Shaw

high frequency vibrations cause pandemic[1] - headline

[1]which is b0ll0cks, obviously.

the headline in fact should be

pandemic causes less vibration frequencies [2]

[2] https://www.unilad.co.uk/science/current-pandemic-is-making-the-earth-vibrate-less-scientists-say/

what with road traffic at maybe 1% of normal levels, air traffic at 40%(?) and much industry sloughed, furloughed, there must be lots of interesting research to do, on background levels of all sorts of things ... we still have quite high PM2.5 & PM10's here, probably pollen?

UK Information Commissioner OKs use of phone data to track coronavirus spread

David Shaw

Re: Hardly new

The country where I’m living mentioned recently that a local university built a mass monitoring tool for road/people tracking for helping the multitudes visiting expo2015.

They’ve simply switched it back on again, (according to national radio news) as lockdown can Improve the Rnought transmission ratio, bring it below 2.5.

The mass interception of persons private data continues, whether people are special or not. It’s nice to see it being used for something vaguely philanthropic.

That awful moment when what you thought was a number 1 turned out to be a number 2

David Shaw

squirrels

Not a very exciting reminisence, but I was trying to call William in Paris from the research centre in Italy, to go on the common object reference broker architecture software course.

I dialed his number 00 (int code) 33 (france) 1 (Paris) - number XXXXXX

except I forgot to dial the 0 for the external line

and I got through to 0 (outside line) 0 33 1 (local number) - number XXXXX

and I said "bonjour, J'aimerais parlarerz avec William" etc in a vague French,

the operator talked to me in French for a minute or two, and put me through to NATO C3 INTELLIGENCE, who had a William, who spoke french, who couldnt understand why I was asking him about the starting dates for a CORBA course. After vast amounts of confusion, how could I make a wrong number in a wrong language and actually get through to people that worked in that language, whilst in Italy, anyway they were very nice and didn't bomb me. Spooky...

...as it was when I finally got to Paris and I found the CORBA course was in fact filled with guys from.....[carrier loss]

Page:

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2022