Russian Hackers made fake US Political Websites

A group affiliated with the Russian government created phoney versions of five websites - including some related to public policy and to the US Senate - with the apparent goal of hacking into the computers of people who were tricked into visiting, according to Microsoft, which said Monday night that it discovered and disabled the fake sites.

The effort by the notorious APT28 hacking group, which has been publicly linked to a Russian intelligence agency and actively interfered in the 2016 presidential election, underscores the aggressive role Russian operatives are playing ahead of the midterm congressional elections in the United States. US officials have repeatedly warned that the November vote is a major focus for interference efforts. Microsoft said the sites were created over the past several months but did not go into more specifics.

Microsoft's Digital Crimes Unit took the lead role in finding and disabling the sites, and the company is launching an effort to provide expanded cyber-security protection for campaigns and election agencies that use Microsoft products.

Among those targeted were the Hudson Institute, a conservative Washington, DC, think tank active in investigations of corruption in Russia, and the International Republican Institute (IRI), a nonprofit group that promotes democracy worldwide. Three other fake sites were crafted to appear as though they were affiliated with the Senate, and one nonpolitical site spoofed Microsoft's own online products.

The Senate did not immediately respond to requests for comment late Monday.

Microsoft said Monday that it had found no evidence that the fake sites it recently discovered were used in attacks, but fake sites can carry malware that automatically loads onto the computers of unsuspecting visitors. Hackers often send out deceptive "spear-phishing" emails to trick people into visiting sites that appear to be authentic but in fact allow the attackers to penetrate and gain control of computers that log on, allowing the theft of emails, documents, contact lists and other information.

"This apparent spear-phishing attempt against the International Republican Institute and other organisations is consistent with the campaign of meddling that the Kremlin has waged against organisations that support democracy and human rights," said Daniel Twining, IRI's president, who put blame on Russian President Vladimir Putin. "It is clearly designed to sow confusion, conflict and fear among those who criticise Mr. Putin's authoritarian regime."

The move by Microsoft is the latest effort by Silicon Valley to address Russian threats to the coming election more aggressively than the technology industry did in 2016, when many woke up to the seriousness and sophistication of disinformation efforts only after Americans had voted. Companies and U.S. officials have vowed to work together more closely this year. Facebook recently disclosed that the company had taken down 32 fake accounts and pages that were tied to the Internet Research Agency, a Russian disinformation operation active before and after the 2016 election.

After discovering the sites recently, Microsoft said, it sought to obtain a court order to transfer the domain names to its own servers, a legal tactic that the company's security division has used a dozen times since 2016 to disable 84 websites created by APT28, which also is sometimes called Strontium or Fancy Bear. APT28, a unit under the Russian military intelligence agency GRU, specialises in information warfare or hacking and disinformation operations. "APT" refers to "advanced persistent threat" in cyber-security circles.

The court order, executed last week, effectively allowed Microsoft to shut down the sites and to research them more fully. Microsoft has used the legal tactic to go after botnets, or malicious networks of automated accounts, since at least 2010.

Microsoft President Brad Smith said in an interview that the company had been tracking the Russian-government-backed group for two years but had decided to speak publicly about the company's efforts for the first time because of a growing sense of urgency and an uptick in Russian activity ahead of the midterms.

"You can't really bring people together in a democratic society unless we share information about what's going on," Smith told The Washington Post. "When there are facts that are clear as day, for those of us who operate inside companies, increasingly we feel it's an imperative for us to share this more broadly with the public."

He said that the technology industry was seeking to become more transparent with the public. The company previously had announced that two political candidates had been subjected to spear-phishing attacks.

Installing malicious software on phony websites is a popular method for hacking into computers and resembles the tactic used in the attack on John Podesta, the campaign chairman for Hillary Clinton, who received a fake security-warning email that linked to a phony site created by Russians. His stolen emails were released publicly in the final weeks of the presidential election and caused embarrassment for their blunt assessments of various matters. Cyber-security researchers have blamed the hack of Podesta's email on APT28.

Special Counsel Robert Mueller in July indicted 12 Russian intelligence officers, accusing them of hacking the Democratic National Committee, also in 2016.

Microsoft did not explicitly blame the Russian intelligence agency for the attack announced Monday but it did cite Russia's government and named APT28 and its pseudonyms, Strontium and Fancy Bear.

The Hudson Institute said that it, like many Washington institutions, had been the subject of previous cyber-attacks. David Tell, the group's director of public affairs, said that the Hudson Institute's Kleptocracy Initiative, which frequently reports on corruption in Russia, may have made the conservative think tank a target. Tell also noted that Director of National Intelligence Daniel Coats, speaking at the Hudson Institute in July, called Russia "the most aggressive foreign" actor in seeking to divide Americans, which could have drawn the attention of APT28. "This kind of stuff does happen. It's happened to us before," Tell said. "It doesn't surprise me that bad actors in nondemocratic states would want to mess with us."

The phony websites, which were registered with major web-hosting companies, were at my-iri.org, hudsonorg-my-sharepoint.com, senate.group, adfs- senate.services, adfs-senate.email and office365-onedrive.com, according to Microsoft. Their discovery underscores the central role that American tech companies, which frequently have been criticised for hosting Russian disinformation on their platforms, can play in ferreting it out.

Eric Rosenbach, former Pentagon chief of staff and now co- director of Harvard University's Belfer Center for Science and International Affairs, applauded Microsoft for quickly announcing its discoveries. He said that companies sometimes can act in ways that governmental agencies cannot because of legal and ethical restrictions.

"The tech sector needs to play a role in protecting elections and protecting campaigns," Rosenbach said. "The tech sector will have visibility on some of these things that the [National Security Agency] never could and never should."

Microsoft also said Monday it was launching an initiative to provide enhanced cyber-security protections free to candidates and campaign offices at the federal, state and local level that use its Office 365 software, as well as think tanks and political organisations the company believes are under attack.

"For many decades, people in democratic societies saw these as fundamentally tools that were more likely to bring information to people living in authoritarian countries, and we didn't really worry about these kinds of technologies causing risks to a democratic society," Smith said. "What we're seeing now, with email and voting systems and social media, is [the technologies] creating an asymmetric risk for democratic societies."



Ref: https://gadgets.ndtv.com/internet/news/microsoft-ties-fake-us-political-websites-to-russian-hackers-1903883

Read More

Microsoft Skype Said to Receive End-to-End Encryption

Microsoft has reportedly rolled out end-to-end encryption for private conversations on Skype that would ensure that the chat content between two people is hidden in both, the chat list and the notifications.

This feature comes after months of testing and is now available for all users on Skype iOS, Android, Linux, Mac and Windows, tech website MSPoweruser.com reported.

Microsoft was yet to confirm the development.

The new encryption feature could be activated from a "New Private Conversation" option that is now part of the "Compose" menu or from the recipient's profile.

Users could participate in only one private conversation from a single device at a time and on switching the conversation to other devices, the messages they send and receive would be tied to the device they would be using at the time, the report added.

In January, Microsoft said it would offer the encryption feature for audio calls, text messaging and image, audio and video file transmissions.

Except for making the communication channel secure, end-to-end encryption also ensures that messages stored on servers could only be read by those involved in the communication.


Ref: https://gadgets.ndtv.com/internet/news/microsoft-skype-said-to-receive-end-to-end-encryption-1903931

Read More

Meet the Indian-American couple who stand to make $2 billion from the Syntel-Atos deal

Syntel co-founders, Bharat Desai and his wife Neerja Sethi, have seen their rankings dive on the Forbes Richie Rich lists in the past few years. Desai, who was ranked the richest Indian-American in the World Billionaires list in 2014, came in at No. 1999 in the 2018 rankings. Similarly, Sethi ranked 21st on the magazine's list of America's 60 self-made richest women, down from rank 14 in 2015.

But with the couple recently selling Syntel to French technology services major Atos SE for $3.4 billion, their fortunes are going to see a sharp turnaround. According to The Times of India, they jointly held a 57 per cent stake in the company, which means that they will walk away with nearly $2 billion from the all-cash deal expected to close by the end of this year. That's a pretty impressive way to end a journey that Desai and Sethi embarked on 38 years ago, when they started Syntel from their apartment in Troy, Michigan.

Kenya-born Desai, who grew up in India and graduated from IIT-Bombay, reportedly moved to the US in 1976 as a programmer for Tata Consulting Services. After working there briefly, he went on to pick up an MBA degree from the University of Michigan. It was here that he met Sethi and the duo decided to start an IT company while they were still studying.

At an entrepreneur event in 2013 in Delhi, Desai reportedly said that "I always wanted to run a business of my own. I was a horrible employee and could not live by anybody else's rule. So, the best way was to start my own company. My wife is the toughest board member." He had further stated he knew the IT services industry would grow significantly and with the right moves, "we could outpace overall growth."

The report adds that Syntel, modelled along the lines of TCS in some ways, was set up with an initial investment of just $2,000 in 1980. It went on to post revenues of $30,000 in its first year and got a massive boost when it signed on General Motors as a client. Though it started out as an IT staffing company, it soon evolved into a firm providing IT applications services. In 1992, it opened the first of its multiple India Global Development Centers, and five years on the company not only went public but also managed to grow its turnover to the $100 million milestone. It is currently nine times bigger - Syntel raked in nearly $924 million in 2017. 

In April, after releasing its first quarter results, the 23,000-employee company had said that it expects revenue of $920-960 million in 2018, based on an exchange rate assumption of Rs 65 to the dollar. But if the dollar continues to remain as strong as it is currently, the figures will likely move up.

Yet, despite all this, Syntel failed to soar to heights of tech giants. Consider Infosys for instance. Though it started just a year after Syntel, today it is India's second largest IT services firm with over $10 billion in revenue, 10 times that of Syntel.

Desai and Sethi had a dream run in the years leading up to the dotcom bust - including bagging the 2nd spot in Forbes' "200 Best Small Companies in America" rankings - but then Syntel's share price plunged in 2000-2001.

The company recovered and its share price rallied an impressive 1766 per cent on the NASDAQ between 2001 and 2015, before running into rough weather again. In 2016, the stock plunged from $46 to about $19 per share in just over two months after the company declared a special cash dividend of $15 per share in September 2016.

"The special cash dividend will be funded through dividends to the Company by U.S. subsidiaries, the one-time repatriation of approximately $1.24 billion of cash held by the Company's foreign subsidiaries and a portion of borrowings under a new senior credit facility," the company had said at the time, adding, "In connection with the one-time repatriation, the Company expects to recognize a one-time tax expense of about $264 million (net of foreign tax credits) in the third quarter of 2016."

In the bargain, the company also had to downgrade its earnings per share outlook to a loss, which prompted a massive selloff of the stock, from which it is yet to fully recover. Nonetheless, the share prices have jumped nearly 110 per cent in the past year, which partly explains the price now paid by Atos.



Ref:  https://www.businesstoday.in/buzztop/buzztop-corporate/meet-the-indian-american-couple-who-stand-to-make-2-billion-from-the-syntel-atos-deal/story/280611.html

Read More

China reaches 800 million internet users

China’s internet population has now grown beyond 800 million, according to the latest data from the Chinese government.

A new report issued by the China Internet Network Information Center (CNNIC) put the number of people in China with access to the internet at 802 million. The agency — which is a branch of the Ministry of Industry and Information and is responsible for controlling the .cn country code — estimates that 29.68 million people in China came online for the first time in the second half of 2018.

For some context, the U.S is estimated to have around 300 million internet users. The number of internet users in China is now more than the combined populations of Japan, Russia, Mexico and the U.S., as Bloomberg noted.

The new statistic takes internet adoption in the country to 57.7 percent, with 788 million people reportedly mobile internet users. That’s a staggering 98 percent and it underlines just how crucial mobile is in the country.

Other notable data points from the report include:

•     21 percent of China’s internet users are also online banking users
•     71 percent used online payments or e-commerce services
•     74.1 percent used short video applications, which include ByteDance’s Douyin app (known as TikTok outside of China)

•     30.6 percent used bike sharing apps
•     43.2 percent used taxi-booking apps
•     37.3 percent used the internet to reserve buses and trains

The growth of China’s internet also puts pressure on the government to maintain its policy of control over information that appears online.



Ref: https://techcrunch.com/2018/08/21/china-reaches-800-million-internet-users/

Read More

Facebook is removing over 5,000 ad targeting options

Facebook announced this morning it’s making a change to how its ad targeting system works in order to tackle the misuse of its platform to discriminate and exclude audiences based on factors like ethnicity and religion. The company says it’s now removing over 5,000 ad targeting options that could have been misused to place discriminatory ads across its platform.

The news comes shortly after the U.S. Department of Housing and Urban Development (HUD) filed a new complaint against Facebook that accuses it of helping landlords and home sellers violate the Fair Housing Act. It says that Facebook’s ad settings disregard the law by allowing advertisers to target certain demographics.

“When Facebook uses the vast amount of personal data it collects to help advertisers to discriminate, it’s the same as slamming the door in someone’s face,” Assistant Secretary for Fair Housing and Equal Opportunity, Anna María Farías had said in a statement issued by the department.

Facebook responded by saying this practice was prohibited in its advertising policies and that it would continue to work with HUD to address its complaints.

Today, the company says that it will remove over 5,000 targeting options which have the potential for misuse.

“While these options have been used in legitimate ways to reach people interested in a certain product or service, we think minimizing the risk of abuse is more important,” the company explained in a blog post. Facebook didn’t provide a list of the options being removed, but noted they related to attributes such as religion and ethnicity.

It also said that it would roll out a new certification to U.S. advertisers through its Ads Manager tool, that will require the advertisers to properly register their compliance with Facebook’s non-discrimination policy if they post housing, employment or credit ads. The advertisers will need to complete the certification, which involves being educated on the policy and agreeing to it through a form.

Facebook says this certification will reach other countries in time, and will become available through its other tools and APIs.

Earlier this year, Facebook had said it would update its product to catch discriminatory ads before they ran by hiring more ad reviewers and by using machine learning techniques. It also introduced new prompts to remind advertisers about its anti-discrimination policies before they created campaigns.

However, the issues haven’t just been about advertisers picking certain options to target individuals with their ads – they’ve been using ad targeting options to exclude others, as well. Facebook in April said it was removing thousands of categories from exclusion targeting as a result, including those related to race, ethnicity, sexual orientation and religion.

However, the company has been criticized for the way its ad targeting tools could be abused for several years.

Back in 2016, for example, Facebook had to disable an “ethnic affinity” targeting option for housing, employment, and credit-related ads, after a ProPublica report pointed out that these tools could be used for discriminatory advertising in housing and employment, which is illegal. It later rolled out more informational messages, updated its ad policies, and began testing tools to identify illegal ads.

The company more recently came under fire for allowing advertisers to target users based on interests related to their political beliefs, sexuality and religion – categories that are now deemed as “sensitive information” under current European data protection laws. The company responded at the time with an explanation of how users can manage their ad preferences.

Facebook today says that it will have more ad targeting updates to share in the months ahead, as it further refines these tools.




Ref: https://techcrunch.com/2018/08/21/facebook-is-removing-over-5000-ad-targeting-options-to-prevent-discriminatory-ads/

Read More

Apple has registered six new Watch models

Apple Watch 4 is expected to make its official in September alongside the new iPhone 2018 models. Ahead of the launch, Apple has registered six new Watch models with the Eurasian Economic Commission, as per a report from Wccftech site. Apple Watch 4 has been spotted with model numbers A1977, A1978, A1975, A1976, A2007, and A2008. The device will ship watchOS 5 out-of-the-box. The watchOS 5 was showcased at Apple’s WWDC 2018 conference earlier this year, with a focus on health-features, new watchfaces, interactive notifications, etc.

Apple Watch 4 is expected to come with a major design change. According to analyst Ming Chin-Kuo, the Apple Watch Series 4 will feature 15 per cent larger display in comparison to Series 3. It will also come with new sensors for health monitoring and a longer battery life. Kuo estimates that Apple will ship close to 22-24 million units of its Watch Series 4 in 2018.

A separate report in Fast Company claims that Apple Watch 4 will get rid of the physical buttons, and instead add solid state buttons, like we saw on the iPhone 7, etc. These buttons will respond to a user’s touch, without one having to physically press the button like on the present Apple Watch variants.

Apple is rumoured to launch the iPhone X, iPhone X Plus and a low-cost iPhone in September. Out of the three models, two iPhone variants will feature OLED screens measuring 6.5-inches and 5.8-inches. Then there’s a third affordable model that would feature a 6.1-inch LCD screen. The Cupertino technology giant is also expected to announce an entry-level MacBook Air, MacBook, Mac Mini, iPads with FaceID, AirPods 2, and Apple Watch Series 4.

Ref: https://indianexpress.com/article/technology/gadgets/six-new-models-of-apple-watch-series-4-registered-with-eec-ahead-of-september-launch-report-5317978/

Read More

The new iPhone 2018 models will launch on September 12

Apple iPhone 2018 models will reportedly be available for pre-orders starting September 14, as per a report from German site Macerkopf.de. Apple is expected to unveil three iPhone variants this year, out of which two are expected to sport OLED displays and the third affordable version will sport an LCD screen. The site quotes information from two German carriers, which claim that the new iPhone models will launch on September 12. The devices will likely go on sale from September 21.

Apple iPhone LCD model or iPhone 9 is expected to come with a 6.1-inch display. iPhone X 2018 and iPhone X Plus could feature 5.8-inch and 6.5-inch OLED displays respectively. The 2018 iPhone X and iPhone X Plus will reportedly be premium devices that will come with 4GB RAM and FaceID feature. The LCD model will likely succeed iPhone 8, and it will ship with FaceID, 3GB RAM and dual-SIM functionality.

According to a report from TrendForce, Apple iPhone X Plus could be the first iPhone model ever to natively support a stylus. Both the iPhone X 2018 and iPhone X Plus are said to launch in three storage variants – 64GB, 256GB and 512GB. As for pricing, iPhone X 2018 could start at $899 (or approx Rs 62,943), while the high-end iPhone X Plus is expected to have a starting price of $999 (or approx Rs 70,064).


The low-cost 6.1-inch iPhone is expected to be made available in two storage capacities: 64GB and 256GB. TrendForce estimates Apple will price the 6.1-inch iPhone between $699 and $749 (Rs 49,024 – Rs 52,531). The budget iPhone X will continue with a single rear camera, unlike iPhone X 2018 models that will sport dual rear cameras.

The Macerkopf.de report adds that Apple iOS 12 final version could be released on September 18. Apple gave a preview of iOS 12, the next operating system for iPhones and iPads, at its annual Worldwide Developers Conference (WWDC) in San Jose in June. The first public beta of iOS 12 was released shortly. Last year, iOS 11 went live on September 12, as part of the company’s annual iPhone event.

Ref: https://indianexpress.com/article/technology/mobile-tabs/apple-iphone-2018-pre-orders-to-begin-sept-14-launch-on-sept-12-report-5317786/

Read More