US Fingers North Korea for WannaCry Epidemic

The United States on Tuesday accused North Korea of responsibility for a global ransomware attack that locked down more than 300,000 computers in 150 countries earlier this year.

The U.S. now has enough evidence to support its assertion that Pyongyang was behind the WannaCry attack in May, Homeland Security Advisor Tom Bossert told reporters at a White House press briefing.

Bossert made the same accusation in an op-ed published Monday in The Wall Street Journal.

If the United States has new evidence linking North Korea to WannaCry, however, it hasn't released any of it to the public, which could pose problems.

"Accurate attribution for cyberattacks is almost always a difficult task, and it's doubly so when the evidence leading to the conclusion can't be shared," noted Tim Erlin, vice president of product management and strategy at Tripwire.

"If we're going to have national security organizations delivering these types of conclusions on attribution to the public, we need to find a way to develop trusted output. The mantra of 'trust us' doesn't cut it here," he told TechNewsWorld.

The Problem With Attribution

Speculation has connected North Korea to WannaCry since June, when the NSA said it believed Pyongyang was behind the attack. The British government reached the same conclusion in October, and the CIA concurred in November.

While there is evidence indicating that North Korea launched the ransomware virus, that evidence isn't definitive, maintained James Scott, a senior fellow at theInstitute for Critical Infrastructure Technology.

"It is important to understand that attribution is rarely definitive because adversaries can easily obfuscate their actions using technical anti-analysis maneuvers," he told TechNewsWorld.

"They plant false indicators to mislead attribution," he continued. "They leap-frog through multiple foreign networks and systems, they outsource layers or the entirety of their attacks to cyber mercenaries, and they utilize malware available to multiple adversaries from Deep Web markets and forums."

Lazarus Connection

One strong indicator of North Korea's involvement with WannaCry is the malware's connection to the Lazarus Group, which has been tied to Pyongyang, observed Chris Doman, a threat engineer at AlienVault.

There are two data points that link Lazarus to WannaCry, he told TechNewsWorld: a number of rare code overlaps exist in the programs; and Lazarus planted an early version of WannaCry on a Symantec customer.

"The U.S. government may have additional information, but the evidence provided at the time by the private sector was pretty strong," Doman said.

The evidence linking Lazarus to Pyongyang is equally strong, he added. "There are a very small number of publicly assigned Internet addresses assigned to North Korea, and they pop up in Lazarus attacks. The attacks have dated back to at least 2007, and often contain other clues, such as North Korean fonts."

The Gang That Couldn't Code Straight

Although the evidence is circumstantial, the case that North Korea was behind WannaCry is a good one, said Scott Borg, CEO of the U.S. Cyber Consequences Unit.

"WannaCry was incompetently written and managed -- so we're attributing to North Korea something that's well within its capabilities, because it didn't demonstrate a lot of capabilities," he told TechNewsWorld. "Unlike some of the other things that have been attributed to North Korea, this is plausible and highly likely."

A number of recent reports have touted North Korea as a rising cyberpower, but Borg disputes that.

"WannaCry is an example of North Korea's limitations. This was not a competently written piece of ransomware. The whole thing was badly bungled," he said.

"I'm sure the criminal organizations making money off of ransomware were furious with the creators of WannaCry because they undermined the credibility of the whole racket," Borg added.

Why Now?

Since there was strong public evidence of North Korea's connection to WannaCry for months, the timing of the U.S. condemnation may be tied to other concerns.

For example, the United States may want to shine a spotlight on Lazarus.

"Lazarus has been particularly active recently," AlienVault's Doman said. "I'm seeing numerous new malware samples from them daily. A lot of their current activity involves stealing bitcoin and credit card numbers."

The condemnation also comes on the heels of the administration's announcement of a new security policy.

"They may have felt this was an appropriate time because they were going to be reaching out to other countries to do something about the cybersecurity threat and bad actors like North Korea," James Barnett, a former Navy Rear Admiral and head of the cybersecurity practice at Venable, told TechNewsWorld.

Locked Armory

The timing of the condemnation also could be part of the White House's campaign to paint Pyongyang as a global threat.

"It's more about the administration's message that North Korea is a dangerous actor than it is about cybersecurity," said Ross Rustici, senior director of intelligence services for Cybereason.

"They're trying to lay the groundwork for people to feel like North Korea is a threat to the homeland," he told TechNewsWorld.

Whatever response the administration decides to make to North Korea's cyberattacks remains to be seen, but financial problems could render it a hollow one, according to Kris Lovejoy, president of BluVector.

"The U.S. government's ability to procure technology to protect public sector institutions and private sector infrastructure is hampered because there's no ability to execute on its procurement processes," she told TechNewsWorld. "It's ironic that we're rattling our sabers while we've locked the cabinet and not allowed ourselves to get to the armor." 

Cyber Monday Sales Shoot the Moon

Online sales hit a new record of US$6.59 billion on Cyber Monday -- a 17 percent increase from the $5.6 billion in last year's sales for the day -- making it the largest online shopping day in history, based on Adobe Analytics data released Tuesday.

Mobile shopping also broke records, starting with the channel's first-ever $2 billion sales day. Smartphone shopping reached new heights, accounting for almost 38 percent of e-commerce visits and more than 21 percent of revenue. Tablets drew 8.2 percent of online retail visits and 9.1 percent of revenue.

"Cyber Monday broke records as consumers picked up their phones and tablets and went looking for bargains they had come to expect on this day," said Taylor Schreiner, director of Adobe Digital Insights.

The increased use of mobile can be credited to better retail experiences, including changes to make the use of mobile much faster and easier, he told the E-Commerce Times.

Average order volume on Cyber Monday was up slightly, at $133. AOV for iOS was $123, compared with AOV of $112 for Android transactions. Overall, online sales since Nov. 1 through Nov. 27 accounted for more than $50 billion in revenue, up about 17 percent from a year-ago.

Top-selling items on Cyber Monday included the Nintendo Switch, Playstation 4/4 Pro, Hatchimals and Colleggtibles figurines, Apple AirPods, PJ Masks, Super Mario Odyssey, Google Chromecast and Roku.

Beating Expectations

More than 174 million shoppers in the U.S. either went online or went to the mall over the weekend, the National Retail Federation reported. Those totals beat its original forecasts of 164 million shoppers, based on a survey conducted with Prosper Insights & Analytics.

Shoppers spent an average of $335.47 per person during the Thanksgiving weekend, with 75 percent of that, or $250.78, going toward gifts. Older millennials -- adults aged 25-34 -- spend the most, an average of $419.52 per person.

The NRF's numbers confirmed the strength of Cyber Monday: 81 million people shopped online on Monday, compared with 66 million on Friday. However, the busiest day for in-store shopping was Black Friday, when 77 million people visited stores. Saturday was second-busiest, with 55 million in-store shoppers.

The long-term prospects for retail appear to be very encouraging, with 64 million people shopping both online and in stores. Those online and in-store shoppers spent an average of $82 more per person than online-only shoppers, and $49 more than in-store only shoppers. Fifty-eight million people shopped only online, and 51 million shopped only in stores.

"Gone are the days when you could measure success of this weekend or the success of retail more broadly by only one metric," said NRF CEO Matthew Shay.

Further encouraging news for traditional retail shows that 43 percent of shoppers went to department stores, 42 percent shopped online, 32 percent visited electronics stores, and 31 percent went to clothing and accessories stores.

Twenty-four of the top 25 e-commerce stores also had brick-and-mortar locations, the NRF noted, with Amazon being the exception.

Because the NRF made several changes in the methodology it used to calculate figures this year, comparisons with last year's figures would not provide meaningful correlations, it said. The survey was based on responsed from 3,242 consumers who were surveyed on Nov. 25-26.

Blurred Lines

Cyber Monday outperformed Black Friday by 68 percent, with 12 percent year-over-year growth in both purchases and revenue, according to Rakuten Marketing, but the firm did not release actual numbers. Mobile revenue and purchases were up on Cyber Monday by 31 percent and 28 percent respectively.

Revenue grew 23 percent and purchases grew 22 percent year over year between Saturday and Cyber Monday, Rakuten said, but it did not provide actual numbers to support those findings. The firm's conclusions were based on aggregated and anonymized data from same-store clients running ad campaigns across 30 different U.S. verticals.

The data indicates record growth, suggested Rakuten CEO Tony Zito, as shoppers began buying holiday gifts about two weeks before Black Friday.

Stores need to focus on acquiring new shoppers that can lead to repeat and loyal customers, he said.

Amazon enjoyed its best-ever weekend for device sales, with the Echo Dot and the Amazon Fire TV Stick with Alexa Voice Remote scoring as the two top-selling items from any manufacturer across the site. An impressive 2.7-times more customers bought the Fire TV Stick devices than a year ago, the company said.

The Echo Spot is available for preorder, Amazon said, but units are expected to arrive after Christmas.

Intel, Microsoft, Google Scramble for Solutions as Patches Slow Systems

Major tech companies, including Intel, Microsoft and Google, scrambled to calm the mood this week after a large number of computer users reported performance problems linked to security updates for the Spectre and Meltdown vulnerabilities.

A firestorm of criticism has erupted over the response to the chip flaws, which researchers at Google's Project Zero discovered in 2016. Months passed before the problems were disclosed to the public. Further, the security patches released in recent days have been blamed for performance problems, including slowdowns in many systems. The fixes reportedly rendered a smaller number of systems unbootable.

Intel CEO Brian Krzanich on Thursday sent an open letter to the technology industry, pledging the company would make frequent updates and be more transparent about the process, and that it would report security issues to the public in a prompt manner.

Design Flaw

Intel Executive Vice President Navin Shenoy on Wednesday issued an update on the impact of the patches on performance, saying that eighth-generation Kaby Lake and Coffee Lake platforms would see less than a 6 percent performance decrease. However, users running Web applications with complex Javascript operations might see a 10 percent reduction.

The seventh-generation Kaby Lake platforms would experience a 7 percent reduction, and the impact on the sixth-generation Skylake platforms would be slightly higher at 8 percent.

Intel released numerous statements after the vulnerabilities were made public, and it shot down reports that its chips were the only ones at risk.

However, the Rosen Law Firm on Wednesday announced that it had filed a class action suit against Intel, alleging a failure to disclose the design flaw. The complaint cited reports that Intel had been warned of the problem. An Intel spokesperson was not immediately available to comment for this story.

Project Zero researchers discovered serious security flaws caused by "speculative execution," a technique used by modern CPUs to optimize performance, Matt Linton, senior security engineer at Google Cloud, and Matthew O'Connor, office of the CTO, wrote in an online post.

G Suite and Google Cloud platforms have been updated to protect against known attacks, the company said, though it acknowledged concerns that a variant of Spectre is considered more difficult to defend against.

Microsoft and others in the industry were notified of the issue several months ago under a nondisclosure agreement, Terry Myerson, executive vice president of Microsoft's Windows and Devices group, noted earlier this week in an online post. The company immediately began engineering work on updates to mitigate the risk.

The flaw could allow a nonprivileged user to access passwords or secret keys on a computer or a multitenant cloud server, explained Stratechery analyst Ben Thompson in a post Myerson referenced.

Contrary to Intel's protests, the potential risk from Meltdown is due to a design flaw, Thompson also noted.

Users of Windows 8 or Windows 7 systems using Haswell or older CPUs and would see a decrease in system performance after patching the flaw, Myerson noted.

Apple released updates for iOS, macOS High Sierra, and Safari on Sierra and El Capitan, noting the issue relates to all modern processors and affects nearly all computers and operating systems.

However there have been no reported compromises of customer data, Apple added, and Apple Watch is not affected by Meltdown or Spectre.

Performance Over Prudence

"The Meltdown and Spectre vulnerabilities require adjustment to critical, low-level interfaces in affected operating systems," said Mark Nunnikhoven, vice president of cloud security at Trend Micro.

"Given the scale of the issue, the patches by Microsoft, Apple, Google and others have been very successful," he told TechNewsWorld.

Still, there have been problems in some cases, Nunnikhoven said, noting that Microsoft and AMD have been pointing fingers at one another following reports of computers slowing down or in some cases not booting.

Microsoft has suspended automatic updates and is working with AMD on a solution, it said in a security bulletin.

Like most organizations, chip manufacturers long have prioritized speed over security," said Ryan Kalember, senior vice president of cybersecurity strategy atProofpoint, "and that has led to a tremendous amount of sensitive data being placed at risk of unauthorized access via Meltdown and Spectre.

The software patch required to fix Meltdown can slow computer processors down by as much as 30 percent, said Alton Kizziah, vice president of global managed services at Kudelski Security.

"Organizations need to test patches before installing them to make sure that systems that may already be pushed to their limits won't crash and cease functioning as a result of the patch," he told TechNewsWorld. Also, those using Microsoft patches may need to make adjustments to their registry keys to avoid interference with antivirus software.

With lineup widening, Apple depends less on iPhone X

In years past, demand for Apple's latest flagship phone was critical to the company's results over the holiday shopping quarter

In years past, demand for Apple's latest flagship phone was critical to the company's results over the holiday shopping quarter.

That dynamic might be changing, however, as Apple's widening lineup of devices and services more than makes up for any tepidness in demand this quarter for its lead product, the $999 iPhone X.

On Tuesday, Apple's stock fell 2.5% to $170.57 after Taiwan's Economic Daily and several analysts suggested iPhone X sales in the fiscal first quarter would be 30 million units, 20 million fewer than initially planned by the company.

The cut in the forecast was not confirmed, and the stock regained ground on Thursday, hitting $171.82 by midday. The mean revenue estimate for the holiday quarter among 30 analysts remains at $86.2 billion, near the high end of Apple's forecast of $84 billion to $87 billion. Apple declined to comment.

Part of the support for Apple may reflect a change in its business strategy.

Releasing two new models and keeping older ones have made Apple less dependent on its flagship product. Apple shareholder Ross Gerber, chief executive of Gerber Kawasaki Wealth and Investment Management in Santa Monica, California, said the higher price and better margins on the iPhone X will reduce fears of a sales decline.

"We know that Apple's strategy was different this quarter by releasing two phones, the iPhone 8 and the iPhone X, and I think combined sales will be in line with what people expect," Gerber said.

Apple also has fattened its portfolio of accessories and other devices, from its AirPods wireless headphones to a new Apple Watch with cellular data features.

While none is a runaway hit, collectively they are an important contributor, with Apple's "other products" segment growing 16% to $12.8 billion last year. Customers who buy those add-ons are also likely to buy services from the App Store and Apple Music, part of Apple's services segment, which grew 23% to $29.9 billion last year.

"Ultimately, it will be this multi-device ownership" that will generate further revenue, said Carolina Milanesi, an analyst with Creative Strategies.

IPhone X sales still matter. Each unit generates nearly twice the revenue of an iPhone 7 and contains technologies like facial recognition that burnish Apple's brand.

Bob O'Donnell of TECHnalysis Research, said "hit products" still represent "an enormous amount of the company's overall value."

"Will it take hold in the mainstream? That's the question that still remains," he said.

Gadgets for kids still big at tech show despite concerns

The children's section at the giant Consumer Electronics Show this week touted "innovations that enable 21st century kids to learn and play smarter than ever."

The children's section at the giant Consumer Electronics Show this week touted"innovations that enable 21st-century kids to learn and play smarter than ever. "The timing may have been unfortunate following revived concerns of the dangers of too much technology for young children.

But as the debate swirled, exhibitors at the Las Vegas extravaganza sought to showcase devices aimed at health, education, and entertainment for youngsters, including educational robots.

Pai Technology introduced its interactive storybooks for children, which use virtual reality and according to its website "encourages a love of reading" and offers "thoughtful stories."

Amy Braun, marketing director for the group, acknowledged concerns about kids and technology but said these devices still have value. "Technology is here to stay, and it's important to expose our children to technology but in beneficial ways," she said. "We really focus on making sure that the time that we put it in front of our children is all about learning and development. And it's not either or."

Braun said parents must decide on appropriate limits for screen exposure and other technology usages.

Chinese startup Dragon Touch unveiled its colorful tablet computer aimed at kids between three and six years old, with educational apps and parental controls.

Dragon Touch's Lei Guo said the tablets may be valuable but also suggested parents supervise their use. "I really don't want my kids to spend too much time on the internet," he said.

"So that's why we also have the parent control mode, so that the parents can set a time, for example maybe 30 minutes per day."

Augmented reality toothbrush

An augmented reality toothbrush meanwhile introduced by French startup Kolibree allows children to look at a smartphone or tablet screen to motivate and educate them about oral hygiene.

"With image analysis, the application detects the brushing motion," Kolibree's Leonie Williamson.

The device makes brushing a game, enabling kids to earn points by holding and using the toothbrush correctly. Williamson said the toothbrush would not be a big contributor to too much screen time for kids: "It's just three brushings of two minutes each day."

The electronics show has long featured devices for children, and exhibitors typically plan their displays and products many months in advance.

But the show opened just amid fresh fears that too much technology may be harmful to children.

In the United States, the nonprofit group Common Sense Media found 95% of US households have a mobile device in the home. Screen time has been shifting, the group said, from television to mobile devices.

Earlier this week, two large shareholders urged Apple to study whether iPhones are proving addictive for children and if the intensive use of the smartphones may be bad for their mental health.

The investors cited a recent study suggesting children are negatively distracted by digital technologies in the classroom.

Apple, which is not present at CES but whose system is used by many app developers, said in a statement it "has always looked out for kids, and we work hard to create powerful products that inspire, entertain, and educate children while also helping parents protect them online."

At CES, Ahren Hoffmann of the American Specialty Toy Retailing Association, said determining how much technology to use for kids is "all about balance."

"We want to make sure that our kids today are both getting outside and play, and that they are playing with traditional toys, that they're playing board games, but they're also using iPads and tech toys, and learning about coding and other things that are happening in the world around us today," she told AFP at the show.

Chinese company to operate Apple’s iCloud

Apple has started informing its Chinese iCloud users, with data transferred and uploaded to the new database automatically

The iCloud services of Apple in China will be operated by a local partner in Guizhou province from February 28, where the data of all Apple customers in China will be stored, the company said on Wednesday.

From then on, photos, documents and other personal information uploaded to iCloud accounts by Apple customers in China will be stored at a database in Guizhou-Cloud Big Data Industry Co.

Apple has started informing its Chinese iCloud users, with data transferred and uploaded to the new database automatically.

The move aims to increase transparency and offer Chinese customers a safer and more fluent experience, the company said.

An executive with Guizhou-Cloud Big Data said, “We are very proud and happy to be a partner of Apple, and look forward to the operation of the iCloud project.”

Business analysts said the move will help Apple comply with Chinese law concerning customer data and allay some customers’ concerns about security of their data, state-run Xinhua news agency reported.

Apple announced the new database in Guizhou last July, with an investment of $1 billion.

Other major technology companies, including Amazon and Microsoft, have also made similar deals to run data centres in China.

Guizhou is one of the least developed regions in China. Yet it has become a pioneer in China’s “big data” development due to its pleasant climate, power supply and network infrastructure.

The provincial government has set up a leading group for big data, with the provincial governor as leader. Leaders at various levels are the “cloud chiefs” responsible for big data development in their own areas.

From smart poles, you can charge electric vehicles

Smart poles will have telecom tower infrastructure to match with the city’s aesthetic and ready to accommodate technology as 4G and 5G

How about charging your electric vehicle from an electricity pole if you’re stranded on the way? And how about browsing the internet free of cost by connecting your device to Wi-Fi hotspots on such poles? These are two of the many more services that 250 smart poles to be installed at many places in Hubballi-Dharwad will offer.

The project will be taken up under the Smart City project. Hubballi-Dharwad Smart City Limited (HDSCL) special officer, S H Naregal, told TOI that each poll is expected to cost Rs 10 lakh. “The smart poles will be installed on main roads and important places like Hubballi-Dharwad Municipal Corporation (HDMC) office, Nrupatunga Betta and other places. More places will be identified for installing the smart poles. The smart poles will be installed under design-build-finance-operate-transfer (DBFOT) in public private partnership (PPP),” he added.

Smart poles will have telecom tower infrastructure to match with the city’s aesthetic and ready to accommodate technology as 4G and 5G. They will be energy efficient in which LED streetlights can be controlled remotely and offer Wi-Fi services. Surveillance cameras can also be installed on them. Environmental sensors to monitor air quality, temperature and humidity can also be installed. Electric vehicle charging points will promote the use of electric vehicles.

The smart poles centralize command and control centre for monitoring the implementation of smart solutions. Optical fiber can be connected for better bandwidth to Wi-Fi users and providing backhaul to telecom operators.

HDSCL sources said that unlike the conventional telecom tower, smart pole looks attractive and matches with the city’s infrastructure. It has in-built telecom power infrastructure and have batteries to eliminate diesel generator as secondary power source. The battery provides the back up during electricity outage.

The smart poles will also help the HDMC generate income. The leasing of optical fiber network to private parties will help generate income. Advertisements through billboards will also provide financial support to the local body.

from : tech.economictimes.indiatimes.com