More then 30 MMORPG companies targeted in ongoing malware attack

In at least two cases, malware was planted on update servers and spread to fans.

Researchers have uncovered an ongoing cyberespionage campaign targeting more than 30 online video game companies over the past four years.

The companies infected by the malware primarily market so-called massively multiplayer online role-playing games. They're mostly located in South East Asia, but are also in the US, Germany, Japan, China, Russia, Brazil, Peru, and Belarus, according to a release published Thursday by researchers from antivirus provider Kaspersky Lab. The attackers work from computers with Chinese and Korean language configurations. They used their unauthorized access to obtain digital certificates that were later exploited in malware campaigns targeting other industries and political activists.

So far, there's no evidence that customers of the infected game companies were targeted, although in at least one case, malicious code was accidentally installed on gamers' computers by one of the infected victim companies. Kaspersky said there was another case of end users being infected by the malware, which is known as "Winnti." The company didn't rule out the possibility that players could be hit in the future, potentially as a result of collateral damage.

"Having infected gaming companies that do business in MMORPG, the attackers potentially get access to millions of users," the researchers wrote. "So far we don't have data that the attackers stole from common users but we do have at least two incidents when Winnti malware had been planted on an online game update server and [this] malicious executable was spread among large number of the game fans. The samples we have observed seemed not to be malware targeted for the game fans but a malware module which accidentally got into [the] wrong place. But a potential of attackers to misuse such access to infect hundreds of millions of Internet users creates a great risk."

Digital certificates stolen in some of the heists have been used to sign malware that targeted Tibetan and Uyghur activists. The cryptographic certificates have also been exploited in attacks that have hit companies in the aerospace industry. Attackers frequently abuse stolen certificates to prevent the malware they're spreading from being detected by various security protections.
In addition to stealing digital certificates, the Winnti gang's campaign appears to be motivated by the desire to manipulate in-game currency, such as "runes" or "gold," that can in many cases be converted into real currency. The attackers may also want to use source code stolen from the game companies so it can be deployed in rogue servers offering pirated versions of the games.

View: Original Article

Firefox readies tougher stance on cookies

A future release of the browser blocks third-party cookies by default on desktops, ignoring advertiser complaints, while both desktops and Android Firefox get several under-the-hood improvements.

Firefox 22 blocks third-party cookies by default.

Up until now, only Apple's Safari browser had blocked third-party cookies by default. Last week's release of Firefox 22 to its developer's channel also came with the feature, indicating that the option will soon make it to all Firefox users.

Firefox 22 Aurora (download for Windows, for Mac, and for Linux) blocks third-party cookies by default, putting the ad industry on notice that browsers are about to start looking askance at them. While Safari has had the feature for a long time, no other major browser has supported it until now.

Mozilla first announced in February that it was changing its third-party tracking cookie policy.

The browser vendor cited "many years of observing Safari's approach to third-party cookies, a rapidly expanding number of third-party companies using cookies to track users, and strong user support for more control" as the reasons why Firefox will soon block third-party cookies by default.

While Google isn't likely to adopt the stance anytime soon, given that it was the last to include the Do Not Track header, Microsoft may jump on quickly. It was the first major browser maker to offer built-in tracking-protection lists, back in Internet Explorer 9, and has the Do Not Track header activated by default.

Other Firefox improvements include better memory management and faster load times on sites heavy with images; automatically word-wrapping plain-text files displayed in the browser; changes to make otherwise broken sites more compatible; and support for the HTML5 < time > and < time > elements.

Meanwhile, Firefox 22 Aurora for Android includes mostly code support changes. Like the desktop version, CSS3 Flexbox, the new Web Notifications API, and improved WebGL rendering performance through asynchronous canvas updates are in the new Aurora build.

The full changelog for Firefox 22 Aurora on desktops can be read here, and the Android release notes are here.

View: Original Article

Vice President of the USA Calls For a New World Order

Little was talked about in the media when vice President Joe Biden called for a New World Order on the 5th of April 2013 and so here I am reporting it to you. Although mainstream media attempted to cover this news, calling those who believe in a new world order "conspiracy theorists", the truth is becoming evident that a world domination plan is indeed taking place.

Have you been affected by all of the recent things happening in the world? Multiple different file sharing websites have been swiped away under the clause of being protected by copyright when in reality this is all about training the people to have a slave like mentality: never oppose the powers that be. Country after country, you can see wars and other terrible things happening. Every day you hear bad news and wonder "when is this going to end". The world elite don't plan on ending it, at least not peacefully.

In the documentary "ENDGAME: Blueprint For Global Enslavement", it is explained in detail how the world elite came to power many years ago and what their plan is for the future. The point of reporting here on nsanedown forums is to enlighten those who read and know what I say is true. I have been a happy member of nsanedown way back even before it was nsanedown, back then it was nsaneproductions, and one thing I have harped on for quite some time is that the new world order system is real and is being erected. Now it is fully operational.



Little was talked about in the media when vice President Joe Biden called for a New World Order on the 5th of April 2013 and so here I am reporting it to you. Although mainstream media attempted to cover this news, calling those who believe in a new world order "conspiracy theorists", the truth is becoming evident that a world domination plan is indeed taking place.

Have you been affected by all of the recent things happening in the world? Multiple different file sharing websites have been swiped away under the clause of being protected by copyright when in reality this is all about training the people to have a slave like mentality: never oppose the powers that be. Country after country, you can see wars and other terrible things happening. Every day you hear bad news and wonder "when is this going to end". The world elite don't plan on ending it, at least not peacefully.

In the documentary "ENDGAME: Blueprint For Global Enslavement", it is explained in detail how the world elite came to power many years ago and what their plan is for the future. The point of reporting here on nsanedown forums is to enlighten those who read and know what I say is true. I have been a happy member of nsanedown way back even before it was nsanedown, back then it was nsaneproductions, and one thing I have harped on for quite some time is that the new world order system is real and is being erected. Now it is fully operational.




Little was talked about in the media when vice President Joe Biden called for a New World Order on the 5th of April 2013 and so here I am reporting it to you. Although mainstream media attempted to cover this news, calling those who believe in a new world order "conspiracy theorists", the truth is becoming evident that a world domination plan is indeed taking place.

Have you been affected by all of the recent things happening in the world? Multiple different file sharing websites have been swiped away under the clause of being protected by copyright when in reality this is all about training the people to have a slave like mentality: never oppose the powers that be. Country after country, you can see wars and other terrible things happening. Every day you hear bad news and wonder "when is this going to end". The world elite don't plan on ending it, at least not peacefully.

In the documentary "ENDGAME: Blueprint For Global Enslavement", it is explained in detail how the world elite came to power many years ago and what their plan is for the future. The point of reporting here on nsanedown forums is to enlighten those who read and know what I say is true. I have been a happy member of nsanedown way back even before it was nsanedown, back then it was nsaneproductions, and one thing I have harped on for quite some time is that the new world order system is real and is being erected. Now it is fully operational.


 http://www.youtube.com/watch?feature=player_detailpage&v=b1AMYHHAXhI


Now, it is here in our face yet it is hard for many to come to terms with the hard cold truth. This is scary stuff...who wants to even see this information!? The reason I am here now is because people are awake now and we can see the brazen crimes that are happening in high places. The next phase of the world elite includes a world depopulation program which will attempt to kill off 85 percent of all people at least. So I guess the question is, will you stand up for what is right and defy this new world order system or will you comply and allow the deaths of millions of people?

The new world order isn't a new idea, it's an old idea. You can see the former President of the United States George H. W. Bush call for a new world order in his speech which he gave on September 11th 1990.

 http://www.youtube.com/watch?feature=player_detailpage&v=VtlO39wIRWs

The plan seems flowery at first but I assure you, the people in charge of this plan actually believe that they are bringing about a new world order for Lucifer, also known as Satan. I'm not telling you what I think; I’m telling you what THEY think. The world elite actually believe that Satan is their master and all of these wars, these dominations, these envisions, it is all for the purpose of setting up global government. You can see in detail all of the information about the plans for a new world order in this Bibliography which is free to view.

It's not just the USA which is calling for a New World Order; in fact it is a lot of other countries calling for it as well. In these videos, you will see world leaders call for a new world order, this makes for little room for those who would call this a conspiracy theory...unless of course you can't believe your own ears and eyes.


Gordon Brown New World Order Speech
Uploaded on May 18, 2007
Gordon Brown New World Order Speech
Britain’s new Prime Minister Gordon Brown talks about the Elite's Plan for a One World Totalitarian Socialist State, the Globalization Agenda for a New World Order.



New EU president confirms New World Order desire (19Nov09)
Uploaded on Nov 19, 2009
As plain as it comes, the newly "elected" cnut that is the EUSSR president confirms the desire for a one world government, a New World Order of worldwide oppression and the spread of worldwide Communism. If it didn't hit you what the EU project is all about, the new EU "president" confirms it for you in this clip.
Recorded from BBC News 24, 19 November 2009.



New Kissinger NWO : New World Order & Obama Worship
Uploaded on Jan 5, 2009
Kissinger says an Obama presidency is a great opportunity to set up a New World Order.



For those of you who know what is happening, I urge you to fight back with the truth. People MUST be informed of this and they MUST know that it is 100% true and not a conspiracy theory. No amount of proof is good enough for those who are damaged by the systems lies. The whole world now waits for the big event which will suddenly send us all into war and chaos.

Learn as much as you can now and cherish the Internet as it stands now because soon it won't be as free or even available for countless millions of people. Once the big event happens (it could be anything) there won't be any more time left to learn and grow in solid knowledge which will help you to survive the coming storm of outright evil. Much like you would prepare for a massive storm, tyranny must too be prepared for because unlike a storm, it is organized and frothing at the mouth.

You must understand, it is about to begin. I wrote an article a while back where I asked people to save as much stuff as they could from the Internet because it really looks like they want to shut it down. Since then we have seen a DDoS attack which literally slowed down the whole Internet on March 28th 2013! Now are you concerned a little bit? As before, I ask you to please preserve as much as you can because soon, it’s not going to be here, not like it is now anyways.

And last but certainly not least, stay strong! Support each other's rights and stand up for each other’s liberties! Know that you will have to one day understand things with clarity so you can be able to make wise choices which will determine your very survival. Care about each other and DO NOT let this world eat your spirit (so to speak).


Now, it is here in our face yet it is hard for many to come to terms with the hard cold truth. This is scary stuff...who wants to even see this information!? The reason I am here now is because people are awake now and we can see the brazen crimes that are happening in high places. The next phase of the world elite includes a world depopulation program which will attempt to kill off 85 percent of all people at least. So I guess the question is, will you stand up for what is right and defy this new world order system or will you comply and allow the deaths of millions of people?

The new world order isn't a new idea, it's an old idea. You can see the former President of the United States George H. W. Bush call for a new world order in his speech which he gave on September 11th 1990.


The plan seems flowery at first but I assure you, the people in charge of this plan actually believe that they are bringing about a new world order for Lucifer, also known as Satan. I'm not telling you what I think; I’m telling you what THEY think. The world elite actually believe that Satan is their master and all of these wars, these dominations, these envisions, it is all for the purpose of setting up global government. You can see in detail all of the information about the plans for a new world order in this Bibliography which is free to view.

It's not just the USA which is calling for a New World Order; in fact it is a lot of other countries calling for it as well. In these videos, you will see world leaders call for a new world order, this makes for little room for those who would call this a conspiracy theory...unless of course you can't believe your own ears and eyes.


Gordon Brown New World Order Speech
Uploaded on May 18, 2007
Gordon Brown New World Order Speech
Britain’s new Prime Minister Gordon Brown talks about the Elite's Plan for a One World Totalitarian Socialist State, the Globalization Agenda for a New World Order.



New EU president confirms New World Order desire (19Nov09)
Uploaded on Nov 19, 2009
As plain as it comes, the newly "elected" cnut that is the EUSSR president confirms the desire for a one world government, a New World Order of worldwide oppression and the spread of worldwide Communism. If it didn't hit you what the EU project is all about, the new EU "president" confirms it for you in this clip.
Recorded from BBC News 24, 19 November 2009.



New Kissinger NWO : New World Order & Obama Worship
Uploaded on Jan 5, 2009
Kissinger says an Obama presidency is a great opportunity to set up a New World Order.



For those of you who know what is happening, I urge you to fight back with the truth. People MUST be informed of this and they MUST know that it is 100% true and not a conspiracy theory. No amount of proof is good enough for those who are damaged by the systems lies. The whole world now waits for the big event which will suddenly send us all into war and chaos.

Learn as much as you can now and cherish the Internet as it stands now because soon it won't be as free or even available for countless millions of people. Once the big event happens (it could be anything) there won't be any more time left to learn and grow in solid knowledge which will help you to survive the coming storm of outright evil. Much like you would prepare for a massive storm, tyranny must too be prepared for because unlike a storm, it is organized and frothing at the mouth.

You must understand, it is about to begin. I wrote an article a while back where I asked people to save as much stuff as they could from the Internet because it really looks like they want to shut it down. Since then we have seen a DDoS attack which literally slowed down the whole Internet on March 28th 2013! Now are you concerned a little bit? As before, I ask you to please preserve as much as you can because soon, it’s not going to be here, not like it is now anyways.

And last but certainly not least, stay strong! Support each other's rights and stand up for each other’s liberties! Know that you will have to one day understand things with clarity so you can be able to make wise choices which will determine your very survival. Care about each other and DO NOT let this world eat your spirit (so to speak).


Now, it is here in our face yet it is hard for many to come to terms with the hard cold truth. This is scary stuff...who wants to even see this information!? The reason I am here now is because people are awake now and we can see the brazen crimes that are happening in high places. The next phase of the world elite includes a world depopulation program which will attempt to kill off 85 percent of all people at least. So I guess the question is, will you stand up for what is right and defy this new world order system or will you comply and allow the deaths of millions of people?

The new world order isn't a new idea, it's an old idea. You can see the former President of the United States George H. W. Bush call for a new world order in his speech which he gave on September 11th 1990.


The plan seems flowery at first but I assure you, the people in charge of this plan actually believe that they are bringing about a new world order for Lucifer, also known as Satan. I'm not telling you what I think; I’m telling you what THEY think. The world elite actually believe that Satan is their master and all of these wars, these dominations, these envisions, it is all for the purpose of setting up global government. You can see in detail all of the information about the plans for a new world order in this Bibliography which is free to view.

It's not just the USA which is calling for a New World Order; in fact it is a lot of other countries calling for it as well. In these videos, you will see world leaders call for a new world order, this makes for little room for those who would call this a conspiracy theory...unless of course you can't believe your own ears and eyes.


Gordon Brown New World Order Speech
Uploaded on May 18, 2007
Gordon Brown New World Order Speech
Britain’s new Prime Minister Gordon Brown talks about the Elite's Plan for a One World Totalitarian Socialist State, the Globalization Agenda for a New World Order.



New EU president confirms New World Order desire (19Nov09)
Uploaded on Nov 19, 2009
As plain as it comes, the newly "elected" cnut that is the EUSSR president confirms the desire for a one world government, a New World Order of worldwide oppression and the spread of worldwide Communism. If it didn't hit you what the EU project is all about, the new EU "president" confirms it for you in this clip.
Recorded from BBC News 24, 19 November 2009.



New Kissinger NWO : New World Order & Obama Worship
Uploaded on Jan 5, 2009
Kissinger says an Obama presidency is a great opportunity to set up a New World Order.



For those of you who know what is happening, I urge you to fight back with the truth. People MUST be informed of this and they MUST know that it is 100% true and not a conspiracy theory. No amount of proof is good enough for those who are damaged by the systems lies. The whole world now waits for the big event which will suddenly send us all into war and chaos.

Learn as much as you can now and cherish the Internet as it stands now because soon it won't be as free or even available for countless millions of people. Once the big event happens (it could be anything) there won't be any more time left to learn and grow in solid knowledge which will help you to survive the coming storm of outright evil. Much like you would prepare for a massive storm, tyranny must too be prepared for because unlike a storm, it is organized and frothing at the mouth.

You must understand, it is about to begin. I wrote an article a while back where I asked people to save as much stuff as they could from the Internet because it really looks like they want to shut it down. Since then we have seen a DDoS attack which literally slowed down the whole Internet on March 28th 2013! Now are you concerned a little bit? As before, I ask you to please preserve as much as you can because soon, it’s not going to be here, not like it is now anyways.

And last but certainly not least, stay strong! Support each other's rights and stand up for each other’s liberties! Know that you will have to one day understand things with clarity so you can be able to make wise choices which will determine your very survival. Care about each other and DO NOT let this world eat your spirit (so to speak).

Samsung Galaxy Mega announced - 6.3 & 5.8 inches

It's confirmed: the Galaxy Note II is now Samsung's third-largest smartphone.



Last week, we heard our first rumors about Samsung's Galaxy Mega line, which would introduce phones with 6.3-inch and 5.8-inch screens to Samsung's ever-growing Galaxy family. Today, Samsung made them both official: the phones are real, and they're coming to Europe and Russia in May. The phones will be available "globally," but "availability varies by market" and the phones will be "rolled out gradually" to other territories.

While the phones have large screen sizes, there's otherwise nothing particularly high-end about them. The 6.3-inch model comes with a 720p display (Samsung lists it only as "HD," but uses "Full HD" to indicate a 1080p display), a 1.7GHz dual-core processor from an unnamed manufacturer, 1.5GB of RAM, and 8 or 16GB of storage. The 5.8-inch model steps down to a 960×540 display, a 1.4GHz dual-core processor, 1.5GB of RAM, and only 8GB of storage. Both include Android 4.2, the latest version of Android.

We don't yet have pricing information for the phones, but given the specifications, we expect them to be a bit cheaper than handsets like the Galaxy S 4—there's probably a market for people who want a large, inexpensive phone but don't necessarily care about pixel density. Otherwise, it seems like a step backward to offer these comparatively low-resolution displays on these large-and-in-charge phones just weeks after introducing a 5-inch, 1080p flagship.

While ever-inflating screen sizes are the norm for Android phone manufacturers, Samsung in particular seems determined to make a phone for every hand size on the Earth. The Galaxy Mega, the Galaxy Note, and the Galaxy S lines are all good options if you've got big hands, but the 4-inch Galaxy S II Mini and the 3.2-inch Galaxy Young (which we saw at MWC among its larger brethren) have tiny hands covered, too.





View: Original Article

iPhones to be banned to protect the children

Encryption used in Apple's iMessage chat service has stymied attempts by federal drug enforcement agents to eavesdrop on suspects' conversations, an internal government document reveals.

@ http://news.cnet.com...s-surveillance/

European regulators blast Google for continued EU privacy violations

Task force gives green light to EU states to conduct "further investigations."

On Tuesday, six European data protection authorities (DPAs) lambasted Google for continued violations of European privacy rules.

Under Google's new unified privacy policy, which was put into place last year, European authorities argue that it's nearly impossible for users to understand what personal data is being used for what purpose. As a result of investigations by DPAs in France, Spain (PDF, Spanish), the Netherlands, the United Kingdom, Germany, and Italy, all EU countries are now free to “carry out further investigations” based on their own national law.

However, for the time being, none of the data protection authorities (DPAs) in those six countries have specifically said what such investigations will entail, if Google is being charged with any crimes, or if the firm will be forced to pay any fines.

“The members of the EU Task Force will now be reviewing this in accordance with the criteria of the various national statutory stipulations,” wrote Johannes Caspar, the Hamburg commissioner for Data Privacy and Freedom of Information, in a statement sent to Ars. “Should the data protection concerns be confirmed, appropriate supervisory measures may be taken in the individual member states.”

In a statement to Ars, a Google spokesperson wrote, “Our privacy policy respects European law and allows us to create simpler, more effective services. We have engaged fully with the DPAs involved throughout this process, and we’ll continue to do so going forward."

EU fines have been relatively minimal for a company the size of Google, but the EU has proposed strengthening these penalties. Penalties for WiFi snooping via Google Street View only amounted to €100,000 ($130,000) in France. By comparison, Google had a profit of nearly $11 billion in 2012.

France's National Liberties and Information Commission (CNIL) said that Google’s new policy was in direct violation of the European Data Protection Directive, and that CNIL would conduct an investigation.
"Google's online services are numerous and differ greatly both with regard to purposes and types of data they process," the February 27, 2012 CNIL letter (PDF) states.

"The new privacy policy provides only general information about all the services and types of personal data Google processes. As a consequence, it is impossible for average users who read the new policy to distinguish which purposes, collected data, recipients, or access rights are currently relevant to their use of a particular Google service.”

 View: Original Article

Can a DDoS break the Internet? Sure… just not all of it

Last week's DDoS attack caused big problems for some, went unnoticed by others.

We reported last week on a massive distributed denial of service attack that was intended to take anti-spam organization Spamhaus offline.

We described the scale of the attack as "Internet-threatening," elaborating further that the attack, peaking at more than 300 gigabits per second, "is the kind of scale that threatens the core routers that join the Internet's disparate networks."

Subsequently, posts on Gizmodo and The Guardian called into question these assessments, with Gizmodo casting doubt on the description by asking some "simple questions" and The Guardian specifically claiming that it was "shoddy journalism."

We stand by our original description and reporting. Here's why.

A network of networks

Before looking at the anti-Spamhaus attacks specifically, it's important to know a little about how the Internet is constructed. The Internet is often described as a "network of networks." Organizations around the world have their own independently owned and operated networks—university campuses, the retail Internet Service Providers (ISPs) that provide DSL, cable, and more exotic connections to homes and businesses, corporations, government departments, and so on and so forth.

All of these are useful networks in their own right, but they become enormously more useful when they're joined up. Joining up networks creates an internetwork. The first internetwork infrastructure came from the US government, and the first internetwork, ARPANET, joined a number of US universities in the 1970s.

Through the development of a series of other internetworks—both academic and commercial—and the establishment of international internetworks, we came to the situation we have today.

A small number of companies (about a dozen, though it's hard to know with absolute certainty) own and operate high-speed, transnational networks. These companies, called Tier 1 providers, pass traffic between one another freely, providing transfers between smaller networks. This free traffic transfer is called peering.

They provide the thing that's closest to the Internet's "backbone" (though the term isn't really accurate: there's no single fragile spine, but rather a complex mesh of redundant, interconnected networks): from a Tier 1 provider, it's possible to send traffic to any public IP address.

Purchasing connectivity from the Tier 1 providers are the Tier 2 providers. Tier 2 providers buy Internet connectivity from Tier 1 providers, which is called transit. However, they also connect directly to other Tier 2 providers, with peering relationships. Tier 2 providers can be regional, but they can also be large transnational networks.


How customers connect to ISPs and ISPs connect between tiers.

Large Tier 2 providers can peer with many, many other Tier 2 providers, with the result that Internet traffic from that provider only infrequently has to use the Tier 1 connectivity. The distinction between Tier 1 and Tier 2 is not size or scale as such; it's simply that Tier 1 networks only use peering. Tier 2 networks have to buy at least some transit.

Tier 1 providers generally sell only to Tier 2 providers. Tier 2 providers may sell directly to end users, or they may sell to Tier 3 providers: ISPs who only buy transit and don't have any peering.

Tier 2 and 3 providers fall into two further categories. They can be multi-homed, with multiple transit connections to different networks, or they can be single homed, with just one transit link.

When two providers want to connect to one another, whether for peering or for transit, they obviously need a physical link of some kind. For providers with only a few connections, one-off point-to-point connections known as private network interconnects (PNIs) are used. But if you want to connect with lots of peers, you don't want to build lots of individual expensive optic fiber links. You want to consolidate: bring all the peers together in one place, and then stick a router or a network switch between them all to join them up.

As a result, around the globe are dotted a few hundred Internet Exchanges (IXs). At each IX, there may be hundreds of providers from all three tiers coming together. The IXs generally use Ethernet infrastructure for their internal connectivity. Gigabit and 10 gigabit Ethernet are predominant, but 100 gigabit Ethernet is starting to gain more use, though its cost today prevents it from being used as the standard technology. Longer links may be gigabit, 10 gigabit, 40 gigabit, or 100 gigabit. In principle, faster speeds still are possible through aggregating these 100 gigabit connections, but in practice, today's IXs are mainly 10 gigabit (or aggregated multiples thereof) networks.

IXs are important. Major service providers such as Google, Microsoft, and Facebook connect to IXs. If two Tier 2 operators can send traffic directly to each other, via peering at an IX, that's cheaper and more efficient than going via transit to a Tier 1.

Enter Spamhaus, STOPhaus, and CloudFlare

STOPhaus doesn't care much for Spamhaus.

 

Spamhaus provides useful services to e-mail administrators wishing to keep junk e-mail out of the servers they own and operate. STOPhaus is an informal group that doesn't like Spamhaus. STOPhaus members wanted to knock Spamhaus off the Internet using a distributed denial of service (DDoS) attack that flooded Spamhaus's systems and drowned out legitimate traffic. They did so by aiming a flood of DNS traffic at Spamhaus's servers.

In response, Spamhaus started using the services of CloudFlare, a company that specializes in providing robust serving that's difficult to take offline with DDoS attacks. CloudFlare does this by replicating content around the globe and using a routing technique called anycast. Anycast allows servers with the same IP address to coexist simultaneously around the globe. Internet providers will generally route traffic to the geographically nearest instance of those anycasted IP addresses.

This does two things. By picking a site that's geographically close, it cuts the latency to access the site, making it react faster. Second, it dilutes the effect of DDoS attacks. Instead of a distributed attack using systems around the world being able to focus its flood on a single IP address in a single location, each attacking system can only focus on a nearby target.

Two attackers on opposite sides of the world may still be aiming at the same victim IP address, but their traffic will go to different computers that are relatively nearby.

For CloudFlare's technology to work well, it needs a high level of distribution. The company currently reports that it has 23 data centers around the world and peers with nearly 70 different Tier 1 and Tier 2 providers around the world; it does this with a mix of PNIs and IXs.

CloudFlare did its job, and Spamhaus remained accessible. Trying to flood the anycasted addresses wasn't working.

So the attackers changed their approach. Rather than attacking CloudFlare's distributed servers, they took aim at the network infrastructure used by CloudFlare's providers: the IXs. Attacks were made on IXs in Frankfurt, Amsterdam, London, and Hong Kong. It's the London IX, LINX, that suffered.


Optical patch panel at the AMS-IX Internet exchange point in Amsterdam, which was targeted by the attackers.

Each provider peering at LINX has its own IP address, through which traffic to that provider is passed. The attackers noticed that LINX's IP addresses were accessible from anywhere in the world. This, in turn, meant that they could be the target of a DDoS attack.

On March 23rd, the attackers used this information to attack specific addresses within LINX. As is typical in IXes, these are addresses that are generally interconnected with 10 gigabit Ethernet. Throwing hundreds of gigabits per second swamped them. The result was that CloudFlare-protected services were, for some people (especially within the UK), slow or inaccessible. LINX also suffered an issue with its traffic monitoring, which showed traffic across its network approximately halved, that may have been related.

LINX subsequently changed its network configuration so that the IP addresses in question weren't reachable from outside LINX's own trusted network. This cut off the attacks, and normal operation was restored soon after.

The fault here was arguably in part LINX's, as it should have been configured in a safer way from the outset (the Amsterdam IX (AMS-IX), for example, explicitly prohibits advertising routes to its internal IP addresses), but it wasn't, and it caused trouble as a result. That said, the IX community does not universally agree with this approach.

Breaking IXs breaks the Internet

IX infrastructure is core to the Internet. It is not the only Internet infrastructure, and there would still be an Internet if an IX blew up or burned down, but it wouldn't be the same Internet. LINX's infrastructure in aggregate has several terabits per second of capacity, and the Internet as a whole has an aggregate of hundreds of terabits per second of capacity, but any one provider within LINX has only a fraction of that capacity; big ISPs have 80-100 Gbps, but few (if any) have more than that. Having lots of bandwidth somewhere else in the world doesn't actually help very much.

Moreover, 300Gbps is well above the level at which it's easy to quickly add extra bandwidth to respond. 100 gigabit Ethernet is expensive: IXs and ISPs don't have an abundance of 100 gigabit network ports lying around waiting for a rainy day, and they certainly don't give every customer peering at the IX an extra few hundreds of gigabits of capacity "just in case." At LINX, for example, 100 gigabit ports are installed on demand. They're too expensive to treat any other way.

Richard Steenbergen, currently CTO for GTT, a large network provider and upstream operator to, among other customers, CloudFlare, wrote in response to Gizmodo's article:

My company, most other large Internet carriers, and even the largest Internet exchange points, all deliver traffic at multi-terabits-per-second rates, so in the grand scheme of things 300 Gbps is certainly not going to destroy the Internet, wipe anybody off the map, or even show up as more than a blip on the charts of global traffic levels. That said, there is absolutely NO network on this planet who maintains 300 Gbps of active/lit but unused capacity to every point in their network. This would be incredibly expensive and wasteful, and most of us are trying to run for-profit commercial networks, so when 300 Gbps of NEW traffic suddenly shows up and all wants to go to ONE location, someone is going to have a bad day.

To make this more concrete: GTT has multiple terabits per second of connection around the world. But its IPv4 connectivity at LINX is reported to be 30Gbps. Send more than 30Gbps of traffic to its LINX IP address and anyone counting on using GTT for peering/transit through LINX is going to have a rough time. CloudFlare appears to have just 10Gbps of connectivity to LINX. The Internet is full of choke points such as this.

Paul Vixie, Internet engineer and co-ounder of the Internet Systems Consortium, concurred, telling Ars via e-mail, "300 Gbps is fatal for some parts of the 'Net, but not all parts. It's when they started going after Internet exchange connections that third parties started losing."

Large providers—both on the demand side, such as ISPs, and the supply side, such as Facebook or Google or the BBC—peer at multiple IXs and have PNIs, so they're not so dependent on the health of any one IX. Small ones, however, do not. Flood the IX's infrastructure and they'll effectively drop off the Internet.

This is breaking the Internet. The "network of networks" reverts to being "disjoint networks," at least for some. For the rest, multihoming should mask any fatal errors. Things may be a little slower, and for ISPs having to switch to transit instead of peering they may be a little more expensive, but disruption shouldn't be too visible.

Similar behavior occurs in other Internet incidents. When undersea cables are cut, it's rare for a national network to be completely isolated, but cut enough cables and the Internet can become disjointed, as it reportedly did in East Africa after four cables were cut simultaneously in 2012. When faced with cable cuts, the global Internet is fine, and the national networks are also fine. They're just not joined up.

Similarly, when Pakistan published routes disabling YouTube to the global Internet, almost every network making up the Internet remained reachable, except one: YouTube's network.

STOPhaus even tried a similar attack of their own on Spamhaus, trying to hijack Spamhaus's IP address range and redirect it to CyberBunker.

The Internet is generally quite resilient to this kind of thing. But problems do happen.

Not that shoddy

If the Gizmodo and Guardian writers were perhaps expecting a broken Internet to mean that the entire thing simultaneously fell apart into a million different networks, then certainly, these attacks (and others, such as hijacking IP addresses or cutting cables) won't "break the Internet."

If that's what you're after, however, nothing really will. Not because the Internet was designed to survive a nuclear attack—it wasn't—but because it has grown to be widely distributed, with lots of redundant links, and few people really care about the entire Internet.

Gizmodo's questions about the attacks were:

1. Why wasn't my internet slow?
2. Why didn't anyone notice this over the course of the past week, when it began?
3. Why isn't anyone without a financial stake in the attack saying the attack was this much of a disaster?
4. Why haven't there been any reports of Netflix outages, as the New York Times and BBC reported?
5. Why do firms that do nothing but monitor the health of the web, like Internet Traffic Report, show zero evidence of this Dutch conflict spilling over into our online backyards?

Four of those, at least, are easy enough to answer.

1. Because you're an American, in America, primarily accessing American sites. The Internet, however, is a global network. Disruption in one area need not lead to disruption in other areas, particularly if the services you are interested in are geographically close. Network security company Arbor Networks noted that the DDoS attack was substantially larger than those that have gone previously, and its Asia Pacific analyst Roland Dobbins wrote that problems were indeed seen by providers in Europe, the Middle East, Africa, and Asia-Pacific.
2. They did. Quoting Andree Toonk, a network engineer for OpenDNS, "Those who claim there was no impact probably don't run global networks. I've seen Tier1's struggle and had to route around it, EU and Asia! significant packet loss." This corroborates CloudFlare's claim that Tier 1 providers were congested.
3. People who do not work for CloudFlare are saying that the attack was substantial, that it was disruptive, and that it caused service problems for some people. Indeed, they're annoyed by it, as it rendered other CloudFlare-hosted sites unusable from the UK. For example, Andy Gambles of UK-based SSL provider and CloudFlare customer ServerTastic complained to CloudFlare, "Our sites were dead slow/practically offline for the whole time."
4. Who knows?
5. Two reasons. First, because the Internet Traffic Report doesn't monitor Africa at all, has poor coverage of Asia, has European data that's sporadic at best (lots of the systems it tests simply aren't returning any traffic at all), and provides only aggregate graphs for periods longer than 24 hours, making it impossible to see local effects that occurred on the 23rd of March. It's a useful resource, but hardly the final arbiter of whether the Internet is working well or not. Second, because the Internet doesn't work that way. If a network that you don't care about has been cut off from the network of networks, you'll never notice or care.

CloudFlare's blog post, "The DDoS that almost broke the Internet," certainly had a rather hyperbolic title. It's probably not the first blog post to have a hyperbolic title. It almost certainly won't be the last. Shattering the Internet into a billion disconnected hosts will never happen, so in that sense, the Internet is safe. But breaking it into two, or three, or a handful of separate networks? With the right amount of traffic in the right place, that can happen.

View: Original Article

Mozilla's Collusion shows how you are a marketing tool

Mozilla's latest project, the 'Collusion' addon for Firefox, builds up an almost-scary picture of how you're connected to the Internet, and how you can be tied across different websites unknowingly.

The Internet is free, but you're not free on the Internet. There are ads and cookies and all manner of things which can track your activity online. Mozilla's ethos has always involved maintaining an open web; now they're going to show you just what shadows you online.

The Collusion website is an interactive explanation of how it works, taking you through some of the net's most popular sites. The IMDb, New York Times and Huffington Post are three of the examples, and they give a chance for you to see what ad-providers are following you, and where they're doing so.



I looked at a couple of automotive websites and a few games websites and you can see the result in the above image; it builds up a picture of just how quickly your human presence online becomes a valuable tool for market research. As an added bonus, you can export the entire network of links you're tied to.

Collusion is available from the Mozilla Addons website, and it doesn't require a restart to work either. As a Mozilla project it might never progress to a fully-fledged point, but even now the concept is solid enough to be worth a look.

View: Original Article

Verizon Asked to Share "Six Strikes" Alerts for BitTorrent Lawsuit

It’s just a few weeks since the six-strikes copyright alert system was activated in the U.S. and already it’s being utilized in a civil action against an alleged BitTorrent pirate. To prepare for a trial against a Verizon subscriber, adult movie studio Malibu Media has subpoenaed the user’s ISP to hand over copies of DMCA and six-strikes notices issued to far. In addition, the copyright holder also wants to know how much bandwidth the subscriber uses each month, and what pay-per-view programs were watched .

After years of negotiating and planning the “six strikes” copyright alert system finally went live in February.

While it’s not as draconian as similar systems in France and New Zealand, one of the concerns with the copyright alert system is that it requires Internet providers to keep a database of infringing account holders.

The program specifically leaves the door open for the MPAA and RIAA to request a list of serial pirates for legal action. While this may never happen, new court documents reveal that copyright alerts data is already at stake in a lawsuit brought against an alleged BitTorrent user in Texas.

The case, started by adult movie studio Malibu Media last year, is that of a typical copyright troll. It deals with copyright infringements via BitTorrent and after settlement attempts failed, Malibu is now gearing up to take one John Doe defendant to trial.

To do so, Malibu has demanded more information on the accused subscriber from ISP Verizon. Initially the copyright holder requested a long list of details, but this was later limited to the following:

- DMCA notices and if applicable six strike notices sent to the applicable subscribers.
- Defendants’ bandwidth usage.
- Information about the (reliability of the) correlation of the IP-Address to the subscriber for purposes of use at trial.
- Content viewed by Defendants to the extent the content is the same show or movie that Plaintiff learned from third-party BitTorrent scanning companies that Defendants also used BitTorrent to download and distribute.

Interestingly, this list includes the warnings that are being sent out under the copyright alert system.

Email between Malibu and Verizon’s counsels



The case appears to have gone smoothly, up to a point. The court granted a subpoena for the information and the John Doe defendant agreed to release it. However, Verizon has refused to hand over the details.

Among other things, the provider claims that “the subpoena is intended to harass Verizon,” particularly in the light of a motion Verizon filed against Malibu Media earlier this year. Verizon further points out that it wants to protect its customers from “shakedown tactics against Doe defendants.”

To compel Verizon to comply with the subpoena, Malibu filed a “motion to enforce” at a Texas District Court yesterday in which the studio explains that the requested information is crucial for the upcoming trial.
The six strikes alerts, for example, could show a pattern of infringing behavior that can be used against the defendant. The same is true for bandwidth usage according to the adult studio.

“DMCA notices and six strike notices are relevant because these notices may prove a pattern of infringement and/or notice that infringement is occurring. Bandwidth usage is relevant because people who are heavy BitTorrent users use significantly more bandwidth than normal internet users,” Malibu writes.

While it’s not known whether the defendant has ever received a copyright alert, the Center for Copyright Information will not be pleased with these latest developments.

Over the past months they’ve done all they can to emphasize that their program is merely educational, and having it used against alleged downloaders by copyright holders that are not even part of the scheme is bad PR to say the least. For the defendant in Malibu’s case the first strike could already turn out to be one too many.

View: Original Article

FACT Turn Up at Torrent Site Owner's House Demanding Domain Names

A UK-based anti-piracy group is continuing to crack down on any sites considered to be engaging in copyright infringement. Last week representatives of The Federation Against Copyright Theft personally turned up at the home of a torrent site owner who was told to cease and desist, or else. Hand over your domains, FACT explained, and things should turn out OK.

There are many file-sharing sites operated by individuals in the United States and over the years they have become acutely aware that their activities could land them in trouble. As a result most take precautions to hide who they are. UK site admins may soon feel the need to more closely follow the example set by their US counterparts.

Through local anti-piracy group FACT, the major Hollywood studios have been sending out letters to many file-sharing and streaming sites in the UK in an effort to scare them into closure. In at least one recent case, however, they went much further than a basic emailed threat.

The TorrentZone private tracker has operated without incident for some time, but all that changed last week when FACT representatives called in person at the owner’s home.

“FACT knocked my door on Thursday 28/03/2013 at 0730hrs where upon I was handed a cease & desist letter in person,” the owner told TorrentFreak.

FACT has been sending out these letters to many different sites for some time now. They are all signed by Peter O’Rourke, FACT’s Director of Investigations and Intelligence.

Titled “UNAUTHORISED DISTRIBUTION OF MOTION PICTURE SUBJECT TO COPYRIGHT”, the letters state that FACT have examined the site in question and have found that “predominantly infringing film and TV content” is being made available.

“You will no doubt be aware of the conviction this year of Anton Vickerman, the administrator of surfthechannel.com, at Newcastle Crown Court. Vickerman was sentenced to a four year term of imprisonment,” the letter continues.



“This case has clearly demonstrated that online copyright infringement is a crime and that the courts take a very serious view of those who persistently offend. FACT requests that you desist from this activity immediately. Failure to do so will result in further investigation which may result in criminal prosecution,” FACT concludes.

That FACT took the time to turn up in person at the home of the TorrentZone admin is quite unusual (an email to the site or its host is more common), but considering it took TorrentFreak just a couple of minutes to obtain the owner’s personal details, the same would have been achieved by Hollywood extremely easily.

In any event, the personal touch is clearly a powerful one. TorrentZone has already been closed down and it’s clear to us that the admin has no intention of bringing it back. But just in case, FACT wants to ensure that doesn’t happen easily. In exchange to putting an end to the matter they they want to take possession of the site’s domains.

“I agreed verbally and signed further letters to formally sign over the domains related to the site. I was told by [the two FACT men who called] that if I did this immediately there may not be any further action taken against me,” TorrentZone’s admin concludes.

Another site that has received FACT threats recently is AfterDarkTorrents, a lesser-known private tracker. Presumably FACT didn’t turn up at the owner’s home though, as the site is refusing to shut down.

The same cannot be said about TVstreamScript which shut down recently taking hundreds of other sites with it.

View: Original Article

Firefox 20 released with enhanced 'porn-mode'

A spate of small but important improvements to Firefox on desktops and Android gives you fine-tuning in "private browsing" mode, a new download manager, and multiple changes under the hood.

Firefox's getUserMedia test page.

Along with an update to the infamous "porn mode" that turns off your browser's ability to record your browsing session, the new Firefox 20 includes usability and back-end changes.

Firefox 20 (download for Windows | Mac | Linux) updates now allow you to run a private browsing session in a new window, alongside a standard Firefox browsing window. On Firefox 20 for Android (download), the browser now lets you run private mode tabs next to standard session tabs.

Private browsing on Firefox is analogous to Internet Explorer's InPrivate or Chrome's Incognito. It's a feature that turns off all the browser's session recording features, including cookies, history, and temporary files.
Another helpful update will ask if you'd like to restart plug-ins that have been frozen for more than 45 seconds.

Firefox on desktops has a new Download Manager, too. Instead of having to open a separate window to access downloads, the new one appears in your toolbar next to the location bar. It also shows download progress in the toolbar. Meanwhile, Firefox for Android now lets you save Web site shortcuts to your phone's home screen, making it much quicker to get to frequently visited sites.

The desktop's new Developer Toolbox makes it easier for people building Web sites to access tools to assist them; CSS FlexBox is now supported for automatically resizing a site's content based on screen dimensions; and new Canvas Blend Modes are supported for better visual effects.

This version of the browser continues to expand its support for older Android phones running on the ARMv6 architecture. The browser will now work on Android devices with 384MB of RAM and QVGA displays, including but not limited to phones from HTC and Samsung such as the Galaxy Pop, Galaxy Q, Dart, Galaxy Next, Aria, and Legend.

On both Android and desktop versions of Firefox, the browser now supports getUserMedia, which can record from your Webcam or mic in the browser. The getUserMedia Application Programming Interface provides a major part of Web Real-Time Communication (WebRTC), which is expected to allow browsers to communicate directly with each other for voice calling, file-sharing, and video chats, forgoing the need for resource-hogging and stability-altering plug-ins.

View: Original Article

XP decline stalls as users hold onto aged OS despite 2014 deadline

A third of all Windows users could still be running XP when Microsoft pulls patch plug in 53 weeks

The decline in usage share of Windows XP, which is slated for retirement in 53 weeks, has slowed significantly, hinting that millions of its users will hold onto the operating system much longer than some, including Microsoft, expect.

Data published monthly by California-based Web analytics company Net Applications indicates that XP's long-running slide has virtually stalled since Jan. 1.

In the past three months, Windows XP's monthly drop in share has averaged just 0.12 of a percentage point. That's less than a fifth as much as the 12-month average of 0.68 percentage points.

Windows XP's decline in the last six months (blue line) has slowed significantly from the prior period (red), as its flatter trend line (black) shows.

Other averages point to a major deceleration in declining usage share: XP's most recent six-month average decrease of 0.42 percentage points was less than half the 0.94 point average for the prior six months.
Likewise for longer timespans. In the last 12 months, Windows XP has dropped an average of 0.68 percentage points, while in the 12 months prior it fell by 0.83 percentage points.

In other words, in the second half of a 12-month stretch, XP's decline slowed by 55%; in the second year of a two-year span, it slowed 18%.

The slowdown paints a picture that must depress Microsoft, which has been banging the upgrade drum at Windows XP users for nearly two years, and has repeatedly warned them that free security updates will stop after April 8, 2014.

Net Applications' data can also be used to roughly plot XP's future usage share.

If the average decline of the last 12 months holds, XP will still account for 30% of all personal computers at the end of April 2014, or 33% of all systems expected to be running Windows at that time.

Recent estimates of XP's future by analysts, however, have been more conservative, with experts from Gartner and Forrester Research predicting that 10% to 20% of enterprise systems will still be on the aged OS when support stops.

Microsoft has not pegged XP's current corporate share, but the Redmond, Wash., software developer clearly knows it's large: In January, during the company's last quarterly earnings call, CFO Peter Klein said 60% of all enterprise PCs were running Windows 7.

Since few businesses adopted Windows Vista -- and with Vista's usage share now under 5%, some that did likely ditched it -- the remaining 40% must, by default, largely be Windows XP.

Windows XP will not suddenly stop working 53 weeks from now; it will boot, run applications and connect to the Internet as it did before. But it will not be served with security updates. Minus patches, and knowing how frequently cyber criminals uncover vulnerabilities, security experts expect hackers to exploit XP bugs that users will have no way of quashing.

Those same experts have split on whether Microsoft will extend Windows XP's support to protect what increasingly looks to be a major chunk of Windows users. But Microsoft has not signaled any desire to do so.

Granted, Microsoft will have supported XP for 12 years and 5 months, or about two-and-a-half years longer than its usual decade. That will be a record, as XP this month tied the previous Methuselah, Windows NT, which received 11 years and five months of support.

But Microsoft could still rethink its XP policy, and mimic rival Apple, which has continued to support OS X Snow Leopard, an operating system that, like XP, maintains a robust usage share.

Apple, which has never spelled out its security update policies, typically has stopped supporting "n-2," where "n" is the most current edition of OS X, around the time it releases "n."

Snow Leopard -- "n-2" in that formula, having been superseded by Lion and Mountain Lion, the latter representing "n" -- has continued to receive security updates, most recently on March 14, or about eight months after Mountain Lion's launch.

By continuing to update Snow Leopard, which powered 27% of all Macs last month, Apple patched 91% of all Macs last month.

Microsoft could do even better -- cover 96% of all current Windows PCs -- by continuing to support XP after April 2014.

But one expert thought that very unlikely. "I think they have to draw a line in the sand," said John Pescatore, then an analyst with Gartner, now with the SANS Institute, in an interview last December. "They've supported XP longer than anything else, so they'd be pretty clean from the moral end."

To track how long XP has before retirement, users can browse to an online countdown clock maintained by Camwood, a U.K. firm that specializes in helping businesses migrate to newer operating systems.

View: Original Article

Just a quick check to see what you believe? Do you believe that file sharing "specifically" Something that you have purchased such as MP3's etc should be legal or illegal. Also to pin it down further say if you purchased an MP3 and made it available for a friend to download using the internet?

Brace for more mega-DDoS attacks

DDoS attacks like the one that resulted from an altercation between a Dutch company and Spamhaus this week are on the rise, according to a statement from Kaspersky Labs.

The security vendor was responding to the huge DDoS attack that occurred on Wednesday, described as the biggest cyber attack in history. The attack affected millions of rank and Internet users, slowing hundreds of processes down.

According to reports, the DDoS attack occurred when Spamhaus, an organisation that blacklists spammers, blacklisted Dutch company Cyberbunker, an open hosting service that allows anyone to set up a website on its servers.

The attack exploited the architecture of the Internet to heard huge amounts of traffic to the Spamhaus website. The attack then went global, affecting the wider Internet.

“Based on the reported scale of the attack, which was evaluated at 300 Gigabits per second, we can confirm that this is one of the largest DDoS operations to date,” said Kaspersky Lab’s Global Research and Analysis team in a statement.

“The data flow generated by such an attack may affect intermediate network nodes when it passes them, thus impeding operations of normal web services that have no relation to Spamhaus or Cyberbunker. Therefore, such DDoS attack may affect regular users as well, with network slowdown or total unavailability of certain web resources being typical symptoms. There may be further disruptions on a larger scale as the attack escalates.”

According to reports, Spamhaus called on Cloudflare to counter the attack after it found its defences were being overwhelmed. Cloudflare’s counters worked, so the hackers began attacking sites affiliated with Spamhaus, as well as sites used by Cloudflare. Before long, the attack had begun to affect service across the Internet.

While the worst of this latest high-level DDoS attack may now be over, Kaspersky said that the world could expect to see more of the same. Cyber criminals can now attack much more frequently and on a much wider scale, the statement said.

“In general, attacks of this type are growing in terms of quantity as well as scale. Among the reasons for this growth is the development of the Internet itself (network capacity and computing power) and past failures in investigating and prosecuting individuals behind past attacks.”

Kaspersky said that there are two major motives behind launching such high-level attacks. Firstly, the statement said, cyber criminals conduct DDoS attacks to disrupt organisations in order to extort money from them. Secondly, hackers use DDoS attacks as a weapon to disrupt organisations out of ideological or political interests.

Going by the reports of yesterday’s Internet-wide attack, it would appear that the attackers were making a political point, rather than attempting to extort money.

At the time of writing, the Cyberbunker website was inaccessible.

View: Original Article

“Can I resell my MP3s?” redux—federal judge says no

In Capitol Records v. ReDigi, the Boston digital music startup loses.

For years, many a music fan has wondered what we first posited back in 2008: “Can I resell my MP3s?”

After all, as we’ve pointed out in the past, nearly all digital good sales are really licenses rather than sales as conventionally understood. The question here is, can such a license be bought and sold to other users?

On Saturday, a federal court in New York ruled in summary judgment within the case of Capitol Records v. ReDigi. The court decided that no, users do not have the right to resell digital music files, as doing so violates existing copyright law. ReDigi, the judge found, is also liable for secondary copyright infringement and likely will have to pay damages. The judge wrote:

Courts have consistently held that the unauthorized duplication of digital music files over the Internet infringes a copyright owner’s exclusive right to reproduce. See, e.g., A&M Records, Inc. v. Napster, Inc., 239 F.3d 1004, 1014 (9th Cir. 2001). However, courts have not previously addressed whether the unauthorized transfer of a digital music file over the Internet—where only one file exists before and after the transfer—constitutes reproduction within the meaning of the Copyright Act. The Court holds that it does.

Last year, the judge in the case, Richard Sullivan, denied a motion that would have shuttered ReDigi. The Boston-based music startup did not immediately respond to Ars' request for comment. The company has not indicated whether it plans to appeal the decision.

ReDigi argued that it was protected both by fair use and by the first sale doctrine, which allows for a good to be resold. Recently, the Supreme Court ruled in favor of first sale rights, protecting the rights of a used book vendor to import cheaper textbooks from Thailand to the United States. But here, the judge disagreed with ReDigi's premise:

Here, a ReDigi user owns the phonorecord that was created when she purchased and downloaded a song from iTunes to her hard disk. But to sell that song on ReDigi, she must produce a new phonorecord on the ReDigi server. Because it is therefore impossible for the user to sell her “particular” phonorecord on ReDigi, the first sale statute cannot provide a defense. Put another way, the first sale defense is limited to material items, like records, that the copyright owner put into the stream of commerce. Here, ReDigi is not distributing such material items; rather, it is distributing reproductions of the copyrighted code embedded in new material objects, namely, the ReDigi server in Arizona and its users’ hard drives. The first sale defense does not cover this any more than it covered the sale of cassette recordings of vinyl records in a bygone era.

View: Original Article

The Pirate Bay Moves Servers to The United States, F*ck Yeah…

After its failed experiment in North Korea, The Pirate Bay has set course to the land of the free, the United States of America. The infamous BitTorrent site has renamed itself to The Freedom Bay and is promising to censor all torrents uploaded by hostile nations. With help from the U.S. Government the site is now able to withstand any retaliatory nuclear attacks Kim Jong Un may have planned.

When The Pirate Bay ‘moved’ its operation to North Korea last month the site was heavily criticized for teaming up with such a dictatorial regime.

In an attempt to right this wrong, the largest file-sharing site in the universe has teamed up with the only free nation left, the United States of America.

“Many of you rightfully bashed us for siding with a dictatorship,” begins The Pirate Bay’s announcement today.

“We want you to know that we have listened to your critique. So without further due, we hereby announce that we have moved our servers from the evil North Korea to the greatest fuckin nation in the entire world.”

According to The Pirate Bay, the U.S. Government helped them to secure their cloud hosting setup against any attacks from outside, North Korea in particular.

“We have worked closely with the awesome American Government to establish a strong military graded server park that will endure any nuclear attacks that Kim Jong Un and his evil allies will send at us.”

Of course The Freedom Bay will guarantee that people from non-free regimes can’t steer innocents in the wrong direction. To promote freedom the site will therefore remove all files uploaded from hostile territories, including France. American torrents on their turn will enjoy a speed boost.

“Along with this move to the greatest country in the universe, we will soon remove all torrents from North Korea, China, Iran, France and Islamistan. American torrents will be seeded with extra power, to ensure that you’ll get your American dose extra fast,” the Bay writes.

TorrentFreak has spoken to several people in the U.S. who are all reporting a significant speed increase, but The Pirate Bay informed us that the best is yet to come.

Sadly, for South African BitTorrent users some bad news just came in. Coinciding with The Pirate Bay’s move to the United States, TPB and several other BitTorrent sites are set to be blocked in the country.

MyBroadband reports that The South African Federation Against Copyright Theft (SAFACT) have convinced the authorities to implement a new policy directive which will outlaw the BitTorrent protocol, and require ISPs to block access to torrent sites.



In related freedom fighter news, the Aussie Pirate Party has received a takedown request after it issued a poster design that parodied YouTube’s “this video is no longer available due to a copyright claim” notification.

“We were under the impression that parody and satire would be respected, but rather than fight this we decided to comply,” Mozart Olbrycht-Palmer, Deputy Secretary of Pirate Party Australia comments on the action.

“This request is symptomatic of the absurdity of modern copyright maximalism. Time and time again copyright holders treat the public — which has generously allowed them to have these rights — with contempt.”

What a day…. and it’s not over yet.

View: Original Article


PS. Those who don't get it, it's an April Fools joke by TPB. ;)