Showing posts with label information. Show all posts
Showing posts with label information. Show all posts

Wednesday, 3 November 2010

Google to block data from Facebook

Google Inc will begin blocking Facebook and other Web services from accessing its users' information, highlighting an intensifying rivalry between the two Internet giants.

Google will no longer let other services automatically import its users' email contact data for their own purposes, unless the information flows both ways. It accused Facebook in particular of siphoning up Google contact data, without allowing for the automatic import and export of Facebook users' information.

Facebook, with more than 500 million users, relies on email services such as Google's Gmail to help new users find friends already on the network. When a person joins, they are asked to import their Gmail contact list into the social network service. Facebook then tells the user which email contacts are also on the social network.

In a statement, Google said websites such as Facebook "leave users in a data dead end." Facebook did not immediately provide a comment on Friday.

While Google framed the move as an attempt to protect its users' ability to retain control of their personal data on the Internet, analysts said the move underscored the battle between Google, the world's largest search engine, and Facebook, the dominant Internet social network.

"The fundamental power dynamic on the Web today is this emerging conflict between Facebook and Google," said Gartner analyst Ray Valdes. "Google needs to evolve to become a big player in the social Web and it hasn't been able to do that."

"If people do search within Facebook, if they do email within Facebook, if they do instant messaging within Facebook, all of these will chip away at Google's properties."

Reciprocity 
Google said that while it makes it easy for other Web services to automatically import a user's contact data, Facebook was not reciprocating.

"We have decided to change our approach slightly to reflect the fact that users often aren't aware that once they have imported their contacts into sites like Facebook, they are effectively trapped," Google said in an emailed statement.

"We will no longer allow websites to automate the import of users' Google Contacts (via our API) unless they allow similar export to other sites," Google said.

Some technology blogs were reporting that Facebook still appeared to be allowing users to import their Google Gmail contacts into Facebook as of mid-day Friday.

A Google spokesman told Reuters that the company had begun enforcing the new rules "gradually."

Google also stressed that users will still be able to manually download their contacts to their computers in "an open, machine-readable format" which can then be imported into any Web service.

Google has coveted the wealth of information that Facebook's half-billion users generate and amass. Having access to that data could be especially valuable to Google, whose business model is based on allowing its users to find any information anywhere on the Web.

"Google is trying to use the leverage that it has to get as much access to the Facebook social graph (network of friends and interests) that it can, so it can provide the best search function that it can," said Wedbush Securities analyst Lou Kerner. "The more data Google has access to the better its search results are going to be."

Last month, Facebook announced a deal with Microsoft Corp allowing Facebook information -- such as Web pages that Facebook users have endorsed by clicking on "like" buttons -- to appear within Microsoft search results.

Google Chief Executive Officer Eric Schmidt said in September the company would add social "layers" to many of its existing Web products in the coming months, following its less-than-stellar track record of developing stand-alone social networking products like Orkut and the recently shuttered Wave service.

Google also has acquired a slew of small social networking companies in recent months, including Slide and social payment company Jambool.

Gartner's Valdes said access to the explosion of new types of data generated by Web services, such as location-based services, would provide further flashpoints between Google and Facebook.

"It's one skirmish among many to come," said Valdes.

Google's shares closed Friday's regular session down 81 cents at $625.08.
Share/Bookmark

Saturday, 31 July 2010

How 100 mn Facebook users' info got leaked

Facebook SecurityThe man who harvested and published the personal details of 100 million Facebook users has said that he only disclosed what was already public information.

Ron Bowes, a security consultant, used a piece of code to scan Facebook profiles, collecting data not hidden by the user's privacy settings.

The list, which contains the URL of every searchable Facebook user's profile, name and unique ID, has been shared as a downloadable file. Bowes said that he did it as part of his work on a security tool.

"I'm a developer for the Nmap Security Scanner and one of our recent tools is called Ncrack," the BBC quoted him as saying. "It is designed to test password policies of organisations by using brute force attacks; in other words, guessing every username and password combination," he added.

By downloading the data from Facebook, and compiling a user's first initial and surname, he made a list of the most common probable usernames to use in the tool.

In theory, researchers could then combine this list with a catalogue of the most commonly used passwords to test the security of sites. Similar techniques could be used by criminals for more nefarious means.

Bowes said his original plan was to "collect a good list of human names that could be used for these tests.” "Once I had the data, though, I realised that it could be of interest to the community if I released it, so I did," he added.

Bowes confirmed that all the data he harvested was already publicly available but acknowledged that if anyone now changed their privacy settings, their information would still be accessible.

"If 100,000 Facebook users decide that they no longer want to be in Facebook's directory, I would still have their name and URL but it would no longer, technically, be public," he said.

Bowes said that collecting the data was in no way irresponsible and likened it to a telephone directory. "All I've done is compile public information into a nice format for statistical analysis," he said

In a statement, Facebook confirmed that the information in the list was already freely available online. "No private data is available or has been compromised," the statement added.

Bowes supported the view by adding that harvesting this data highlighted the possible risks users put themselves in. "I am of the belief that, if I can do something then there are about 1,000 bad guys that can do it too. For that reason, I believe in open disclosure of issues like this, especially when there's minimal potential for anybody to get hurt.

"Since this is already public information, I see very little harm in disclosing it," he said Facebook has a default setting for privacy that makes some user information publicly available. People have to make a conscious choice to opt-out of the defaults.
Blogged with the Flock Browser
Share/Bookmark

Monday, 12 July 2010

Google remains at risk in China

China’s government confirmed that it renewed Google Inc’s Internet license, after the US company’s local venture pledged to allow its Web content to be supervised by regulators, the official Xinhua news agency said.

Beijing Guxiang Information Technology Co, operator of Google’s China website, has undertaken to comply with Chinese law and provide no law-breaking content, Xinhua reported, citing an unidentified official at the Ministry of Industry and Information Technology.

Getting the go-ahead gives Google, which disclosed China’s decision to renew its license last week, a chance to win search share lost to market leader Baidu Inc and woo advertisers put off by the company’s half-year dispute with the government. Some Google operations were in jeopardy as it balked at censorship rules that require companies to filter Web content.

Google was surprised by how quickly China renewed the company’s Internet-services license, Chief Executive Officer Eric Schmidt said in a July 9 interview. There were no formal negotiations between Google and Chinese officials over the decision, a person familiar with the matter said.

China renewed the license through 2012, and officials will revisit the decision annually. China’s government can still use its authority to yank the license if it deems Google’s compliance wanting, said Sandeep Aggarwal, an analyst at Caris & Co. in San Francisco.

‘At risk’
“Google remains at risk in China,” Aggarwal said. “Chinese regulators gave them a back door.”

Google, owner of the world’s most popular search engine, went public with its dispute in January, saying it was no longer willing to comply with China’s filtering regulations.

“We look forward to continuing to provide Web search and local products to our users in China,” the company said on its July 9 blog. Spokeswoman Jessica Powell declined to say whether China had imposed any conditions on renewing the permit.

Google, based in Mountain View, California, won approval after changing the way it handled search requests. After closing its Chinese search engine in March, it had been automatically redirecting users to its unfiltered site in Hong Kong. To allay officials’ concerns, Google added an extra hurdle for Chinese Web surfers, directing them to a landing page that in turn pointed them to the Hong Kong site.
Share/Bookmark

Sunday, 31 January 2010

How to beat a spammer

Spam messages are an incredible nuisance for most web users. But, now scientists claim to have developed an effectively "perfect" method for blocking the most common kind of spam, using spammers’ own trickery.

An international team, led by International Computer Science Institute in Berkeley and California University, has come up with a system that deciphers the templates a “botnet” is using to create spam. These templates are then used to teach filters what to look for, the ‘New Scientist’ reported. According to the scientists, the system works by exploiting a trick that spammers use to defeat email filters.

As spam is churned out, subtle changes are typically incorporated into the messages to confound spam filters. Each message is generated from a template that specifies message content and how it should be varied.

The team reasoned that analysing such messages could reveal the template that created them. And, since the spam template describes the entire range of the emails a bot will send, possessing it might provide a watertight method of blocking spam from that bot.

To test their idea, the team installed a previously captured software bot onto a machine. After analysing 1,000 emails generated by this compromised machine, less than 10 minutes’ work for most bots, the scientists were able to reverse-engineer the template.

Knowledge of that template then enabled filters to block further spam from that bot with 100% accuracy. The new system did not produce a single false positive when tested against more than a million genuine messages and the biggest advantage is this false positive rate, team member Andreas Pitsillidis said.

“This is an interesting approach which really differs by using the bots themselves as the oracles for producing the filters,” added Michael O’Reirdan , chairman of the messaging anti-abuse working group, a coalition of technology companies.
Share/Bookmark

Sunday, 24 January 2010

China slams US criticism of Internet control

China needs no lessons about its Internet from the United States, the head of an online media association said through official media on Saturday, after the United States rapped Beijing over information freedom.

Following a speech by U Secretary of State Hillary Clinton, on Thursday, Beijing has issued a stinging response that it is jamming the free flow of words and ideas on the Internet, accusing the United States of damaging relations between the two countries by imposing its "information imperialism" on China. In her speech in Washington, Clinton cited China as among a number of countries where there has been "a spike in threats to the free flow of information" over the past year. She also named Tunisia, Uzbekistan, Egypt, Iran, Saudi Arabia and Vietnam. Washington, meanwhile, carried its message on Internet freedom directly to Chinese bloggers. The U S Embassy in Beijing, and consulates in Shanghai and Guangzhou, hosted Internet-streamed discussions with members of the blogging community on Friday afternoon - the latest example of Washington's outreach to Chinese bloggers as a way of spreading its message.

Clinton's speech came on the heels of a Jan. 12 threat from Google to pull out of China unless the government relented on censorship. Eric Schmidt, Google's chief executive, said on Thursday that the company hoped to find a way to maintain a presence in China but intended to stop censoring search results within "a reasonably short time."

"On the Internet question, China doesn't need any lessons from the United States on what to do or how," said Min Dahong, Chairman, Beijing Association of Online Media.

Internet control is considered a critical matter of state security in China, and Beijing is not expected to offer any concessions. Beijing promotes Internet use for commerce, but heavily censors content it deems pornographic, anti-social or politically subversive and blocks many foreign news and social media sites, including Twitter and Facebook and the popular video site YouTube.

Responses to the Google issue have ranged widely among Chinese Internet users, with some placing flowers at its Beijing headquarters and others penning screeds bidding good riddance.

U S State Department officials have said they intend to lodge a formal complaint with Chinese officials soon over the Google matter. Clinton not only urged China to investigate the cyber intrusions but openly publish its findings.
Share/Bookmark

Sunday, 17 January 2010

Facebook lands women into Dark Net

A mother and her two daughters logged onto Facebook from mobile phones last weekend and wound up in a startling place - strangers' accounts with full access to troves of private information.

The glitch - the result of a routing problem at the family's wireless carrier, AT&T - revealed a little known security flaw with far reaching implications for everyone on the Internet, not just Facebook users.

In each case, the Internet lost track of who was who, putting the women into the wrong accounts. It doesn't appear the users could have done anything to stop it.

The problem adds a dimension to researchers' warnings that there are many ways online information - from mundane data to dark secrets - can go awry.

Several security experts said they had not heard of a case like this, in which the wrong person was shown a Web page whose user name and password had been entered by someone else. It's not clear whether such episodes are rare or simply not reported. But experts said such flaws could occur on e-mail services, for instance, and that something similar could happen on a PC, not just a phone.

"The fact that it did happen is proof that it could potentially happen again and with something a lot more important than Facebook," said Nathan Hamiel, founder of the Hexagon Security Group, a research organization.

Candace Sawyer, 26, says she immediately suspected something was wrong when she tried to visit her Facebook page Saturday morning.

After typing Facebook.com into her Nokia smart phone, she was taken into the site without being asked for her user name or password. She was in an account that didn't look like hers. She had fewer friend requests than she remembered. Then she found a picture of the page's owner.

"He's white, I'm not," she said with a laugh. Sawyer logged off and asked her sister, Mari, 31, her partner in a dessert catering company, and their mother, Fran, 57, to see whether they had the same problem on their phones.

Mari landed inside another woman's page. Fran's phone - which had never been used to access Facebook before - took her inside yet another stranger's page, one belonging to a young woman from Indiana. They sent an e-mail to one of their own accounts to prove it.

They were dumbfounded. "I thought it was the phone. Maybe this phone is just weird and does magical, horrible things and I have to get rid of it," said Candace Sawyer.

The women, who live together in East Point, Georgia, outside Atlanta, had recently upgraded to the same model of phone and all used the same carrier, AT&T. The problem wasn't in the phones. It was a flaw in the infrastructure connecting the phones to the Internet.

That illuminates a grave problem. Generally Web sites and computers are compromised from within. A hacker can get a Web page or computers to run programming code that they shouldn't. But in this case, it was a security gap between the phone and the Web site that exposed strangers' Facebook pages to the Sawyers. Misconfigured equipment, poorly written network software or other technical errors could have caused AT&T to fumble the information flowing from the Sawyers' phones to Facebook and back.

AT&T spokesman Michael Coe said its wireless customers have landed in the wrong Facebook pages in "a limited number of instances" and that a network problem behind those episodes is being fixed.

It's unclear how many people were affected by the problem the Sawyers discovered, and whether it was limited to Facebook.

The reason all three women experienced the glitch is a function of the way cellular networks are designed. In some cases, all the mobile Internet traffic for a particular area is routed through the same piece of networking equipment. If that piece of equipment is misbehaving or set up incorrectly, strange things happen when computers down the line receive the data.

Usually that means a Web site simply won't load, said Alberto Solino, director of security consulting services for Core Security Technologies. In the Sawyers' case, ``somehow they got the wrong user but they could keep using that account for a long period of time. That's what's strange,'' he said.

The AP tried to contact two of the people whose Facebook pages were exposed to the Sawyers, but the calls and e-mails were not returned. It's unclear whether they are also AT&T customers, though security experts said that's likely the case.

Indeed, it was the case in a similar incident in November. Stephen Simburg, 25, who works in marketing, was home for Thanksgiving in Vancouver, Washington, when he logged onto Facebook from his cell phone. He didn't recognize the people who had written him messages.

"I thought I had gotten really popular all of a sudden, or something was wrong," he said. Then he saw the picture of the account owner, A young woman.

He got her e-mail address from the site, logged off and wrote the woman a message. He asked whether he had met her at some point and she had borrowed his phone to check her Facebook account. "No," she wrote back, "but I was just telling my family that I ended up in your profile!"

Simburg and the woman figured out they were both using AT&T to access Facebook on their phones.
Share/Bookmark

Wednesday, 16 December 2009

100 times faster, cooler PCs soon

Indian-origin researcher Sanjeev John and his colleague Xun Ma of the University of Toronto have discovered new behaviour of light which could lead to cooler and faster computing.

The two quantum optics researchers have discovered "new behaviours'' of light changes within photonic crystals that could lead to faster optical information processing and compact computers that don't overheat.

"We discovered that by sculpting a unique artificial vacuum inside a photonic crystal, we can completely control the electronic state of artificial atoms (light) within the vacuum,'' lead author Xun Ma was quoted as saying in a statement.

"This discovery can enable photonic computers that are more than a hundred times faster than their electronic counterparts, without heat dissipation issues and other bottlenecks currently faced by electronic computing,'' said Ma.

Added Sanjeev John, "We designed a vacuum in which light passes through circuit paths that are one one-hundredth of the thickness of a human hair, and whose character changes drastically and abruptly with the wavelength of the light. A vacuum experienced by light is not completely empty, and can be made even emptier. It's not the traditional understanding of a vacuum.''

Ma said, "In this vacuum, the state of each atom - or quantum dot - can be manipulated with color-coded streams of laser pulses that sequentially excite and de-excite it in trillionths of a second.

"These quantum dots can, in turn, control other streams of optical pulses, enabling optical information processing and computing.''

The researchers, whose original aim was to gain a deeper understanding of optical switching as part of an effort to develop an all-optical micro-transistor that could operate within a photonic chip, ended up discovering a new and unexpected dynamic switching mechanism.

Their research also led to the discovery of corrections to one of the most fundamental equations of quantum optics, known as the Bloch equation.

Said John, "This new mechanism enables micrometer scale integrated all-optical transistors to perform logic operations over multiple frequency channels in trillionths of a second at microwatt power levels, which are about one millionth of the power required by a household light bulb.

"That this mechanism allows for computing over many wavelengths as opposed to electronic circuits which use only one channel, would significantly surpass the performance of current day electronic transistors.''

The study has been published in Physical Review Letters.
Share/Bookmark

Monday, 3 August 2009

Think twice before pressing Ctrl+C

Everytime you do a harmless keyboard shortcut Ctrl+C in your computer, the text you copy online may be stolen on the web.

This copied data is accessible on the Internet when you visit websites that use a combination of javascript and ASP or any server-side-language like jsp, php, from which the data that you copy can be transferred to another server. Most websites are javascript enabled.

Not convinced? Try copying some text and just visit sourcecodesworld.com/special/clipboard.asp, a website that provides free source codes and projects. You necessarily need not even press the ‘paste’ button.

The ‘paste’ happens automatically. The website just provides an example of what could potentially happen to you, especially if you have copied your credit card details, bank details or any other sensitive information.
Share/Bookmark

Friday, 5 June 2009

Google launches 'Google Squared'

Google, already the king of Internet search, rolled out an experimental new search product called "Google Squared."

Google Squared does not provide a list of links to Web pages, like with a traditional Google search, but presents information derived from a query in a spreadsheet-like grid called a "square." Users of google.com/squared can then build, modify and refine their "square" through further Web searches.

"Unlike a normal search engine, Google Squared doesn't find webpages about your topic -- instead, it automatically fetches and organizes facts from across the Internet," Google said in a preview of the product last month. In a blog post on Wednesday, Google said Google Squared could be useful when a user needs to make multiple searches to find the information they want.

"It essentially searches the Web to find the types of facts you might be interested in, extracts them and presents them in a meaningful way," Google said. "If your square isn't perfect at the beginning, it's easy to work with Google Squared to get a better answer," Google added.

The Mountain View, California-based Internet search giant cautioned that Google Squared remains experimental and the technology behind it "is by no means perfect."
Share/Bookmark