How Does Anyone Protect themselves from Hacking

Little Rock   If we asked the question plainly: is there any way that we can be protected from hacking? The answer is likely either, “No,” or maybe more optimistically, “not completely.”

At some level this is a problem for everyone. Or at least everyone with access to the internet or perhaps a car or mobile phone or any number of other devices from household appliances to alarm systems to washing machines. Two consultants told a morbid joke among hackers that went like this: what is a self-driving car? Answer: a computer that can go 100 miles per hour. Working for various automobile companies they were fairly easily able to hack a car’s computer system and take over braking, steering and other functions.

The recent worldwide ransomware crisis that may have originated in North Korea, though no one seems positively sure, hit countries, businesses, and others, both high and low, for a potential take that, if fully paid, would have been close to half-a-billion dollars. The US and France have both identified hackers connected with Russia that have penetrated voting systems, though there is still no evidence that they actually tampered with voting. A brief period of inattention where you open a random email might introduce a virus that takes over your computer and compromises your email as we found in the trove of emails hacked from the Clinton campaign and then dumped into the middle of the political process.

Activists and organizers working in autocratic countries with fewer controls on the state are hugely at risk. In Egypt according to a report by The Economist, “nearly 100…hacking attempts” have been made “to gain information from some of the country’s most prominent NGOs and journalists.” There is a lucrative cottage industry of computer companies that sell spying and hacking services to Middle Eastern countries and others without robust local capacity. The Italian company, Hacking Team, was itself hacked in 2015, and it turned out they had contracts with Morocco, the United Arab Emirates, and Egypt. NGOs and others have tracked Fin-Fisher, a German outfit, to Egypt, Saudi Arabia, and Turkey. Netsweeper, a Canadian company, won a $1.2 million contract from Bahrain that was disguised as a website solution contract, but seems to have been used to spy on dissidents. Citizen Lab, a renowned Canadian research institute that tracks these matters followed up on a UAE text message to a human-rights advocate there at his request and discovered the link was from NSO, an Israeli company in the spyware sales business with governments. Citizen Lab found software flaws that allowed NSO to turn an iPhone into a cyberweapon that may have cost as much as $1 million.

Meanwhile the ransomware crisis was the result of a hacked NSA tool, and NSA is now hoping for reauthorization of its phone spying, metadata operation in the USA. When the government is doing it, there’s no way to get governments to crackdown on the abuses. When techies are willing to sell back doors to anyone, locking the front door hardly matters.

For now, Moxie Marlinspike and face-to-face conversations seem like the only sure things out there, and the only one with a 100% guarantee is face-to-face. No sense in being paranoid, but you sure can’t be too careful. Oh, and speaking for the techno-peasants among us, do what I say, not what I do!


Tech Monopolies are Getting Like Airlines in Disregard for Consumers

New Orleans   The current global ransomware hack impacting 74 countries could gross the bad guys up to $3 billion, experts say. A couple of intrepid computer guys, one in Britain and another in the US, thwarted the hacking temporarily in a couple of lucky moves, reportedly. Many believe its impact will continue to be felt as more computers fire up this week.

Digging deeper it turns out once the finger pointing starts that computers are susceptible when they are not updated. A kneejerk reaction is to say, whoops, someone got lazy here or there, but it’s more complicated. Much of it has to do with the business model of Microsoft and the rest of the tech monopolies. They discontinued “supporting,” which really means fixing, Microsoft XP, so if you were a huge outfit that had paid them millions for XP, like FedEx or the British National Health Service, if you didn’t move all of your thousands of computers over to whatever their latest product was, then you were a sitting duck.

Anyone who has a computer operating on Microsoft Windows has mixed feelings about the way they do these updates. On Windows 7, the number of times I might wake up and find that overnight my computer had been updated without so much as a nevermind, and I had lost whatever websites were on my browser for study or had to recover Word and Excel files endlessly, there was time lost and cursing involved. Then in an update recently my computer was caught in an endless update cycle until Windows 10 was installed, their latest shot at the world, forcing me to start all over on everything. Suddenly, 10 doesn’t recognize my camera, and it won’t let me send emails from a right-click from my Passport or tape recorder. They do kind of let you schedule updates, but it’s all brute force. Bottom line, it’s easy to imagine tech departments in a lot of big shops, deciding to pick and choose and turn off updates until they are good and ready, but the notion that Microsoft can sell a product and then stop supporting it is absurd. When my car breaks, GM and Ford will still have the parts and fix it, regardless of how old my vehicle or how many miles I have on it.

Apple is certainly no better, and possibly worse. I’m still trying to figure out how to recover all my iTunes that are supposedly on their cloud, but now they are claiming they don’t recognize any of my passwords, and don’t email me a the protocol for a new one. A friend lost all of what they had on their iPod when they got a different computer. I have the same old, beat-up computer, but I’m in a new world. Google…hmm… maybe better but trying to get on their Project Fi phone program for international calls, they didn’t ever say exactly that the version of the phone it accepted has an X on it, and won’t take any responsibility. Wonder why so many people buy stuff from Amazon, they actually refund on mistakes and have some customer service.

So, hey, we’re all on computers, and we’re all vulnerable, and a lot of us are techno-peasants, and I’ll admit it, so we’re going to mess up, but these huge tech monopolies are treating us like cattle, rather than customers, and that’s going to mean more worldwide computer meltdowns. Don’t blame the victims, and be careful even on the criminals, because the tech monopolies are creating and enabling these disasters.