The Information Warfare Monitor (IWM), a research collaboration between the Citizen Lab at the Munk School of Global Affairs, University of Toronto and the SecDev Group, an operational think tank based in a Ottawa, Canada, has uncovered an attempt to lure pro-revolution Syrian Facebook users into providing their login credentials by using a fake URL and login page.
Posts tagged “Syria”
Source: Jim Crogan, Fox News
“The security forces of President Bashar Assad has moved ahead on multiple fronts. An estimated 10,000 people have been arrested and there are reports that some dissidents have been tortured to reveal their Facebook passwords. Foreign journalists have been banned from entering the country and access to the Internet and the mobile phone network has been curtailed.
Meanwhile, a shadowy group calling itself the Syrian Electronic Army (SEA) has orchestrated an array of cyber attacks in three key areas: spamming popular Facebook pages, such as President Barack Obama, the U.S. Department of State, French President Nicolas Sarkozy and Oprah Winfrey with pro-Assad propaganda; defacement attacks against Syrian opposition group websites, and defacement of Western websites.
“It’s the first case of an open, organized and orchestrated pro-government web attack group with a public presence on a national network in the Arab world,” explained Helmi Noman, a senior researcher with the OpenNet Initiative, a collaborative partnership between the Citizen Lab inside the Munk School of Global Affairs at the University of Toronto, the SecDev Group in Ottawa and the Berkman Center at Harvard University.”
For full original article, click here.
PRI’s The World spoke with Professor Ron Deibert about the emergence of the Syrian Electronic Army.
In Syria, one of the largest anti-government protests so far turned deadly today. In the city of Hama activists say security forces fired on demonstrators killing at least 34 people. Syria’s government also cut Internet service across most of the country, effectively blocking a key portal of protest. But it’s not just regime opponents who are mobilizing online, so are government supporters involved with something called the Syrian Electronic Army. It aims to thwart not just the protestors, but also their sympathizers in the West.
Click here for the audio.
Today, it was reported by Renesys that beginning at 3:35 UTC and in the course of an hour and a half, two-thirds of Syrian networks had become disconnected from the global Internet.
This latest Internet black out is an example of just-in-time blocking—a phenomenon in which access to content and information communication technologies are blocked in response to sensitive political situations when the technology and content may have the greatest potential impact. It is suspected that the severing of Syria’s Internet is in direct response to the intensification of revolts this week, sparked in part by the death and torture of 13 year old Hamza Ali al-Khateeb, as well as in memory of at least 50 other children killed during the protests. This action follows other MENA states severing access in reaction to protest on ground with Egypt shutting down national connectivity on January 28, 2011 and access blockages in Libya and Bahrain in February. For further analysis, see today’s OpenNet Initiative blogpost.
On CBC Dispatches, Rick MacInnes-Rae interviews Ron Deibert, Director of the Citizen Lab in the Munk School of Global Affairs at the University of Toronto, about the way governments in the Middle East are using the internet to fight back against their opponents – and Canada’s role too.
Click here for interview.
Starting at 3:35 UTC today (6:35am local time), approximately two-thirds of all Syrian networks became unreachable from the global Internet. Over the course of roughly half an hour, the routes to 40 of 59 networks were withdrawn from the global routing table.
For the full original article, see here
For weeks, Syrian democracy activists have used Facebook and Twitter to promote a wave of bold demonstrations. Now, the Syrian government and its supporters are striking back — not just with bullets, but with their own social-media offensive.
Mysterious intruders have scrawled pro-government messages on dissidents’ Facebook pages. Facebook pages have popped up offering cyber tools to attack the opposition. The Twitter #Syria hashtag — which had carried accounts of the protests — has been deluged with automated messages bearing scenes of nature and old sports scores.
For full original article, see here
“Amid popular uprisings in Syria, Facebook users in the country logging into the secure HTTPS version of the social networking site are finding themselves to be the targets of an ongoing man-in-the-middle attack detected on various Internet service providers. Although it is unclear who is behind the attack, the Electronic Frontier Foundation links the attack to allegations that the Syrian Telecom Ministry, under the auspices of the Syrian government, is the perpetrator. It is suspected that the Ministry has replaced Facebook’s security certificate with a fake unsigned one. In this attack, users’ browsers propagate a SSL error on the Facebook Web site because the certificate is not trusted by the browser. Users may ignore the warning by clicking through it, and in doing so, allowing the attacker to access their Facebook account and control and collect information. Some suspect that this is a ruse by Syrian authorities to spy on activists using the site to coordinate protests.”
“Yesterday we learned of reports that the Syrian Telecom Ministry had launched a man-in-the-middle attack against the HTTPS version of the Facebook site. The attack is ongoing and has been seen by users of multiple Syrian ISPs. We cannot confirm the identity of the perpetrators.
The attack is not extremely sophisticated: the certificate is invalid in user’s browsers, and raises a security warning. Unfortunately, because users see these warnings for many operational reasons that are not actual man-in-the-middle attacks, they have often learned to click through them reflexively. In this instance, doing so would allow the attackers access to and control of their Facebook account. The security warning is users’ only line of defense.”
“He has got two Sim cards, two pseudonyms, a dangerous addiction to nicotine and when his laptop is open, which it always is, his fingers dance across the touch pad in a mad ballet of digital information sharing.
‘That was AP calling,’ says the self-declared Syrian cyber activist, referring to the international news agency whose competitor Reuters was recently expelled from Damascus for reporting on the Syrian uprising. ‘They wanted us to confirm with video. Confirm with video? Not yet! I mean, come on!’ ”
From Al Jazeera