Advertise Here

Archive for May, 2011

May 25th, 2011 Anti-Piracy, Hot Topic, Net Stuff, Pirate Talk Comments Off

Major Vulnerability Found in Leaked Anti-Piracy Software

Trident Media Guard, the company entrusted by the French government to monitor file-sharing networks for copyright infringement, recently had some of their tools leaked onto the Internet following a security breach. Now researchers have published an analysis, with claims that an auto-update feature makes TMG’s servers vulnerable to remote code injection and execution.

Image is Loading....As detailed in our earlier reports, anti-piracy company Trident Media Guard (TMG) recently failed to secure some of their systems. Blogger and security researcher Olivier Laurelli, aka Bluetouff, originally reported the breach which included a wide open virtual ‘test’ machine containing various tools. These, of course, spilled into the wild.

From the various files made available, some were easily viewable with a standard text editor, others – such as an executable called server_interface.exe – were more tricky. Thanks to a admittedly fairly hostile Full Disclosure security report we now have a clearer idea of what the package is capable of.

Penned by ‘CULT OF THE DEAD HADOPI’, the report refers to TMG as “Too Many Gremlins” along with reports not to expose them to bright lights. In it the server_interface.exe code is described as a Delphi service to which anyone can connect and start sending commands, no authentication (username/password) required. Perhaps even more worrying is a script which accepts auto-updates.

“An attacker can use the ‘Auto Update’ feature (\x82) to force the server to download updates from an evil FTP server he controls. Of course, a downloaded file is executed
just after the download,” write the researchers.

“Hence, anyone who wants to raise an army against Too Many Gremlins, look for an open port on TCP 8500,” they add.

The implication here is that if this software was present on all TMG servers, in addition to being able to turn them on and off at will a hacker could take them over with custom code of his own choosing, potentially creating “an army” which could be used to attack TMG or indeed, anyone else.

Commenting on the research, Bluetouff told us that the discovery of the vulnerabilities mean that the French 3 strikes program might already have been compromised.

“If TMG is vulnerable to injectioning on the system used to provide IP addresses to the HADOPI, the whole process is fu**** up,” he explained.

“Someone could for example inject the Culture Ministry’s IP range, or worse, gain access between TMG and HADOPI’s VPN by stealing certificates… then gain access to a huge amount of personal data,” he added.

“For instance we don’t know if this new ‘test server’ leak can compromise the LAN(S) of TMG with this exploit. Opacity is even for HADOPI. That’s why they went to audit TMG’s infrastructure with the CNIL [French Data Protection Office].”

“Anyway, this new episode shows that HADOPI was right to close their access,” he concludes.

That closure of access is a reference to Hadopi severing their Internet links to TMG once they found out about the leak and resorting to shifting IP addresses around by DVD and the postal system instead. That is hardly efficient and undoubtedly TMG will be working hard to get back into the 21st century.

Read

May 24th, 2011 BitTorrent Clients, BitTorrent Next, Net Stuff, Pirate Talk Comments Off

OneSwarm: The Privacy Aware BitTorrent Client

Developed at the University of Washington, OneSwarm is a BitTorrent client that allows users to share files “anonymously” or with a specific group of friends. These features give users more control over their privacy, while maintaining a decent download speed. The client operates from within an Internet browser and is available for Mac, Windows and Linux.

Image is Loading....Those who’ve been reading our blog for long enough may remember how the MPAA and RIAA accused a printer at the University of Washington of copyright infringement a few years ago.

With their research, the researchers pointed out that gathering evidence on BitTorrent downloaders is full of pitfalls.

Perhaps not coincidentally the same research group is also behind the “privacy preserving” BitTorrent client OneSwarm, currently developed by Tomas Isdal and Michael Piatek, two PhD students at the University of Washington.

Unlike other regular BitTorrent clients, OneSwarm allows users to share files only with a selected group of friends. While regular and public BitTorrent downloads are also supported, the privacy settings allow users to obscure the source of a transfer by sending it through multiple intermediaries.

“Virtually everyone on the Internet is a content producer, but today we only have one model for sharing: sign over the rights to your work to a website, with the hope that it will respect your privacy,” researcher Michael Piatek told us commenting on the importance of privacy on BitTorrent.

“OneSwarm is an attempt to provide an alternative. Our view is that private data sharing is an essential service in free and open societies,” he added. How the various privacy settings work is explained in detail in the video below, posted by the OneSwarm team.

Although OneSwarm has been in development for a while, the researchers have made its source available on GitHub in an update this week. Binaries and the source code are available for Windows, Linux, and Mac OS X platforms.

We tested OneSwarm, and although the browser interface is something you have to get used to, the download speeds are more than reasonable. This is also confirmed in one of the academic papers published by the OneSwarm team (pdf). In a performance comparison they found that it outperformed other “private” sharing options such as Freenet and BitTorrent over Tor.

Users have to be aware though, that while using the ‘public’ mode transfers are not anonymized.

That said, an Open Source effort to allow more privacy controls for BitTorrent users is something that can only be encouraged. The next step many BitTorrent users are looking forward to is the arrival of a fully anonymized BitTorrent client with decent speeds.

Read

May 24th, 2011 Pirate Talk, The Pirate Bay Comments Off

Bored Pirate Bay Movie Uploader Fined $28,200

A Pirate Bay user who said he uploaded a comedy movie because he had nothing to do, must now pay a large sum of money to a rightsholder funded anti-piracy group. The man, who was raided back in 2010, admitted uploading a DVD screener of a comedy movie for fun, an act that has turned out rather less amusing than he had hoped.

In February 2010, armed with a warrant and a representative from the court, anti-piracy group Antipiratgruppen (APG) carried out a raid on a house in Herning, Denmark.

Their previous monitoring of The Pirate Bay had revealed that a user with a Danish IP-address had uploaded a DVD screener copy of the Anders Matthesen movie ‘Black Balloon’. Through the courts APG forced ISP TDC to hand over the personal details connected to the IP address. This led them directly to the individual’s door.

Maria Fredenslund, lawyer with Antipiratgruppen, played up the significance of the raid, claiming that they had uncovered “massive violations of copyright”, although the man – known on The Pirate Bay as Icenfire, appeared to have uploaded very few items.

After taking out an injunction to stop Icenfire making any more releases, APG said they would review their evidence with a view to seeking compensation for their losses. They were going after Icenfire because he was an initial uploader, they insisted, but didn’t intend “to sue him to hell” because they were “nice people”.

That case has now been heard by the District Court in Herning which has sentenced Icenfire, a man in his late 20′s, to pay 150,000 kroner ($28,200) in compensation and 40,000 kroner ($7,500) in legal costs.

“It is a very important decision because it establishes that it is a serious violation of the law to be the first to make illegal material freely available to other users,” said Maria Fredenslund, lawyer with RetttighedsAlliancens (previously known as Antipiratgruppen).

Fredenslund admitted, however, that Icenfire had no financial motives to his file-sharing and only uploaded the movie “for fun” to The Pirate Bay because “he had nothing to do”.

The recent name change to RetttighedsAlliancens (Rightsholders Alliance) for APG is supposed to portray a new image for the group, and a shift in focus.

“Our focus is to create space for new opportunities and new services, and therefore we think that the name Rightsholders Alliance reflects the work better,” Fredenslund recently told Comon.dk. “Furthermore, we have got some more members, and then there is no doubt that the future will about a great educational work, for example around the letter model.”

The “letter model” is the act of sending letters to Internet subscribers after their account has been linked to copyright infringements on file-sharing networks in the hope they will change their ways.

Read

May 23rd, 2011 Anti-Piracy, Evil, Legal, Net Stuff, Pirate Talk Comments Off

Hurt Locker Makers Target Record Breaking 24,583 BitTorrent Users

After being honored with an Oscar for best motion picture last year, the makers of The Hurt Locker have now also secured the award for the biggest file-sharing lawsuit the world has ever witnessed. By targeting at least 24,583 alleged BitTorrent users, Voltage Pictures hopes to recoup millions of dollars in settlements to compensate the studio for piracy-related losses.

Image is Loading....March last year the law firm Dunlap, Grubb and Weaver imported the mass litigation “pay up or else” anti-piracy scheme to the United States.

The initial customers of the lawyers – who are also known as the U.S. Copyright Group – were relatively unknown indie film producers. But this changed when the makers of the Oscar-winning Hurt Locker (Voltage Pictures) joined up and sued 5,000 alleged file-sharers.

Voltage Pictures always threatened that this figure was just the start, and it now turns out that they were speaking the truth. In their quest to recoup their claimed losses, the studio has now added nearly 20,000 new defendants to the lawsuit, bringing the total up to 24,583.

This turns the Hurt Locker case into the largest BitTorrent lawsuit in history, breaking the two week old record set by The Expendables case earlier this month.

In a status report obtained by us, Voltage Pictures lawyers give the U.S. District Court of Columbia an overview of the massive list of alleged BitTorrent downloaders they filed complaints against. This report reveals that most defendants are subscribers of Comcast (10,532), followed by Verizon (5,239), Charter (2,699) and Time Warner (1,750).

The report also provides details on the agreements the lawyers have struck with various ISPs regarding the release of subscribers’ personal information. There is currently no agreement with Comcast, while Charter has promised to look up 150 IP-addresses a month and Verizon 100 a month for all ongoing BitTorrent lawsuits.

The above indicates that it may take several years before some ISPs hand over the requested information. It would take Verizon more than a decade to look up all the personal details in the various BitTorrent lawsuits, which begs the question of how long an ISP is allowed to store such private details.

The Hurt Locker case is currently being handled by former RIAA-lobbyist Judge Beryl Howell. She now has to decide if Voltage Pictures is allowed to proceed their legal endeavor and under what restrictions.

During the course of the year many of the defendants in the Hurt Locker case who were already subpoenaed have claimed innocence. However, last week Judge Howell decided to dismiss all 119 motions to dismiss, quash, and for protective orders en masse, adding them to the pool of targets.

Defendants whose ISPs give up their personal details are expected to receive a settlement offer from Voltage Pictures. The ultimate goal is not to take any of the individual cases to court, but to get alleged infringers to pay a substantial cash settlement to make legal action go away.

The math shows that this scheme could turn out to be extremely profitable for the parties involved. If ‘only’ 10,000 of the alleged infringers eventually pay a $2,000 settlement this would bring in $20 million. In comparison, that’s more than the $17 million The Hurt Locker grossed at the U.S. box office.

The Status Report


Read

May 22nd, 2011 Anti-Piracy, Evil, Evil Next, Hot Topic, Net Stuff, Peer to Peer Comments Off

ICE Seizes More Domains Today, Admin Says “We’ll Be Back”

Yesterday and without warning, US authorities resumed “Operation In Our Sites” seizing several domain names associated with copyright infringement and counterfeiting. Today, yet more domains were added to the growing list. We caught up with one site owner who told us that while they were taken by surprise by a “pointless” seizure, they’ll soon be back.

As indicated in our exclusive report yesterday, the Department of Justice (DOJ) and Immigration and Customs Enforcement (ICE) have resumed “Operation In Our Sites”, the domain name seizing initiative designed to crack down on copyright infringement.

Following on from the most recent set of seizures in February, yesterday’s action represents the fourth phase of the operation. The following six domains were taken:

* Re1ease.net
* Watchnewfilms.com
* Dvdcollectionsale.com
* Dvdscollection.com
* Dvdsetsonline.com
* Newstylerolex.com

Today the list has grown again to include the following:

* mygolfaccessory.com
* overbestmall.com

We managed to catch up with PiraCee, an admin at Re1ease.net, a portal that did not host any copyrighted material itself but linked to movie and TV shows on sites like Megavideo.com.

“We were not informed [that the seizure was imminent] in any way,” he told us. “I was just presented with the ICE image upon doing a page refresh.”

For those unfamiliar with the site, Re1ease.net was founded following PiraCee’s split with Ninjavideo.net in late 2008. NinjaVideo, readers will recall, succumbed to ICE raids in 2010 and never recovered.

While undoubtedly quite busy with around 10,000 visitors a day, Re1ease.net was not one the largest sites of its type on the Internet. Indeed, others with significantly higher levels of traffic remain intact, untouched by ICE.

“I don’t believe we were doing anything wrong at all. Many higher profile sites remain unaffected,” PiraCee told us.

So why was Re1ease singled out? Despite being operated from outside the United States, did they have a bad attitude to DMCA takedowns perhaps?

“We have only ever had two DMCA takedown requests – for Source Code and Hobo With a Shotgun,” PiraCee told us. “We removed both.”

But despite losing their domain, a body-blow event for any site, Re1ease.net aren’t giving in.

“We will be back,” said PiraCee, as the site mulled over a possible domain change this morning. “Give us about a week.”

That was a few hours ago though, and things move very quickly in this game.

Scrrls.net will be our new domain and will be up and running soon as we fix our backend,” PiraCee assured us. Indeed, it appears to be fully functioning now.

We continues to monitor developments in phase 4 of Operation in Our Sites and if any additional domains are seized we will update this report.

Read

Advertise Here Advertise Here

  • Featured Video

WideBluer theme is brought to you by Quasargaming.com online slot games such as Book of Ra Online, Sizzling Hot Deluxe and Novoline Spielen