Deliberation precedent to a punitive strike on Syrian targets continues, with cyber operations widely expected to play a part. Assad's Syrian Electronic Army (SEA) is relatively quiet today, although pro-regime hacktivists' second stringers commit minor acts of cybervandalism. Yesterday's claims that hacktivists have emails showing the US Joint Staff faked chemical attacks sink without trace—failed black propaganda.
Cyber conflict makes strange bedfellows. Anonymous claims to have "taken down" the SEA and confirmed Krebs' identification of the group's leadership.
Other Anonymous cells call for cyber jihad (against the US and Israel) on September 11, and protests against Brazilian corruption on September 7. Such #Ops have a weak recent track record.
Researchers at Georgetown and the Naval Research Laboratory (NRL) show how Tor can be de-anonymized by traffic correlation, that is, through determined use of metadata. (NRL should know—it invented Tor.)
Supermicro's Baseboard Management Controller is vulnerable to data theft. Familiar threats assume new forms: Citadel, Backdoor.Darkmoon, and NetTraveler. Some good news: Hand-of-Thief proves lamer than feared, and a glut of commodity botnets cuts into black market profits. As Kim Dotcom exits Mega for the music biz, a developer says he pwns Mega's master key.
State-sponsored cyber attacks are expected to increase (routers and switches being preferred targets).
In industry news, In-Q-Tel invests in Socrata, Spry Methods buys James Secure Solutions, and Arbor acquires Packetloop. Silent Circle offers an anonymous messaging tool. Brazil's government is developing a secure alternative to Gmail and Hotmail.
Business Insider claims Russia's FSB penetrated Wikileaks.