Category Archives: Iran

11/15/12

Iran Sites Open 2 Joomla -K-CMS Hacking

Iran Sites Open 2 Joomla -K-CMS Hacking

gAtO wAs – in the kitty box scratching and found some sites in Iran that have the same problem that Syria has. Outdated older Content Management systems like Joomla and KCMS_1.0[2] and many other sites have Microsoft Visual Studio.NET 7.0. These require more research as to vulnerabilities but we are working on that. But gAtO found you guessed it Joomla 1.5 CMS all over the place. The same vulnerabilities that Syria has they have

This is easy to do with any browser do a search on any search engine “site:.gov.ir” and you will get a list of all the .gov.ir sites everywhere. Now remember with a translate button(on your browser) you can read these site in any language you want. The other trick is once you get to any site on your browser just go to >>Edit>>Source Code. and lot’s of sites will tell you the content creation: All sites in any language the HTML is always in english.

<meta name=”generator” content=”Joomla! 1.5 – Open Source Content Management” />

If your smart and are doing this in a government site I would remove this information. Now besides Joomla 1.5 gAtO found lots of sites with KCMS_1.0[2] and you guessed it again they are older versions and have vulnerabilities.  So now gAtO will publish this list and update it as we find more and more vulnerabilities. Why doe gATo do this. It my way of showing the world that anyone can help, anyone with any talent can contribute to making this world a better world. I hope this informtion helps someone to be free- gAtO oUt.

Some site have this warning be careful :This site may harm your computer.

Research Notes:

IRAN site:.gov.ir

http://xforce.iss.net/xforce/xfdb/33437 Apr 4, 2007 – CVE-2007-2106: Directory traversal vulnerability in index.php in Kai Content Management System (K-CMS) 1.x allows remote attackers to ..

K-CMS (Kai Content Management System) could allow a remote attacker to include arbitrary files. A remote attacker could send a specially-crafted URL request to the index.php script using the current_theme parameter to specify a malicious file from a remote system, which could allow the attacker to execute arbitrary code on the vulnerable Web server.

Many of Irans site use ArPortal 7.1.2 while many others us Microsoft Visual Studio.NET 7.0

<meta name=”generator” content=”Expans! 1.5 – Open Source Content Management

[1] security tips for Joomla Websites http://www.itoctopus.com/10-security-tips-for-your-joomla-website

<META NAME=”GENERATOR” CONTENT=”ArianaPortal 7.1.2″>

[2] <meta name=”generator” content=”KCMS 1.0″ />

K-CMS (Kai Content Management System) index.php file include

http://www.sarvabad.gov.ir/

<meta name=”generator” content=”KCMS 1.0” />

http://www.abhar.gov.ir/index.php?limitstart=63

<meta name=”generator” content=“Joomla! 1.5 – Open Source Content Management. Developed By MamboLearn.com” />

http://www.abhar.gov.ir/

<meta name=”generator” content=”Joomla! 1.5 – Open Source Content Management. Developed By MamboLearn.com” />

pishva.gov.ir

<meta name=”generator” content=”Expans! 1.5 – Open Source Content Management

http://www.zanjan.gov.ir/

<meta name=”generator” content=”Joomla! 1.5 – Open Source Content Management. Developed By MamboLearn.com” />

http://chaloos.gov.ir/

<meta name=”generator” content=”Joomla! 1.5 – Open Source Content Management” />

http://mianeh.gov.ir/

<meta name=”generator” content=”Joomla! 1.5 – Open Source Content Management. Developed By Mambolearn.com” />

http://easabt.gov.ir/protocol/

<meta name=”generator” content=”Joomla! 1.5 – Open Source Content Management. Developed By Navid Iranian Co. Ltd” />

Saman Information Structure

http://ea.mim.gov.ir/

http://www.sadra-ntoir.gov.ir/

<meta name=”generator” content=”Joomla! 1.5 – Open Source Content Management” />

http://www.sarvabad.gov.ir

News – ????? ??? ????? ? ????? ???

sabtyazd.gov.ir/index.php?option=com_newsfeeds…id…

This site may harm your computer.

Joomla 1.5.15 Released. The Joomla Project is pleased to announce the immediate availability of Joomla 2.5.0. This is a security release. Version 2.5.0 is is the

www.khodabandeh.gov.ir/ - Translate this page

Copyright © 2009 — Webdesign aus Tirol – All Rights Reserved. Template Demo Joomla 1.5 Template by pc-didi.. Translate By : Meisam Heidarzadeh | hotfa.ir.

www.sabtyazd.gov.ir/index.php?… - Translate this page

This site may harm your computer.

C:\Inetpub\vhosts\sabtyazd.gov.ir\httpdocs\libraries\joomla\session\session. php %PDF-1.5 3 0 obj < > endobj 4 0 obj < > stream x?U?k A ?? ? :? ?Zz s

http://www.leader.ir/langs/en/

http://www.president.ir/en/

http://www.saamad.ir

iten.behdasht.gov.ir – Site News

Share on TumblrSubmit to StumbleUponhttp://uscyberlabs.com/blog/wp-includes/images/smilies/icon_confused.gifDigg ThisSubmit to reddit
07/5/12

The Deep Dark Web -Book

gAtO sAy -mEoW you all- we have a new book coming out soon “The Deep Dark Web” and just wanted to write this as the foreword for the book, I thought it was interesting …//looking for peer review of book…write us

This book is to inform you about “The Deep Dark Web”. We hear that it’s a bad place full of crooks and hackers, but it is more a place were you have total anonymity as an online-user and yes there are ugly places in the dark web but it’s a small part of it. What it really is all about it’s freedom of expression, freedom of speech worldwide, supported by “us/we” the users of the network. It’s not controlled by any government, but blocked by a few like Syria, Iran, Ethiopia, China to name a few governments that want to deny their own people free access to information, to speak freely about their grievances and unite to tear down there walls of oppression.

Pierluigi and I (gAtO) share a passion for cyber security we write different blogs Pierluigi has http://securityaffairs.co/wordpress/ and my site is uscyberlabs.com . We also write at other blogs and print media. We did’nt know it at the time but, we were writing cyber history as the 2011- 2012 cyber explosion took off we were at ground zero writing about Stuxnet, HBGrays, the LulzPirates, Anonymous but the Arab Spring was an awaking :

The recent revolution in Egypt that ended the autocratic presidency of Hosni Mubarak was a modern example of successful nonviolent resistance. Social Media technologies provided a useful tool for the young activist to orchestrate this revolution. However the repressive Mubarak regime prosecuted many activists and censored a number of websites. This made their activities precarious, making it necessary for activists to hide their identity on the Internet. The anonymity software Tor was a tool used by some bloggers, journalists and online activists to protect their identity and to practice free speech.

Today we have lot’s of anonymity communication tools I2P, Freenet, Gnunet and Tor to name a few. Why did the TorProject.org Tor-.onion network become the facto application to get free, private, anonymized Internet access. My conclusion is it’s humble beginnings with “Naval Research Project & DARPA (Defense Advanced Research Project Agency) ” sponsored, maybe you heard of DARPA they kinda created the Internet a long time ago. The government wanted to have a communication secure media that would piggy-bak on the establish Internet. From my point of view when they saw how good this worked the government used it to allow it’s agents to quietly use the network for CIA covert operations (just to name a few alphabet soup government agencies that use it). For example a branch of the U.S. Navy uses Tor for open source intelligence gathering, and one of its teams used Tor while deployed in the Middle East recently. Law enforcement uses Tor for visiting or surveilling web sites without leaving government IP addresses in their web logs, and for security during sting operations.

Journalist got a hold of this tool and they too were able to file reports before governments agents censored their interviews and film footage. The EFF (Electronic Frontier Foundation) got a hold of the Tor-networks and promoted it to maintaining civil liberties online. When the common business executive visited a foreign country (like China know to monitor foreigners Internet access) they now had a way to securely connect to their corporate HQ data-center without being monitored and giving away IP (Intellectual Properties). The Tor-Network became to good and the bad guy’s moved in to keep their illegal business safer from the law. The Internet Cyber-criminal has used the claer-web since the start so of course they went over to the Tor-.onion network because it works if you use it right and keeps you anonymous online.

With all this happening and the “Year of the Hack 2011” you can see why security geeks like Pierluigi and I became intrigued with this subject and we teamed up to write this manuscript hoping to answer some of the questions our friends, and peers were asking us about this mysterious hidden world call the deep dark web. We outlined a table of content and started to write about it in our blogs and the story unfolds from here to you. We hope to educate you on how this network works without too much geek talk (ok just a little). We cover the cyber criminals and their ecosystem we cover the financial currency (bitCoins) that is replacing fiat currencies all over the world during this unstable financial times. We tried to cover all the good , the bad and the ugly of the .onion network. We hope it will answer some of your questions but I am sure that more question will come up so feel free to come to our websites and give us a shout and ask your questions about the deep dark web…. - gAtO oUT 

Share on TumblrSubmit to StumbleUponSave on DeliciousDigg ThisSubmit to reddit
06/5/12

Iran Cyber Problems -bad antivirus software

Iran Cyber Problems

gAtO mOnItOrEd – Iran Tor-Relays last night they had blocked all public relays so nobody could use the ToR network. Of course as long as you have private unlisted ToR relay people from Iran could still use the ToR network on the Internet. On the other side of Iran’s Cyber Warfare the Flame cyber worm – is still kicking ass and taking names in Iran. U.S and Israel have accepted the role of chief cyber warrior of the Stuxnet, DuQu and Flame. Some of the first cyber weapons ever made and deployed on a covert mission’s. Do you think that this cyber weapons did not use ToR networks to hide their C&C server never to be found??? So here we have a country suppressing ToR communication  (and suppressing Flame, DuQu and StuxNet C&C ToR Communication) and being attacked by 2 of the largest countries in the world. gAtO would call this cyber warfare. 

cyber war profiteers –> Who stands to make the most business ($$$) in this cyber warfare. We in the west have Norton, McAfee and other’s to protect our computers and business and government computer enterprise systems – but they cannot do business with Iran- We just had Symantec pull out of a deal with China’s Huawei because of a U.S-DOD contracts-/ a friend pointed to eset.com as the number one anti-virus software distributor to Iran./ When the Iranian government want’s to protect their computers they turn to Eset corporation for their enterprise cyber security support and service. So who are they?

Alexa the number one SEO company – http://www.alexa.com/siteinfo/eset.com – shows Iran is their number one customer—. Why? Eset is based out of the Slovak Republic , Bratislava the capital of Slovakia. It’s not silicone valley – I never heard of a high tech center and educated cyber security experts from that side of the world—  We know this area more for cyber criminals but now this little company out in the middle of know-where has some interesting customer. Those countries that nobody wants are becoming their cyber customers, and it looks like Eset is a growing business.

Eset – Contact info: – http://www.eset.com/us/about/contact/ – They have offices in Czech Republic, Singapore, Argentina and the U.S.A – —/$#@! – So the company that is providing the anti-virus software for Iran has offices in America, with American business as customers- gAtO don’t like that much that is why I mentioned it.

Anti-virus software controls every aspect of the safety and security of your computer, your anti-virus software has deep ties to your computers. So this little anti-virus company is now a world player. It could also be our allied and work with us.

From a business point of view – First of all I would fire them. If I was the Iranian government, Stuxnet, DuQu and Flame the same MO and my anti-virus software does not catch it -new business but, oh well if Iran fires them who else would step into this position. This show to gAtO that the old weapon dealers have turn to legit, cyber counter weapons dealers/

customers metric’s: Imagine the statistics from Eset on Iranian government sites? 

As a security researcher I just don’t like that Eset is in the U.S.A if they get American customers they can maybe sell their stats to Iran. Security companies like anti-virus have a lot of power. Just a simple update and the new spy-ware can get in and turn on your camera or just record your speech in your house or office. I would stay away from Eset anti-virus software solution – just for me gAtO oUt…

Reference:

Iran Top Sites : http://www.alexa.com/topsites/countries;0/IR

Bratislava: http://en.wikipedia.org/wiki/Bratislava

Alexa-Eset – http://www.alexa.com/siteinfo/eset.com

Eset about page -  http://www.eset.com/us/about/contact/ .

WhoIs - http://whois.domaintools.com/eset.com

Registrant:

ESET, spol. s r.o.

Peter Pasko

Einsteinova 24 Aupark Tower, 16th Floor

Bratislava,   85101

SK

Phone: +421.232244111

Email: sysadmin@eset.com

 

Registrar Name….: Register.com

Registrar Whois…: whois.register.com

Registrar Homepage: www.register.com

 

Domain Name: eset.com

Created on…………..: 2001-04-18

Expires on…………..: 2013-04-18

 

Administrative Contact:

ESET, spol. s r.o.

Anton Zajac

610 W Ash St, Ste 1900 Suite 1900

San Diego, CA 92101

US

Phone: +1.6198765404

Email: sysadmin@eset.com

 

Technical  Contact:

ESET, spol. s r.o.

Anton Zajac

610 W Ash St Suite 1900

San Diego, CA 92101

US

Phone: +1.6198765404

Email: sysadmin@eset.com

 

DNS Servers:

e.ns.lanechange.info

ns4.lanechange.net

ns2.lanechange.net

ns3.lanechange.net

ns1.lanechange.net

Share on TumblrSubmit to StumbleUponhttp://uscyberlabs.com/blog/wp-content/uploads/2012/06/eset_traffic.tiffDigg ThisSubmit to reddit
02/13/12

tor-talk- Help Users in Iran Reach the internet

Hi,

In the last 48 hours a major campaign of filtering has started in Iran -
it started slow and now appears to be that nearly all SSL/TLS traffic is
blocked on a few major Iranian ISPs. Details are rather rough but we're
working on some solutions - we've long had an ace up our sleeves for
this exact moment in the arms race but it's perhaps come while the User
Interface edges are a bit rough still.

Here's the deal - we need people to run Tor bridges but a special kind
of Tor bridge, one that does a kind of traffic camouflaging - we call it
an obfuscated bridge. It's not easy to set up just yet because we were
not ready to deploy this for everyone yet; it lacks a lot of analysis
and it might even only last for a few days at the rate the arms race is
progressing, if you could call it progress.

There are highly technical instructions here:
tor-assistants at torproject.org ) about it or you'll need
to share these bridges with people you want to help directly. It's a
pain and we're working on it.

Here's a bug report where we're working around the clock to get stuff
going in a user friendly manner:
https://metrics.torproject.org/users.html?graph=direct-users&start=2011-11-12&end=2012-05-10&country=ir&events=on&dpi=72#direct-users

Here's the same graph but for Tor bridge users in Iran:
help at rt.torproject.org. We'll try to
get you a working obfsproxy bridge address and working client software.

All the best,
Jacob Appelbaum jacob at appelbaum.net 
Share on TumblrSubmit to StumbleUponSave on DeliciousDigg ThisSubmit to reddit
02/12/12

Cyber Iran

gAtO hEaR- In Iran the nation’s telecommunications ministry publicized in early 2011, it would disconnect Iran from the rest of the world and run a parallel internal service (“Islamically permissible  ‘halal’ network”) that would automatically censor material and block popular global sites. In Iran two-thirds of the country’s 78 million people are under the age of 35, and about 40 percent of the population have Internet in their homes, according to Internet World Stats, making Iran one of the highest per capita cyber-connected populations in the world. Iran has a pollution of about 77 million people, about 53% of the people are on the Internet and not one of them is a Facebook user. In nearby Jordans they have 1.7 million users and 1.6 millions of them are on Facebook.

Stuxnet was deployed and stopped their nuclear weapons program. 2 leading scientist were killed Iran blames Massad -CIA. Iran is spending billion on cyber Hardware. Arab Spring. Iran took down U.S Drones. Iran threatens closing down the Straits of Hormuz. Iran claims new Cyber Army is ready for war in Cyberspace.

Now with the March 2, 2012 parliamentary elections we see official of Iran’s Judiciary announced “new limitations” on using cyber space and content publishing on the internet. A task force of 250,000 cyber police currently monitors the Internet, specific sites, blogs and individuals suspected of using circumvention tools. Israeli intelligence officials have revealed that they believe Iran has, in the last few years, spent over a billion dollars to upgrade their Cyber War capabilities.

Iranians have friends like Venezuela and China-based Hauwei corporation which is being investigated by Senators like Rhodes Islands Sheldon’s Whitehouse (“gAtO knows Senator Sheldon Whitehouse he is one of several leaders that understand the complex cyber security issues”) for supplying critical cyber infrastructure to Iran while it supplies equipment and supports the (TS)Top Secret DOD projects. This is clearly a violation when a communist country is providing TS support to our governments and we hear that some of the equipment may have digital backdoors into the infrastructure defeating  all virus scanning software. On the other side of friendships Univision uncovered Iranina and Venezuelan diplomats working on launching cyber-strikes against energy facilities and to other U.S assets (NYT 12-13-2011).

Iran’s leaders saw what the Arab Spring brought down last year and they see the Parliamentary elections in March as the most sensitive in the history of the Islamic republic and they will do everything to control it. Beacause of the March 2 elections Iran has ordered all Internet Cafe implement all cyber security monitoring software installed and functioning by Jan. 18. The monitoring include requiring a user to provide full name, father’s name, Iranian identification number, zip code and telephone number, in addition to presenting photo identification. The laws require cafes to install closed-circuit surveillance cameras that must be checked at the end of every business day. Cafes also must keep records of all websites and browsing history, along with surveillance tapes, for six months.

The new restrictions forbid cafes to allow the use of any circumvention technology, such as Virtual Private Networks (VPNs) or proxy servers, the devices Iranians typically use to access blocked sites.

This latest attack on Internet users comes amid increasing tensions between Iran and the West and deteriorating economic conditions as the Islamic Republic preemptively prepares for possible civilian unrest during its parliamentary elections. The Iranian people use tools like TOR to circumvent authorities to get their message thru even though these free TOR networks are getting hammered by the Iranians to try and take them down or get the information of the dissidents.

Let’s support these projects and keep Freedom of Speech open in cyberspace -gAtO oUt.

References:

Internet cafes to install surveillance cameras,

U.S. Expels Venezuelan Diplomat Reportedly Involved in Cyber Attack Plot

http://www.nti.org/gsn/article/us-expels-venezuelan-diplomat-reportedly-involved-cyber-attack-plot/

Parliamentary elections in March seen as the most sensitive in the history of the Islamic republic

http://www.guardian.co.uk/world/2012/jan/08/iran-upcoming-parliamentary-elections-march

Huawei’s Work in Iran May Violate U.S. Sanctions, Lawmakers Say

http://www.businessweek.com/news/2012-01-10/huawei-s-work-in-iran-may-violate-u-s-sanctions-lawmakers-say.html

Iran blocks Tor; Tor releases same-day fix

https://blog.torproject.org/blog/iran-blocks-tor-tor-releases-same-day-fix

Iran’s strict cyber regulations lay groundwork for ‘halal’ network

http://www.foxnews.com/world/2012/01/11/irans-strict-cyber-regulations-lay-groundwork-for-halal-network/#ixzz1jYfN3DAV

Iran Sets Cyber Crime Policy ahead of New Elections

http://www.stopfundamentalism.com/index.php?option=com_content&view=article&id=1299:iran-sets-cyber-crime-policy-ahead-of-new-elections&catid=70:iran-uprising&Itemid=80

Share on TumblrSubmit to StumbleUponSave on DeliciousDigg ThisSubmit to reddit
01/21/12

Iran China Cyber BFF

GaTo tHiNk -that we are naïve not to see the new cyber BFF relationship between these two countries.    Iran feigns that relations between the two countries are “cordial”, but it’s complicated. Iran has spent billions of dollars in it new digital infrastructure and China’s Huawei corporation is taking a big chunk of the cyber dollars as we seen with the US investigations into the company.

Iran-Cyber-Guard Network

Last year China was accused of a number of cyber attacks of espionage and Intelligence gathering and now they are transferring that hacking knowledge to the Iranians. The “Iranian Cyber Army” had hacked a few popular social networking site and claimed their dominance in the cyber world but this was mainly a few Iranians militants now with the purchase of the new equipment the real Iranian Cyber Army is getting it’s feet wet. Iran was accused of hacking in Voice of America Farsi website, Twitter as well as Baidu, Dutch government-funded Radio Zamaneh, which also broadcasts in Farsi. My only question is did they go after China’s Baidu.

**”- With the United States and Israel as the developers of Stuxnet the first cyber weapon to be deployed gAtO can see why the Iranians are worried **”-

The biggest hacking by the Iranian CYber Army to -gAtO was Comodo Group. This was the Dutch certificate authority that the hacker created 9 major fraudulent certificates sites for companies like Google, Yahoo, Microsoft, Skypes and Mozilla. The names say it all these were speculated to be used by the Iranians to monitor it’s own people.

**”- seizing entry to such high-traffic consumer sites looks like a government attempting surveillance of Internet use by dissident groups.**”-

gAtO found out that Chinese agents who began work for the Iranian regime in early 2011, are providing Tehran with significant intelligence information. The Iranian officers who were assigned to contact the Chinese agents are using aliases and claim to be businessmen from other countries. China, which imports 11 percent of its oil from Iran thinks it OK for a little spying (between BFF’s) going as long as they can do the same with Iranians agent recruitment by China.

With the re-election of President Mahmoud Ahmadinejad in March 2, 2012 The Iranian cyber polices will certainly be on the lookout for the protesters that are guarantee to protest empowered by the Arab Spring last year. China will do it’s best to keep the U.N sanctions as open as possible during this time-frame, for Iran as long as trade and their mutual enemies keep hammering them in cyberspace. The enemy of my enemy is my friend.

Last year a PBS and Frontline published the activities of Iran’s Cyber Army have attracted growing notice in the Iranian and international media. The suspicion that the Cyber Army’s constituent hacker groups are connected to the Iranian government was strengthened when, after several sites were hacked, they issued warnings to the Green Movement. The scope of the measures taken by the Cyber Army discredits the theory that a group of Ahmandinejad’s admirers spontaneously carried out such acts. The nature of their communications and of the sites targeted for attack indicate that there are hidden hands (China mAyBe)  that support the Cyber Army.

Let’s hope this BFF relations comes to an end soon. - gAtO oUt

References:

http://www.rawstory.com/rs/2011/03/14/iran-cyber-army-target-enemy-sites/

PBS – Frontline – Pulling the Strings of the Net: Iran’s Cyber Army

http://www.pbs.org/wgbh/pages/frontline/tehranbureau/2010/02/pulling-the-strings-of-the-net-irans-cyber-army.html#ixzz1k7Zsumlg

Iran Cyber-Army Strikes Digital Certificate Authority COMODO

http://www.readwriteweb.com/archives/iran_cyber_army_strikes_digital_certificate_author.php

Irans President Official web site hacked

http://countermeasures.trendmicro.eu/iranian-president-ahmadinejad-official-web-site-compromised/

Cyber recruiting: The Shifting Digital Sands of Online Jihad

http://cyberwarzone.com/cyberwarfare/cyber-recruiting-shifting-digital-sands-online-jihad

Share on TumblrSubmit to StumbleUponhttp://uscyberlabs.com/blog/wp-content/uploads/2011/12/Iran-Cyber-Guard_network-150x150.jpgDigg ThisSubmit to reddit
01/17/12

Middle East CyberWar has Begun

gAtO tHiNkInG – a nineteen (19) year old kid named oxOmar has started a cyber war between Israel and Saudi Arabia. oxOmar and his pals from the group-xp a Saudi Arabian hacker team posted on a hacker posting site thousand of Israeli credit cards. A few day later an Israeli named 0xOmer countered by posting Saudi credit cards. This all started about the 6 of January, Today 16 days into the new year we have the Tel Aviv Stock Exchange and El Al Israel’s national airline their websites hacked (dDoS).

In the muslin world a new cyber empowerment has been born, with it’s history last year of the Arab Spring the ruling parties are worried now about the power of cyberspace. Every country is face with empowering it’s people with the technology they want knowing that these new communication tools can bring down their regimes. The more they continue building their digital infrastructure they become more vulnerable to cyber attacks themselves.

a 19 year old kid starts a cyber war – It’s a cyber catch 22.

Israel has great offensive cyber weapons like “Stuxnet and DuQu virus” which are the new cyber weapon framework of covert and overt attacks. These new cyber weapons are like drone airplanes inside an enemies computer system. Uploading new attack vectors as it learns and communicates with it’s command and control centers were the generals use it in tactical operation. But Israel has no real defensive cyber walls because it’s an open free society.

The cyber tensions in the middle east have escalated with America and Israel joining together and going after Iran and Syria in cyberspace with probes and attacks. Iran is currently building a cyber fortress to keep everyone in and keep everyone else out. Now you add the Saudi’s our friends going after Israel our other friends. -gAtO ThInK iT’S aLl cRaZy

Now a pro-Palestinian hacker group calling themselves “Nightmare” teamed up with Gaza Hacker Team and Anonymous to go after Israel. Meanwhile conventional groups like Hamas has become a cheerleader on the sidelines. The Israeli Defense Minister is to establish a special cyber warfare administration to support it’s country’s websites.

What the gAtO doesn’t understand is how do children set the tone for cyber warfare in the middle east- were are the grown ups?  meanwhile back at the ranch Iran is pushing the nuclear agenda, while it play’s with oil disruption. Now people are saying these kids (oxOmar) will bring down our power supplies, our water treatment plants just to scare the population into giving them more money to do. What? Israel as well as other need to learn that the power of the internet cannot be stopped the people will find a way to get their voices heard. Countries that do not treat it’s citizens right can expect more and more hacking by kids, but wait until the grown-ups start then it’s going to be one major cluster-fuck -gAtO OuT  

References:

http://www.israelnationalnews.com/News/News.aspx/151713#.TxWPW5gUhnd

Now you got people like “.oO HANNIBAL Oo.” joining in the fun:

http://pastebin.com/yArqhA7V

 

 

Share on TumblrSubmit to StumbleUponhttp://uscyberlabs.com/blog/wp-content/uploads/2012/01/expect_us.tiffDigg ThisSubmit to reddit
01/6/12

How Can Iran Censor Cyberspace

How does Iran censor cyberspace? -iranian cyber army

gAtO tHiNk the same software that we might use to prevent our children from looking at porn on the Internet is basically the same software that is “sold to regimes everywhere”, but instead of entering pornography-related terms, you put in terms like student union, protest or democratization. or Deep Packet Inspection which I’ll explain later.

** Some of the best commercial grade censorship software sold “to regimes everywhere” comes from Nokia-Siemens and out of Silicon Valley **

The gathering of information as well as covert action against computer networks that occurred in Iran in 2011 can be expected to continue and grow during 2012. Iranian counter-action in the form of a stepped-up cyber and sabotage campaign of their own citizens and against American installations in the Gulf will continue

** Control over the flow of information is a key issue for Iran — home to most Internet users in the Middle East with more than 36 million people of the 75 million populace. **

June 2009 Was the first time Iran Internet was turned off – Following the controversial re-election of President Mahmoud Ahmadinejad in June 2009, the country was cut off for about 24 hours.

Iran-Cyber-Guard Network

The Iranian government asked the three (3) largest Internet service providers to shut down, the problem was they didn’t bother with the smaller ones and a few activists with satellite phoneswere ready and connections to Internet service were providers thru friend and activist in Europe, Dubai or Cyprus.

The technical underground is available to the younger people and they are spreading the word, the pictures, the videos and news from the world that they matter, their voices are being heard. gAtO tHiNk that is the best example of “power to the people” in cyberspace.

** What the west has yet to learn is, there are not many Muslim countries which have a population as networked as that of Iran. :—: The good news is that the more Iran uses cyberspace the more vulnerable they will become **

Instead of using landlines, some Iranian bloggers have taken to using satellite dishes to access the Internet, but they are increasingly being destroyed by special police units. Some of the problems that the Iranian government is facing is that Universities often have their own distinct connections to one another Universities. Major trading houses or major financial centers also sometimes have backup connections.

** Ali Hakim Javadi, Iran’s deputy minister for communications and information technology **

If Iran shuts down the Internet, the price wouldn’t just be political (€€€-$$$). Were Iran to disconnect its oil industries from global information flows, the impact on those industries’ ability to deliver what little they can sell would be enormous. When Hosni Mubarak shut off the Internet in Egypt during the protests there, the impact was disastrous. The five days offline cost the Egyptian economy an estimated €250 million.

Another problem for Iran is other countries are helping the dissidents hide in cyberspace, the US is working on developing the ability to send digital packets that are invisible and are only interpretable for other machines that you set up on the network that know what to look for. It’s called a dark Web infrastructure.

** Tor Project is another source that enables anyone to be anonymous in cyberspace and gain access to otherwise blocked sites **

One way that Iran may be able to control cyberspace in Iran is Deep Packet Inspection (DPI) (also called complete packet inspection and Information eXtraction – IX -). The idea is to slow down the Internet traffic so much that you can use a program to inspect each piece of information that comes and goes.

President Ahmadinejad has indicated he wants to provide an alternative, a so-called intranet (internal network Iranians only) which will allow Iranians to communicate among themselves, as the song said recording “every word you said”. China has the best example of a national network that is relatively disconnected from the rest of the global information infrastructure. The Chinese have built software that basically mimics anything we develop in the West and embed surveillance algorithms deeply into them. But I’d be very surprised if the Iranians were able to launch all of this.

** It’s a lot easier to say “you have a cyber army and have defenses to do battle in cyberspace” and let them prove other wise. We are talking about diplomatic bull-shit -mEoW -mEoW gOsE gAtO**

Proxy servers are one of the things that activists have put to work for themselves. So when the state tries to shut down the Internet or when you learn that an authoritarian regime is watching particular sites or trying to disable YouTube or Twitter, proxy servers are very helpful as ways of getting around some of those barriers. They open doors where other doors have been shut.  Gaming consoles such as PlayStation or Xboxes can be turned into devices for sending out information without having to go through Internet exchange points. Learn from the young they know the technology and they will out live you anyway.

As long are there are ways for freedom of speech to get out it’s OK “the world is watching you now”. gAtO oUt

References:

http://www.gatewaygulf.net/teleport.php

http://en.wikipedia.org/wiki/List_of_Internet_exchange_points

http://www.payvand.com/news/11/dec/1273.html

http://en.wikipedia.org/wiki/Deep_packet_inspection

 

 

Share on TumblrSubmit to StumbleUponhttp://uscyberlabs.com/blog/wp-content/uploads/2012/01/iran_cyber_army.jpgDigg ThisSubmit to reddit
09/29/11

Iran will reciprocate cyber attack by US: Army commander says

Iran will reciprocate cyber attack by US: Army commander saysIran will reciprocate cyber attack by the United States or its allies, head of the Operations Department of the Iranian Armed Forces Brigadier-General Ali Shadmani said on Wednesday.Ahlul Bayt News Agency – Iran will reciprocate cyber attack by the United States or its allies, head of the Operations Department of the Iranian Armed Forces Brigadier-General Ali Shadmani said on Wednesday.      The official noted that any cyber attack against Tehran would be risky for the US and its allies. Cyber warfare refers to hacking to conduct sabotage and espionage. He said that enemies of the Islamic Republic of Iran tried all their means in different economic, cultural, social, military and security fields in the past three decades to deal a blow to the Islamic Revolution, but to no avail.

via Iran will reciprocate cyber attack by US: Army commander says.

Share on TumblrSubmit to StumbleUponSave on DeliciousDigg ThisSubmit to reddit
08/31/11

Google says Gmail attack focused on Iranian targets – Computerworld

IDG News Service – Google said late Sunday that an attack mounted against its Gmail service targeted users primarily located in Iran, although the company has taken steps to block further interception attempts.

Google discovered that attackers had acquired a Secure Sockets Layer (SSL) certificate valid for any website in the google.com domain. The SSL certificate is used to vouch for the authenticity of websites and protect against security threats such as “man-in-the-middle” attacks.

via Google says Gmail attack focused on Iranian targets – Computerworld.

Share on TumblrSubmit to StumbleUponSave on DeliciousDigg ThisSubmit to reddit