Author: esimantiras

Inside America’s Massive Rocket Factory: How NASA Is Going Back to the Moon

Posted on by esimantiras

Inside America’s Massive Rocket Factory: How NASA Is Going Back to the Moon

source: cnet.com  | image: Ben Smegelsky/NASA

NASA is about to go on a journey it hasn’t taken in 50 years. To get there, it has built its most powerful rocket ever. I went behind the scenes to see what it takes to build a once-in-a-generation spacecraft.

 

How do you start a journey you haven’t taken in half a century? 

For the past 50 years, humans haven’t traveled more than a few hundred miles above Earth. Short hops (in the celestial scheme of things) that’ve seen civilization maintain a presence in space but not venture the great distances we once did. 

Now, however, NASA once again has its eyes on the moon, and its ambition to get there is kicking into high gear. 

For this voyage, the space agency needs its most powerful and advanced spacecraft ever: a super heavy-lift rocket known as the Space Launch System and a high-tech crew vehicle called Orion. 

Together, these impressive pieces of space hardware make up Artemis, a historic exploration vehicle and a broader space program that’ll take the first woman and the first person of color to the moon and push humanity farther into deep space than we’ve ever been.

NASA has three flights planned for the early stages of the Artemis program, all using the Space Launch System. Each SLS rocket will fly only once. There will be no test flight. 

 

WATCH: “A Tour of NASA’s Rocket Factory” and view images

Continue reading “Inside America’s Massive Rocket Factory: How NASA Is Going Back to the Moon”

Heads of FBI and MI5 issue strong warning about threat to the West from China

Posted on by esimantiras

Heads of FBI and MI5 issue strong warning about threat to the West from China

source: nbcnews.com  |  image:  pexels.com

Also, U.S. intelligence officials issued a report about Chinese attempts to influence local and state elections.

Speaking alongside his British counterpart in London, FBI Director Christopher Wray issued his starkest warning yet about the national security threat to the West from China, even as intelligence officials in Washington released a report about Beijing’s efforts to influence state and local politics in the U.S.

In a first-ever joint appearance Wednesday with the director of Britain’s MI5, the U.K.’s domestic intelligence agency, Wray raised the possibility that China might be inching closer to invading Taiwan, noting that Beijing has been taking steps to shield its economy from sanctions that would come after such a move.

“In our world, we call that kind of behavior a clue,” he said, adding that were an invasion to happen, “it would represent one of the most horrific business disruptions the world has ever seen.”

The Chinese Embassy in Washington did not respond to a request for comment. The Chinese Foreign Ministry said Wednesday, “In order to mislead the public, the U.S. has worked hand in glove with NATO to hype up competition with China and stoke group confrontation.”

Continue reading “Heads of FBI and MI5 issue strong warning about threat to the West from China”

This machine looks like a robot from ‘Wall-E,’ but it can turn air into drinking water

Posted on by esimantiras

This machine looks like a robot from ‘Wall-E,’ but it can turn air into drinking water

source: fastcompany.com  | image:  pexels.com

Tunisian startup Kumulus developed a device that mimics the natural condensation process to convert humid air into safe drinking water.

About three years ago, Iheb Triki went on a four-day camping trip in the Tunisian desert. After a six-hour drive through mountains of sand, he and nine friends arrived at their destination with 100 liters of bottled water. Then three things happened: Triki saw the sheer volume of bottles laid out in front of him; he noticed the piles of empty plastic trash left over from previous campers; and the next morning, he spotted tiny droplets of dew on the surface of his tent. So Triki, an engineer by training, had an idea.

Triki is now the CEO of a Tunisian startup called Kumulus. The company has developed a device that mimics the condensation process to convert humidity in the air into drinking water. Powered by solar panels, Kumulus 1 is about the size of a large armchair and can produce anywhere from 10 to 50 liters of clean water per day, depending on the levels of humidity in the air.

For now, three devices have been deployed in Tunisia and Paris, where they’re being tested. But in the three weeks since it launched, the startup has already received more than 100 preorders, worth around $700 million, from clients in France, Italy, Mexico, and Uruguay.

Continue reading “This machine looks like a robot from ‘Wall-E,’ but it can turn air into drinking water”

Bad news: The cybersecurity skills crisis is about to get even worse

Posted on by esimantiras

Bad news: The cybersecurity skills crisis is about to get even worse

 

source: zdnet.com  |  image:  pixabay.com

 

New research suggests nearly a third of cybersecurity professionals are planning to quit the industry, at a time when companies are struggling to protect their networks from attacks.

 

Nearly a third of the cybersecurity workforce is planning to leave the industry in the near futurenew research suggests, leaving organizations in a troubling position as the threat landscape evolves “at an alarming rate”.

Cybersecurity firm Trellix commissioned a survey of 1,000 cybersecurity professionals globally and found that 30% are planning to change professions within two or more yearsOrganizations are already facing cybersecurity skills shortages, with not enough people having the skills and qualifications required to keep IT systems secure from breaches and other security threats.

Adding more fuel to the fire, organizations face a growing threat from cyber criminals and nation-state hackers, whose attacks are growing “in volume and sophistication”.

Trellix’s survey found that 85% of organizations report that a workforce shortage is impacting their ability to secure their IT systems and networks.

Continue reading “Bad news: The cybersecurity skills crisis is about to get even worse”

These rechargeable batteries are more sustainable and safer than lithium—and half the cost

Posted on by esimantiras

These rechargeable batteries are more sustainable and safer than lithium—and half the cost

 

source: fastcompany.com  |  image: pexels.com

The battery is water-based and uses other cheap, readily available materials like manganese and metal oxide.

 

Since lithium-ion batteries were first sold 30 years ago, they’ve dropped in cost by 97%. But they’re still too expensive for making electric cars that can compete in cost with fossil-fueled cars without subsidies, or to economically store wind and solar power on the grid. That’s why one Boston-area startup is developing a different type of rechargeable battery that it says can cut costs in half—while avoiding some of the other flaws of current batteries, from the environmental impact of mining to the fact that lithium-ion batteries can catch on fire.

“Our motivation was to make it affordable, so that it could be widely deployed as opposed to niche,” says Mukesh Chatter, CEO and cofounder of the startup, Alsym Energy, which emerged from stealth today and has raised $32 million from investors, including Helios Climate Ventures. Right now, many automakers are following Tesla’s lead and making luxury EVs. But Alsym wants to enable manufacturers to make lower-cost vehicles, including its first partner, an automaker in India. Tackling climate change “requires everybody’s contribution,” Chatter says. “It cannot be 1% of the people buying expensive luxury EVs.” The batteries are also affordable enough that they could be used in developing countries to store off-grid solar power for people who don’t have electricity access now.

Continue reading “These rechargeable batteries are more sustainable and safer than lithium—and half the cost”

MIT Researchers Discover New Flaw in Apple M1 CPUs That Can’t Be Patched

Posted on by esimantiras

MIT Researchers Discover New Flaw in Apple M1 CPUs That Can’t Be Patched

source: thehackernews.com  |  image: pexels.com

A novel hardware attack dubbed PACMAN has been demonstrated against Apple’s M1 processor chipsets, potentially arming a malicious actor with the capability to gain arbitrary code execution on macOS systems.

It leverages “speculative execution attacks to bypass an important memory protection mechanism, ARM Pointer Authentication, a security feature that is used to enforce pointer integrity,” MIT researchers Joseph Ravichandran, Weon Taek Na, Jay Lang, and Mengjia Yan said in a new paper.

What’s more concerning is that “while the hardware mechanisms used by PACMAN cannot be patched with software features, memory corruption bugs can be,” the researchers added.

The vulnerability is rooted in pointer authentication codes (PACs), a line of defense introduced in arm64e architecture that aims to detect and secure against unexpected changes to pointers — objects that reference an address location in memory.

PACs aim to solve a common problem in software security, such as memory corruption vulnerabilities, which are often exploited by overwriting control data in memory (i.e., pointers) to redirect code execution to an arbitrary location controlled by the attacker.

Continue reading “MIT Researchers Discover New Flaw in Apple M1 CPUs That Can’t Be Patched”

China says it may have detected signals from alien civilisations

Posted on by esimantiras

China says it may have detected signals

from alien civilisations

source: indianexpress.com  |  image:  pexels.com

China’s Sky Eye is extremely sensitive in the low-frequency radio band and plays a critical role in the search for alien civilisations.

 

China said its giant Sky Eye telescope may have picked up signs of alien civilizations, according to a report by the state-backed Science and Technology Daily, which then appeared to have deleted the report and posts about the discovery.

The narrow-band electromagnetic signals detected by Sky Eye — the world’s largest radio telescope — differ from previous ones captured and the team is further investigating them, the report said, citing Zhang Tonjie, chief scientist of an extraterrestrial civilization search team co-founded by Beijing Normal University, the National Astronomical Observatory of the Chinese Academy of Sciences and the University of California, Berkeley.

It isn’t clear why the report was apparently removed from the website of the Science and Technology Daily, the official newspaper of China’s science and technology ministry, though the news had already started trending on social network Weibo and was picked up by other media outlets, including state-run ones.

In September 2020, Sky Eye, which is located in China’s southwestern Guizhou province and has a diameter of 500 meters (1,640 feet), officially launched a search for extraterrestrial life. The team detected two sets of suspicious signals in 2020 while processing data collected in 2019, and found another suspicious signal in 2022 from observation data of exoplanet targets, Zhang said, according to the report.

China’s Sky Eye is extremely sensitive in the low-frequency radio band and plays a critical role in the search for alien civilizations, Zhang is reported to have said.

The suspicious signals could, however, also be some kind of radio interference and requires further investigation, he added.

 

Authorities Shut Down Russian RSOCKS Botnet That Hacked Millions of Devices

Posted on by esimantiras

Authorities Shut Down Russian RSOCKS Botnet That Hacked Millions of Devices

source: thehackernews.com  |  image:  pexels.com

The U.S. Department of Justice (DoJ) on Thursday disclosed that it took down the infrastructure associated with a Russian botnet known as RSOCKS in collaboration with law enforcement partners in Germany, the Netherlands, and the U.K.

The botnet, operated by a sophisticated cybercrime organization, is believed to have ensnared millions of internet-connected devices, including Internet of Things (IoT) devices, Android phones, and computers for use as a proxy service.

Botnets, a constantly evolving threat, are networks of hijacked computer devices that are under the control of a single attacking party and are used to facilitate a variety of large-scale cyber intrusions such as distributed denial-of-service (DDoS) attacks, email spam, and cryptojacking.

Continue reading “Authorities Shut Down Russian RSOCKS Botnet That Hacked Millions of Devices”

New ‘GoodWill’ Ransomware Forces Victims to Donate Money and Clothes to the Poor

Posted on by esimantiras

New ‘GoodWill’ Ransomware Forces Victims to Donate Money and Clothes to the Poor

source: thehackernews.com  |  image: Pixabay.com

Cybersecurity researchers have disclosed a new ransomware strain called GoodWill that compels victims into donating for social causes and provide financial assistance to people in need.

“The ransomware group propagates very unusual demands in exchange for the decryption key,” researchers from CloudSEK said in a report published last week. “The Robin Hood-like group claims to be interested in helping the less fortunate, rather than extorting victims for financial motivations.”

Written in .NET, the ransomware was first identified by the India-based cybersecurity firm in March 2022, with the infections blocking access to sensitive files by making use of the AES encryption algorithm. The malware is also notable for sleeping for 722.45 seconds to interfere with dynamic analysis.

The encryption process is followed by displaying a multiple-paged ransom note that requires the victims to carry out three socially-driven activities to be able to obtain the decryption kit.

This includes donating new clothes and blankets to the homeless, taking any five underprivileged children to Domino’s Pizza, Pizza Hut, or KFC for a treat, and offering financial support to patients who need urgent medical attention but don’t have the financial means to do so.

Additionally, the victims are asked to record the activities in the form of screenshots and selfies and post them as evidence on their social media accounts.

“Once all three activities are completed, the victims should also write a note on social media (Facebook or Instagram) on ‘How you transformed yourself into a kind human being by becoming a victim of a ransomware called GoodWill,'” the researchers said.

There are no known victims of GoodWill and their exact tactics, techniques, and procedures (TTPs) used to facilitate the attacks are unclear as yet.

Also unrecognized is the identity of the threat actor, although an analysis of the email address and network artifacts suggests that the operators are from India and that they speak Hindi.

Further investigation into the ransomware sample has also revealed significant overlaps with another Windows-based strain called HiddenTear, the first ransomware to have been open-sourced as a proof-of-concept (PoC) back in 2015 by a Turkish programmer.

“GoodWill operators may have gained access to this allowing them to create a new ransomware with necessary modifications,” the researchers said.

 

view an example of the ransomware letter here

What is a cyber attack?

Posted on by esimantiras

What is a cyber attack?

source: businessleader.co.uk  |  Image: Pixabay.com

In this guest article, written exclusively as part of Business Leader’s Cyber Security Month, Bleddyn-Aled Wyke, Cyber Operations Executive at PureCyber, outlines what is a cyber attack.

A cyber-attack can take many forms, though one common thread throughout these is the threat actor. Whether the attack is untargeted, such as a phishing campaign against thousands of users hoping a careless one takes the bait, or more targeted, such as a Denial of Service (DoS) style attack against a company site denying normal users access to its services, there is a human presence behind this somewhere who has pushed the marble.

The National Cyber Security Centre (NCSC) presents a four-stage model mapping out the typical steps and processes carried out by threat actors in the process of an attack: Survey, Delivery, Breach, and Affect.

Firstly, the threat actor would look to survey an organisation’s infrastructure, in a bid to obtain as much information as possible. This could be through more technical means, scanning target networks to gain information about IT systems in place, or more physical methods such as social engineering to gain more private information such as internal processes or procedures.

With the knowledge gained here, the threat actor would look to move onto the delivery stage of the attack, where they attempt to put themselves into a position on a network where they can exploit a vulnerability they believe to exist within a target. An example of this would be gaining the format of a company’s e-mail address (e.g. first initial surname@target.com) and using this to send phishing e-mails containing a malicious file or link to employees, using this to either spread malware or steal credentials. It only takes one user to follow through with the file or link to compromise an organisation’s system.

Upon successful delivery of an exploit, the attacker would attempt to further breach the system. Whether this is via stolen credentials allowing them to achieve access to sensitive user or company information, or via the implementation of malware letting them take control of computers or networks, the attacker can either go straight for their target or can look to gain a more established presence.

They can move to have more of an effect, using their established control to gain access to more privileged systems, allowing them to gain more sensitive information, make changes to their benefit, or disrupt businesses. From here the threat actor will look to either leave, attempting to remove any indications of their presence, or set up a more persistent style threat, leaving a back door for them to come and go as they please.