Archive for January, 2009

29
Jan

Silentbanker – Online Fraud Just got a Whole Lot Smarter

By Blink 7 Comments
Categories: Technology

The media often feeds public hysteria with scare stories about online banking fraud and other types of internet scams. While most are rooted in truth, the attacks are often simplistic and easily blocked via a combination of server security measures and user vigilance about sharing personal information. Moreover, financial institutions assure consumers that their latest security precautions and best use education will protect from the majority of devious attackers who wish do plunder bank accounts. But what if there were a trojan/virus/malware so sophisticated that it could steal your money in the middle of a transaction without the customer, bank or even the secure connection method detecting suspicious activity? Enter the Silentbanker.

What is a “Silent Banker”?

The Silentbanker is a sophisticated Trojan horse program that installs itself on a target computer and intercepts confidential information entered during online banking sessions. Stolen information can be then transmitted to the attacker or used to steal money from the victim’s account. There have been several flavours of Silentbanker, with the more recent versions using rootkit software to avoid detection by antivirus programs.

Once installed, Silentbanker can perform several man-in-the-middle attacks on infected computers

  • Cookies and authentication certificates can be certified before being encrypted, allowing the attacker to authenticate a login using stolen information. Both simple logins and two-factor authorization can be defeated. Even transaction authentication number (TAN) protection can be targeted
  • While processing a money transfer, silentbanker can intervene to change the destination account to the attacker’s account, causing the victim to transfer money to the attacker without any warning
  • The Trojan continually updates itself by downloading configuration files containing host names and authentication routines for hundreds of banks worldwide

Silentbanker can work over an SSL connection, making the browser’s verification that the victim is on a “secure” (https://) connection meaningless.

How to detect and Remove Silentbanker

Silentbanker can be manually removed but experts recommend this only be performed by seasoned computer users. As of writing, the following security programs claim to detect and automatically remove Silentbanker:

  • Norton Antivirus
  • Malwarebytes’ Anti-Malware

How to Protect against Silentbanker and Similar Attacks

The simplest and only 100% effective way to protect against Silentbanker and similar Trojans is to never bank online. This solution is infeasible for some (e.g. those who are a great distance from the nearest branch) and highly inconvenient for others. Moreover, cutting off the online banking channel would not protect the consumer from the myriad of other bank-related fraud schemes that have little or nothing to do with consumer internet usage.

However, there are still actions users can take to greatly reduce the chance of being targeted by Silentbanker and its future derivatives.

1) Use only trusted machines. If possible, use only one private computer to access online banking. This machine should be one the user can scan regularly and install the software mentioned in the other following suggestions. Public computers (kiosks, libraries, Internet cafes, etc) can be very risky depending on the administrators’ security policies. Corporate computers are usually protected by blanket security solutions but the IT department may not be quick enough at rolling out patches and updates.

2) Do not use Internet Explorer for secure web transactions. Silentbanker manifests as a BHO (browser helper object) that only works with IE. Despite the many security patches issued by Microsoft, IE remains susceptible to this type of attack. Alternative browsers include Firefox, Opera and Google Chrome.

3) Install anti-Malware / antivirus software and update it regularly. Please see the article “Challenges of Internet Security – Your Best Weapons” for more information.

4) Install a firewall. Also see the above article for more information.

5) Create a Windows restore point. Once you are sure your computer is free of Silentbanker and similar programs, create a system restore point

  • Click on the start button and select Start > All Programs > Accessories > System Tools > System Restore
  • Click on the radio button “Create a restore point”. Click on the Next button
  • Verify and record the date of the restore point (Windows usually stores several). Click on the Next button
  • Confirm the summary information. Click on the Next button

Windows will save all the systems settings and create a restore point. If your machine is infected in the future, enter the same System restore tool and select the “Restore” radio button. Select the date you recorded earlier and Windows will reverse any system changes back to that date, effectively erasing the infection

Two warnings related to #5:

a) Restoring the system to an earlier date will also reverse any software upgrades or installations performed since that date
b) Restoring the system can also restore other viruses and other malware. Windows prevents antivirus systems from cleaning data inside the system restore folder. It is recommended to either (1) BEFORE creating the new restore point, temporarily disable Windows’ restore feature so that the antivirus software can clean older restore data, or (2) Delete all the windows restore points before the “clean” one that was just created

Sphere: Related Content

26
Jan

Book Review: The Invisible Empire – Racism in Canada

By Emilia Liz Comments
Categories: Book Reviews and Reviews

Author: Margaret Cannon
Publisher: Random House
Release: 1995
Genre: Non-Fiction
Length: 308 pages
Rating: 70%

A few years ago an African-American friend from Michigan visited me in Toronto . He was amazed at how integrated the city appeared to be: there were even people of different races standing together at the same bus stop! He later told me he aspired to live in Canada one day. While I was touched by his admiration for my country, I warned him that unfortunately racism does exist in Canada . I would hate for him to come here under the illusion it did not and then be bitterly disappointed on discovering the truth.

Many Americans, both Black and White, are taken in by Canada ’s seeming racial harmony. One (White) American who immigrated here in the 1970s with this vision in mind but who later found out otherwise is Margaret Cannon, a social worker, professor at York University , Globe and Mail columnist, and author of The Invisible Empire: Racism in Canada. The book is a chronicle of her investigation into the presence of racism (and anti-Semitism, which for the purpose of this review will be subsumed under the heading “racism”) in her adopted country.

The Invisible Empire: Racism in Canada was first published in 1995. While it may appear a bit outdated (Preston Manning and the Reform Party are frequently mentioned, for example), it is still relevant today in understanding racial discrimination in this country. It is written in a personable but not overly informal style. The Invisible Empire makes references to a number of well-known individuals, such as Western University psychology professor Philippe Rushton, late journalist and philanthropist June Callwood, and Catholic Archbishop of Toronto Aloysius Ambrozic. Perhaps the real substance of the book, though, lies in Cannon’s interviews with the people on the ground, so to speak: White Supremacists, police officers, immigrants, and native-born Canadians of all colours. To her credit she does her best to get feedback from all sides of the various issues she addresses. For instance, a young Black man in Toronto talks about receiving death glares from complete strangers right after the Just Desserts case. On the other hand, Cannon hears from a policeman who when describing the shootings of African-Canadian men by the police explains the dilemma officers face in trying to use as little force as possible while at the same time keeping crime under control.

The Invisible Empire begins with a description of White Supremacist organizations and their members. Cannon attempts to discover what attracts people to such groups. Her final conclusion is that many of these individuals join out of a need to belong to something larger than themselves, just as she in her younger years became part of the Young Socialists Alliance in the United States . She goes on to discuss several major players in the movement, some still famed like Holocaust denier Ernst Zundel and the late Heritage Front leader Wolfgang Droege and others who have since faded from collective memory, such as Carney Nerland, the “Fuhrer of Saskatchewan,” who was convicted in the shooting death of a Native Canadian man.

One controversy that emerges is the clash between the freedom of expression of people like Zundel and the desire to protect Jews and other minorities from hate speech. The issue gets thornier yet when it involves educators telling their students the Holocaust never occurred, as Eckville , Alberta high school history teacher Jim Keegstra did. Even individuals like myself who would, albeit reluctantly, defend Zundel’s “right” to spew any nonsense he wished in self-published pamphlets would draw the line at teachers doing the same with impressionable young minds in the classroom – though I might also agree with a trustee at the Eckville school board who said the matter should have ended with Keegstra’s dismissal, not in a court of law.

Other race-related controversies take up the pages of The Invisible Empire as well. Among them are the “Into the Heart of Africa” exhibit at Toronto ’s Royal Ontario Museum , the North York Performing Arts Centre’s decision to feature the musical Show Boat, and the resignation of social activist June Callwood from Nellie’s, the battered women’s shelter she had founded. Though Cannon refrains from taking sides in these battles, she says the side you do end up taking is literally the side of the colour line on which you fall. For example, in viewing “Into the Heart of Africa,” which displays the paraphernalia of Canadian missionaries to Africa in the late nineteenth and early twentieth centuries, Cannon saw “an ironic look at a lot of dead white people who thought they were doing the right thing.” Black critics of the exhibit however spoke of its “false representation of African people, denigrating language and images, and perpetuation of colonialist and imperialist thinking about Africa .” Similarly while Show Boat was originally meant to be a statement against anti-miscegenation laws in the United States , Blacks in 1990s Toronto focussed on lyrics like “Niggers all work on the Mississippi .” June Callwood was forced to resign from Nellie’s following charges that women of colour were being excluded from positions of power on the hostel’s board of directors. A number of (presumably White) corporate sponsors withdrew their support for Nellie’s after she stepped down, but many non-White observers felt her accusers had some legitimate points.

The book attempts to portray how racism permeates Canadian daily life in its various spheres: education, entertainment, and even language. For instance, the word “Hymie,” which Canadian former talk show host Dini Petty used on the air to describe cheapskate husbands, derives from a derogatory term for Jews. Though Petty claimed to have no knowledge of the word’s origin and issued a public apology, the Jewish community was understandably upset. The stereotype of the greedy Jew has after all figured behind everything from pogroms to the Holocaust to the exclusion of Jews from institutions of higher learning (in Canada among other countries). At other times the racism of seemingly innocent words is more doubtful. One of Cannon’s interviewees, a Guyanese woman of mixed African and East Indian descent, says she can call a White woman “girl” but coming from the other end it would be racist because “it makes me the maid.” Here even the ultra-progressive Cannon admits this “may seem like linguistic hair-splitting to some.”

Towards the end of the book Margaret Cannon delves into the twin political issues of immigration and multiculturalism. Unlike in earlier years, most immigrants coming to Canada today are not White, a fact with which not everybody is comfortable. Canadians’ views on immigration are nuanced, however: polls show that while a majority of respondents want to reduce the number of immigrants, they also believe newcomers make Canada a more interesting place. Quebec holds an interesting position as a French-speaking province. Cannon notes that minorities report experiencing less prejudice in Quebec than in other provinces. Nonetheless, many Quebec Francophone leaders insist that those who settle in the province must learn French.

Multiculturalism is another political “hot potato.” Often described disparagingly as an orgy of singing and dancing and spaghetti-eating, the policy has been criticized by Whites and non-Whites alike. Trinidadian-born writer Neil Bissoondath believes it prevents immigrants and their children from fully integrating into their adopted nation. Black writer Marlene Nourbese Philip sees it as a way to appease non-Whites while continuing to exclude them from positions of power in this country’s institutions.

The Invisible Empire: Racism in Canada is all in all a well-written and informative book. Nonetheless, I feel compelled to point out a few of its potential shortcomings. Beyond a short mention of past prejudice against the “heathen Irish,” Cannon says virtually nothing about White-on-White (“white” here in the sense of White Christian) discrimination. She is silent for example on the internment of Ukrainian Canadians during World War I. Perhaps her silence stems from her view of racism as the “conviction that the white (or White Christian) race is superior to all others [and that] all others are inferior.”

The notion of racism as a “Whites versus Others” question also clashes with her own findings that different non-White communities don’t necessarily love each other or bond together to oppose the great White oppressor. In one neighbourhood Cannon visits not only the White but the South Asian residents as well are convinced that “Blacks are committing crimes at record rates.” Even members of the same broad racial group don’t always engage in a gigantic love fest. Some Somali children speak of being assaulted by Jamaican gangs at Toronto schools.

Though Cannon’s dedication to eradicating racism is heartening in many ways, in her zeal she at times appears to see discrimination where it may not truly exist. For example, she states that “Blacks, Natives and Orientals [I have to admit being a bit surprised at her use of a ‘politically incorrect’ term for East Asians] report that they are regularly stopped by the police.” However, a couple of surveys show that while Blacks and Natives are indeed more likely than Whites to be stopped by the police, East Asians are actually less likely to be so targeted. One wonders whether if Cannon interviewed a group of young White men they too would tell her of being pulled over by the cops.

I read The Invisible Empire twice: the first time when it originally came out and the second just recently. I have tentatively come to the conclusion that racism in Canada may not be as pervasive as Cannon seems to believe it is but that she does provide a good description of race relations in this country. However, anybody wanting to challenge or confirm this conclusion should read the book for him- or herself.

Sphere: Related Content

11
Jan

The Child Support Trap – Rewarding Paternity Fraud?

By Cynapse 18 Comments
Categories: Society

If a divorced dad finds out that a child from the marriage belongs to another man, should he still pay child support? A recent judgment handed down from the Ontario Supreme court ruled that divorcee Pasqualino Cornelio continue to pay child support for his 16-year old twins even though paternity DNA testing revealed that he is not in fact the twins’ biological father. The original conflict arose when, after a successful separation agreement involving joint child custody, Cornelio’s ex-wife demanded an increase in child support payments and a decrease in paternal visitation. In response, Cornelio acted on an earlier suspicion that the children may have been conceived outside the marriage and used a paternity kit to verify that the children were actually from an extra-marital affair. The judge in the case ruled that Cornelio is legally the father even though he was not the biological father and therefore is still responsible for any support the children must legally receive. Cornelio was also denied a request for back-payment of previous financial support.

The Supreme Court’s ruling has chilling implications for any male who has either “stepped up” to help raise another man’s children or suspects his wife / common-law partner of infidelity. Hypothetically, a woman can cheat on her partner, fail to disclose the true paternity of the child and reasonably expect full support for the children when her partnership dissolves. The man responsible for creating the children would escape responsibility while the man who acted in good faith bears the financial burden.

While the Cornelio case is not paternity fraud by strict definition (the mother must intend to deceive the would-be father, whereas Cornelio’s ex says she “forgot” about the affair), several high-profile cases in the United States have resulted in non-biological fathers being required to continue child support payments despite deliberate deception by the mother. Do the American and Canadian systems reward paternity fraud?

The counter-argument to genetic-based paternity rights is that fatherhood should be defined not by blood but by the length and quality of the relationship between the man and child. Family bonding takes place via actions over the length of a child’s life and does not require a confirmation of heredity. Suddenly discovering the lack of blood ties does not erase history, nor should the supporting parent try to erase this history by demanding back-payment. Many U.S. states have a presumption of paternity and do not even permit a married man to use DNA evidence in rebuttal.

In short, your father is the man who raised you – nearly every child assumes this until told otherwise. The non-biological definition of family seems better-suited to a society where transnational adoptions, blended families and same-sex marriages are becoming commonplace. Legally declaring parenthood strictly along hereditary lines could lead a torrent of court challenges from households that don’t fit the standard nuclear family image.

Despite court challenges by Pasqualino Cornelio and others who have been duped into supporting non-biological children, the overlying lesson seems to be that if a man is unsure about the paternity of his child then a paternity test should be demanded immediately. During separation or divorce, family courts make a conscious effort to make decisions in the best interest of the children. The essential needs of a child will almost always take precedence over a jilted man’s desire to punish a deceitful ex.

Sphere: Related Content

Further Research


RSSQuick Shots




Categories


Archives