Connect with us


MIT: We’ve created AI to detect ‘serial internet address hijackers’



Widespread internet outage blamed on Verizon
A Verizon error resulted in a “cascading catastrophic failure.”

The Border Gateway Protocol (BGP), a core internet protocol, is wide open to abuse. Attackers can effectively fool other networks into misdirecting internet traffic for the attackers’ gain, be it snooping, phishing, or some other goal. 

While many hijacking events are benign and due to misconfigurations, there have been numerous cases in the past few years showing attackers are abusing BGP on a large scale. 

A BGP route hijack happens when an internet operator wrongly announces another network’s IP address blocks. In BGP route tables, ISPs are identified by an AS (Autonomous System) number.  

SEE: 10 tips for new cybersecurity pros (free PDF)    

A problem with the system is that it’s difficult to know for sure whether a BGP hijacking event is actually malicious or just an accident. Researchers have in the past identified highly suspicious events because traffic from major companies like Apple, Amazon, Microsoft, and Google was wrongly rerouted. The other sign is the location and reputation of the ISP that caused it. 

Other times, it’s more clear cut that an event is malicious, but internet infrastructure providers can still be wrongly routing traffic according to an attacker’s plan for hours before they can rectify the problem.  

The US National Institute for Standards and Technology (NIST) is working on a proposal that could thwart many BGP hijacking events. 

It involves Resource Public Key Infrastructure (RPKI) to allow cloud providers and ISPs that hold blocks of internet addresses to control which networks can announce a direct connection to their address block. 

It’s also working on BGP Validation so that routers can use RPKI information to filter out unauthorized BGP route announcements. 

Researchers at MIT are working on the detection side of the problem using a machine-learning model to “automatically identify Autonomous Systems (ASes) that exhibit characteristics similar to serial hijackers.”

The gist of the effort is to help network operators proactively respond to ISPs that have a track record for bad behavior rather than only reacting to events after they happen. As it is, network operators can only publicly call out bad behavior in network engineering mailing lists and hope other networks help correct the issue. 

“Current hijack detection systems typically rely on assumptions of prefix ownership and track origin changes in the global routing table. If an event is detected, the victim network can react and attempt to get in contact with the perpetrator or its upstream networks to solve the problem,” the MIT researchers explain in a paper ‘Profiling BGP Serial Hijackers: Capturing Persistent Misbehavior in the Global Routing Table’, which they’ll present later this month in Amsterdam. 

“However, many times this contact is not fruitful or not even possible. At that point, victims of hijacks are only left with the option of publicly disclosing the event in network operator mailing lists in the hope that peer pressure and manual interventions by other networks, such as filtering announcements or refusing to provide transit, will remediate the situation.” 

The researchers built the machine-learning detection model based on the assertion that malicious BGP behavior by an actor is sometimes consistent over time. By analyzing actions over time, the researchers aimed to create a scoring system to indicate an operator’s good or bad reputation. 

The serial BGP hijackers they focus on are the ASes that have displayed malicious activity in the global routing table for several years. 

“We take on a new perspective on illicit BGP activity: instead of looking at individual BGP hijacking events, we study the long-term prefix advertisement dynamics in the global routing table in space and time.”

Specifically, they looked at BGP announcement dynamics of serial hijacker ASes over five years in a bid to identify characteristics that separate them from well-behaved ASes.

SEE: Dear network operators, please use the existing tools to fix security

One of the serial hijackers in the study, AS197426, or BitCanal, was “effectively cut off from the global internet” last July, according to Oracle-owned Dyn. The Portuguese company was described by a security researcher as a BGP “hijack factory” because of its persistent hijacking activity over the years.   

The classifier also identified AS19529 as a hijacker network and AS134190 as a network that shows the most recent indications of potential serial hijacker behavior. 

With this knowledge, it would be possible for network operators to deploy systems to automatically discard bad BGP routing announcements rather than relying on mailing lists.  

But they also note possible problems with autonomous detection. For example, companies that provide protection against distributed denial-of-service (DDoS) attacks are what they call ‘benign serial hijackers’ because the process of scrubbing DDoS traffic involves BGP hijacking. 

Source link

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *


Toyota foils leakers by offering an official image of the 2022 Tundra



Earlier this week, leaked images were going around claiming to show the next generation 2022 Toyota Tundra. Automakers never like leaks, and often they simply deny that the images are of their vehicle or ignore the leak altogether. However, Toyota used a different tactic when images of its 2022 Tundra leaked, choosing to release an official image of the truck.

2022 Tundra TRD Pro

With Toyota’s move, talk of the 2022 Tundra has moved from the leaked images to Toyota’s official image. However, it’s worth noting that Toyota only offered a single image of the TRD Pro version of the Tundra and offered no details on the truck. Last month, SlashGear posted a review of the 2021 Tundra TRD Pro, highlighting that it was the last hurrah for the current generation of the truck.

However, it does offer a nice opportunity for us to compare the exterior of the 2021 model to the 2022 model. What we see is significant changes on the exterior of the truck. While the overall profile remains virtually the same, the 2022 has a completely new front end that closely resembles the style used on the Tacoma and 4Runner SUV. That means a large black grille with hexagonal openings and bulky Toyota branding on the grille.

It’s unclear if non-TRD Pro versions will have the same front-end treatment. Another interesting tidbit that is easily seen from the official Toyota photograph is that the truck is equipped with an LED light bar underneath the Toyota logo in the grill and what appear to be LEDs underneath the grill on the front black portion of the bumper. The headlights are much smaller and appear to be LED.

2021 Tundra TRD Pro

The truck has modest black fender extensions and rolls on very attractive black wheels. We also note that the truck has integrated sidesteps to make it easier to get in and out. Unfortunately, there’s no indication of what changes might have been made to the interior or under the hood of the truck at this time.

Continue Reading


Ford to purchase Electriphi for integration with Ford Pro services for EV fleets



Ford has announced it will purchase Electriphi, a California-based provider of charging management and fleet monitoring software for electric vehicles. Ford intends to integrate Electriphi capabilities with its Ford Pro services to develop advanced charging and energy management experiences for commercial users. Many large commercial fleet operators are actively transitioning from combustion-powered vehicles to electric vehicles, and managing charging is a significant challenge.

Ford believes that the acquisition of Electriphi will help spur the adoption of the new F-150 Lightning Pro and E-Transit van by fleet operators around the country and the world. The automaker also notes that the acquisition is part of its plan to invest more than $30 billion by 2025 to enable it to lead in electrification for both commercial and retail customers.

Ford Pro is a new global business within Ford designed to help improve commercial customer productivity and develop advanced charging and energy management services. Charging infrastructure and managing charging capabilities for large fleets of electric vehicles is seen as one of the biggest challenges to the adoption of electric vehicles by commercial users. Ford Pro estimates that the depot charging industry will grow to over 600,000 full-size trucks and vans by 2030.

Ford Pro expects to have over $1 billion in revenue from charging by 2030. Ford’s full-electric E-Transit van is currently scheduled to begin shipping later this year, and the F-150 Lightning Pro will begin shipping in the spring of 2022. Electriphi had a team of over 30 employees, and the software they developed is designed to simplify the electrification of fleets, save energy cost, and track critical metrics like the real-time status of vehicles, chargers, and maintenance services. Ford expects to close the acquisition this month at undisclosed terms. Ford Pro will begin for customers in North America, but it will launch in Europe later.

Continue Reading


2021 Volkswagen Jetta Review: Sober Value



Volkswagen would probably call the 2021 Jetta “pragmatic,” and rationality certainly is the name of the game for one of the most affordable cars on the market right now. A mainstay of the compact sedan segment since 1979, the Jetta always promised a balance between the playful Golf and the grown-up Passat. These days, though, the Jetta may have matured a little too far.

Much as with the Golf in the US, VW has pared back the Jetta configurations to a single engine. In fact it’s the same engine: a 1.4-liter turbocharged four-cylinder, with 147 horsepower and 184 lb-ft of torque. The cheapest 2021 Jetta, the S trim from $18,995 (plus $995 destination), comes with a six-speed manual. So, too, does the $22,795 Jetta R-Line.

Otherwise you get an eight-speed automatic, with front-wheel drive across the board. In the case of my 2021 Jetta SEL Premium – the swankiest Volkswagen offers – it pushes pricing to $28,045 plus destination. Part of that is the Cold Weather Package, which is $500 on lesser trims, and the equally priced Driver-Assistance Package.

All Jetta get LED front and rear lights, and R-Line and above upgrade the 16-inch alloy wheels to 17-inch versions. SE and above have heated side mirrors and a panoramic power sunroof. SE and above get dual-zone automatic climate control and heated front seats; cars with the Cold Weather Package have a heated steering wheel and heated rear seats. Only the SEL Premium has actual leather upholstery, though.

On the safety side, automatic post-collision braking is standard across the board, while SE and above get forward collision warnings with emergency braking, blind spot monitoring, and rear cross-traffic alerts. SEL and SEL Premium cars throw in adaptive cruise control with lane-keeping assistance.

The Jetta may have the same engine as the 2021 Golf, but the end result still feels fairly different. The Golf has, of course, near-sublime chassis tuning, and is altogether more eager with its 147 horses. Even with the same platform underneath, the Jetta plays things a little more grown-up. It’s surprisingly zippy from a standing start, easily pulling away, but corners see more body roll and the steering is dialed in light.

I suspect that’s what Jetta owners like, though, and certainly it’s a relaxed and unchallenging experience from behind the wheel. The Jetta GLI promises a few more thrills, thanks in no small part to its active damping, but this regular car is unlikely to get your heart rate up.

The same could be said for the cabin, which is dark and sober enough that you could assume Volkswagen is going through its goth phase. Matte black plastics sit alongside gloss black plastics, and the sprinkling of dark silver trim around the clusters of controls isn’t enough to lift the interior out of its somber monochrome.

The switchgear feels good, but the rest of the plastics are only middling, and all the button blanks around the transmission shifter are a reminder that even in SEL Premium form you don’t get a huge number of toys. The 8-inch touchscreen on SEL and SEL Premium trims now runs MIB3, a newer version of VW’s infotainment system; S, SE, and R-Line cars get a 6.5-inch touchscreen and the older MIB2. So, too, the two highest trims pack the Volkswagen Digital Cockpit, with a screen replacing the analog gauges.

MIB3 is clean and easy to use, though VW’s graphics don’t stray from the pallid aesthetic of the rest of the interior. There’s Apple CarPlay and Android Auto, plus a wireless charging pad, and both SEL and SEL Premium cars get a 400 watt Beats Audio system with eight speakers and a subwoofer. There’s a surprising degree of bass from that, along with two USB-C ports.

Where the Jetta does stand out – including against the Golf – is in economy. The EPA says you’ll get the same 29 mpg in the city, but highway driving is rated for up to 39 mpg (versus the Golf’s 36 mpg) for a single point advantage at 33 mpg combined. In practice, it’s not difficult to meet those figures either, not least because the Jetta doesn’t especially encourage profligate manners behind the wheel. Highway driving in particular feels tuned for steady plodding rather than anything approaching urgency.

Practicality tips things back in the Golf’s favor, with the Jetta offering 14.1 cu-ft of trunk space versus its hatchback cousin’s 17.4 cu-ft. Still, it feels bigger than that, there’s a 60/40 split rear seat, and adult passengers back there only had a slight dip in headroom to complain about. A four-year/50,000 mile warranty is a little more generous than what many in the category are offering.

2021 Volkswagen Jetta Verdict

I’ve said it before: VW’s attentions seem to be on its electrification strategy and the ID range, and that leaves cars like the 2021 Jetta out in the shadows. The compact sedan isn’t a bad car, just an unmemorable one, and the problem there is that it finds itself with competition that rival automakers are taking a lot more seriously.

The new 2022 Honda Civic Sedan, for example, is similarly priced but has a fantastic cabin and is more rewarding dynamically. The Mazda3 has beguiling looks and is far more enjoyable to drive than the Jetta. There’s not really anything objectively wrong with Volkswagen’s car, and those on an extreme budget might find its lesser-equipped trims appealing, but even those who think of their vehicles as appliances will find more to appreciate elsewhere.

Continue Reading