Access your Pro+ Content below.
Tor networks: Stop employees from touring the deep Web
This article is part of the February 2014 Vol. 16 / No. 1 issue of Information Security magazine
Interest in the deep Web exploded in 2013 as international headlines broadcast the unexpected reach of National Security Agency's mass surveillance programs, and the made-for-Hollywood story unfolded of the Silk Road website and arrest of its alleged proprietor, "Dread Pirate Roberts." A marketplace for computer hacking and illegal drugs, among other goods and contraband, Silk Road used a Bitcoin-based payment system and "tumbler," which made the identities of the people involved in transactions hard to trace. According to a U.S. criminal complaint, the FBI was not able to defeat the anonymity afforded Silk Road by the onion router (Tor) networks and its decentralized, peer-to-peer Bitcoin payment system, two technologies that underpin much of the deep Web. How can you see Tor traffic or Bitcoin mining over a network? Both applications use SSL connections over Web ports but can be adjusted to use any port. Silk Road's alleged proprietor Ross Ulbricht was publicly unmasked because of a simple mistake. In January 2011, a user who ...
Access this Pro+ Content for Free!
Features in this issue
This February 2014 Information Security magazine supplement takes a deeper look into cyberthreats and examines advanced threat techniques including watering hole attacks and sophisticated spear phishing.
There's no place to hide as new cyberthreats and tried-and-true hacking techniques test security teams.
It's a new year of advanced threats, malicious code and holes to plug, but security teams are fighting back with help from global services.
Are employees using Tor to view blocked Web sites, or mining Bitcoins on corporate resources? Sinister or not, it needs to stop.
Columns in this issue
One month into the new year and we have already faced landmark data breaches. The advanced threats will keep on coming in 2014.
The influx of iPad and Android tablets and smartphones after the holidays can really challenge network security in organizations that support BYOD.
New survey shows the battle between corporate-issued devices versus personally owned smartphones and tablets is too close to call.
Throwing a curve: Is there a potential weakening of security products and services courtesy of the NSA and RSA BSafe?