Cyberattacks and Hackers

Subterms

    Latest story

    125 Shares199 Views

    ‘Billion Dollar Heist’ Review: How to Rob a Bank, Digitally

    by

    This documentary chronicles a 2016 digital bank heist by pairing commentary from cybersecurity experts with a toolbox of visualization techniques.In 2016, a team of cyberthieves stole $81 million from a central bank in Bangladesh. The theft was meticulously executed: The hackers gained access to the bank’s financial transfer system through contaminated email attachments that allowed them to plant custom malware, which they used to worm through the office’s computer network until they reached the single server responsible for dispatching encrypted orders.If this sounds convoluted in writing, just imagine trying to spin its esoteric details into a true-crime yarn fit for neophytes. “Billion Dollar Heist,” directed by Daniel Gordon, attempts the task by leaning on a stable of cybersecurity experts to walk viewers through the operation. To further explain, Gordon whips out a toolbox of visualization techniques. When, for example, the subjects describe how the hackers navigated Bangladesh’s internal network, Gordon depicts the mission as a Super Mario-like video game.With so much action transpiring in the digital realm, the documentary is careful to milk its handful of terrestrial story beats: a critical typo in a transfer request, a multiday gambling spree at a Philippine casino, the wily scheduling of the attack on a national holiday to ensure that bank employees would be offline. These details ground the narrative, but their prominence contributes to the film feeling like predigested news — particularly when the more arcane aspects of the story remain undefined.“Billion Dollar Heist” is not totally bankrupt, but in mining its central cybercrime for tidbits while smoothing over its complexities, the film erodes its power both as seminar and spectacle.Billion Dollar HeistNot rated. Running time: 1 hour 24 minutes. Rent or buy on most major platforms. More

    More stories

    • 150 Shares169 Views

      in Music

      Met Opera’s Website and Box Office Are Back, 9 Days After Cyberattack

      by

      Hackers had left the Met, the largest performing arts organization in the United States, unable to sell tickets as it tries to recover from the pandemic.Nine days after an audacious cyberattack struck the Metropolitan Opera, forcing its website offline, paralyzing its box office and hobbling its ability to sell tickets, the company announced on Thursday that those services had been restored.“After suffering a cyberattack that temporarily impacted our network systems, we’re pleased to announce that the Met is now able to process ticket orders through our website and in person at our box office,” the Met said in a message on its website, which reassured customers that no credit card information had been stolen during the attack.The resumption of ticket sales at the Met, the largest performing arts organization in the United States, marked the conclusion of what the company said was the first major cyberattack in its 139-year history. The attack, coming during the usually lucrative holiday period, knocked out the company’s ticketing system at a time when it would typically handle about $200,000 in sales each day.The targeting of the Met, which dealt the company a blow as it struggles to lure audiences back to prepandemic levels, underscored that even venerable cultural institutions are not immune to cyberattacks in the digital age.“This attack froze everything,” said Peter Gelb, the Met’s general manager, who said that it had wreaked havoc, undermining the electronic payment system for the company’s 3,000 full- and part-time employees and hampering its ability to order sets for upcoming productions. “The teachable moment of this attack is that if someone wants to break into your system, it is hard to stop them.”Despite the disruption, the Met never missed a performance, continuing to stage its grandiose old-school production of Verdi’s “Aida,” with its huge cast and towering sets, and the new Kevin Puts opera “The Hours,” starring Renée Fleming, Kelli O’Hara and Joyce DiDonato and inspired by Michael Cunningham’s Pulitzer Prize-winning 1998 novel. Without its regular ticket system, the opera house offered $50 general admission tickets for seats that usually cost several times that much, through a website set up by Lincoln Center. Gelb said Thursday that prices would return to normal levels.Gelb said it appeared that the attack has been orchestrated by an organized criminal gang, and that the F.B.I. was aware of the attack.Cybersecurity experts said the attack had all the hallmarks of a ransomware attack, a form of modern-day piracy that has become a global scourge in recent years, as attackers target local governments, businesses, hospitals and, now, cultural institutions.Experts said the crime is widespread. In some cases victims receive an email with a link or attachment that contains software that encrypts files on their computer and holds them hostage until they pay a ransom.While the attack had added to the Met’s woes, Gelb said the company was undeterred. Paraphrasing a line from Terence Blanchard’s opera “Fire Shut Up in My Bones,” which was performed at the Met last year, he said: “We bend but we don’t break.” More

    • 163 Shares99 Views

      in Music

      A Cyberattack Shuts the Met Opera’s Box Office, but the Show Goes On

      by

      After hackers knocked out the ticket-selling system of the Met, the largest performing arts organization in the United States, the company decided to sell $50 general admission seats.It had been a full week since a brazen cyberattack had hobbled the Metropolitan Opera, taking its website offline and paralyzing its box office, and hundreds of opera lovers were waiting patiently in line Tuesday evening, fluctuating between anxiety and anticipation.The curtain was set to rise on the Met’s grandiose old-school production of Verdi’s “Aida” in 45 minutes, and 300 audience members had managed to score the sold-out $50 general admission tickets that the cyberattack had forced the company to offer as a workaround until its computer systems are fully restored.Some had feared a “running of the bulls” situation, with opera lovers jockeying for prime seats that ordinarily cost as much as $350 apiece. But the human choreography amid the technological mayhem was fairly seamless. The general-admission hordes, who had bought their tickets on a hastily assembled page on Lincoln Center’s website, were directed to side corridors of the Met’s 3,800-seat auditorium. There, ushers handed them improvised tickets, their seat numbers handwritten in black magic marker, distributed on a first-come-first-served basis.“It’s frightening that a cyberattack can happen at a place like the Met,” said Mike Figliulo, 42, a technology director on Broadway, as he marched triumphantly to his $50 seat in row M of the orchestra.The attack on the Met, the largest performing arts organization in the United States, knocked out a ticketing system that typically handles about $200,000 in sales each day at this time of year, and took down the company’s payroll system, forcing it to cut checks by hand for some of its 3,000 full- and part-time employees. It was the latest major disruption for a company struggling to lure audiences back to prepandemic levels, and it hit just as the lucrative holiday season was getting underway.“With this attack, it feels like we have entered the ninth circle of hell,” Peter Gelb, the Met’s general manager, said Tuesday during a pause in a rehearsal for an upcoming English-language holiday production of “The Magic Flute” that is popular with families. “It adds strain on a company that has suffered innumerable strains and challenges since the pandemic from which we are still recovering.”The Met’s outspoken support for Ukraine — it presented “A Concert for Ukraine” last season; helped arrange a tour by the newly formed Ukrainian Freedom Orchestra; and parted ways with one of its reigning prima donnas, the Russian soprano Anna Netrebko, after she declined to distance herself from President Vladimir V. Putin of Russia — led to speculation that Russia could be behind the cyberattack.Gelb tamped down that theory, saying that the attack appeared to be the work of an organized criminal gang. He said the Met had informed the F.B.I. of the attack, and that he hoped that the box office would be running as early as Wednesday.“I can understand why there might be conjecture that Russia is behind this, given the Met’s strong condemnation of Putin and defense of Ukraine,” he said. “But we don’t believe Putin is masterminding cyberattacks on opera companies. And if he is, that is a good reason that the Russians are losing the war.”The seating of people with $50 general admission tickets went smoothly. Jeenah Moon for The New York TimesGelb declined to elaborate on who was behind the attack. But cybersecurity experts said that, given how long it was taking the Met to get back online, the attack bore the hallmarks of an increasingly prevalent type of modern-day piracy that has targeted businesses, local governments, hospitals and even hotels. The weapon? A type of software known as ransomware.The crime is as simple as it is effective. In some cases victims receive an email with a link or attachment that contains software that encrypts files on their computer and holds them hostage until they pay a ransom.Ransomware has become a global scourge. A ransomware attack this fall disrupted the government of Suffolk County, on Long Island, forcing it largely offline. Five years ago, one of the largest ransomware attacks in recent memory left thousands of computers at companies in Europe, universities in Asia and hospitals in Britain crippled or shut down — in some cases, paralyzing hospital equipment before patients were poised to go into surgery.Justin Cappos, a cybersecurity expert at New York University’s department of computer science and engineering, said hackers who carry out such attacks frequently operate in Russia and Eastern Europe, and often demand a ransom in Bitcoin, a digital currency that is hard to trace. A Bitcoin payment also can’t be rescinded once it is made.He said that the targeting of cultural institutions like the Met was surprising, given that they typically have limited financial resources. Nevertheless, he said, the attackers might have been motivated by the audacity of targeting such a global and glittering brand.“Every organization needs to care about cybersecurity, even cultural organizations like the Met,” Cappos said. This attack, he added, underscored that “nobody is safe.”The Met — which never missed a curtain last year, even when the Omicron variant shut down wide swaths of Broadway, dance performances and concerts — has managed to proceed with all of its performances through the current cyberattack, staging Verdi’s “Rigoletto” and “Aida” and its new production of Kevin Puts’s “The Hours,” starring Renée Fleming, Kelli O’Hara and Joyce DiDonato, which was simulcast as planned to movie theaters around the world on Saturday as part of the Met’s Live in HD series.With war raging in Europe, record inflation and the continuing effects of the pandemic, cultural institutions across the world, including the Met, have been struggling economically. But Gelb said the Met was resilient.“Our lives have been turned upside down,” he added. “But we’ll get through it.”The operagoers who went to the Met on Tuesday evening were transported back to a grand operatic vision of ancient Egypt, with soaring arias and choruses telling a story of doomed love and divided loyalties. One scene stealer was an unruly pony named Sandy who stomped its hoof and shook its head aggressively during the larger-than-life Triumphal Scene, eliciting nervous laughter from the audience.The audience was able to forget, at least temporarily, that it was at the center of an opera house under siege. More

    • 138 Shares179 Views

      in Music

      Met Opera, Reeling From Cyberattack, Will Sell Tickets on New Site

      by

      The company’s computer systems have been down for more than three days. It will now use a Lincoln Center website to offer $50 general admission seats to some performances.Three days after a cyberattack first paralyzed its website and box office, the Metropolitan Opera on Friday announced that it would sell $50 tickets to some performances on a site run by Lincoln Center.The Met, in a brief note posted on social media, said it would offer the general admission tickets as it worked to fully restore its computer systems, which have been down since Tuesday morning. The company has proceeded with all of its performances, including of “Aida” and “The Hours,” but the Met has been unable to sell any new tickets, including in its last-minute rush ticket program.“We appreciate your patience through this difficult time as we work to resolve the issue and resume full operations,” the note said.The attack has wreaked havoc as the Met prepares for a string of holiday productions. At this time of year, the company’s ticketing systems typically handle about $200,000 in sales each day.Peter Gelb, the Met’s general manager, said it could be several more days before the Met’s ticketing site is fully restored. The attack has also sidelined the company’s internal networks, including its payroll system.“It takes time, because when you have been hacked, you have to be sure that whatever functions are going back online are not going to be compromised,” he said.Gelb said the Met was still investigating who had carried out the attack and assessing the damage.Separately, the Musikverein, a concert hall in Vienna, posted a message this week saying its website was unavailable. “We apologize for the inconvenience and hope to be able to provide our usual service as soon as possible,” the Musikverein said.The cyberattack comes at a difficult time for the Met, which is still working to recover from the turmoil of the coronavirus pandemic and lure back audiences. Attendance is well below prepandemic levels.“At a time when you’re trying to get more people interested in opera and attending your performances, it’s incredibly frustrating,” Gelb said. “We all want the same thing, which is to make it easier for people to attend performances, not more difficult.”The Met will offer $50 tickets for three upcoming performances of Verdi operas: “Rigoletto” on Sunday and Wednesday, and “Aida” on Tuesday. Since the Met cannot connect to its ticketing system to see which seats have already been sold, the $50 seats will be general admission. Customers who buy the tickets will be given empty seats in the orchestra section on a first-come, first-served basis immediately before curtain.Tickets are being sold on www.lincolncenter.org/metopera. More

    • 113 Shares149 Views

      in Movies

      Behind Every Hero or Villain, There Is Tech Support

      by

      Cutting-edge technology is often used in comics by the able assistants who fall under the trope “the guy in the chair.” But they are not always men and are not always helping the hero.This article is part of our new series, Currents, which examines how rapid advances in technology are transforming our lives.Technology has always played a major role in superhero comics. Sometimes the tech makes the hero, like the often upgraded suits of armor worn by Iron Man. Other times it can benefit a team of do-gooders, like the rings used by the Legion of Super-Heroes that give its members, whose adventures are set in the future, the ability to fly.While most technology in comic books is of the fantastical kind, there are some examples that either exist in the real world or are extensions of real-world inventions. The DC hero Mr. Terrific uses dronelike devices he calls T-Spheres that assist him on his adventures with aerial reconnaissance (they can also deploy lasers, holograms and more).Iron Man uses an artificial intelligence system light years ahead of Alexa or Siri. In the Marvel Cinematic Universe he had J.A.R.V.I.S., but he (it?) was replaced by a virtual assistant named F.R.I.D.A.Y., who is also featured in the comics. These days he uses an A.I. named B.O.S.S., which alerts him to threats, monitors his power levels and, in its first comic book appearance, managed his investments while he battled an extraterrestrial threat.But the true heroes-behind-the-hero, one could argue, are those keyboard surfers who type furiously at a terminal and provide critical information to whoever they are assisting in the field. This special kind of tech support falls under the trope known as “the guy in the chair,” but they are not always men nor do they always help the good guys. Below are some examples, both virtuous and villainous.Marvel EntertainmentProfessor XCharles Francis Xavier, or Professor X as he is popularly known, is the founder of the X-Men, Marvel’s mutant heroes who are often feared and distrusted by society. Professor X has often used a wheelchair and has led the X-Men from afar, keeping tabs on the team in the field with his telepathic abilities. He has provided the team with some formidable innovations. The Danger Room, the facility where the heroes train in the use of their powers, started out relatively low-tech: an obstacle course with battering rams and flamethrowers. Later on, thanks to an infusion of alien technology, it was souped-up with holograms that simulated the extreme terrains the X-Men often encountered. Another invention, Cerebro, was like a DNA test combined with Apple’s Find My iPhone app: It can pinpoint the location of mutants and alerts him to the emergence of new ones.Marvel EntertainmentMicrochipDavid Linus Lieberman is the aide-de-camp of the Punisher, Marvel’s antihero. Lieberman, a.k.a. Microchip, provides all manner of illicit services: money laundering, weapons procurement and computer hacking. In his origin story, Lieberman’s initial crime is changing the grades of a fellow college student whose scholarship is in danger. After tangling with a mob-connected bank, he begins a life on the run. From there, he slowly evolves into an underground hacker who also creates computer viruses. He meets an untimely end when he tries to replace the Punisher, who is becoming increasingly violent and unstable.Marvel EntertainmentShuriBlack Panther’s brilliant little sister, Shuri, made a big splash in the 2018 “Black Panther” film with her technological wizardry — Q to her brother’s James Bond. In the comics, Shuri is similarly gifted, but also more ambitious: She has her eye on becoming Black Panther, a ceremonial title of power and leadership in the advanced African nation of Wakanda. Shuri serves as Black Panther when her brother is incapacitated and later sacrifices her life to save him. But worry not: He finds a way to bring her back, and they fight side-by-side today. Shuri is very much a field operative in comics, and she’s responsible for creating an array of gadgets and gear, including a spaceship and nanotech wings (of which she boasts, “My latest success! Emergency flight in a can! I am awesome!”).DCOracleWhen Barbara Gordon becomes paralyzed after being shot by the Joker, her crime-fighting career as Batgirl might come to an end. Instead, Barbara trades in her cape, motorcycle and grappling hooks for a keyboard, multiple monitors and Wi-Fi to become Oracle, a genius-level computer hacker and information broker to the heroes of DC Comics. After undergoing an experimental surgery that implants a microchip into her spine to restore her mobility, she becomes Batgirl again but later decides that she has a wider reach as Oracle. In a recent issue, her father, the former police commissioner Jim Gordon, confirms that he knows about Barbara’s other identities. After a heart-to-heart chat, she outfits him with a special satellite phone in his latest quest to apprehend the Joker. The phone is linked to Batman’s communications system and is set to self-destruct if he does not check in on a daily basis.DCThe CalculatorNoah Kuttler, a DC villain known as the Calculator, was originally a costumed crook with a gimmick: He wore a numerical keypad on his chest and would say things like, “I compute you have less than one minute to live.” Despite his confidence, he never made it to the upper echelon of villains. That changes after Kuttler heard whispers about Oracle. Kuttler ditches his costume and set up a similar operation — this time catering to supervillains at substantial fees: $1,000 per question answered and even more for other services. In addition to supplying information to villains, he also provides a measure of protection: He playfully counters a wiretap setup by the heroes to hear only speeches by Vice President Adlai Stevenson.DCAmanda Waller“The Wall” is an apt nickname for the steel-willed Amanda Waller. She made her mark on the DC Universe as the head of the government program Task Force X, which is also known as the Suicide Squad. Waller enlists supervillains for dangerous missions in exchange for commuted prison sentences — if they survive. One of her favorite pieces of tech is explosive devices, often in metallic collars and sometimes implanted beneath the skin, that encourage the villains to keep within the parameters of the assignment. Waller witnesses a lot of casualties in her line of work but one especially strikes close to home: Flo Crawley, the coordinator of Task Force X’s missions, wants to take part in missions. Waller’s response: “If I let you do that, your mama would shoot me and I’d give her the gun.” But Flo defies orders and takes part in an operation that results in her death.Skybound/Image ComicsCecil StedmanInvincible, the title character in the recent animated Amazon Prime series, is often assisted by Cecil Stedman, the head of the Global Defense Agency, which was vigilant for threats that might require superhero attention. Stedman is a big fan of the gadgetry afforded to him by his government job. Early on, he gets to use a teleportation device, of which he said: “It costs taxpayers $5 million every time we use it, but I just had to try it.” He also outfits Invincible with an earpiece that serves as a direct line to the hero in times of need. Stedman can be a little cocky — he once said, “I’m so high ranked in the U.S. government, I don’t even have a rank” — but his heart is usually in the right place. When Invincible’s family faces a crisis, Stedman leaps into action: His machinations help provide the family with a steady income and he stages a funeral with holograms to help preserve secret identities. More