EncryptoTel weekly digest (5.02.20)

Feb 5 · 4 min read

Huawei and the UK, FBI against cyber criminals and data leak from the IoT devices

UK limited the amount of Huawei equipment in 5G infrastructure

The British government allowed the use of Huawei’s equipment in the creation of 5G networks in the country, but limited its share to 35%. At the same time, a statement by the UK National Cybersecurity Center said that the British authorities consider the Chinese corporation “a very risky supplier.” Its equipment will not be used as part of a “critical national infrastructure”, and its total share in British 5G networks by 2023 and after should not exceed 35%.

The decision will cost the British telecommunications holding company BT Group £ 500 million (about $ 650 million) over the next five years. This is stated by the CEO of the holding Philip Jensen. “The security of our network is paramount for BT. We are supportive of the clarity provided by the Government around the use of certain vendors in networks across the UK and agree that the priority should be security of the UK’s communications infrastructure. We have a long-standing principle not to use Huawei in our core networks. There will be an impact on our 5G rollout plans and the equipment used in our FTTP network build. We are in the process of reviewing the guidance in detail to determine the impact on our plans and at this time estimate an impact of around £500 million over the next 5 years,” Philip Jansen said.

Opinion: the data transfer rate in 6G networks can reach 8000 Gbit / s per second

While mobile operators are just starting to deploy 5G, world scientists are already discussing the creation of an even faster network — 6G. According to Mahyar Shirvanimogaddam from the University of Sydney, the peak data transfer rate in 6G networks can reach one terabyte per second, which is 8000 times faster than 5G (the record data transfer rate in fifth-generation networks is about 35 Gb / s). He said that such a speed would open up entirely new scenarios for the Internet and revolutionize the interaction between people and technology.

Earlier, the Ministry of Science and Technology of China announced the preparations for the development of 6G technology. The project involves two working groups. One of the groups consists of several heads of relevant ministries. The second group includes several dozen experts from universities, research institutes and technology companies.

Users complain of sudden account locks on LocalBitcoins

LocalBitcoins, a Finland-registered p2p exchange platform, freezes user accounts from a number of African countries, Middle East and Asia without warning, and some users report that they did not have the opportunity to withdraw their bitcoins. The first blocking messages appeared about a week ago and came from users out of countries such as Afghanistan, Iraq, Nigeria, Syria and Pakistan. They claim that they could not withdraw their bitcoins until they announced their desire to delete accounts. Also, users reported that they had to wait at least 14 days before they could delete their accounts and withdraw the bitcoins on their accounts.

According to the messages from users on Reddit, they received a message from LocalBitcoins that reads as follows:

“Customers residing or otherwise located in the following countries are required to have an enhanced due diligence process. The countries are defined by EU commission: Afghanistan, American Samoa, The Bahamas, Botswana, Democratic People’s Republic of Korea, Ethiopia, Ghana, Guam, Iraq, Libya, Nigeria, Pakistan, Panama, Puerto Rico, Samoa, Saudi Arabia, Sri Lanka, Syria, Trinidad and Tobago, Tunisia, US Virgin Islands, Yemen.”

This may be related to the new European Union Anti-Money Laundering Act (AML), which is known as the 5th Anti-Money Laundering Directive (5AMLD).

LocalBitcoins has not yet commented on user complaints.

Cyber criminals In the US fake FBI phone numbers and extort money

The U.S. Federal Bureau of Investigation (FBI) issued a warning about fraudsters who fake agency phone numbers and call victims, intimidating them with arrests and allegedly committed offenses. “The fraudster pretends to be a civil servant and uses intimidation tactics, such as the threat of arrest, demanding money supposedly for the government. These are false statements. The calls are not from the FBI. The FBI does not call citizens to demand money or threaten with arrest, ”said a statement from one of the FBI’s offices located in North Carolina. For intimidation, cyber criminals use confidential personal data of victims, such as full name, address, date of birth, names of family members, and phone numbers.

The Internet Crime Complaints Center reports that more than 12,000 people across the country reported having been victims of fraud by alleged government officials in 2019. The damage amounted to more than $ 112 million.

Logins and passwords of more than 500,000 IoT devices leaked to the network

On January 17, 2020, at the internet forum Cracked, one of the users posted a list of Telnet connection credentials for more than 500 thousand IoT devices, servers, and routers. Lists containing IP addresses and username / password pairs were laid out by NightmareStresser, the service providing custom DDoS attacks. According to them, this is only 25% of the data they have. In total, 516,709 (including empty) logins and passwords were posted. The telegram channel ZaTelecom analyzed the published data and found out the 10 most common login / password pairs:

1. admin / admin

2.root / root

3. default / OxhlwSG8 (default password for IP cameras)

4. bin / (empty)

5. adm / (empty)

6. default / S2fGqNFs (default password for IP cameras)

7. daemon / daemon

8. daemon / (empty)

9. default / default

10. user / user

Follow us on:

Twitter https://twitter.com/encryptotel
Facebook https://www.facebook.com/encryptotel
LinkedIn https://www.linkedin.com/company/encryptotel
Reddit https://www.reddit.com/r/Encryptotel/

Welcome to a place where words matter. On Medium, smart voices and original ideas take center stage - with no ads in sight. Watch
Follow all the topics you care about, and we’ll deliver the best stories for you to your homepage and inbox. Explore
Get unlimited access to the best stories on Medium — and support writers while you’re at it. Just $5/month. Upgrade