- Nokia's new N97 vs. the iPhone
- Talk-powered cell phones?
- FBI: Copper thieves jeopardize U.S. infrastructure
- 10 Microsoft research projects
- Smartphone smackdown: Storm vs. iPhone
Al-Qaeda support group Al-Ekhlaas has improved the encryption software it now provides to its online members, according to one security researcher who examined the software, known as "Mujahideen Secrets 2."
Mujahideen Secrets 2 has added the ability to encrypt chat communications, which the first version lacked, says Paul Henry, vice president of technology evangelism at Secure Computing. Henry says he got the software through a contact in the intelligence community. The home-grown Mujahideen Secrets 2 encryption software, based on open source RSA code, can encrypt binary files so they can be posted on ASCII-text-based bulletin boards and Web sites.
"They have improved the operation of the graphical user interface and it will now encrypt chat communications," says Henry, who adds that the Arabic translation suggests the software is encouraged for use by Al-Ekhlaas members to evade U.S. government efforts at surveillance.
Tampa-based ISP NOC4Hosts and Rochester, Minn.,-based SiteGenesis in January found out their operations were being used to host the Al-Ekhlaas Web sites where Mujahideen Secrets 2 can be found. Both hosting firms pulled the plug on the Web sites after receiving specific technical information about the content.
This week another Web hosting company, CrystalTech Web Hosting in Phoenix, shut down sites linked to the Al Qaeda-link support group.
"As soon as we found out, we brought the IP sites down," says Bob Cichon, president of CrystalTech Web hosting, who blamed a reseller for it happening. "We're a very large host and it's hard to track everything."
In its analysis of Mujahideen Secrets 2, Secure Computing has noticed that the software appears to violate copyright law.
"Typically with open source, they still require a copyright notification," Henry says. "There's no copyright notification whatsoever here."
Another notable thing is that the public-key signature in Mujahideen Secrets 2 leaves a tell-tale sign that the Al-Ekhlaas home-rolled software produced it. The encryption itself is strong at up to a 2,048-bit key length, and like the previous version, provides e-mail and file encryption using public-key certificates.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comments (8)
Good jobBy Anonymous on March 24, 2008, 1:17 amI'm not a member of al-qaeda, but its a very nice application. I like it. Maybe it would be nicer if they made it for public under GPL, but nevermind. It's still...
Reply | Read entire comment
Good jobBy Anonymous on March 24, 2008, 1:17 amI'm not a member of al-qaeda, but its a very nice application. I like it. Maybe it would be nicer if they made it for public under GPL, but nevermind. It's still...
Reply | Read entire comment
If it was tax evasion forBy Anonymous on February 8, 2008, 7:59 pmIf it was tax evasion for the mafia, maybe it will be copyright law for Al-Queda
Reply | Read entire comment
No copyright notification?By Anonymous on February 5, 2008, 10:48 pmNo copyright notification? We've got them now!
Reply | Read entire comment
Wow.... Really.By Anonymous on February 5, 2008, 10:42 amI think they are bit early for April fools.
Reply | Read entire comment
View all comments