Oh no, you're thinking, yet another cookie pop-up. Well, sorry, it's the law. We measure how many people read us, and ensure you see relevant ads, by storing cookies on your device. If you're cool with that, hit “Accept all Cookies”. For more info and to customise your settings, hit “Customise Settings”.

Review and manage your consent

Here's an overview of our use of cookies, similar technologies and how to manage them. You can also change your choices at any time, by hitting the “Your Consent Options” link on the site's footer.

Manage Cookie Preferences

Necessary. Always active Read more

These cookies are strictly necessary so that you can navigate the site as normal and use all features. Without these cookies we cannot provide you with the service that you expect.
Tailored Advertising. Read more

These cookies are used to make advertising messages more relevant to you. They perform functions like preventing the same ad from continuously reappearing, ensuring that ads are properly displayed for advertisers, and in some cases selecting advertisements that are based on your interests.
Analytics. Read more

These cookies collect information in aggregate form to help us understand how our websites are being used. They allow us to count visits and traffic sources so that we can measure and improve the performance of our sites. If people say no to these cookies, we do not know how many people have visited and we cannot monitor performance.

See also our Cookie policy and Privacy policy.

Customise Settings

Channel

ICANN investigates domain name sharp practice

Insider dealing probe launched

John Leyden Thu 25 Oct 2007 // 10:46 UTC

Internet oversight agency ICANN has launched an investigation into the possibility that insider information is being used to snap up desirable domain names before the person or organisation likely to be interested in them has had a chance to buy.

ICANN's Security and Stability Advisory Committee is looking into suspicions that someone with access to search requests has been using this data to snap up potentially desirable domains, a process dubbed domain name front running.

Unlike traditional domain speculation, those who buy searched-for domains can be pretty sure of a potential interest when they attempt to sell their domains at a profit.

Suspicions that the sharp practice is happening have not yet been proven, but are fuelled by user experiences suggesting something is amiss. Many people who check to see if a domain is available reportedly find it's been bought by the time they return a short time later.

ICANN said the perception of sharp practice damages trust and tarnishes the image of the domain name registration industry. It said it was launching an inquiry to prevent this "perception from evolving to accepted wisdom", Reuters reports.

The committee is searching for evidence on whether or not domain fronting is happening. It will also, assuming it does find evidence of insider dealing, consider what policies and measures might be introduced to curtail the practice.

Possible mechanisms of the attack are speculated to include the use of data from unscrupulous third-party sites used to check domain name availability, or some form of data-harvesting malware. ®

Corrections Send us news

Other stories you might like

Bosses using AI to hire candidates risk discriminating against disabled applicants

US publishes technical guide to help organizations avoid violating Americans with Disabilities Act

Katyanna Quach Sat 14 May 2022 // 15:00 UTC

The Biden administration and Department of Justice have warned employers using AI software for recruitment purposes to take extra steps to support disabled job applicants or they risk violating the Americans with Disabilities Act (ADA).
Under the ADA, employers must provide adequate accommodations to all qualified disabled job seekers so they can fairly take part in the application process. But the increasing rollout of machine learning algorithms by companies in their hiring processes opens new possibilities that can disadvantage candidates with disabilities.
The Equal Employment Opportunity Commission (EEOC) and the DoJ published a new document this week, providing technical guidance to ensure companies don't violate ADA when using AI technology for recruitment purposes.

Continue reading
How ICE became a $2.8b domestic surveillance agency

Your US tax dollars at work

Jessica Lyons Hardcastle Sat 14 May 2022 // 11:30 UTC

The US Immigration and Customs Enforcement (ICE) agency has spent about $2.8 billion over the past 14 years on a massive surveillance "dragnet" that uses big data and facial-recognition technology to secretly spy on most Americans, according to a report from Georgetown Law's Center on Privacy and Technology.
The research took two years and included "hundreds" of Freedom of Information Act requests, along with reviews of ICE's contracting and procurement records. It details how ICE surveillance spending jumped from about $71 million annually in 2008 to about $388 million per year as of 2021. The network it has purchased with this $2.8 billion means that "ICE now operates as a domestic surveillance agency" and its methods cross "legal and ethical lines," the report concludes.
ICE did not respond to The Register's request for comment.

Continue reading
Fully automated AI networks less than 5 years away, reckons Juniper CEO

You robot kids, get off my LAN

Tobias Mann Sat 14 May 2022 // 09:30 UTC

AI will completely automate the network within five years, Juniper CEO Rami Rahim boasted during the company’s Global Summit this week.
“I truly believe that just as there is this need today for a self-driving automobile, the future is around a self-driving network where humans literally have to do nothing,” he said. “It's probably weird for people to hear the CEO of a networking company say that… but that's exactly what we should be wishing for.”
Rahim believes AI-driven automation is the latest phase in computer networking’s evolution, which began with the rise of TCP/IP and the internet, was accelerated by faster and more efficient silicon, and then made manageable by advances in software.

Continue reading

Pictured: Sagittarius A*, the supermassive black hole at the center of the Milky Way

We speak to scientists involved in historic first snap – and no, this isn't the M87*

Katyanna Quach Sat 14 May 2022 // 07:23 UTC

Astronomers have captured a clear image of the gigantic supermassive black hole at the center of our galaxy for the first time.
Sagittarius A*, or Sgr A* for short, is 27,000 light-years from Earth. Scientists knew for a while there was a mysterious object in the constellation of Sagittarius emitting strong radio waves, though it wasn't really discovered until the 1970s. Although astronomers managed to characterize some of the object's properties, experts weren't quite sure what exactly they were looking at.
Years later, in 2020, the Nobel Prize in physics was awarded to a pair of scientists, who mathematically proved the object must be a supermassive black hole. Now, their work has been experimentally verified in the form of the first-ever snap of Sgr A*, captured by more than 300 researchers working across 80 institutions in the Event Horizon Telescope Collaboration.

Continue reading
Shopping for malware: $260 gets you a password stealer. $90 for a crypto-miner...

We take a look at low, low subscription prices – not that we want to give anyone any ideas

Jeff Burt Sat 14 May 2022 // 00:16 UTC

A Tor-hidden website dubbed the Eternity Project is offering a toolkit of malware, including ransomware, worms, and – coming soon – distributed denial-of-service programs, at low prices.
According to researchers at cyber-intelligence outfit Cyble, the Eternity site's operators also have a channel on Telegram, where they provide videos detailing features and functions of the Windows malware. Once bought, it's up to the buyer how victims' computers are infected; we'll leave that to your imagination.
The Telegram channel has about 500 subscribers, Team Cyble documented this week. Once someone decides to purchase of one or more of Eternity's malware components, they have the option to customize the final binary executable for whatever crimes they want to commit.

Continue reading
Ukrainian crook jailed in US for selling thousands of stolen login credentials

Touting info on 6,700 compromised systems will get you four years behind bars

Jessica Lyons Hardcastle Fri 13 May 2022 // 22:16 UTC

A Ukrainian man has been sentenced to four years in a US federal prison for selling on a dark-web marketplace stolen login credentials for more than 6,700 compromised servers.
Glib Oleksandr Ivanov-Tolpintsev, 28, was arrested by Polish authorities in Korczowa, Poland, on October 3, 2020, and extradited to America. He pleaded guilty on February 22, and was sentenced on Thursday in a Florida federal district court. The court also ordered Ivanov-Tolpintsev, of Chernivtsi, Ukraine, to forfeit his ill-gotten gains of $82,648 from the credential theft scheme.
The prosecution's documents [PDF] detail an unnamed, dark-web marketplace on which usernames and passwords along with personal data, including more than 330,000 dates of birth and social security numbers belonging to US residents, were bought and sold illegally.

Continue reading

Another ex-eBay exec admits cyberstalking web souk critics

David Harville is seventh to cop to harassment campaign

Thomas Claburn in San Francisco Fri 13 May 2022 // 20:04 UTC

David Harville, eBay's former director of global resiliency, pleaded guilty this week to five felony counts of participating in a plan to harass and intimidate journalists who were critical of the online auction business.
Harville is the last of seven former eBay employees/contractors charged by the US Justice Department to have admitted participating in a 2019 cyberstalking campaign to silence Ina and David Steiner, who publish the web newsletter and website EcommerceBytes.
Former eBay employees/contractors Philip Cooke, Brian Gilbert, Stephanie Popp, Veronica Zea, and Stephanie Stockwell previously pleaded guilty. Cooke last July was sentenced to 18 months behind bars. Gilbert, Popp, Zea and Stockwell are currently awaiting sentencing.

Continue reading
TSMC, Samsung plan price hikes for chip designers – reports

Nvidia, AMD, Apple et al may be forced to pass cost on to customers

Dylan Martin Fri 13 May 2022 // 18:42 UTC

Just as costs for some components have started to come down, TSMC and Samsung, the two largest contract chip manufacturers in the world, are reportedly planning to increase prices of production, which may affect Nvidia, AMD, Apple, and others that rely on the foundries.
Reports emerged earlier this week stating that Taiwan-based TSMC is planning price hikes in the single-digit percentages for legacy and advanced chip manufacturing technologies next year. Citing industry sources, Nikkei reported that the price hike will be around five to eight percent.
On Friday Bloomberg reported that South Korea's Samsung is planning to raise prices for chip designers by 15-20 percent this year, citing industry sources. Legacy nodes will be hit hardest, and the new pricing will come into effect in the second half of the year.

Continue reading
Finnish open-source-as-a-service startup Aiven adds $1bn to valuation

Demand for PostgreSQL and Kafka driving interest in cloud service, CEO tells The Register

Lindsay Clark Fri 13 May 2022 // 16:40 UTC

Finnish open-source-as-a-service provider Aiven received $210 million in funding this week, adding $1 billion to its nominal valuation in just nine months.
The Series D cash injection – led by Eurazeo, and joined by funds and accounts managed by BlackRock as well as existing investors IVP, Atomico, Earlybird, World Innovation Lab, and Salesforce Ventures – follows $60 million Series C funding which valued the firm at $2 billion.
The latest investment round values the company at $3 billion. It's remarkable considering it only supports open-source software and was worth $800 million when it got its first $100 million tranche of Series C funding in March last year.

Continue reading
Software patching must work like car safety recalls, says US cyber boss

Adds infosec regulation coming to more industries but with a light touch, more collaboration

Simon Sharwood, APAC Editor Fri 13 May 2022 // 16:00 UTC

Black Hat Asia Software made unsafe by dependencies should be fixed without users needing to interact with the source of the problem, according to US National Cyber Director Chris Inglis, who serves in the Executive Office of the President.
Speaking to The Register at the Black Hat Asia conference in Singapore on Friday, Inglis said that when a faulty component in a car needs to be replaced, the manufacturer who chose that component takes responsibility for securing safe parts and arranging their installation. He contrasted that arrangement with the fix for the Log4j bug, which required users to seek assistance from both vendors that used the open-source logging code and source software from the Log4j project itself.
Inglis wants vendors to take responsibility for their choices so that addressing security issues is easier and users' systems – and the US – can achieve better resilience with less effort.

Continue reading
Micron dangles predictable memory price agreements in front of vendors

The idea? To get investors muttering: DRAM, those gross margins are stable...

Dan Robinson Fri 13 May 2022 // 15:00 UTC

Memory and storage maker Micron Technology has revealed a new business model intended to address the volatility in the memory market that has resulted in sharp swings in pricing over the past several years.
Revealed at Micron's Investor Day 2022 event, the new forward pricing agreements enable a Micron customer to sign a multi-year deal that guarantees them a supply of memory at a predictable price that follows the cost reduction that the chipmaker sees during the lifecycle of a particular product.
Micron's chief business officer Sumit Sadana told Investor Day attendees that the chipmaker has already signed up an unnamed volume customer to one of the new agreements, which the company is currently trying out to see whether it delivers on the expected benefits.

Continue reading

ABOUT US

MORE CONTENT

SITUATION PUBLISHING

The Register - Independent news and views for the tech community. Part of Situation Publishing

SIGN UP TO OUR DAILY NEWSLETTER

Security Scorecard

Biting the hand that feeds IT © 1998–2022

Your Consent Options Cookies Privacy Ts&Cs