Game of Thrones script 'stolen in HBO hack'

A group of hackers claims to have stolen the script for a forthcoming Game of Thrones episode and other data in a breach at entertainment firm HBO.

The group says it has 1.5 terabytes of the company's data and has posted episodes of Ballers and Room 104 online.

It added that more material would be released "soon".

HBO confirmed it had experienced a "cyber incident" in a statement.

In an email published by Entertainment Weekly, the hackers appeared to offer more details in exchange for favourable coverage.

"Hi to all mankind," they wrote. "The greatest leak of cyber space era is happening."

They encouraged recipients to download the material and added: "Whoever spreads well, we will have an interview with him."

Reports have said the allegedly stolen Game of Thrones script appears to be from the fourth episode of season seven, which is currently being broadcast.

The BBC has not been able to independently verify that the hackers possess the material they claim to have stolen.

HBO confirmed that a "cyber incident" had resulted in the compromise of information.

"We immediately began investigating the incident and are working with law enforcement and outside cybersecurity firms," the firm added.

"Data protection is a top priority at HBO, and we take seriously our responsibility to protect the data we hold."

The intrusion was "obviously disruptive, unsettling, and disturbing for all of us," said chairman and chief executive Richard Plepler in an email to HBO employees.

HBO says data hacked, media says 'Game of Thrones' targeted

HBO, a unit of Time-Warner Inc, declined to comment on the specific programming stolen in the hack.

"As most of you have probably heard by now, there has been a cyber incident directed at the company which has resulted in some stolen proprietary information, including some of our programming," HBO Chairman Richard Plepler wrote in a message to employees, which the company shared with reporters.

The company declined to comment on reports that unbroadcast episodes and scripts were among the data hacked, citing an "ongoing investigation" by unspecified law enforcement officials.

Entertainment Weekly reported that hackers stole 1.5 terabytes of data and had already posted online unbroadcast episodes of "Ballers" and "Room 104," along with "a script or treatment" for next week's episode of "Game of Thrones."

Reuters also received an e-mail on Sunday from a person claiming to have stolen HBO data, including "Game of Thrones."

The show is now in its seventh season and due to wrap up next year.

       Apple gets nod to test its 5G technology

Apple is set to begin testing its 5G technology after the US Federal Communications Commission approved its application to work towards bringing the technology to masses.

According to a report in Engadget on Thursday, Apple is targeting millimetre-wave broadband at higher frequency and smaller wavelength bands.

Millimetre-wave technology helps in larger data transmission at faster speed. But to allow such larger data transmission go through, a direct line of sight is needed.

There are already other tech companies in the field working on 5G technology. Facebook, Google, Samsung and Starry have been already working on this technology for a while.

"Sprint is looking to launch its 5G service in 2019, while T-Mobile is shooting for 2020. AT&T and Verizon are making moves towards 5G networks as well," the report said.

There are no details in Apple's application about how its 5G service would work in practice.

According to media reports, it has been granted access to test its technology in two locations near its California offices until August 2018.

Tesla Model 3: Elon Musk rolls out mass market model

Image copyrightTESLA MOTORS VIA REUTERS

Image captionThe first Tesla Model 3 cars off the production line are now with their new owners

Electric car maker Tesla has rolled out its new Model 3 vehicle - the company's cheapest car to date.

The first 30 customers - most of them employees of the company - received their cars on Friday.

Chief executive Elon Musk said the Model 3 was the "best car for its cost, either electric or gasoline".

Prices start at $35,000 (£26,650), which the firm hopes will bring mass market interest.

The price is still higher than that of rival electric car the Nissan Leaf, which starts at $30,680, or the hybrid Chevrolet Volt, which goes for $34,095

Iranian hackers used female 'honey pot' to lure targets: Researchers

Hackers believed to be working for the Iranian government have impersonated a young female photographer on social media for more than a year, luring men working in industries strategically important to Tehran's regional adversaries, according to research published Thursday.

The so-called Mia Ash persona has been active on sites including LinkedIn, Facebook Blogger since at least April of last year, researchers at Dell SecureWosaid.

The campaign showed Iran engaged in a social engineering plot to ensnare its targets with a "honey pot", a classic espionage trap often involving seduction, more commonly used by criminal hackers.

Dell SecureWor observed Mia Ash sending specific malware, concealed as a "photography survey" with an attachment, to a victim that matched malware sent by Iranian hacking group Cobalt Gypsy during an unsuccessful "spearphishing" email attempt to the same victim's employer in January.

The malware, known as PupyRAT, would give an attacker complete control of a compromised computer and access to network credentials, suggesting government espionage.

The researchers did not have visibility into how many targets were compromised or what Mia Ash sought to gain with the access.

The fake profile used publicly available social media images of a real photographer based in Eastern Europe to create an identity of an attractive woman in her mid-twenties who lived in London and enjoyed travel, soccer, and popular musicians including Ed Sheeran and Ellie Goulding, Dell SecureWorks said.

Her social media biographies appeared to lift details from a New York photographer's LinkedIn profile.

Dell SecureWorks said it had high confidence Mia Ash was created and operated by the Iranian hacking group known as Cobalt Gypsy.

Iranian officials did not immediately respond to requests for comment.

Mia Ash primarily lured middle-aged men who worked as technicians and engineers at oil and gas, aerospace and telecommunications firms in the Middle East that had been previously targeted by the same group. Those include Saudi Arabia and Israel in addition to India and the United States.

Mia Ash's victims failed to notice that none of her profiles included a way to contact her for photography services, according to Allison Wikoff, a senior security researcher at Dell SecureWorks who tracked Mia Ash's activity.

"These guys aren't hiring her for photography," Wikoff said. "Their main thing is, 'Wow, she's young, she's cute, she likes to travel, she's whimsical'."

LinkedIn removed the fake Mia Ash profile before Dell SecureWo finished its research, Wikoff said.

Facebook, where Mia Ash listed her relationship status as "it's complicated," took down the profile last week after being contacted by Dell Secure.

Cobalt Gypsy, also known as Oii, has been previously accused of operating a network of fake LinkedIn profiles to pose as recruiters at major companies, including Northrop Grumman Corp and General Motors Co, but the Mia Ash persona showed an elevated level of persistence, Wikoffsd.

Western security officials for years have considered Iran to be among the most sophisticated nation-state cyber adversaries, along with Russia, China and North Korea.

Another report released this week by researchers at Tokyo-based Trend Micro and ClearSky of Israel described efforts to impersonate major technology brands including Twitter Inc and Microsoft Corp by another hacking group widely suspected of having links to Iran.

Using cheap magnet, hacker beats protections on a "smart" handgun.

This week the world’s elite hackers are gathering in Las Vegas for Def Con, the largest underground hacking event of the year.

The BBC’s North America technology reporter met a hacker who had circumvented protections on a handgun designed to make it impossible for unauthorised people to shoot.

Facebook calls for a more people-centric security industry

Facebook calls for a more people-centric security industr

The security industry needs to worry less about technology and more about people, said Facebook's security boss.

Alex Stamos scolded the security industry in the opening keynote of the 2017 Black Hat conference.

He said there was too much focus on technically complex "stunt" hacks and not enough on finding ways to help the mass of people stay safe.

The problem would only worsen if the industry did not become more diverse and exhibit more empathy, he said.

No spies

"We have perfected the art of finding problems without fixing real world issues," he told attendees. "We focus too much on complexity, not harm."

He cited examples of technically brilliant presentations at the show, such as insulin pumps being hacked, that had little relation to real issues experienced by people who use technology rather than work with it or understand it well.

Cyber-hacks season:

• Ransomware is here to stay warns Google
• Ukraine braces for further cyber-attacks
• Shoddy data-stripping exposes firms to hack attacks
• How facial recognition could replace train tickets
• Ransomware spike blamed on easy-to-use tools

Also, he said, the security industry concentrated too much on the small number of complex hack attacks aimed at large corporations that were mounted by the most sophisticated adversaries.

By contrast, he said, most Facebook users who lost data were not being targeted by spies or nation-states.

"The things that we see, that we come across every day, that cause people to lose control of their information are not that advanced," he said. "Adversaries will do the simplest thing they need to do to make an attack work."

Image copyrightBLACK HAT

Image captionThe Black Hat show is one of the biggest gatherings of security professionals

The lack of focus on those more mundane problems came about because often security experts had little interest in or empathy for people, he said. This attitude was exemplified by the thought he often heard security pros express that there would be fewer breaches and less data lost if people were perfect, he added.