Archive for the ‘NSA’ Category

Fairwinds Insights Release Notes 11.12-12.2: Spotlight on … – Security Boulevard

This months Fairwinds Insights release notes offer a number of bug fixes and also details of our latest enhancements to Automated Fix Pull Requests (PRs) and our new NSA Hardening Compliance Report. Automated Fix PRs allows you to automatically fix many Kubernetes misconfigurations faster, making it easier for dev teams to make misconfiguration fixes quickly and easily.

This new feature accelerates the remediation of problems, such as security bugs and policy violations, by offering code-level fixes to common Infrastructure-as-Code (IaC) issues that often occur in Kubernetes manifests. Automated Fix PRs gives you the ability to fix multiple IaC issues with one click, then review and approve all of your changes in GitHub.To achieve this, we added permissions to our GitHub integration to write to repository contents. This only applies to repositories you connect to Insights via GitHub, and the changes will always occur on a separate branch. This enables you to review the automated fix PRs before deciding to merge.

To learn more, visit the Github permissions and Auto-Scan pages.

An analysis of IaC scans showed that this new feature can remediate at least 42% of issues automatically. Getting fixes out quickly can help your teams reduce security risks, increase reliability, and control cloud costs.

This month we also added a new NSA Hardening Compliance Report as part of our efforts to support people in implementing NSA recommendations for hardening Kubernetes clusters. This report is available on the Compliance page to help your organization comply with NSA Hardening recommendations. The Insights Agent can automatically check some of the compliance checks for NSA Hardening. For the remaining compliance checks, users can mark the state manually.

Fixed an issue with the Captchas on user register

Small UI fixes in User Settings

Fixed Auto-Scan logs sometimes showing multiple runs

New look for the Add Ons page

Fixed OPA policies not being blocked by admission controller

New Total Savings Available in the Costs page

Fixed and issue where sometimes not all filters showing up in Action Items table

Removed Cost Strategy option from the Costs settings page

Selecting a team in the Action Items table now shows correct Action Items

Added a loading indicator in Reports > History

Multiple fixes to the Costs page

If youre not using Fairwinds Insights yet, try out the new tier to explore the Automated Fix PRs functionality and the NSA Hardening Compliance Report. Insights is available for free for environments up to 20 nodes, two clusters, and one repo. Read how to get started with the Insights Free Tier here. To get more details on how to use the newest features and stay up to date with Fairwinds Insights updates, view the release notes.

*** This is a Security Bloggers Network syndicated blog from Fairwinds | Blog authored by Dakoda Wogan. Read the original post at: https://www.fairwinds.com/blog/fairwinds-insights-release-notes-11.12-12.2-spotlight-on-automated-fix-prs

Read more from the original source:
Fairwinds Insights Release Notes 11.12-12.2: Spotlight on ... - Security Boulevard

AT&T is Taking 5G to the Next Level with Standalone 5G – AT&T Newsroom

AT&T Labs makes industry-first 5G SA Uplink 2-CA data connection in the U.S. to improve upload speeds, with additional speed and other upgrades in the works

AT&T is architecting tomorrows wireless network to connect people to greater possibility. As engineers, we design, build, test, refine and repeat so that you can get more out of your 5G connection and developers can build and deploy the next generation of apps and services.

A key part of this evolution is the critical transition phase we are entering in scaling from 5G non-standalone (NSA) to 5G standalone (SA).

How does Standalone take 5G to the next level? Unlike 5G NSA that still relies on a 4G LTE core, 5G SA uses a dedicated 5G core that can unlock capabilities like faster upload speeds, ultra-low latency, ultra-high reliability and edge functions. This technology will be key to business opportunities like the next generation of connected cars.

We have said that we plan to deploy Standalone 5G when the ecosystem is ready, and AT&T is charging forward to advance SA ecosystem readiness. Businesses and developers will be some of the first to take advantage of the new technologies standalone 5G enables as we continue to move from research & development to their deployment.

Uplink: where challenge meets opportunity

This new age of connectivity is not only about consuming more content but also generating more content than ever before. Demand for uplink capacity and speed continues to increase, about 30% a year in AT&Ts mobility network.

Whether you are uploading large files, on a video call with family, live streaming, cloud gaming or using extended reality applications, the network is facing surging upstream traffic demands it never has before. Our latest network innovations are complex but are all about helping meet this new demand.

Just a few weeks ago, we completed the first 5G SA Uplink 2-carrier aggregation data call in the U.S. Carrier aggregation (CA) means we are combining or aggregating different frequency bands to give you more bandwidth and capacity. For you, this means faster uplink transmission speeds. Think of this as adding more lanes in the network traffic highway.

No one in the U.S market has successfully aggregated two carriers in 5G SA uplink until now. This is part of our ongoing effort to provide greater reliability for our customers.

The test was conducted in our labs with Nokias 5G AirScale portfolio and MediaTeks 5G M80 mobile test platform. We aggregated our low-band n5 and our mid-band n77 spectrum. Compared to our low-band n5 alone, we saw a 100% increase in uplink throughput by aggregating our low-band n5 with 40MHz of our mid-band n77. Taking it a step further, we achieved a 250% increase aggregating 100MHz of n77. The bottom line? We achieved incredible upload speeds of over 70 Mbps on n5 with 40MHz of n77 and over 120 Mbps on n5 with 100MHz of n77.

While carrier aggregation is like adding more traffic lanes in the highway, adding another vehicle to carry traffic is another way we are managing surging uplink demand. We are doing this via a two-layer uplink MIMO on time division duplex (TDD) in our mid-band n77. MIMO combines signals and data streams from multiple antennas (vehicles) to improve signal quality and data rates. This feature will not only improve uplink throughput but also enhance cell capacity and spectrum efficiency.

Network design and device readiness go hand in hand

Although we continue to make progress in enhancing uplink coverage, we havent forgotten about the downlink. Enhanced downlink and uplink carrier aggregation capabilities work together to bring the 5G SA performance todays technologies need.

Last fall, we completed a 5G SA four component carrier downlink call by combining two FDD carriers and two TDD carriers. These capabilities allow AT&T devices to aggregate our mid-band n77 in the C-Band and 3.45GHz spectrum ranges. Compared with low band and mmWave spectrum, mid-band n77 provides a good balance between coverage and speed. This follows the 5G SA three component carrier downlink feature that we introduced last year to 2022 AT&T Flagship devices which combines one frequency division duplex (FDD) carrier and two TDD carriers.

In the coming months, AT&T will also enable 5G New Radio Dual Connectivity (NR-DC), aggregating our low and mid-band spectrum with our high-band mmWave spectrum on 5G SA. Our labs have achieved 5G NR-DC downlink throughput speeds of up to 5.3Gbps and uplink throughput speeds of up to 670Mbps. This technology will help provide high-speed mobile broadband for both downlink and uplink in stadiums, airports, and other high-density venues.

The 5G SA ecosystem is rapidly evolving, with new technologies and capabilities being introduced to provide differentiated experiences. Here are some features that are on the horizon for 5G SA:

AT&T is dedicated to being the best connectivity provider. The 5G SA ecosystem is rapidly evolving, with new technologies and capabilities being introduced to set the foundation for next generation applications and services.

Read this article:
AT&T is Taking 5G to the Next Level with Standalone 5G - AT&T Newsroom

Inaugural Los Datos Conference to focus on creating a more … – UTSA

This focus captures the vision of the school, he explained. We thought it appropriate that the first conference feature conversations about the attributes of data science theories and practices that we aim to embody, advance and use.

Equity in data science includes accessibility and inclusion, prioritizing the availability of artificial intelligence (AI) technology and training. Informed data science centers on the awareness of how tech can be used to create sustainable social impact through collaboration with fields outside of math, science and statistics. Finally, Los Datos prioritizes discussions of security, in a nod to UTSAs role as a national leader in cybersecurity education and innovation.

UTSA is one of just a few universities in the nationand the only Hispanic Serving Institutionto hold three National Center of Excellence designations from the National Security Agency and the U.S. Department of Homeland Security.

The School of Data Science is the first school of its kind in Texas.

Given the triple focus of the event, Los Datos will serve as a confluence of key players in data science, artificial intelligence and cybersecurity. Mongeau said the School of Data Science is currently collaborating with Frost Bank, various independent school districts and start-ups around San Antonio, Mexico-based private university Tec de Monterrey and government agencies such as the NSA and the U.S. Census Bureau.

Our community of collaborators is dispersed and does not always have occasion to get together to learn from one another, Mongeau said. Los Datos Conference provides an occasion for these collaborators to come together.

At the same time, the conference is intended to enhance data science collaboration within UTSA. With the schools data science faculty spread across numerous colleges and departments, Los Datos will feature an incredibly diverse field of scientific and academic endeavors, from computer science and statistics to anthropology and music.

Our faculty will be exchanging information about the data science methods and tools that they use to solve real scientific and societal problems, which will lead to some recognizing how others approaches can be adapted and adopted, Mongeau said.

While Los Datos is geared toward data scientists, analysts, researchers and students who have at least a foundational understanding of data science and artificial intelligence concepts, Mongeau notes that the conference also serves as an outreach to the community that has been so supportive of the School of Data Science.

In fact, Los Datos Conference is timed to coincide with Fiesta San Antonio, the 10-day festival celebrating San Antonio culture, and those who attend the conference will receive a special Fiesta medal as another way to celebrate the universitys local roots.

Mongeau believes that San Antonios community and flourishing tech industry, combined with UTSAs academic and research strengths, will allow the School of Data Science to continue developing as a leader in data science nationally, and he hopes that Los Datos Conference will be an annual occasion to demonstrate that leadership and benefit others.

See the original post here:
Inaugural Los Datos Conference to focus on creating a more ... - UTSA

From Ellsberg to Assange: Jack Teixeira joins list of alleged leakers – The Guardian US

Pentagon leaks 2023

The subject matter may differ but the US government has been relentless in pursuing those accused of national security leaks

Jack Teixeira, the 21-year-old Massachusetts air national guard member who was charged on Friday with leaking classified Pentagon documents, has joined a long list of individuals who have been prosecuted for allegedly disclosing sensitive US national security intelligence.

Previous leaks have ranged from information about US wars in Vietnam, Iraq and Afghanistan to details of Russian interference in American elections. Despite the diversity of the subject matter, the treatment of the leakers has shared a common relentlessness on the part of the US government in pursuing those it accuses of breaching its trust.

In March 1971, Ellsberg, a military analyst, leaked a top-secret study to the New York Times. The document, which became known as the Pentagon Papers, spanned US involvement in Vietnam between 1945 and 1967 and exposed covert efforts by successive US presidents to escalate the conflict while hiding deep doubts about the chances of victory.

Ellsberg was prosecuted under the 1917 Espionage Act a law designed to catch first world war spies and faced a maximum sentence of 115 years in prison. All charges were dropped after the FBIs illegal wiretapping of Ellsberg was revealed.

Early last month, the 92-year-old Ellsberg, who has become revered as the doyen of whistleblowers, revealed that he has terminal cancer and has months to live.

Sterling, a former CIA operations officer, served more than two years of a 42-month sentence after he was prosecuted under the Espionage Act for allegedly leaking information about a botched covert US operation with Iran to the then New York Times journalist James Risen. In 2003, Risen published details of the operation in a book, State of War.

It was not until 2011, under Barack Obamas administration, that Sterling was arrested. Federal prosecutors accused him of leaking details of the Iran engagement out of anger and resentment a reference to an earlier claim from Sterling, who is Black, that he suffered discrimination while at the CIA.

Sterling has denied ever talking to Risen about Iran.

A former senior official with the National Security Agency (NSA), Drake was charged in 2010 with leaking classified information to the Baltimore Sun. He faced 10 counts with a possible 35-year sentence, though the charges were whittled down to a single misdemeanor for which he was given a year of probation.

Drake has always insisted that he had no intention of harming national security, presenting himself as a whistleblower who had been trying to sound the alarm on technical flaws in NSA programs that were wasting billions of dollars.

As a former intelligence analyst posted outside Baghdad during the Iraq war, Manning had access to classified information that shone a light on the vagaries of war there and in Afghanistan. She leaked hundreds of thousands of military records and diplomatic cables via the open information site WikiLeaks in 2010 in one of the largest disclosures of military secrets in US history.

Three years later, she was convicted under the Espionage Act. She was given a 35-year sentence, of which she served seven. In a memoir published last year, README.txt, she wrote: What I did during my enlistment was an act of rebellion, of resistance, and of civic disobedience.

Kiriakou, a former CIA counter-terrorism officer, was sentenced to two years in prison in 2012 for leaking the identity of a covert operative to a journalist. He was the first CIA officer to be imprisoned for doing so.

Prosecutors insisted that they went after Kiriakou to protect the safety of undercover government agents. He countered that he was a whistleblower attempting to expose the use of torture in the so-called war on terror.

Kiriakou was the first former government official to talk in public about waterboarding, the form of controlled drowning used against terrorism suspects in the aftermath of 9/11.

In 2013 Snowden disclosed inside intelligence about the US governments dragnet surveillance of the digital communications of millions of Americans through the Guardian and Washington Post. Working at the time as an NSA contractor, he fled to Hong Kong and from there to Russia, where he was granted asylum.

After he outed himself through the Guardian, a raft of Republican politicians demanded that Snowden be extradited back to the US to face trial as a traitor. Donald Trump called for his execution three years before he was elected US president.

In his support, a number of prominent public figures, including Ellsberg, have lauded Snowden as a pro-democracy hero who should be allowed to come home with a pardon.

The former NSA intelligence contractor and air force linguist was sentenced to more than five years under the Espionage Act in 2018 for leaking a top-secret document on Russian interference in the US presidential election. She pleaded guilty to having handed a copy of a classified report about Russian hacking of voting software suppliers in the 2016 race.

She was released after three years. Having regained her freedom she told CBS: I am not a traitor, I am not a spy. I am somebody who only acted out of love for what this country stands for.

The WikiLeaks founder was initially charged in 2019 with conspiring to hack into a military computer an accusation arising out of the massive leak by Manning to WikiLeaks nine years earlier. The seriousness of prosecutors case against him was dramatically expanded later that year to include 17 counts of violating the Espionage Act.

Assange has been held for the past four years in Belmarsh prison in London as extradition proceedings work their way through British courts. The Joe Biden White House has come under mounting pressure to drop the charges, including from leading news outlets, on grounds that the prosecution is putting a chill on press freedom.

The air national guardsman now finds his name added to the list. He was charged in a Boston federal court on Friday with two counts under the Espionage Act, each carrying a possible 10-year sentence.

Prosecutors allege that they have evidence to prove that Teixeira unlawfully retained and transmitted hundreds of classified defence documents. The FBI has indicated that he enjoyed security clearance for sensitive intelligence marked top secret/sensitive compartmented information.

The leak of the Pentagon documents is believed to have started on the social media platform Discord. Teixeira reportedly visited the platform over several years posting about guns, online games and racist memes, though any motive for the alleged leak remains obscure.

{{topLeft}}

{{bottomLeft}}

{{topRight}}

{{bottomRight}}

{{.}}

Read this article:
From Ellsberg to Assange: Jack Teixeira joins list of alleged leakers - The Guardian US

32 days on, Amritpal Singh on the run despite police searches, raids – India Today

By Manjeet Sehgal: The Punjab Police failed to arrest fugitive Khalistani leader Amritpal Singh, on the run for the past 32 days. The searches in Rajasthan, Haryana, Uttar Pradesh and in the border areas with Nepal have been unsuccessful. The police now suspect he may be hiding in villages along the borders of Punjab-Haryana or Punjab-Rajasthan.

After escaping the police dragnet on March 18, the Waris Punjab De's chief, Amritpal Singh, released a video on March 29 and claimed he managed to escape and was safe.

Who is helping Amritpal Singh?

Singh managed to evade the police at least twice while in Punjab. His springing hints that there was a leniency on the part of Punjab Police and other agencies which might have helped him easily escape. The escapades also appear like a well-scripted thriller.

Also Read | 'Amritpal Singh wanted' posters put up in Punjabs Gurdaspur, rewards announced

The question now is who is helping him. The deployment of police and other forces and their failure to arrest him have been questioned by the Punjab and Haryana High Court.

Sikh leaders openly said that the case against Amritpal Singh has deep-rooted political implications.

"A huge force was deployed to arrest Amritpal Singh but he escaped. The government is now trying to vent its frustration with the public. Houses were raided. It was said he was in Pilibhit, in Rajasthan's Kalibangan. What is their fault for being harassed?" asked former Jathedar of the Akal Takht, Jasbir Singh Rode, who is heading a committee to help the families of Singh's aides charged under the NSA.

But where is Amritpal hiding? Sources in the police said he is somewhere in the country and has not fled India. Had he managed to flee, he would have released a video as he claimed in the previous one released in March that he would appear before the public.

Amritpal isolated, disgraced

Escaping the police has eroded Amritpal Singh's image as a hardline Khalistani. He used to claim that he would never run away and desert his supporters before the police launched their massive crackdown.

Also Read | Man, woman who helped Amritpal Singh flee detained in Mohali: Sources

While nine of his aides were arrested and charged under the NSA, Singh was left on his own on March 28 at Marnaiyan in Hoshiarpur, when his close aide Papalpreet ran in a different direction.

Papalpreet Singh, who was arrested on April 10 from Amritsar's Kathu Nangal, previously arranged logistics and refuge for Amritpal for 11 days between March 18 and March 28.

Amritpal, as per the police sources, stayed at the Rajpur Bhaian village on March 28. The police arrested Kuldeep Singh and Hardeep Singh, who sheltered him.

It was said that Amritpal managed to give the police a slip and went to Uttar Pradesh. There were speculations that he wanted to surrender before the Punjab Police on the eve of Baisakhi. There were also some leads that he might be hiding in Sangria, Hanumangarh. The Punjab Police and their Rajasthan counterparts raided Sangria's Santpur areas on April 12 and April 13.

Also Read | Punjab: Court sends Amritpal's key aide to three-day police remand

They also searched in Sirsa's Nagrana on April 16 based on inputs that Singh was hiding in the house of his supporter, Kehr Singh.

Interestingly, while the Akal Takht did not accept Amritpal's demand to hold a Sarbat Khalsa, it opposed the decision to invoke NSA against him and his aides. His alleged proposal to surrender at a religious place was also not entertained. The Akal Takht chief in fact asked him to surrender before the police.

Crackdown on Amritpal irks Akal Takht, SGPC

Sikh authorities, including the highest temporal authorities - the Akal Takht and the SGPC, have conveyed their displeasure with the invoking of NSA against Amritpal Singh and his aides.

"We have decided to extend legal and financial help to the families of those arrested under the NSA. This matter is neither economic nor legal. This is a political matter," Jasbir Singh Rode said.

Also Read | Punjab Police arrests woman who sheltered Amritpal Singh for 6 hours

The crackdown on Singh and his supporters, besides the pro-Khalistani social media channels, annoyed the Akal Takht so much that it termed the action 'anti-Sikh'. The deployment of police at religious places was also opposed.

The national media also faced its ire and were accused of defaming the Sikh community. The Akal Takht even set up a cell to monitor the national news channels and threatened to sue the media houses.

The SGPC, the organisation that manages the gurdwaras, has now decided to render financial and legal aid to the families of Singh's nine aides who have been charged with the NSA.

The body arranged a meeting of these families with the accused in Assam's Dibrugarh, where they have been lodged for security reasons, on Thursday but it did not happen as the group failed to meet the deadline.

Also Read | Amritpal's aide Joga Singh who helped him hide in Pilibhit arrested

The rest is here:
32 days on, Amritpal Singh on the run despite police searches, raids - India Today