Mikko in the Labs

Join Mikko for the next F-Secure Labs Threat Report Webinar

To celebrate the release of Internet Security 2014 and the F-Secure Labs latest Threat Report, our Mikko Hypponen and the F-Secure Labs will be hosting a live webinar on Monday, September 23 at 10 AM EDT/5 PM Helsinki time.

Click to RVSP for the event and tweet your question to @Mikko using the hashtag #WWPY.

If you’re wondering why we’re using the hashtag #WWPY, check out this video:

Join us to get the latest information about what’s going on in security now.


More posts from this topic

Freedome for Amazon Users

Freedome for Amazon Users: One-Button Protection Arrives for Fire Devices

Freedome from F-Secure was released a little over a year ago, and in that time over 2 million people have downloaded the VPN for Android, iOS, and Windows PC devices. Now people using Amazon’s range of Fire products (including Kindle Fire tablets, Fire tablets, and the Fire phone) can enjoy the one-button privacy protection offered by the app. Amazon’s original Kindle Fire model was a hot holiday item when it debuted in 2011. It provided fast and easy access to Amazon’s wide range of digital content and services, making it an ideal tablet for people who want an easy way to enjoy being online. It carved out a niche market for itself, and Amazon has since released a number of different Kindle Fire and Fire tablets, as well as a Fire phone. According to Päivi Juolahti, F-Secure’s Senior Product Manager, Next Generation Security, Freedome has a similar appeal in that it offers people an easy yet effective way to address their security needs. “People like Amazon’s devices because they give people a fun and easy way to enjoy using the Internet. People like using Freedome for the same reasons, so offering it to Fire users makes a lot of sense”. The one-button app gives users an easy-to-use VPN (that’s a virtual private network) that can help prevent others from tracking what they see and do online. The app is specifically designed to make it easy for people to protect themselves by offering security that can be switched on at the simple push of a button. Publications such as the Android Authority and CNET have responded positively to the way Freedome bundles the following kinds of protection together into a single, user-friendly app: Tracking Protection – Freedome disables trackers that web sites and apps use to monitor what you do online. These “digital footprints” can be stored and even shared without your knowledge, so using Freedome to disable them helps you keep control of your personal information. Virtual Location Selection – You can use Freedome to choose your virtual location. That’s how websites determine where in the world you are. By giving you 15 different virtual locations to choose from, you can even use it to access geo-blocked content. Virus Detection – Freedome’s app security scans the applications on your device to make sure they don’t contain any viruses. Plus, its browsing protection feature scans the websites you connect with to prevent them from spreading malware to your phone or computer. Encryption – Freedome encrypts your communications, preventing digital spies from learning what you’re doing online. Many public Wi-Fi networks aren’t encrypted, so using Freedome lets you browse the web, send e-mails or chat with friends without having to worry about cyber-snoops. You can try Freedome on your Fire device for a free 14-day trial. Even if you choose not subscribe after your trial ends, Freedome’s App Security will continue to protect your device, making it a good first download for any new Fire user.

Mar 6, 2015
Net neutrality

Don’t take net neutrality for granted

You don’t know what you have until it’s gone, according to the old wise saying. We have learned to value Internet as the ultimate frontier of freedom and equality. Anyone anywhere can use whatever service she likes or communicate with any other person. But will it always be this way? Not necessary. Let’s create a fictive example. Imagine a business development guy at the power company. He’s reading the paper and notices that Apple is in the headlines. They did a nice profit last year, and he gets a brilliant business idea. Their electrical network is used to supply charging power to a lot of Apple devices, so he calls Apple and proposes a deal. The electrical company will continue to provide charging power for Apple devices and Apple will pay them for allowing that. That would of course be on top of the normal fee customers pay for the electricity. Otherwise the electricity company would regretfully be forced to prevent Apple-device from charging in their network. Would that be right? Of course not, it would be extortion. This example is fortunately purely fictive, and even technically impossible as the power company can’t control what customers do with the electricity. But Internet is lot more complex than the power grid. Internet Service Providers can monitor our traffic and see what we are using our broadband connection for. So this scenario is unfortunately possible on the Internet. Not only possible, it’s reality. Do you remember the Netflix vs. Comcast affair about a year ago? Internet Service Provider Comcast’s subscribers received really poor performance on video streaming service Netflix, until Netflix started to pay money directly to Comcast. Some call it a normal peering agreement, some greedy extortion. Netflix vs. Comcast differs from the fictive power company in one way, Netflix sells a high-volume service that cause significant load on Comcast’s network. That makes it a bit easier to understand Comcast’s points, but one fact remains. Comcast’s customers have already purchased broadband connections and paid to get any Internet content, including Netflix-videos, delivered to their homes. And Comcast has gladly taken that money. The Federal Communications Commission in US also agrees that something needs to be done. They made a decision on February 26th 2015 that reclassifies Internet access as a common carrier service. This means more tools to enforce net neutrality and prevent the “greedy power company” business model. Net neutrality activists all over the world are celebrating this as an important win, but let’s not be too happy yet. Anything can happen in US’s legal and political systems and there are still mighty powers who don’t want to let a profitable business model go just like that. It ain't over until the fat lady sings. Internet Service Providers (ISPs) accumulate a significant power when building large customer bases. Not only do they get income from the customers’ fees, they are also in a position where they can control what content is delivered and at what speed. Net neutrality is, among other things, preventing misuse of this power. It may not be a widespread problem today, but there is a significant risk it will become one unless we do something. Imagine Comcast running a service that competes with Netflix. Comcast could simply terminate the deal with Netflix to eliminate one competitor. This would in practice mean that Comcast’s video streaming would be the only working choice for Comcast’s customers. That is unless we have strong net neutrality rules that enforce equal treatment of network services, and ensure that we have a choice no matter what ISP we have signed up with. This is why net neutrality is important for you, me and everybody else. Internet is a fundamental service just like water, electricity and the road network. We don’t want the power company to dictate how we use electricity, and we don’t want our ISP to control how we use Internet. Want to know more? Start with Save The Internet or Battle for the net.   Safe surfing, Micke   PS. By the way, we have a great tool that is designed to improve security and privacy, but it can also be used to circumvent censorship and other net neutrality violations. F-Secure Freedome.   Image by Electronic Frontier Foundation (eff.org)

Mar 3, 2015
trust, internet, internet of things

A Brief History of the Trusted Internet

By Allen Scott, managing director of F-Secure UK and Ireland The internet and the industry which surrounds it is at a tipping point. The scramble to dominate in emerging product and service markets has led many organisations to lose sight of what the Internet should be. If things continue on this downward moral trajectory, we run the risk of breaching the rights of every person who uses it. As a general rule of thumb, violating customers and prospects is not a wise sales strategy. This is why the Trusted Internet is so important now, in 2015, to stem the tide. Half the world away The internet has morphed from a military funded academic computer network into the World Wide Web into what we know today. It has created new industries and billionaire business owners. It has made the world smaller by connecting people who would never otherwise have interacted. It has helped every person by making their life a little easier – from keeping in touch with family to being the number one resource for research on any given subject. It is hard to imagine life without it. Of course, not everyone is online…yet. Figures vary, but it is generally accepted that approximately 3 billion people are now connected to the internet. That is 42% of the world’s population. By 2018, it is estimated that half of the world’s population will be online. That means that every other person could have their human right to privacy (Article 12 of the Declaration of Human Rights) violated. It is unacceptable because it is avoidable. Personal data – the ultimate renewable resource The internet is now an extension of mankind. It is our marvellous creation and we are growing more and more dependent on it. The problem is that it is turning into a Frankenstein’s monster. We are so consumed with whether something (such as tracking people’s movements online) is possible, that the industry has forgotten to ask themselves whether they should. Morality has been pushed aside in the race to gain more personal data, for knowledge is power. Don’t believe how valuable data is? Just take a look at Google. A giant of the internet, it made over £11 billion in profit last year. Not bad for a company which gives away its services for free. Google collects so much data on its users that it is the fourth largest manufacturer of servers in the world. It doesn’t even sell servers! Personal data is big business. Advertisers pay a lot of money for profiles on people. What people like, where they live, who they are likely to vote for, whether they are left-handed – some marketing companies claim to have up to 1,500 points of interest on each individual’s profile. Are all of these ‘interesting points’ something which those people are happy to have shared? I doubt it.  What about the Internet of Things Next up is the Internet of Things (IoT). A concept whereby a vast number of objects, from toasters to bridges, will be connected to the internet where they will share the data they collect. The benefits of this emerging network is that analysis of the data will lead to efficiencies and will make life easier still for people. For example, I could combine the data collected from my smartphone pedometer, my diet app and my watch’s heart monitor to analyse my health and make informed improvements. So far, so good. The IoT waters get a little murkier when you start asking who else has access to that data about me. Maybe I don’t mind if my doctor sees it, but I’m not comfortable with marketing companies or health insurers seeing that data. It’s private. We are fortunate that we are still in the fledgling stage of the IoT and have the opportunity to shape how it impacts our private lives. This is a relatively small window in which to act though, so we must be outspoken in order to protect people’s civil liberties. The ethical solution The next stage of internet development needs to be the Trusted Internet. People have the right to privacy online and it is entirely possible. Not every business and organisation online is part of the data-collecting frenzy. Some, like F-Secure, simply don’t care what you want to look up in a search engine or which websites you visit (unless they are malicious, of course!). We believe that your data is exactly that – yours. Until now, the internet has developed a taste for the free in people. Users have been reluctant to pay for services which they could get for free elsewhere. But now people are realising that when they don’t pay for the product, they are the product. With F-Secure, our customers are just that – customers. Being the customer, their data is their own. Our job is to protect them and their data. We believe that the internet should be a place for people to learn and interact. There shouldn’t be a price on this in the form of our privacy. If there should be a price, it should be monetary, so that people have the chance to buy the services they wish to use, rather than gaining access to services in exchange for personal information. I would happily pay to use Google, Facebook, LinkedIn or one of the many other sites which stakes claim to me when I sign up. We are the generation which created the internet. Let’s not be the generation which disposed of decency, respect and privacy too. [Image by Timo Arnall | Flickr]

Feb 27, 2015