Popular press and other media

On this page I will collect articles and other publications about my research. I do not track this very closely, so I am sure this page is and will be very incomplete. While the reports in the press are not always accurate, it is nice to see there is some interest.

Despite the prodding of the university, I am very bad at keeping track of these things. I know this is not complete. If you know of of some news item that should be listed, let me know.

Miscellaneous interviews and press

2016

  • 14/03/2017 TV Interview "Fance 3" about the vulnerability of the Dutch elections to hacking (English).
  • 02/03/2017 TV Interview (with my dog) on De Kennis van Nu: Is Nederland Hack-Proof? (Dutch).
  • 30/10/2017 TV interview on Zembla about insecure IoT devices and the leaking of sensitive information because of this (Dutch).
  • 30/11/2016 Radio interview on BNR "OchtendSpits" (Dutch).
  • 30/11/2016 TV interview on Zembla about insecure IoT devices and the leaking of sensitive information because of this (Dutch).
  • 30/11/2016 Radio interview on BNR "OchtendSpits" (Dutch).
  • 30/01/2017 Interview on Dutch TV RTL Nieuws about vulnerabilities in Dutch election systems.
  • 20/10/2016 The Dutch TV show "Universiteit van Nederland", showed me and Victor lecturing for 25 minutes about buffer overflows, ROP and Rowhammer.
  • 06/10/2016 The Dutch TV show “De Kennis van Nu” (roughly: “The knowledge of today”) had an item on Flip Feng Shui and Rowhammer, with Ben and Kaveh acting all hacker-like.
  • 06/10/2016 Interview on Radio BNR Spitsuur (Dutch) on the report about cybersecurity ("De economische en maatschappelijke noodzaak van meer cyber security -- Nederland digitaal droge voeten").
  • 31/08/2016 Interview on Radio BNR Digitaal (Dutch) on the (ill-advised) idea of mandating backdoors in encryption.
  • 31/08/2016 An article about our Flip Feng Shui in Wired FORGET SOFTWARE—NOW HACKERS ARE EXPLOITING PHYSICS.
  • 16/08/2016. Bruce Schneier blogs about our Flip Feng Shui in his "Schneier on Security Blog": Powerful Bit-Flipping Attack
  • 12/08/2016. Article about our Flip Feng Shui work in The Register:Flipping heck! Virtual machines hijacked via bit-meddling Feng Shui (Flip Feng Shui, quicker than the human eye) .
  • 11/08/2016. Blog about our Flip Feng Shui work on CloudVPS:Flip Feng Shui: Een nieuwe bedreiging voor de Cloud?. Many articles by cloud providers appeared on the web. I will not track them all.
  • 10/08/2016. Article about our Flip Feng Shui work on Tweakers:Flip Feng Shui-aanval maakt lekken van ssh-sleutel uit vm mogelijk .
  • 10/08/2016. Article about our Flip Feng Shui work in InfoWorld:Flip Feng Shui attack on cloud VMs exploits hardware weaknesses .
  • 10/08/2016. Fact sheet and QandA document about the technique by NCSC. Incidentally, Webhosting company TransIP turned off dedup because of this.
  • 05/08/2016. Our Dedup Est Machina work won a Pwnie Award for Most Innovative Research at Black Hat USA. De Volkskrant wrote the following story (Dutch):Amsterdammers winnen hackersprijs, maar lopen beloning mis .
  • 04/08/2016. Our Dedup Est Machina work won a Pwnie Award for Most Innovative Research at Black Hat USA. Radio station BNR interviewed me on (04/08/2016, 17:20h):Spitsuur .
  • 18/07/2016. Our Dedup Est Machina led to a Microsoft Security Advisory and CVE (scan for my name)
  • 27/05/2016. Our work on Dedup Est Machina was also discussed in The Register: Dedupe, dedupe, dedupe dedupe dedupe... Who snuck in to attack Microsoft Edge? .
  • 27/05/2016. Our work on Dedup Est Machina was also discussed on Softpedia: Rowhammer Attacks on Microsoft Edge Can Compromise Entire PC, New Research Shows.
  • 26/05/2016. Our work on Dedup Est Machina led to the following : security advisory by NCSC.
  • 25/05/2016. Our work on Dedup Est Machina features on Tweakers: Onderzoekers presenteren exploit die geen lek in software nodig heeft.
  • 25/05/2016. For our work on Dedup Est Machina I was interviewed on BNR Digitaal (starts 19m, 28 seconds into the broadcast).
  • 16/04/2016. Our work on the BAndroid Vulnerability appeared in The Register: Academics claim Google Android two-factor authentication is breakable. This was slashdotted twice: here and here.
  • 24/02/2016. Jonathan Corbet wrote about our work on SROP on LWN: Sigreturn-oriented programming and its mitigation. Also, someone is working on a new patch.
  • 29/02/2016. Quotes in NRC.nl Betalen met je vingerafdruk: drie vragen over biometrisch bankieren (Dutch).
  • ??/02/2016. Interview in Vrij Nederland (Dutch), [title]
  • 02/02/2016. Interview met Dennis Andriesse in de Correspondent (Dutch), Hoe een opmerkelijke coalitie een Russische crimineel bestreed, door Dimitri Tokmetzis.
  • 05/01/2016. Interview in NRC Handelsblad (Dutch), Hét techvoornemen van 2016: eindelijk een veilig wachtwoord
  • 05/01/2016. Interview in NRC.next (Dutch), Eindelijk een Veilig Wachtwoord (verscheen in iets langere versie ook in NRC Handelsblad)

    2015

  • 07/12/2015. Interview in Vrij Nederland (Dutch, "De Oplossers"), Zo stoppen we de propaganda van IS"
  • 20/08/2015. Radio interview: Met het Oog van Morgen (Radio 1, starts 30 minutes into the program, Dutch).
  • 09/07/2015. More about the BAndroid vulnerability. This time an article in NRC: "Pas op. Google geeft je een gevaarlijke overdosis gebruiksgemak".
  • 28/06/2015. Another article in the Volkskrant (Dutch): "Hoe flikken ze dat: inbreken op onze mobiele telefoons?".
  • 27/06/2015. Large article in the Volkskrant (Dutch): "Groot lek in Android-telefoons". The article was mentioned on many radio stations, in many papers, and in the main TV news ("8 uur Journaal").
  • 27/06/2015. As part of the above, I was interviewed on Radio 1 (Dutch). The interview starts after approximately 7:00, but the main news item also mentions the problem.
  • 27/06/2015. And here is the item on the 8 uur Journaal (8 o'clock news). The coverage of the problems starts 17m16s into the program.
  • A report about the GameOver Zeus botnet takedown which involved Dennis Andriesse and Christian Rossow on Krebs on Security: ‘Operation Tovar’ Targets ‘Gameover’ ZeuS Botnet, CryptoLocker Scourge
  • A report about the GameOver Zeus botnet takedown which involved Dennis Andriesse and Christian Rossow on Geek.com: Gameover Zeus botnet and Cryptolocker taken down by tech company taskforce
  • 13/03/2015 Interview with Dennis Andriesse about GameOver Zeus in Paris Match (French): WANTED: EVGENY BOGACHEV, $3,000,000

    2014

  • 08/12/2014. Interview in Vrij Nederland (Dutch) Wat kunnen we doen tegen cyberafpersing?. (The interview led to questions in Dutch Parliament).

    2013

  • 18/10/2013. Long interview on national radio Hoe? Zo! Radio (NTR).
  • ../09/2013. Interview in NRC.next, a Dutch language newspaper.
  • 12/09/2013. Interview on Business News Radio (BNR) (Dutch national radio show) and about hackers.
  • 09/07/2013. Dennis Andriesse and I appeared in Altijd Wat, a Dutch TV show and talked about Botnets.
  • 10/06/2013. And there is something similar on Seculert: New Study Calls for Alternative Mitigation Strategies Against P2P Botnets
  • 05/06/2013. And another Threat Post that discusses our Security & Privacy paper about P2P botnets: NUMBER OF PEER-TO-PEER BOTNETS GROWS 5X
  • 05/06/2013. Threat Post discusses our Security & Privacy paper about P2P botnets: P2P botnets resilient to takedown attempts
  • 31/05/2013. H-Security discusses our Security & Privacy paper about P2P botnets: P2P botnets much larger than they seemed
  • 01/06/2013. MajorGeeks also reports on the size of P2P Botnets: P2P botnets much larger than they seemed
  • 31/05/2013. Heise Security discusses our Security & Privacy paper about P2P botnets: P2P-Botnetze viel größer als vermutet (German)
  • 31/05/2013. ISS Source also reports on the size of P2P Botnets: P2P Botnets Larger than Thought
  • 24/04/2013. Interview on national radio (Hoe?Zo! Radio). The relevant part starts at 13.50m (all in Dutch).
  • 23/04/2013. Interview on national radio (BNR). (Dutch)
  • 10/04/2013. Interview on national news (RTL Nieuws). (Dutch)
  • 10/04/2013. Interview in several regional papers about the DDoS attack on Dutch banks. (Dutch)
  • 27/03/2013. A nice item on hacking in Het Klokhuis, a TV show for teenage kids (Dutch). Main site: Het Klokhuis.

    2012

  • 24/11/2012. Opinion article on our minister's proposal to fight cyber crime by 'hacking back' in NRC (Dutch national newspaper). Published as: "Het Virusdilemma'.
  • 18/10/2012. Some quotes in an article in the Dutch newspaper NRC.NEXT (Dutch) about the way the public broadcasting organisations in the Netherlands handle cookies.
  • 15/09/2012. Televison interview on VARA KASSA (Dutch) about financial malware.
  • 08/06/2012. Article (with quotes) in de NRC (Dutch).
  • 15/02/2012. Interview (Dutch) in de Automatisering Gids. Also available here.
  • 29/01/2012. Televison interview on Channel 4 News -- mostly about Anonymous.

    2011

  • 19/11/2011. Interview (well, some quotes) in the (Dutch) newspaper Nederlands Dagblad about cyber crime: Wees niet Naief op het Internet (p.14)
  • 07/09/2011. Interview in the (Dutch) newspaper Spits about the DigiNotar compromise.
  • 11-08-2011. Interview on (Dutch) television show RTL Boulevard on Anonymous.
  • 09/07/2011. Report and interview in (Dutch) newspaper Trouw about the hacking competition at VU.
  • 08/07/2011. Interview on (Dutch) radio 1 (NCRV Lunch) about the hacking competition at VU
  • 04/07/2011. Interview on (Dutch) radio (Veronica V-Radio) about the hacking competition at VU (click Blauwe Maandag 4-7-2011 19:00.mp3 -- starts at 51').
  • 08/07/2011. Interview in the (Dutch) newspaper Spits about mobile phones as target for hackers (frontpage)
  • 08/07/2011. Report and Interview in (Dutch) newspaper Het Parool about the hacking competition at VU

    2010

  • December 2010. An article in the Intermediair on Stuxnet (Dutch and not technical) .
  • October 2010. An article in the Ingenieur on Stuxnet (Dutch and not technical) .
  • ProfNews on Stuxnet Dutch and a digest of the Ingenieur article (watering down what little content there was)

    Reverse Engineering

    The new ERC project on reverse engineering, known as
    Rosetta, attracted a fair amount of attention even before it started. I will collect some of the
  • Hoe?zo! Radio (NTR) Interview on 13 December 2010: mostly about WikiLeaks, but also with a discussion about Rosetta.
  • The university put out a press release.
  • There was an article on tweakers (Dutch). Lots of reactions. Not always very informed.
  • Bits and Chips also published an article about the Rosetta project.

    Network monitoring and the hunt for worms and viruses

    The NoAH, Lobster, DeWorm, and NoAH projects attracted a lot of attention in the popular media. Clearly, there is interest in keeping our infrastructures safe.

    It seems some of this stuff featured in bizarre places. Here is the email sent by a colleague at the VU: "I learnt about the release of Argos last Monday by reading the LCD screens in tram 5. In between ads, weather forecasts and other similar stuff there was a news titled something like "De Internet is gebroken" which explained that an unnamed researcher from the VU had developped something to secure the Internet. Not much technical details, as you would expect from a general-public, 50-or-so word-long story ;-)"

    Radio

    So far, there have been several interviews and news items on national radio:
  • Jan 2005, 747am
  • Jan 2005, Radio1
  • Jan 2005, 3FM),
  • 17/1/2006, Radio1 Tros Online (Francisco van Jole, and Peter de Bie), about Argos.
  • 21/07/2007, Radio1 Tros Nieuwsshow (Victor Deconinck en Mieke van der Weij, and yes, the legendary Peter van Rossem!), about the alleged 25th anniversary of the computer virus
  • 11/01/2010, Radio 5, Teleac Hoe?Zo!: "De mobiele telefoon, de spion van de toekomst".
  • Hoe?zo! Radio (NTR) Interview on 13 December 2010: mostly about WikiLeaks, but also with a discussion about Rosetta.

    Books

    Argos is written about in the book Virtual Honeypots: From Botnet Tracking to Intrusion Detection by Niels Provos and Thorsten Holz (Chapter~2, high-interaction honeypots). The book is also available online from Safari.

    Popular press about Argos

    As always, I tend to be a little uncomfortable with the way things are sometimes portrayed in the popular media. Some of the reports in the past have portrayed us the people who are saving the world the world from doom! While this makes me feel heroic, it is often phrased a little less cautious than I would have liked. At any rate, as requested by the university and the projects, I am trying to collect links to these reports. So far I have managed to track down the following (many of of which discuss Argos):

  • An article in USENIX ;LOGIN: about Argos by Jeffrey Berg, Evan Teran, and Sam Stover, Investigating Argos.
  • Interview by Maurits Martijn for 'Vrij Nederland' (Dutch, Sept 1st 2008) about Cyber warfare.
  • I was interviewed by Anouck Vrouwe for 'De Ingenieur' (Dutch, to appear in beginning of 2008) about the plagues of the net.
  • Sam Stover writes (quite positively) about Argos in USENIX ';Login:' (October 2007)
  • Argos is mentioned on the Slashdot book review of Provos and Holz' book (July 2008). (In addition, the book is reviewed (and Argos mentioned) in the book review on Amazon on Amazon,November 2007)
  • Network World (the interview also appeared in Computer World): Why virtual honeypots are sweet. The interview talks about the book by Provos and Holz and explicitly mentions Argos (Interviewer: "The book also mentions Argos, developed at the Vrije Universiteit Amsterdam in the Netherlands. What is Argos?" Provos: "With Argos, you can detect a new attack without a signature. The Argos people did information-flow tracking or tainting to figure out if any information sent to the honeypot ends up influencing it inside.").
  • Bright magazine: Feature: "Labrats" (April 2006, Dutch, article about Argos).
  • Computable: Opsporing Verzocht (February 2006, Dutch, article about Argos).
  • Nu.nl: Vrije Universiteit werkt aan 'vaccin' voor internet (14/1/2006, Dutch).
  • Metro: Vrije Universiteit werkt aan 'vaccin' voor internet (14/1/2006, Dutch).
  • Spits: VU werkt aan 'vaccin' voor Internet (16/1/2006, Dutch).
  • Volkskrant: Groot onderzoek VU naar computervirussen (19/1/2005,Dutch).
  • RTLZ: Groot onderzoek VU naar computervirussen (19/1/2005,Dutch).
  • Telegraaf: Onderzoek naar computervirussen (19/1/2005,Dutch).
  • Computable Grootscheeps computervirusonderzoek bij de VU (20/1/2005,Dutch)
  • ComputerIdee: Universiteit doet onderzoek naar virussen (Dutch)
  • IDG Webwereld VU bindt de strijd aan met virussen en wormen (Dutch).
  • A somewhat longer interview-based article can be found at the EduSite (Dutch)
  • There was another interview in the Computable of 25/02/2006.
  • HCC!Magazine

    Blogs and targetted online publications

    Argos was blogged and talked about in different sites:

  • UK Honeynet Project blogs (March, 2008).
  • Geek Log
  • Honeyblog
  • Nepenthes/mwcollect news
  • SANS - Internet Storm Center
  • Network-secure (German)
  • Argos. Un emulador para capturar ataques 0day (Sergio Hernando, 12/03/06, Spanish)
  • Here is a presentation about Argos in Japanese. No idea what it says...
  • The gaetano Honeypots Archive
  • Mexican honeynet site
  • SWiK, June 07 2006
  • Del.icio.us
  • Astalavista Group Security Newsletter: Our EuroSys paper about Argos was recommended reading material in the Astalavista Group Security Newsletter ('Astalavista - the Underground' is a site that originates in the hackers community and is one of the most popular sites on security).
  • HoneyBlog reporting on SweetBait TR. I prefer the paper in Elsevier Computer Networks myself (to appear).
  • Worm blog also reporting on SweetBait TR. (Why don't they read the paper in Elsevier Computer Networks?.
  • www.honeypots.net features a description of Argos as well as a link to the Eurosys paper on Argos.

    Some attention for Minemu

  • Minemu received a lot of attention in a article on Tweakers.net.
  • Minemu also featured on Davi Ottenheimer's flyingpenguin

    Shelia is also mentioned in various places:

  • SecurityFocus (Feb'08): Jamie Riden and Christian Seifert mention Shelia in Infocus magazine
  • Secguru mentions shelia in this article
  • Wikipedia has a (longish) entry on client-side honeypots which features shelia: article
  • The Mitre honeyclient site has some text on shelia
  • Shelia features on the honeyblog (March 2007) blog

    Streamline

  • OSNews mentions the Special Issue of OSR on Research and Development in the Linux Kernel. At least some readers like Streamline's pipesfs. The issue also made slashdot

    Various Press

    The press release in january 2005 was also mentioned in (all more or less the same as the original ANP release):

  • Dagblad van het Noorden
  • Dagblad De Limburger
  • Noordhollands Dagblad
  • Leeuwarder Courant
  • Amersfoortse Courant - Internet
  • ANP nieuws; aangeboden door NRC
  • I was told the news was broadcast on teletext, but I missed it

    If anyone, finds any other files/links, please send them to me, so I can add them above. I would be particularly interested in the radio show on 3FM and Radio1 as I haven´t heard them myself.

    Other projects

  • Computable: Wifi evolueert in Leiden (Dutch, October, 2003, An artikel about some network management work we did with Wireless Leiden).