Threat Intelligence

5/19/2017
12:00 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

International Consortium Launches to Prevent Criminal Use of Dark Web and Virtual Currencies

Seven European countries launch project to curtail criminals and attackers from using blockchain technology to avoid law detection.

Vienna - A group of 15 consortium members from seven European countries has initiated this week a new project to curtail criminals and attackers from using blockchain technology to avoid law detection, while at the same time respecting the privacy rights of legitimate users. Blockchain technology is an electronic ledger under decentralized control, which allows it to evade traditional investigative measures.

The best-known application of blockchain technology is Bitcoin, which has many legitimate uses but is also used for criminal purposes in the so-called dark web (i.e., the part of the internet that is beyond the reach of Google and other search engines). The attackers who froze computers in 150 countries last Friday, 12 May, demanded a ransom paid in Bitcoin.

The researchers are in a consortium undertaking a three-year, €5 million project, funded by the European Union aimed at developing technical solutions for investigating and mitigating crime and terrorism involving virtual currencies and underground market transactions.

The researchers, including four law enforcement agencies (LEAs) and INTERPOL, aim to develop and implement tools to reveal common characteristics of criminal transactions, detect anomalies in their usage, and identify money-laundering techniques. The researchers will also conduct training activities in order to develop skills and knowledge among EU law enforcement agencies. As part of their project, which is called TITANIUM (Tools for the Investigation of Transactions in Underground Markets), the researchers plan to test and validate their tools and services on the premises of the LEAs to assess the effectiveness and overall impact of the project results.

Project co-ordinator Ross King, a senior scientist at the AIT Austrian Institute of Technology GmbH, said, “Criminal and terrorist activities related to virtual currencies and darknet markets evolve quickly and vary in technical sophistication, resilience and intended targets.”

To counter such activities, Dr King said it was necessary to develop efficient and effective forensics tools enabling the reasonable use of different types of data from different sources including virtual currency ledgers, online forums, peer-to-peer networks of underground markets, and seized devices.

Dr. King also emphasized that the tools developed within the TITANIUM project will respect individual privacy and other fundamental rights.  "The consortium will analyze legal and ethical requirements and define guidelines for storing and processing data, information, and knowledge involved in criminal investigations without compromising citizen privacy."

In addition to the AIT Austrian Institute of Technology GmbH, the partners in the TITANIUM consortium are:

Bundeskriminalamt (Germany)

Coblue Cybersecurity (Netherlands)

Countercraft S.L. (Spain)

dence GmbH (Germany)

Universität Innsbruck (Austria)

INTERPOL (International Criminal Police Organization)

Karlsruhe Institute of Technology (Germany)

Ministry of the Interior (Austria)

Ministry of the Interior (Spain)

National Bureau of Investigation (Finland)

TNO (Netherlands)

Trilateral Research (UK)

University College London (UK)

VICOMTECH-IK4 (Spain)

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
White House Cybersecurity Strategy at a Crossroads
Kelly Jackson Higgins, Executive Editor at Dark Reading,  7/17/2018
Lessons from My Strange Journey into InfoSec
Lysa Myers, Security Researcher, ESET,  7/12/2018
What's Cooking With Caleb Sima
Kelly Jackson Higgins, Executive Editor at Dark Reading,  7/12/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-14339
PUBLISHED: 2018-07-19
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the MMSE dissector could go into an infinite loop. This was addressed in epan/proto.c by adding offset and length validation.
CVE-2018-14340
PUBLISHED: 2018-07-19
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was addressed in epan/tvbuff_zlib.c by rejecting negative lengths to avoid a buffer over-read.
CVE-2018-14341
PUBLISHED: 2018-07-19
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the DICOM dissector could go into a large or infinite loop. This was addressed in epan/dissectors/packet-dcm.c by preventing an offset overflow.
CVE-2018-14342
PUBLISHED: 2018-07-19
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the BGP protocol dissector could go into a large loop. This was addressed in epan/dissectors/packet-bgp.c by validating Path Attribute lengths.
CVE-2018-14343
PUBLISHED: 2018-07-19
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ASN.1 BER dissector could crash. This was addressed in epan/dissectors/packet-ber.c by ensuring that length values do not exceed the maximum signed integer.