Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Endpoint

4/23/2020
11:59 AM
Connect Directly
Google+
Twitter
RSS
E-Mail
50%
50%

White-Hat Hackers Help 'Fold' COVID-19 Proteins

A grassroots effort provides scientists with computing power to help simulate the novel coronavirus' proteins and come up with therapeutic solutions for the disease.

Some 200 security experts including former members of the famed 1990s-era hacking collective L0pht, Metasploit creator HD Moore, and Black Hat and DEF CON founder Jeff Moss are donating their computing power - including some password-cracking processors and gaming systems - to help run simulations of the dynamics of COVID-19 virus proteins.

The effort is part of the so-called [email protected] project that for 20 years has been employing crowdsourced computer-processing power to help run molecular calculations for diseases including cancer and Alzheimer's disease - and most recently for COVID-19. Folding is basically the process of assembling a protein, and simulating that process takes massive CPU and GPU (graphical processing unit) power so scientists can more closely study how proteins "misfold" and cause disease processes.

[email protected] is a voluntary botnet of sorts - a distributed network of computers that each pitch in to run parts of the process and send the data to the labs. To date there are some 100,000 participants, who [email protected] call "citizen scientists," and the goal is to come up with therapies for the diseases based on the research. [email protected] is based out of the School of Medicine at Washington University in St. Louis, with support from its other main labs at Memorial Sloan Kettering Cancer Center and Temple University.

Participants download a client software package from [email protected] and can specify that their processing power gets allotted to different teams of volunteers. The security industry team, dubbed called r00t f0lds, was initially organized via a Slack channel. The team includes former L0pht members Chris Wysopal, Christien Rioux, Peter Mudge, and Cris Thomas (aka Space Rogue), and most recently added Moss and Moore.

The team jokingly refers to its effort as "virus protection by questionable botnets," in reference to the way the crowdsourced network of computing power is pooled for the project. Of course it's not illegal like a botnet, notes Wysopal, co-founder and CTO of Veracode. "We're just harnessing the computer power we have the right to use," he says.

And that computing power includes home computers, gaming systems, and even password-cracking appliances. "Some people are using their employers' password cracking" platforms for processing power, Wysopal says. "Instead of cracking passwords, they can use it to do [protein] folding."

"It's people stuck at home and [wanting] to feel like they are doing something" to help in the COVID-19 crisis, he says.  

According to [email protected], the goal is to see "the protein in action," not just a static look at its structure. This more dynamic view of the protein could provide clues for treatments for diseases, according to a post on the project's site

One member of the r00t f0lds team who requested anonymity says the effort is a way to help fight COVID-19. "Combining efforts with like-minded security professionals to utilize our unused CPUs and GPUs to battle COVID-19 is a way that we can all [help]," he says.

How It Works
Volunteers for [email protected] can set their machines to run nonstop or during idle times (after hours or overnight, for example).

So what does this mean computing power-wise? Crowdsourced, distributed computing power today allows scientists to inexpensively get more computing power than a typical supercomputer. Wysopal says one of the fastest supercomputers in the world - Summit, which is based at Oak Ridge National Laboratory - isn't as fast as the power of the collective r00t f0lds team's processing power. Summit clocks in at 149 petaflops, and [email protected] at 2,400 petaflops, he notes.

Wysopal has donated seven of his own computers, including his son's gaming system, to the effort.

The gaming system is set to run only when it's idle so it doesn't slow the gaming experience. "As soon as he stops gaming, it starts folding," he says.

There's even a gamification aspect to participation. Teams can earn about 50,000 points per day for a high-end CPU, for example, while a high-end GPU can earn 1.6 million points per day, Wysopal explains. A low-end graphics processor can tally about 100,000 points a day, he says.

The r00t f0lds team is currently ranked in the top 300 teams overall in the COVID-19 project, he says. 

Bruce Schneier, a renowned security expert who has been promoting the concept of security experts using their hacking skills in the public interest, notes that the [email protected] project is a "socially beneficial project that wants your computing resources."

"You have to trust them and their code, of course, but that's true for any code you download and run on your computer," he says.

Wysopal hints that some of the team already has been digging into the client software to improve its security. The most current version of the software isn't new, he notes. He explains there is some risk running such a client that phones home for instructions. "It reaches out of your internal network and asks for work to do. If there was a buffer overflow in that package that came down, it could be exploited," for example, he says.

"I guess we're all taking a calculated risk," he adds. "[However], I don't feel like it's any more of a risk than downloading software from a major software vendor."  

Meanwhile, HD Moore says he "poked around a bit" on the software, which appears to have the requisite code-signing, update-signing, and other security measures, but there are some potential weaknesses as well in the local Web service as well as with the Authenticode certificate.

"Taking a step back and looking at the people involved with the r00t f0lds team, it is great to see a lot of recognizable names in the top contributions," says Moore, founder and CEO of Critical Research Corp., and vice president of research and development at Atredis Partners. "It is nice to see that folks who grew up during the early commercialization of the Internet are still engaged, with many of them in leadership roles."

The security team of r00t f0lds is looking for more participants to join its team with computing power. To sign up, download the [email protected] client software and enter the Team ID of 258829, Wysopal says.

Related Content:

Check out this listing of free security products and services compiled for Dark Reading by Omdia analysts to help you meet the challenges of COVID-19.

Kelly Jackson Higgins is the Executive Editor of Dark Reading. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise ... View Full Bio
 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 10/1/2020
9 Tips to Prepare for the Future of Cloud & Network Security
Kelly Sheridan, Staff Editor, Dark Reading,  9/28/2020
Attacker Dwell Time: Ransomware's Most Important Metric
Ricardo Villadiego, Founder and CEO of Lumu,  9/30/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-5788
PUBLISHED: 2020-10-01
Relative Path Traversal in Teltonika firmware TRB2_R_00.02.04.3 allows a remote, authenticated attacker to delete arbitrary files on disk via the admin/system/admin/certificates/delete action.
CVE-2020-5789
PUBLISHED: 2020-10-01
Relative Path Traversal in Teltonika firmware TRB2_R_00.02.04.3 allows a remote, authenticated attacker to read the contents of arbitrary files on disk.
CVE-2020-9486
PUBLISHED: 2020-10-01
In Apache NiFi 1.10.0 to 1.11.4, the NiFi stateless execution engine produced log output which included sensitive property values. When a flow was triggered, the flow definition configuration JSON was printed, potentially containing sensitive values in plaintext.
CVE-2020-9487
PUBLISHED: 2020-10-01
In Apache NiFi 1.0.0 to 1.11.4, the NiFi download token (one-time password) mechanism used a fixed cache size and did not authenticate a request to create a download token, only when attempting to use the token to access the content. An unauthenticated user could repeatedly request download tokens, ...
CVE-2020-9491
PUBLISHED: 2020-10-01
In Apache NiFi 1.2.0 to 1.11.4, the NiFi UI and API were protected by mandating TLS v1.2, as well as listening connections established by processors like ListenHTTP, HandleHttpRequest, etc. However intracluster communication such as cluster request replication, Site-to-Site, and load balanced queues...