If you’d like a way to send web pages you find interesting to your inbox rather than bookmarking them in Chrome and forgetting about them, the InboxThis extension may be helpful. Here’s how to use it:

– Go to the Google Chrome Web Store and search for ‘InboxThis’. It’s a free browser extension that can send any webpage to your inbox in 5 seconds. N.B. other extensions and methods are available, and we have no commercial links with or reason to endorse this extension other than to highlight it as a potentially helpful tip.

– Add the extension (click on the ‘Add Extension’ button) – no signup or account creation is needed.

– When you’re on a page/article you want to save, click on the extension icon in Chrome.

– Check your email inbox. The webpage should be there.

Green distributed computer network heating company Heata is offering to provide up to 4.8kWh of free hot water per day in exchange for installing a business cloud server in your home.

Green Distributed Compute Network 

Heata, which began as an innovation project with British Gas, describes itself as “a ground-breaking green distributed compute network that uses the waste heat from compute to heat the water in people’s homes.”

Tackling Two Challenges With One Solution 

The company sees this as a way of tackling two challenges with one solution in that over 4 million UK households live in fuel poverty and data centres require vast amounts of energy and create significant heat. For example, it’s estimated that waste heat from a large data centre could provide hot water for 11,000 homes. Heata says that “moving heat is hard, it requires new infrastructure or a pre-existing heat network” but “moving bits and bytes is easy” so the idea of installing servers on the side of water tanks is a way of taking the servers to where heat is needed, thereby providing free hot water for those that want it. Heata says this turns a computing problem into a “social benefit” and supports the decarbonisation of the rapidly growing cloud computing industry.

How Does It Work 

The company fits a computer server unit to the side of domestic hot water tanks and the heat generated by the business cloud server heats the hot water. In return, Heata gets to expand its business cloud server network without the cost and complications of having to find/build and run data centres and deal with the heat from them.

Offer Example  

The Heata unit is reported to be currently only available as part of a government backed scheme in South East England. An example of a recent offer to customers is that (from Toms Hardware) in exchange for Heata installing a water-heating server unit next to the existing hot water cylinder, homeowners can get up to 4.8kWh of free hot water a day, the equivalent of 80 per cent of a UK household’s daily use for a whole year.

The Server Unit And ‘Thermal Bridge’ 

The computer server is mounted on Heata’s patented thermal bridge which is fitted to 450mm diameter domestic hot water cylinders and provides the attachment point for the server.

What About Your Router And The Power For The Server? 

Two key aspects of the deal that are less clear, however, are the fact that an extra (business) server will need to connect to the home’s router and network, and the unit will require electricity that the homeowner initially pays for (Heata says it will reimburse owners in the trial). These facts may well give potential customers some concerns such as:

– The bandwidth the unit will use and the associated costs and connection worries.

– The fact that it’s a strange computer on the home network that the homeowner has no access to and doesn’t know exactly what it’s doing, leading to possible security concerns.

That said, Heata has reportedly said that the server will only use a fraction of the bandwidth, it will only be engaged in tasks such as monitoring information and performing speed tests for most of the time, and later versions will be separated from a home’s broadband by fibre connections.

What Does This Mean For Your Business? 

The huge growth in cloud computing has created the need for many more energy hungry data centres which in turn has created the issues of how to manage the heat they generate and minimise/reduce the environmental impact. Many ideas have been tried, e.g. underwater data centres, but part of the attractiveness of this scheme is both the social element, i.e. homeowners in a cost-of-living crisis with high energy prices getting ‘free’ hot water, plus the fact that the product appears to tackle several issues with one solution. Businesses always need affordable cloud computing which schemes like this may be able to help provide and the computing industry needs to rapidly find ways to decarbonise, which Heata’s offering also shows promise for. It could also have knock-on benefits and opportunities for broadband providers and for other computing-based companies looking to offer similar solutions.

Kaspersky research has shown that hackers are now being recruited with dark web job ads offering huge salaries and benefits!

What?! 

According to Kaspersky’s analysis of more than 200,000 employment ads posted on the dark web between January 2020 and June 2022, ‘employers’ have been seeking applications from the best hackers by offering favourable terms of employment including remote work (obviously), full-time employment, flexitime, paid time off, paid sick leave, and even the promise of working with ‘a friendly team’ !

Massive Salaries 

If the research by Kaspersky’s Digital Footprint Intelligence team is accurate, it seems that online crime does pay. For example, the median levels of pay offered to IT professionals in the ads varied between $1,300 and $4,000 per month.

Other ways that Kaspersky’s team observed ‘employers’ seeking to tempt applications from hackers in dark web job ads included offering:

– Prospects of promotion and incentive plans/bonuses (or fines, depending).

– Levels of compensation (paid in cryptocurrency for privacy) depending on how much effort hackers invest, their contribution, and how successful the ‘business’ is on the whole.

Reverse Engineering 

The highest median salary of $4,000 could be found in ads for reverse engineers. Although not all reverse engineers are hackers, reverse engineering refers to taking apart a software or hardware system and analysing its components to understand how it works. In some cases, reverse engineering can be used for malicious purposes, such as hacking into a system or creating malware. In these situations, the reverse engineer uses the information gained from the reverse engineering process to exploit vulnerabilities or gain unauthorised access to a system.

Other Suspect Job Ads – ‘Developers’ and Malware Coders 

Kaspersky’s research noted that although the innocent-sounding “Developers” (accounting for 61 per cent of the job ads) were the most in-demand specialists on the dark web, within this speciality, 60 per cent of the developer ads sought people who create internet products like phishing pages. Another popular skill sought in the ads was malware coding where job descriptions were found to include the development of Trojans, ransomware, stealers, backdoors, botnets, and other malware types, along with the creation and modification of attack tools. Other specialists sought included:

– Attackers. These conduct attacks on networks, web applications and mobile devices, and accounted for 16 per cent of the total ads, making them the second most popular jobs among cybercriminal employers. Kaspersky noted that: “Most of the attackers’ jobs on the dark web were associated with actions that would compromise corporate infrastructure. The goals of these actions are ransomware infection, data theft, or stealing cash directly from accounts.” Groups hiring attackers focused on selling access to compromised systems to other cybercriminals or hacking web and mobile applications.

– Designers who can create a phishing page or letter that would be hard to distinguish from a real one. These were found to be the third most in-demand professionals with 10 per cent of the observed ads.

Boost In Demand Following The Pandemic 

The Kaspersky research also noted that the fact that the greatest number of ads were posted in March 2020, was most likely related to the outbreak of the COVID-19 pandemic and the ensuing changes in the structure of the job market.

What Is The Dark Web Job Market Like? 

The dark web job market is characterised by a mix of both legal and illegal job offers. Some employers offer semi-legal or potentially legal jobs, such as creating IT learning courses, while others offer more dubious or illegal employment arrangements. These may include selling illegal drugs, engaging in fraudulent schemes, or hacking activities, or working with hacker groups.

Some people are attracted to dark web jobs because of the potential for easy money and high financial gain. However, not all salaries offered on the dark web are significantly higher than those earned legally and depend on experience, talent, and effort. Other individuals may turn to the dark web job market due to dissatisfaction with their current employment, changes in the job market, or a lack of certain candidate requirements.

Dark web jobs may also appeal to freelancers and remote workers because of the flexibility and freedom they offer, such as the ability to take time off and choose a schedule. Unlike the legitimate job market, however, getting dubious jobs on the dark web comes with the real risk of being arrested and prosecuted, and there is no guarantee of being paid.

How Are Criminals Able To Simply Advertise For Hackers Online Like This? 

Criminals are confident enough to post job ads on the dark web because it has a level of security and privacy through its use of encryption and anonymising technologies. The most popular tool for accessing the dark web is the Tor (The Onion Router) network, which routes internet traffic through a series of servers around the world, making it difficult to trace the origin of the traffic. This makes it more difficult for policeand even for hackers and other malicious actors themselves, to monitor or interfere with the traffic on the dark web.

However, the dark web is not completely secure and anonymous. While the technology provides a degree of privacy and security, law enforcement agencies have the resources and expertise to penetrate and monitor dark web activity. For example, they have been able to dismantle some dark web marketplaces and arrest individuals who were found to have been engaging in illegal activities on the dark web.

Also, the dark web has its own set of security risks, such as the possibility of being scammed or hacked, or being infected with malware. It’s also important to remember that many illegal activities, such as buying or selling illegal drugs or stolen goods, or posting job ads for illegal purposes, are still against the law on the dark web and can result in severe legal consequences if caught.

Do People Actually Post Their CV On The Dark Web? 

Yes. According to Kaspersky, the research analysed 867 ads that contained specified keywords, 638 of the ads were vacancy postings and 229 were CVs. The statistics suggest, therefore, that jobseekers respond to ads by prospective employers more frequently than they post CVs but, nonetheless, some post CVs on dark web forums that target diverse areas of expertise and job descriptions, such as moderating Telegram channels to compromising corporate infrastructure.

Monitoring The Dark Web Is A Form Of Defence 

Following the shocking research results, as noted by Polina Bochkareva, Security Services Analyst at Kaspersky: “IT headhunting is one of the numerous topics which is constantly discussed on the Darknet. Nowadays, tracking cybercriminal’s interest and continuous analysis of their activities is vital for companies that want to proactively respond to cyberattacks and keep their information security at the highest level. The more you know about your adversary – the better you are prepared”. 

Protection 

Some ways that businesses can protect themselves from common cyber-attacks include:

– To protect against phishing attacks, businesses can implement anti-phishing software, provide regular security awareness training to employees, and encourage them to be cautious when receiving emails from unknown sources.

– Businesses should regularly backup their data, keep their software and operating systems up to date, and train employees to identify suspicious emails and attachments to avoid falling victim to ransomware and other types of malware.

– To protect against Distributed Denial of Service (DDoS) attacks, businesses can implement DDoS protection services, monitor network activity for signs of an attack, and have a plan in place for responding to a DDoS attack.

– SQL injection attacks involve injecting malicious code into a website’s database in order to steal data or compromise the website. To protect against these attacks, businesses can use parameterised queries to protect against SQL injection, keep their database software up to date, and regularly monitor their websites for signs of an attack.

– Seeking the help of their IT Support Company or other security professionals.

– Using the multiple sources of Threat Intelligence information to stay aware of actual TTPs used by threat actors.

What Does This Mean For Your Business? 

The Kaspersky research highlights how the dark web has long been a haven for cyber criminals and that there appears to be a flourishing job market there where ‘employers’ now blatantly use the same enticements that are used in legitimate jobs to attract the most specialised criminals. It looks unlikely that law enforcement or regulation will be able to make much of an impact in shutting down the worst aspects of the dark web in the near future, and even if they do, criminals are likely to move to other secure platforms and channels. It seems, therefore, that the best thing businesses can do is to take the measures mentioned above and remain focused on making their own cyber security as robust as possible and to keep on top of new security measures they need to take going forward.

 

Following anecdotal reports that some users can’t turn off the strict SafeSearch settings when searching using Bing, we look at what SafeSearch is, and how to control it.

What Is SafeSearch? 

SafeSearch is a setting in Microsoft’s Bing search engine that’s designed to filter out inappropriate web content.

How? 

It works on the search terms used and can be set to ‘Off,’ ‘Moderate,’ or ‘Strict.’ To choose the setting:

Using Edge

– Go to bing.com and click on the three dots top right.

– Select ‘Settings,’ and ‘More.’

– Choose your SafeSearch preference: ‘Strict,’ ‘Moderate,’ or ‘Off.’

– Select Save.

Using Google Chrome 

– Go to bing.com and click on the three lines (top right).

– Select ‘SafeSearch.’

– Choose your SafeSearch preference: ‘Strict,’ ‘Moderate,’ or ‘Off.’

– Select Save.

What’s The Problem? 

Some users are reporting a range of issues related to SafeSearch. For example:

– Even on a ‘Moderate’ setting, Bing filtering out search terms that are not inappropriate, e.g. one that contain some ‘x’ technical terms.

– SafeSearch automatically choosing a ‘Strict’ setting for some users.

– SafeSearch overriding a Moderate setting with a Strict setting with the explanation that a country or region requires it.

– Users not being able to turn SafeSearch to ‘Off.’

– SafeSearch settings being set and locked by the account, device, or network administrator.

About Strict  

If a ‘Strict’ setting is initially locked on, e.g. it’s enabled by parents or administrators to help protect children and prevent them from accidentally accessing adult content, the setting is then out of the user’s control. It cannot be turned off by the user without the password or other authentication credentials that were set up by the person who enabled the feature.

Bing’s SafeSearch can also override a Moderate setting with a Strict setting if the SafeSearch feature is locked on the Strict mode, e.g. by a parent or administrator.

Country Or Region Issues? 

Although some countries or regions may have different laws or cultural norms that impact what is considered appropriate content, plus some countries may require that certain types of content be filtered by default, regardless of the SafeSearch setting chosen by the user, this doesn’t explain the country/regional blocking/change of setting that some users have recently experienced. SafeSearch should always be under the control of the user or the person who set up the parental controls or other restrictions.

Ways To Fix SafeSearch If It Can’t Be Turned Off 

Some ways to fix SafeSearch if it can’t be turned off include:

– Some reports online indicate that issues may related to a bug that can be fixed by an update. Therefore, make sure you have the most recent Windows updates, e.g. Win + I to open Settings, go to Windows Update and click the Check for updates button.

– Try using a different browser. Some online reports indicate that different browsers (e.g. Google Chrome) don’t have the issue.

– Check and consider changing your Windows settings. For example, from the Start menu go to Settings, click on Privacy & Security. In Windows permissions, select Search permissions. For SafeSearch, select Off – Don’t filter adult content from my web results.

– Set up a new user account with new SafeSearch settings on your Windows computer.

– Try disabling third-party antivirus on the computer which may be interfering with search results and triggering SafeSearch issues. Use caution here for obvious reasons!

– Use the Group Policy Editor to change your system settings and turn off Windows SafeSearch.

– Use the Group Policy Editor to turn SafeSerch off. To do this: press Win + R and in the Run dialog type gpedit.msc and click OK. In the Group Policy Editor window, select Computer Configuration > Administrative Templates > Windows Components > Search. Select Set the SafeSearch settings for Search (right hand pane). Set to Not Configured, restart the computer, and check if the issue has been fixed.

What Does This Mean For Your Business? 

Features like SafeSearch are important for protecting younger users from being exposed to inappropriate content and for managing search habits for other users. However, there are circumstances where, for different reasons (as mentioned above) SafeSearch settings could be counterproductive. Keeping Windows updated and trying the suggestions mentioned above may resolve any issues you may have experienced.