Feeds

US spooks see Sadville as potential terrorist paradise

Al-Qaeda may horn in on horny teens

Protecting against web application threats using SSL

US intelligence officials are growing increasingly wary of Second Life and other virtual worlds, which they say could soon become havens for terrorists, money-launderers and criminals engaged in corporate espionage.

The virtual "communities" offer many of the same amenities of the real world, including banks, multiple currencies, shopping malls and private buildings that can only be accessed with a password. At the same time, the companies operating these virtual wastelands typically don't log conversations between users or keep records of which avatars gather in particular locations.

"Unfortunately, what started out as a benign environment where people would congregate to share information or explore fantasy worlds is now offering the opportunity for religious/political extremists to recruit, rehearse, transfer money, and ultimately engage in information warfare or worse with impunity," according to a paper recently prepared by the government's new Intelligence Advanced Research Project Activity. It was reported here by The Washington Post.

The CIA has already set up several virtual islands where training sessions and unclassified meetings are held. But the IARPA paper calls for more involvement, including tests by cyber warfare experts to gauge how virtual worlds could be used to against terrorists or enemies.

"Virtual environments provide many opportunities to exchange messages in the clear without drawing unnecessary attention," the paper states. "Additionally, there are many private channels that can be employed to exchange secret messages."

In meetings with US intelligence officials, Linden Lab representatives have stressed the company has systems in place to monitor avatar activity and identify risky behavior. All financial transactions are reviewed electronically, and some are inspected by live people.

We're not so sure. Just about every time El Reg has entered into Second Life, we've been greeted by system crashes, lags of 30 seconds or more and other evidence that would suggest the servers at Linden Labs aren't among the more robust operating around the globe. We have our doubts about just how effective those security measures could be. ®

Reducing the cost and complexity of web vulnerability management

More from The Register

next story
Infosec geniuses hack a Canon PRINTER and install DOOM
Internet of Stuff securo-cockups strike yet again
'Speargun' program is fantasy, says cable operator
We just might notice if you cut our cables
Apple Pay is a tidy payday for Apple with 0.15% cut, sources say
Cupertino slurps 15 cents from every $100 purchase
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
YouTube, Amazon and Yahoo! caught in malvertising mess
Cisco says 'Kyle and Stan' attack is spreading through compromised ad networks
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
Greater dev access to iOS 8 will put us AT RISK from HACKERS
Knocking holes in Apple's walled garden could backfire, says securo-chap
Microsoft to patch ASP.NET mess even if you don't
We know what's good for you, because we made the mess says Redmond
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.