Researchers in the United States say they’ve successfully shown how attackers could compromise a network designed to make it harder to trace Internet surfers and the websites they are viewing.The researchers, from the University of Colorado in Boulder, focused their efforts on The Onion Router (Tor) network. Tor software enables the creation of networks of servers that can send traffic over many different routes, masking its original source.The network offers users a greater degree of anonymity, since websites record the IP address of visiting machines, which could be linked to an individual user. Tor’s creators say they were aware of the research, but using the network is still effective. SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe The researchers, who consulted Tor project officials during their work, wrote on their website that they still feel it’s the “most secure and usable privacy-enhancing system available.” But the paper outlines the privacy concerns that could arise from using the techniques. “For example, law enforcement officers might use our techniques to cheaply and realistically track online predators,” according to the paper. “The RIAA [Recording Industry Association of America] and other organizations might use our techniques to link Web or torrent requests to their corresponding requesters.”For the experiment, the researchers constructed their own isolated Tor network using 66 servers. They placed malicious servers within the network that were designed to draw a substantial portion of routing requests by misrepresenting their bandwidth capability. Then the researchers used an algorithm to link the “path” of a website request. More than 46 percent of the time, the paths could be calculated, revealing the source of the traffic, the paper said.But several attacks against Tor have been developed, wrote Shava Nerad, Tor’s executive director, on the project’s blog.“We have never seen such an attack ‘in the wild,’ and we think it no more likely that this paper would make such an attack easier or more likely than it was a few years ago when another version of it was documented,” Nerad wrote.The Tor platform has been incorporated into applications such as Torpark, a browser based on Firefox that causes a computer’s IP address to appear to regularly change.-Jeremy Kirk, IDG News Service (London Bureau)Check out our CIO News Alerts and Tech Informer pages for more updated news coverage. Related content feature Mastercard preps for the post-quantum cybersecurity threat A cryptographically relevant quantum computer will put everyday online transactions at risk. Mastercard is preparing for such an eventuality — today. By Poornima Apte Sep 22, 2023 6 mins CIO 100 Quantum Computing Data and Information Security feature 9 famous analytics and AI disasters Insights from data and machine learning algorithms can be invaluable, but mistakes can cost you reputation, revenue, or even lives. These high-profile analytics and AI blunders illustrate what can go wrong. By Thor Olavsrud Sep 22, 2023 13 mins Technology Industry Generative AI Machine Learning feature Top 15 data management platforms available today Data management platforms (DMPs) help organizations collect and manage data from a wide array of sources — and are becoming increasingly important for customer-centric sales and marketing campaigns. By Peter Wayner Sep 22, 2023 10 mins Marketing Software Data Management opinion Four questions for a casino InfoSec director By Beth Kormanik Sep 21, 2023 3 mins Media and Entertainment Industry Events Security Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe