Team Cymru
Last Updated: Tue Feb 9 00:16:28 2010 UTC
Smart-grid power systems to receive billions of cybersecurity $$ - will it be enough to keep the power on? http://bit.ly/d2YXtq
[reply] 2 hours 44 minutes ago
Who and Why: Learn about the Dragon Research Group, volunteers working to collect data and keep the Internet secure http://bit.ly/9o6nMd
[reply] 7 hours 2 minutes ago
Massive hacker training op in Central China shut down by police, but are there more where that came from? http://bit.ly/bju67R
[reply] 8 hours 52 minutes ago
Ceridan Corp, second payroll firm in last 6 mo, suffers breach of data on 27K employees of 1900 corps http://bit.ly/9oYKpF
[reply] 3 days 8 hours 28 minutes ago
Congrats to the Abuse.ch crew for one year of running the Zeus Tracker under duress from the bad guys http://bit.ly/cnlh1J
[reply] 4 days 1 hour 42 minutes ago
Internet Security News
This Internet Security news feed is provided through a partnership with E-Secure-IT. E-Secure-IT provides a wide range of IT-related news feeds. Visit them at www.e-secure-it.com for more information on their available services.
Please note that Team Cymru does not manually review the contents of these articles, and the views and opinions expressed within them do not necessarily reflect the views and opinions of Team Cymru.
Last Updated: Tue Feb 9 00:18:00 2010 UTC
TCS website hacked (from Business-Standard at Tue Feb 9 00:18:00 2010 UTC)
"India s largest information technology services company, Tata Consultancy Services (TCS), has become the latest target of hackers. The company has restored its website, after hackers changed its domain name and put it up for sale. The hackers changed the domain name to 205...." (Read more)
Hacking into the mind of the CRU climate change hacker (from Guardian at Mon Feb 8 23:42:00 2010 UTC)
"Analysis by the Guardian and digital forensics experts suggests that an outside hacker gained access to a server at the UEA which held backups of CRU emails and a collection of staff documents. It also suggests the access occurred over a period of days, if not weeks, and was carried out from a computer based on the east coast of north America. The release of hacked emails and documents came just months after climate change sceptics had filed more than 50 freedom of information requests querying the CRU's refusal to release of raw data and program code during the summer...." (Read more)
Security, smart-grid standards groups get creative (from Eetimes at Mon Feb 8 23:41:00 2010 UTC)
"We have seen this process set in motion in two areas during the past year: computer security and the smart grid. From a standards-life-cycle perspective, these seemingly unrelated areas are in exactly the same place; they are both exploring the definition of their standards ecosystem. Historically, the computer-security industry has worked independently, producing targeted solutions for specific problems, such as malware, phishing and spyware...." (Read more)
Searches for news trends lead to malware (from Network World at Mon Feb 8 23:35:00 2010 UTC)
"Nearly 14 percent of all searches for news trends on Google or buzzwords on Yahoo lead to malware, says Websense. In its 'State of the Internet Security report' for the last half of 2009, the security vendor said mass injection attacks were down 3. 3 percent on the first half of the year, and instead there had been a surge in focused efforts to drive web users straight to malicious sites...." (Read more)
Authors Guild: We don't want to be the RIAA (from CNet at Mon Feb 8 23:29:00 2010 UTC)
"The Authors Guild agreed to a controversial settlement with Google because it feared repeating the mistakes that the music industry has made in dealing with digital works, it said Friday. Google and the Authors Guild have struggled to get final approval of a settlement granting Google the right to continue a six-year book-scanning project than has digitized 12 million titles...." (Read more)
Cyberwar With China: Former Intelligence Chief Says It Is Aiming at America's "Soft Underbelly" (from Huffington Post at Mon Feb 8 23:27:00 2010 UTC)
"Google and the National Security Agency are engaging in a cooperative investigation to determine who exactly from China was trolling through Google's proprietary networks, including e-mail exchanges of Chinese dissidents. They are also joining together to develop new defenses against malicious intrusion and attacks on America's cyber-infrastructure. Though America's cyber-vulnerability has long been a concern of the intelligence agencies, the Google episode has catapulted it to a national security priority...." (Read more)
File-sharing crackdown criticised for 'lack of detail' (from ZDNet at Mon Feb 8 23:23:00 2010 UTC)
"The government has been urged to give more details on the process that would lead to disconnection of broadband access for unlawful file-sharers, a sanction laid out in the Digital Economy Bill. In a report published on Friday, the Joint Committee on Human Rights (JCHR) expressed concern at the "lack of detail" given by the bill regarding the process that would lead to broadband users having their connections suspended or having other technical measures imposed, saying this made it "extremely difficult" to assess the human-rights aspects of the process...." (Read more)
Oracle Blackhat video removed from Website (from Red-Database-Security at Mon Feb 8 22:54:00 2010 UTC)
"Blackhat removed the video from David Litchfield (containing the 0day exploit code for 11g) from their website. But it s too late because the 0day code for 11g can be found in the meantime in many places. The video was downloaded several times and it s just a question of time until it re-appears& BTW Oracle 10.2.0...." (Read more)
Error circulates state workers' bank data (from dispatchpolitics at Mon Feb 8 22:38:00 2010 UTC)
"Personal banking information for 6,000 state employees, including Gov. Ted Strickland, was inadvertently included in a Jan. 27 e-mail distributed to dozens of payroll officers of state agencies. Republicans are calling it a security breach, but the Strickland administration says it was simply a mistake that posed little, if any, risk."This was legally and technically not a data breach," said Ron Sylvester, spokesman for the Department of Administrative Services. "The data did not leave the state firewall...." (Read more)
Federal Office Offers $50,000 Reward for Missing External Drive (from Govtech at Mon Feb 8 22:06:00 2010 UTC)
"The National Archives and Records Administration (NARA) is still on the lookout for a missing external drive containing copies of personal data -- including Social Security numbers -- of former Bill Clinton administration staffers and people who contacted or visited the White House during the Clinton era. One of former Vice President Al Gore's three daughters is among those affected...." (Read more)
BlackBerry has spyware risk too, researcher says (from CNet at Mon Feb 8 21:46:00 2010 UTC)
"Tyler Shields, a senior researcher at the Veracode Research Lab, has written a piece of spyware that allowed me to shoot an SMS command to his phone and have his contact list forwarded to my e-mail address in a demonstration. With another short text command, I was able to get his BlackBerry to e-mail me any SMS messages he sendsAnd if I had wanted--and he had allowed me--I could have seen a log of all his calls, monitored his inbound text messages, tracked his location in real-time based on the GPS in his device and turned his microphone on to listen to conversations in the room and record them...." (Read more)
Blackberry spyware source code released (from NetworkWorld at Mon Feb 8 21:39:00 2010 UTC)
"Veracode today released Blackberry-specific spyware, which the code-review specialist intends as a call for defensive research to show that the BlackBerry is vulnerable to spyware problems. The Blackberry sandbox keeps you from getting into the operating system level. It s effective for that, says Tyler Shields, senior researcher at Veracode Research Lab and author of the Blackberry spyware...." (Read more)
Microsoft s Mundie calls for mandatory internet drivers licences (from SecureComputing at Mon Feb 8 21:31:00 2010 UTC)
"Microsoft s chief strategy officer Craig Mundie suggested that internet users should get mandatory training before being allowed online. Speaking at the World Economic Forum in Davos, Mundie proposed a three-tier system of authentication - for people, devices and applications. He said that while this would mean some loss of anonymity online, people were used to having to present identification in other areas of life and the internet should not be any different...." (Read more)
Zeus Attack Spoofs NSA, Targets .gov and .mil (from KrebsonSecurity at Mon Feb 8 21:22:00 2010 UTC)
"Criminals are spamming the Zeus banking Trojan in a convincing e-mail that spoofs the National Security Agency. Initial reports indicate that a large number of government systems may have been compromised by the attack. According one state government security expert who received multiple copies of the message, the e-mail campaign apparently designed to steal passwords from infected systems was sent exclusively to government (...." (Read more)
Rudd non-committal on copyright law change chances (from Computer World at Mon Feb 8 21:22:00 2010 UTC)
"Prime Minister Kevin Rudd has shied away from committing to legislative change to copyright enforcement in the wake of the AFACT v iiNet decision at the Federal Court of Australia last week. In a move welcomed by the ISP industry, Justice Cowdroy, dismissed a case by the Australian Federation Against Copyright Theft (AFACT) against iiNet, finding the ISP had not facilitated copyright infringement by its customers...." (Read more)
Malware continues to be a challenge to computer security (from Penn State Live at Mon Feb 8 19:45:00 2010 UTC)
"Identity theft continues to be a serious problem nationwide, and according to the nonprofit Identity Theft Resource Center, (ITRC) the economic recession may be a cause in the rise in scams, thievery and hacking. According to the center, confirmed breaches in the United States in 2009 resulted in 222,477,043 records containing personally identifiable information being exposed to potential identity theft. ..." (Read more)
'China breaks up Black Hawk hacking ring' (from ZDNet at Mon Feb 8 19:39:00 2010 UTC)
"Police in the central Hubei province arrested three people suspected of running the Black Hawk Safety Net, state news agency Xinhua reported on Monday. The Black Hawk Safety Net disseminated hacking tools and Trojans to its members, said Xinhua. The group had collected seven million yuan (650,000) in membership fees from 12,000 subscribers by the time it was shut down...." (Read more)
China breaks up Black Hawk hacking ring (from CNet at Mon Feb 8 19:36:00 2010 UTC)
"Chinese authorities have broken a hacking-tool dissemination ring, according to state media. Police in the central Hubei province arrested three people suspected of running the Black Hawk Safety Net, state news agency Xinhua reported Monday. The Black Hawk Safety Net disseminated hacking tools and Trojans to its members, said Xinhua...." (Read more)
Google warns Chinese copycat website (from Arab Times Online at Mon Feb 8 19:09:00 2010 UTC)
"Google has warned a copycat Chinese website to stop using a logo that resembles the US Internet giant's or face possible legal action, state media reported Monday. The warning issued to the "Goojje" website comes as Google is contemplating its future in China after saying it would no longer obey government censorship rules and could pull out entirely over alleged cyberattacks...." (Read more)
AvMed: Data of 208,000 at risk after Gainesville theft (from Gainesville at Mon Feb 8 19:00:00 2010 UTC)
"AvMed Health Plans announced Monday that personal information of some current and former subscribers may have been compromised by the theft of two company laptops from its corporate offices in Gainesville on Dec. 11. The information includes names, addresses, phone numbers, Social Security numbers and protected health information, according to an AvMed news release...." (Read more)
Payroll Processor Reveals Data Breach (from Bankinfosecurity at Mon Feb 8 18:55:00 2010 UTC)
"A Minneapolis-based payroll processor informed 27,000 of its customers last week that their personal data may be at risk after a hacker attacked the company's payroll system last December. Ceridian, the payroll processing company, says in a letter to affected customers that the hacker attacked its systems on December 22 and 23, potentially revealing Social Security numbers, birthdates and bank accounts of employees working at 1,900 companies nationwide...." (Read more)
Critical condition: Utility infrastructure (from SC Magazineus at Mon Feb 8 18:48:00 2010 UTC)
"A primary risk the nation faces is that many of the Supervisory Control and Data Acquisition (SCADA) systems used to manage electric power generation plants, water systems, oil and gas pipelines, and other systems are becoming interconnected with enterprise networks, making them accessible from the internet, says Alan Paller, director of research at computer security training organization SANS Institute. Moreover, these process control systems were not engineered to operate as part of a corporate network, experts say. They are often 10 to 20 years old and are not regularly patched like typical computer systems, says Robert Brammer (right), vice president for advanced technology and CTO at Northrop Grumman Information Systems...." (Read more)
Ceridian breach disclosure provides clear timeline (from DOH at Mon Feb 8 18:07:00 2010 UTC)
"Ceridian s notification to the New Hampshire Attorney General s Office is now available online . By letter from its attorney dated February 1, it summarizes the time line beginning with it first becoming aware on December 23 of a possible breach when its personnel spotted unusual activity that might indicate a problem. Further investigation indicated unauthorized access had occurred on December 22 and December 23 and the FBI was subsequently contacted...." (Read more)
Stolen Abbott Medical Optic backup tapes put employees and consumers at risk (from data breaches at Mon Feb 8 17:55:00 2010 UTC)
"Employees and customers of Abbott Medical Optics in Santa Ana, California are being notified that their personal information was on backup tapes that were stolen. On December 29, locked metal boxes containing the backup tapes were stolen from AMO s Milipitas facility in California. The company informed the New Hampshire Attorney General s Office of the theft on February 1, after sending out notification letters to affected employees on January 29...." (Read more)
Instantly online-17 golden rules to combat online risks and for safer surfing mobile social networks (from Enisa at Mon Feb 8 17:51:00 2010 UTC)
"Online Social Networking Sites (SNSs) have had an exceptional growth trend on Internet. 211Mn users (out of 283 Mn) in Europe use SNS, and, primarily, Facebook in 11/17 countries studied. The modern way of staying in touch with business or personal contacts is through SNS and other digital tools...." (Read more)
Online as soon as it happens (from Enisa at Mon Feb 8 17:41:00 2010 UTC)
"The huge potential of mobile social networks in the immediate future let us imagine the enormous benefits that everyone could get from the integration of mobility, always-on connectivity, and social networking services. Such a reality could be a great advantage for lifelong learning, community living, and knowledge-sharing but, as boundaries between public and private spaces will blur, also new risk scenarios will emerge...." (Read more)
The FBI Wants to Know Where You are Online (from chris.pirillo at Mon Feb 8 17:09:00 2010 UTC)
"An article posted on CNET has Internet users bashing the FBI up one side and down the other. Many are screaming about Big Brother , and civil rights. Others are proclaiming that they are going to leave the Internet completely, which I honestly don t see happening...." (Read more)
Google turns over hack info to US government (from SecureComputing at Mon Feb 8 17:00:00 2010 UTC)
"Google is turning over the investigation of a recent system intrusion attempt to the US government. According to reports, the company is going to partner with the National Security Agency (NSA) in its analysis of last December's attempt to install spyware on several company PCs...." (Read more)
Episode 37 of the Who and Why Show: Dragon Research Group (from YouTube at Mon Feb 8 17:00:00 2010 UTC)
"In the 37th episode of Team Cymru's 'The Who and Why Show', we're joined by David Dobrotka of the Dragon Research Group; a new group of volunteers dedicated to the good fight who have already launched tools and grants to make our community and our users all that little bit more informed, researched and safer...." (Read more)
Cubans turn to illegal Internet access despite risks (from TaipeiTimes at Mon Feb 8 16:15:00 2010 UTC)
"Yoan used to earn US$25 a month working as a computer technician for a state company and an extra US$500 selling Internet access on Cuba s vast and varied black market. The 31-year-old managed 10 accounts for government employees who had authorized e-mail access and would rent out their passwords to trusted clients under certain rules: they could only connect at night or in the early hours, and had to avoid political references...." (Read more)
Fears of ID fraud after Revenue data error (from thisismoney at Mon Feb 8 16:10:00 2010 UTC)
"Revenue & Customs has sent the names, addresses and National Insurance numbers of 2,200 claimants to the wrong people in the latest Government data bungle. The blunder involves child benefit letters to families whose children are 16, asking them to confirm that the youngsters are still studying. But some letters have contained other people's details, including names, addresses, National Insurance numbers, child benefit numbers and the teenagers' names and birthdays...." (Read more)
Indian IT Giant Tata Consultancy Services Hacked Tata (from Washington Post at Mon Feb 8 15:44:00 2010 UTC)
"The website Tata Consultancy Services, India's largest software vendor, has been hacked. The hacker has posted a "For Sale" message on the site, which is written in both French and English. Ironically, the company produces security systems software...." (Read more)
In Secret, Nations Work Toward Crackdown on Piracy (from The New York Times at Mon Feb 8 15:21:00 2010 UTC)
"Behind a veil of secrecy, the United States, the European Union, Japan and other countries are forging ahead with plans to coordinate an international crackdown on illegally copied music, movies, designer bags and other goods that change hands in sidewalk souks and Internet bazaars. Negotiators, under intense pressure from media companies, luxury brands and other corporate victims of piracy, are scrambling to complete a so-called Anti-Counterfeiting Trade Agreement by the end of the year. But the process is running into growing criticism from Internet campaigners, lawmakers and even some people involved in it...." (Read more)
Iran s Internet Fails Ahead of Protests (from Mashable at Mon Feb 8 15:05:00 2010 UTC)
"Internet connections are crawling in Iran and text message traffic has been disrupted ahead of planned anti-government protests in that country this week. The timing is raising eyebrows. Connections have been poor since last week, writes the AFP, with Communications Minister Reza Taghipour blaming damage to undersea optical fibre under the Gulf...." (Read more)
Chinese Cyberattacks Seen as a Pervasive Threat (from enterprise-security-today at Mon Feb 8 15:04:00 2010 UTC)
"Chinese hacking activity has been described as "significant in quantity and quality," and Google's complaint against China for hacking its e-mails is bringing the situation to light. Is China really a center for a global explosion of Internet crimes? China is being accused of playing a part in a rash of attacks aimed at a wide array of targets...." (Read more)
Markets and laws failing in face of net piracy (from theage at Mon Feb 8 15:00:00 2010 UTC)
"NO ONE knows how much copyright material was illegally downloaded in the past two years while a landmark Federal Court case considered a bid by film and television studios to stop the practice. A 34-member global consortium, including Village Roadshow and the Seven Network, had sought to hold Australia's third-largest internet service provider, iiNet, liable for copyright piracy by its customers. The action was dismissed so, for now, the floodgates stay open...." (Read more)
At least 5 dead in Conn. power plant blast (from MSNBC at Mon Feb 8 14:59:00 2010 UTC)
"An explosion that sounded like a sonic boom blew out walls of an unfinished power plant and set off a fire during a test of natural gas lines Sunday, killing at least five workers and injuring a dozen or more. The explosion at the Kleen Energy Systems plant in Middletown, about 20 miles south of Hartford, could be heard and felt for miles. Deputy Fire Marshal Al Santostefano told The Associated Press on Sunday night that no one was known to be missing amid the rubble from the damaged plant...." (Read more)
Finance firms to spend bilions on risk management - survey (from Finextra at Mon Feb 8 14:44:00 2010 UTC)
"The top 100 financial institutions will spend over $100 billion a year implementing risk governance frameworks by 2012, according to research from business advisory firm Deloitte. This is more than double the figure they spent on risk and control activities in 2006, the last full year before the financial crisis, says Deloitte, which surveyed chief risk officers (CROs) or equivalents at 28 financial institutions, including investment and retail banks and insurers. Most respondents expect spending on risk and compliance to continue to rise and say much of it is a direct result of the global financial crisis...." (Read more)
From the Humor Dept: How to make sure you get fired at Vodafone (from securemacprogramming at Mon Feb 8 14:33:00 2010 UTC)
"A Vodafone employee used the corporate Twitter account to post a message (see URLfor content):And as the Vodafone apology attests, this was no hacking attack, instead a case ofTGI Friday on the part of an employee. This goes to show that you don';t needan external attacker to ruin your corporate image if you hire the right staff. http://blog...." (Read more)
Melissa Hathaway Elected to Terremark's Board of Directors (from Marketwatch at Mon Feb 8 14:30:00 2010 UTC)
"Terremark Worldwide, Inc. , a leading global provider of managed IT infrastructure services, today announced the election of Melissa Hathaway to its Board of Directors. Having served in two Presidential administrations, Hathaway brings more than 20 years of high-level public and private-sector experience and is considered one of the leading experts on cyber security matters. Hathaway is President of Hathaway Global Strategies, LLC and a Senior Advisor at Harvard Kennedy School's Belfer Center...." (Read more)
Night Da Hack 2010 - June 19-20 2010 - 4 PM - 7 AM - Paris, France (from sysdream at Mon Feb 8 14:28:00 2010 UTC)
"What is Night da Hack? Night da Hack comes from a rough translation from French Nuit du Hack . Startedin 2003 by Hackerz Voice team, and inspired by world famous DEF CON, Nuit du Hack is one of the oldest French underground hacking conference. Around computer security related talks, workshops and contests, Night da Hack aimsat bringing together corporate IT professionals and hackers, no matter theirskill-level...." (Read more)
DHS announces new information-sharing efforts (from urgentcomm at Mon Feb 8 14:19:00 2010 UTC)
"A second phase of Virtual USA and a new online collaboration tool are among the initiatives to enhance information-sharing efforts among first-responder agencies that the U.S. Department of Homeland Security science and technology (DHS S&T) directorate announced this week. Using Virtual USA, emergency-management officials and others can tap into myriad databases to access information pertinent to a given mission, including the location of fueling stations, the value of property damaged during a disaster or three-dimensional renderings of structures. Five states in the northeast Alaska, Idaho, Montana, Oregon and Washington will form the second Virtual USA regional information-sharing pilot, while the six states currently participating in the existing Southeast Regional Operations Platform Pilot (SE ROPP) Alabama, Florida, Louisiana, Mississippi, Texas, and Virginia will be joined by Georgia and Tennessee and enter into the second, operational phase...." (Read more)
Phone Scam Targets Some KC Bank Customers (from KMBC at Mon Feb 8 14:13:00 2010 UTC)
"Officials at Security Bank of Kansas City said there is a telephone scam targeting its customers. An automated phone call asks the customer for their debit/ATM card number, expiration date and personal identification number. A news release said the call specifically states that it is Security Bank calling and that the customer's card has been compromised and needs to be deactivated or that the customer needs to activate a new card...." (Read more)
State Shuts Down Fake Mortgage Company (from wwj at Mon Feb 8 14:11:00 2010 UTC)
"State officials have shut down a fake Detroit mortgage company that they say was trying to steal consumers money and identity. The Office of Financial and Insurance Regulation pulled the plug on the phony company's website, called "Kenneth and Doyle Financial," and ordered it to stop doing business. Officials say the company was encouraging customers to apply for loans by providing personal information including social security and financial account numbers...." (Read more)
Billions to be spent on smart-grid cybersecurity (from CNet at Mon Feb 8 14:07:00 2010 UTC)
"Utility companies around the world will spend $21 billion by 2015 to improve cybersecurity for the world's electrical smart grid, according to a report released Thursday by Pike Research. As the industry has increasingly built up smart grids to better control and regulate electrical power, the threat of cyberattacks has become a greater concern. Dangers ranging from terrorist attacks to hackers to accidents to natural disasters could cause substantial damage...." (Read more)
Feds could get access to advanced cloud-computing technologies (from Government Computer News at Mon Feb 8 13:55:00 2010 UTC)
"Federal workers and the science community will soon be able to access advanced cloud-computing resources for free, thanks to an agreement between Microsoft Corp. and the National Science Foundation. Qualified individual researchers and research groups selected through NSF s merit review process will have free access to the technology. The project is aimed at accelerating scientific discovery by broadening researcher capabilities and fostering collaborative research communities...." (Read more)
Director of National Intelligence says major cyber attack could wreak havoc on the U.S. of A. (from Engadget at Mon Feb 8 13:49:00 2010 UTC)
"Director of National Intelligence Dennis Blair told the National Intelligence Committee that the United States is at risk of a "crippling" cyber-attack, and without the proper tools to defend against such an attack. Blair counseled the US to "deal with that reality," saying that catastrophic consequences would result if it did not deal with said reality. Specific problem areas he cited include the fact that more and more, foreign companies supply both the hardware and software for private businesses...." (Read more)
EU officials downplay carbon credit phishing scam (from ComputerWeekly at Mon Feb 8 13:46:00 2010 UTC)
"European Union officials have downplayed the seriousness of phishing attacks that enabled cybercriminals to steal carbon emissions permits worth 2. 6m. Phishing e-mails were sent to around 2,000 German companies which use the European carbon trading scheme that allows organisations to sell unused quotas of greenhouse gas emissions...." (Read more)
ISP not liable for downloads: Judge (from nzherald at Mon Feb 8 13:44:00 2010 UTC)
"An Australian judge has ruled an internet service provider cannot be held accountable for illegal movie downloads by its customers, in a test case of a key strategy by entertainment companies to combat online piracy. The judge said it was the first time a court had ruled on the question of whether an ISP should be liable for copyright violations by its users, and one expert said the decision would have global implications. A group of 34 movie companies, including Australian branches of Hollywood studios Universal Pictures, Warner Bros and 20th Century Fox, claimed Australia's third-largest internet provider, iiNet, breached their film copyrights by failing to stop users from illegally downloading files...." (Read more)
China shuts down online hacker boot camp (from nzherald at Mon Feb 8 13:43:00 2010 UTC)
"State media say police in central China have shut down a massive hacker training operation that openly recruited thousands of members and provided them with cyberattack lessons and malicious software. The official China Daily newspaper said Monday police in Hubei province arrested three people who ran the Black Hawk Safety Net through which they are suspected of disseminating Trojan software and web site hacking techniques. The paper says the site recruited more than 12,000 paying subscribers and collected more than US$1 million in membership fees...." (Read more)
