PDA

View Full Version : This deserves its own thread.



Tyr-Ziu Saxnot
12-29-2013, 01:01 PM
NSA reportedly intercepting laptops purchased online to install spy malware NSA reportedly intercepting laptops purchased online to install spy malware According to a new report from Der Spiegel based on internal NSA documents, the signals intelligence agency's elite hacking unit (TAO) is able to conduct sophisticated wiretaps in ways that make Hollywood fantasy look more like reality. The report indicates that the NSA, in collaboration with the CIA and FBI, routinely and secretly intercepts shipping deliveries for laptops or other computer accessories in order to implant bugs before they reach their destinations. According to Der Spiegel, the NSA's TAO group is able to divert shipping deliveries to its own "secret workshops" in a method called interdiction, where agents load malware onto the electronics or install malicious hardware that can give US intelligence agencies remote access.

While the report does not indicate the scope of the program, or who the NSA is targeting with such wiretaps, it's a unique look at the agency's collaborative efforts with the broader intelligence community to gain hard access to communications equipment. One of the products the NSA appears to use to compromise target electronics is codenamed COTTONMOUTH, and has been available since 2009; it's a USB "hardware implant" that secretly provides the NSA with remote access to the compromised machine.

This tool, among others, is available to NSA agents through what Der Spiegel describes as a mail-order spy catalog. The report indicates that the catalog offers backdoors into the hardware and software of the most prominent technology makers, including Cisco, Juniper Networks, Dell, Seagate, Western Digital, Maxtor, Samsung, and Huawei. Many of the targets are American companies. The report indicates that the NSA can even exploit error reports from Microsoft's Windows operating system; by intercepting the error reports and determining what's wrong with a target's computer, the NSA can then attack it with Trojans or other malware.

In response to Der Spiegel's report, Cisco senior vice president John Stewart wrote that "we are deeply concerned with anything that may impact the integrity of our products or our customers' networks," and that the company does "not work with any government to weaken our products for exploitation." Other US companies have fired back against reports of NSA tampering in recent months, including Microsoft, which labeled the agency an "advanced persistent threat" over its efforts to secretly collect private user data within the internal networks of Google and Yahoo. If true this should be cause for
immediate and serious action to stop it or else an uprising against the Obama regime IMHO. CERTAINLY IMPEACHMENT PROCEEDINGS SHOULD BEGIN IF THIS IS TRUE. As it is a major Constitutional breach! It is as if the Constitution has already been declared dead BY THE OBAMA ADMINISTRATION!! ... -Tyr

jimnyc
12-29-2013, 01:13 PM
Hopefully some 'real' hackers or others will get some sort of definitive proof. Link for that article? I wanna read more about this. But who's gonna touch it is the problem. Holder? This shit is getting to be too too TOO much.

Tyr-Ziu Saxnot
12-29-2013, 02:19 PM
Hopefully some 'real' hackers or others will get some sort of definitive proof. Link for that article? I wanna read more about this. But who's gonna touch it is the problem. Holder? This shit is getting to be too too TOO much.

SORRY THOUGHT I HAD POST THE LINK. HERE IT IS.
http://www.theverge.com/2013/12/29/5253226/nsa-cia-fbi-laptop-usb-plant-spy --Tyr

jimnyc
12-29-2013, 02:25 PM
I'd love to know the entire scope of what they were doing exactly. I'm less concerned about them placing crap on my computer, as attempts to use that software should be detected by various software. That's too obvious. I'd be more concerned about these backdoors, and how much access they actually get with them, and specifically what the manufacturers know about this, fully.