Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

POPULAR SECURITY SOFTWARE CAME UNDER RELENTLESS NSA AND GCHQ ATTACKS
GLENN GREENWALD's (Snowden's pal) Firstlook.org The Intercept ^ | June 22 ,2015 | ANDREW FISHMAN AND MORGAN MARQUIS-BOIRE

Posted on 06/22/2015 7:33:22 AM PDT by rickyrikardo

The National Security Agency and its British counterpart, Government Communications Headquarters, have worked to subvert anti-virus and other security software in order to track users and infiltrate networks, according to documents from NSA whistleblower Edward Snowden.

The spy agencies have reverse engineered software products, sometimes under questionable legal authority, and monitored web and email traffic in order to discreetly thwart anti-virus software and obtain intelligence from companies about security software and users of such software. One security software maker repeatedly singled out in the documents is Moscow-based Kaspersky Lab, which has a holding registered in the U.K., claims more than 270,000 corporate clients, and says it protects more than 400 million people with its products.

British spies aimed to thwart Kaspersky software in part through a technique known as software reverse engineering, or SRE, according to a top-secret warrant renewal request. The NSA has also studied Kaspersky Lab’s software for weaknesses, obtaining sensitive customer information by monitoring communications between the software and Kaspersky servers, according to a draft top-secret report. The U.S. spy agency also appears to have examined emails inbound to security software companies flagging new viruses and vulnerabilities.

The efforts to compromise security software were of particular importance because such software is relied upon to defend against an array of digital threats and is typically more trusted by the operating system than other applications, running with elevated privileges that allow more vectors for surveillance and attack. Spy agencies seem to be engaged in a digital game of cat and mouse with anti-virus software companies; the U.S. and U.K. have aggressively probed for weaknesses in software deployed by the companies, which have themselves exposed sophisticated state-sponsored malware.

(Excerpt) Read more at firstlook.org ...


TOPICS: Government
KEYWORDS: computers; computing; hack; internet; internetsecurity; kaspersky; malware; needsproof; news; nsa; software; tech; virus
Navigation: use the links below to view more comments.
first 1-2021-4041-6061-80 ... 101 next last

1 posted on 06/22/2015 7:33:22 AM PDT by rickyrikardo
[ Post Reply | Private Reply | View Replies]

To: rickyrikardo

trust Russian software more than your own government


2 posted on 06/22/2015 7:36:22 AM PDT by Buckeye McFrog
[ Post Reply | Private Reply | To 1 | View Replies]

To: rickyrikardo

The NSA seems far more interested in spying on US citizens than foreign terrorists.


3 posted on 06/22/2015 7:37:50 AM PDT by Mr. K (Palin/Cruz - to defeat HilLIARy/Warren)
[ Post Reply | Private Reply | To 1 | View Replies]

To: rickyrikardo
"Anti-virus software is an ideal target for a would-be attacker, according to Joxean Koret, a researcher with Coseinc, a Singapore-based information security consultancy. “If you write an exploit for an anti-virus product you’re likely going to get the highest privileges (root, system or even kernel) with just one shot,” Koret told The Intercept in an email. “Anti-virus products, with only a few exceptions, are years behind security-conscious client-side applications like browsers or document readers. It means that Acrobat Reader, Microsoft Word or Google Chrome are harder to exploit than 90 percent of the anti-virus products out there.”
4 posted on 06/22/2015 7:48:41 AM PDT by JoeProBono (SOME IMAGES MAY BE DISTURBING VIEWER DISCRETION IS ADVISED;-{)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mr. K

“The NSA seems far more interested in spying on US citizens than foreign terrorists.”

Do you agree that NSA has a legitimate interest in spying on terrorist networks?

Do you believe that NSA should limit itself to using tools that can only be used to spy on terrorists?

Can you explain how NSA can build tools capable of spying on terrorist networks that cannot also be used to spy on US Citizens?


5 posted on 06/22/2015 7:50:26 AM PDT by DugwayDuke
[ Post Reply | Private Reply | To 3 | View Replies]

To: rickyrikardo

Criminal actions which will not be prosecuted.


6 posted on 06/22/2015 8:08:43 AM PDT by I want the USA back (Media: completely irresponsible. Complicit in the destruction of this country)
[ Post Reply | Private Reply | To 1 | View Replies]

To: DugwayDuke; Mr. K

Why is the NSA tracking every single email, phone call or web connection by every single American?


7 posted on 06/22/2015 8:13:16 AM PDT by driftdiver (I could eat it raw, but why do that when I have a fire.)
[ Post Reply | Private Reply | To 5 | View Replies]

To: driftdiver

For data mining purposes

This type of data gathering is useless, in real time- there is too much to go through.

But if you come onto their radar, then hmmm let’s see who you’ve been talking to.


8 posted on 06/22/2015 9:05:38 AM PDT by Mr. K (Palin/Cruz - to defeat HilLIARy/Warren)
[ Post Reply | Private Reply | To 7 | View Replies]

To: Mr. K
For data mining purposes

This type of data gathering is useless, in real time- there is too much to go through.

But if you come onto their radar, then hmmm let’s see who you’ve been talking to.

Exactly. When the Snowden documents first surfaced, there was a lot of hand-waving about the government "only collecting metadata". The fact is, this "metadata" is extremely important and has major implications to your privacy and the average person's desire to just be left the hell alone by the Feral government.

One of the really interesting bits to come out in the past many months is how very dedicated the NSA is in making sure that the internet be as unsafe a place for your average American as it is possible to be. Rather than help Americans be secure online, they do everything they can to make sure that they aren't.

 

9 posted on 06/22/2015 9:18:48 AM PDT by zeugma (The best defense against a bad guy with a gun is a good guy with a gun)
[ Post Reply | Private Reply | To 8 | View Replies]

To: Jet Jaguar; NorwegianViking; ExTexasRedhead; HollyB; FromLori; EricTheRed_VocalMinority; ...

The list, Ping

Let me know if you would like to be on or off the ping list

http://www.nachumlist.com/


10 posted on 06/22/2015 9:19:46 AM PDT by Nachum (Obamacare: It's. The. Flaw.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: DugwayDuke

Do you believe the police should be limited to needing warrants to search your person and property? After all,it would be so much easier if they could just search anyone’s home,car,pockets,phone, and mind without limits.


11 posted on 06/22/2015 9:21:39 AM PDT by hoosierham (Freedom isn't free)
[ Post Reply | Private Reply | To 5 | View Replies]

To: hoosierham

“Do you believe the police should be limited to needing warrants to search your person and property? After all,it would be so much easier if they could just search anyone’s home,car,pockets,phone, and mind without limits.”

The question was not should warrants be required for a search. The question was should NSA be allowed to develop tools and techniques that could be used for a search.

Are you saying that NSA should have a warrant from a judge to search a specific target before it’s allowed to develop the tools necessary to conduct that search?

Should the tools be made in such a way that they can only be used to search IAW a specific warrant? Exactly how do you propose building such tools?


12 posted on 06/22/2015 9:43:12 AM PDT by DugwayDuke
[ Post Reply | Private Reply | To 11 | View Replies]

To: DugwayDuke

I am not seeing your so-called ‘point’?

So are you saying that you are OK with them spying on every single american because it is a natural side-effect of spying on terrorists?


13 posted on 06/22/2015 9:48:50 AM PDT by Mr. K (Palin/Cruz - to defeat HilLIARy/Warren)
[ Post Reply | Private Reply | To 5 | View Replies]

To: Mr. K

“So are you saying that you are OK with them spying on every single american because it is a natural side-effect of spying on terrorists?”

It’s pretty simple. The article is all upset about hacking a version of anti-virus software in order to develop a tool that could be used to spy on terrorists. It is obvious that such a hack could be used to spy on citizens or on terrorists.

My point is this: if you don’t like this kind of thing then explain how NSA can build a spy tool that cannot be used to spy on citizens.

It’s just like a wiretap which could be used legally or illegally. Should wiretaps be outlawed because they could be used illegally?

Or, for another analogy. Weapons provided to the US Army could be used against citizens. Does that mean the US Army should not be allowed to develop weapons? Or should the US Army be banned from developing weapons that can only be used against terrorists?

But to return to your original question. In certain circumstances, law enforcement can ‘spy’ on citizens if it is a by-product of spying on terrorists. Suppose, you want to take a photograph of two terrorists meeting in a park. Are you prohibited from taking such a picture if there are also citizens in the background?

Notice I specifically limited this to ‘law enforcement’. NSA is not law enforcement and cannot legally spy on persons located within the borders of the United States. It can ‘spy’ on those located outside the US even if this does indirectly involve those located inside the US.

That may bother you but consider this. Suppose NSA learns that five terrorists will have a conference call on a forthcoming terrorist plot. Should NSA listen in?

What if, just at the moment when one terrorist is about to announce the target, the date, and the timing another terrorist dials in and that terrorist is within the US. Should NSA immediately terminate the wiretap? What if terrorist announce that one party to the call is a (unnamed) US citizen? They could make such an announcement standard practice.

What if several terrorists are using email to coordinate an attack. Suppose some of their email is routed through a server in the US. Can NSA intercept this email?


14 posted on 06/22/2015 10:10:51 AM PDT by DugwayDuke
[ Post Reply | Private Reply | To 13 | View Replies]

To: Mr. K
The NSA seems far more interested in spying on US citizens than foreign terrorists.

The basty nastards literally gave China the keys to the kingdom, and put in all this effort to keep track of the likes of us.

The population of any middle school across America could have done as well.

15 posted on 06/22/2015 2:27:39 PM PDT by RobinOfKingston (Just what is the difference between a "centrist democrat" and a "moderate republican?")
[ Post Reply | Private Reply | To 3 | View Replies]

To: rickyrikardo; Abby4116; afraidfortherepublic; aft_lizard; AF_Blue; Alas Babylon!; amigatec; ...
Ruh-roh -- our own "National Security" folks are undermining our own computers ... PING!

You can find all the Windows Ping list threads with FR search: search on keyword "windowspinglist".

Not a pretty picture, people.

16 posted on 06/22/2015 5:36:36 PM PDT by dayglored (Meditate for twenty minutes every day, unless you are too busy, in which case meditate for an hour.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mr. K
This type of data gathering is useless, in real time- there is too much to go through.

Apparently not to much trouble at all. Just mention that you are looking at a flat screen for you birthday to one of your friends and see if the adds don't start popping up the next day. (gmail for sure does this.)

17 posted on 06/22/2015 6:54:09 PM PDT by itsahoot (55 years a republican-Now Independent. Will write in Sarah Palin, no matter who runs. RIH-GOP)
[ Post Reply | Private Reply | To 8 | View Replies]

To: itsahoot

you are CLEARLY comparing apples and oranges...

I do this stuff for a living


18 posted on 06/22/2015 7:11:02 PM PDT by Mr. K (Palin/Cruz - to defeat HilLIARy/Warren)
[ Post Reply | Private Reply | To 17 | View Replies]

To: DugwayDuke

you are CLEARLY not paying attention

If THAT was what the NSA was doing it would be expected

But its not.., they are collecting spy data on every single american

yes the technology to spy on one gives you the ability to spy on all- and that is why the NSA is doing- spying on ALL


19 posted on 06/22/2015 7:15:23 PM PDT by Mr. K (Palin/Cruz - to defeat HilLIARy/Warren)
[ Post Reply | Private Reply | To 14 | View Replies]

To: rickyrikardo

Massive amounts of fiber optic cable were put in during the dot-com boom. Unlike other communication technologies (cell phone towers, copper cable), this stuff is going to be in great shape for years.

We need to take all that dark cable, connect new hubs, and build a new internet that is separate from the hubs the NSA is monitoring.


20 posted on 06/22/2015 8:00:20 PM PDT by tbw2
[ Post Reply | Private Reply | To 1 | View Replies]


Navigation: use the links below to view more comments.
first 1-2021-4041-6061-80 ... 101 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson