Items tagged with NSA
Let's start with the good news. Cryptocurrency mining on GPUs has waned considerably, and the shortage of graphics cards that made it nearly impossible to score a mid-range or high-end GPU at or near MSRP is over (for the most part). Are you ready for the bad news? Be that as it may, cryptocurrency mining hacks are on the rise, and a leaked tool by the US National Security Agency (NSA) may be partially to blame. That's the takeaway from a new report by Cyber Threat Alliance (CTA), a cybersecurity association with some major names among its members, including Cisco, Juniper Networks, McAfee, Sophos,...
Read more...
US Intelligence officials have determined that phones and services provided by Huawei, a Chinese smartphone manufacturer in China, and Chinese telecom ZTE pose a security risk to Americans, and that consumers should avoid both companies altogether. The determination was made known by half a dozen US intelligence chiefs, each of which told the Senate Intelligence Committee on Tuesday that Americans should steer clear of both companies. Among the six top intelligence chiefs were the heads of the Central Intelligence Agency (CIA), Federal Bureau of Investigation (FBI), and National Security Agency...
Read more...
A team of researchers from Positive Technologies have dug into the innards of Intel Management Engine (ME) 11 and have found a way to turn the feature off. If you aren't familiar with ME, it's a separate processor that is tucked away inside Intel CPUs that allows companies to manage the computers on their networks. Essentially, it allows the IT team to get into your machine to fix issues or apply updates among other things. The catch is that ME 11 is essentially a backdoor leaving some concerned about potential security exploits and privacy concerns. That fact has left many people who use Intel...
Read more...
WikiLeaks, the non-profit organization that publishes secret information provided by anonymous sources, released details about a tool that was used by the United States Central Intelligence Agency (CIA) to ensure that other government intelligence agencies were sharing the biometric information they collected. That includes the Federal Bureau of Investigation (FBI), National Security Agency (NSA), and Department of Homeland Security (DHS). That's right, the CIA has (or had) a tool to spy on the government's spy agencies. The tool is called ExpressLane and it would be installed and run under the...
Read more...
Geopolitical borders have softened in various ways thanks to the prevalence of the Internet. An email sent by an American could cross multiple international borders before being received by another American. A recent study by the Century Foundation revealed that the National Security Agency (NSA) reportedly utilizes various “traffic shaping” techniques to survey and store American communications. Internet traffic does not travel along the shortest route, but instead favors the fastest, least congested, or least expensive course. Data from various countries is backed up in data centers around the...
Read more...
Have the most recent Microsoft exploits been keeping you up at night? Microsoft recently remarked that almost all of the exploits have already been patched, while the remaining ones can not reproduced on supported platforms. On Friday, a hacking group referred to as the “Shadow Brokers” revealed a number of programs that could potentially be used to attack different versions of Windows operating systems. Microsoft maintains that the vast majority of these exploits have already been patched. “ETERNALCHAMPION”, a SMBv1 exploit, was patched by Windows updates CVE-2017-0146 & CVE-2017-0147. EnglishmanDentist”,...
Read more...
What do you collect? Rare stamps? Falcons fans’ tears? How about classified national defense documents? Former National Security Agency (NSA) contractor Harold Thomas Martin III was recently indicted by a federal grand jury on the charge that he purposely collected classified information regarding national defense. He faces twenty criminal accounts, each punishable by up to 10 years in prison. Rod J. Rosenstein, the United States attorney for Maryland, remarked, “The indictment alleges that for as long as two decades, Harold Martin flagrantly abused the trust placed in him by the government by...
Read more...
President Obama appears to be making the most out of his last few days in office. The Obama administration has just issued Executive Order 12333. The order will make it easier for the various intelligence agencies to access and share personal information about American citizens and people currently located in the United States. Executive Order 12333 allows intelligence agencies, specifically the NSA, to “disseminate information to other appropriate IC (Intelligence Communities) elements for purposes of allowing the recipient element to determine whether the information is relevant to its responsibilities...
Read more...
"Yahoo" is a positive word, but in relation to the internet giant, it's starting to feel like it could describe some of the company's key management. Yahoo has been dealing with some troubling issues, but most of those issues were self-created, such as failing to disclose a security breach which took place years ago, and building a custom tool for the U.S. government - and the NSA in particular - to scan user emails. Now, it's being reported that Yahoo's tool is in effect a sophisticated "hacking tool", although it's supposedly not that much different from Yahoo's preexisting tools used to...
Read more...
It's come to light that a former contractor for the National Security Agency (NSA) was arrested back in August by the Federal Bureau of Investigation (FBI). The agency suspects the contractor might have stolen and disclosed classified computer code developed by the NSA to hack into networks of governments around the world. And no, his name is not Edward Snowden, though he comes from the same consulting firm (Booz Allen Hamilton). The former contractor's name is Harold T. Martin III, a 51-year-old out of Glen Burnie, Maryland. He had already left the NSA and was working as a contractor for the Defense...
Read more...
Security firm Cellebrite made headlines earlier this year when its services were employed by the FBI to help break into the phone of the San Bernardino shooter. Cellebrite recently invited a bunch of UK press to an event to show off what it's capable of.Equipped with an outdated smartphone, BBC reporter Rory Cellan-Jones went off for a half an hour, password-protected the device, and took pictures -- basically using the phone normally. You can see where this is going. Despite the password, Cellebrite plugged the phone into a bulky tablet, and after a few taps, the phone's security was disabled....
Read more...
We reported earlier this week on a large collection of exploits that have been put up for auction by a group that calls itself Shadow Brokers. The promise was that all of the files were sourced from a secret NSA group called Equation Group, and now, Edward Snowden has released documents to prove that's just the case. This confirmation comes from The Intercept, a website which ultimately came to be as a direct result of Snowden's leaks three summers ago. With this trove of software confirmed to be sourced from the NSA, it raises some big questions. When Shadow Brokers put its collection of exploits...
Read more...
We wrote a couple of days ago about a huge treasure trove of alleged NSA-derived exploits that were hitting the market. That gold mine was accessed by a group calling itself Shadow Brokers, and it's been said that their source was Equation Group, which is believed to be an extension of the NSA. At that time, there was no proof that any of the exploits contained in the collection were still valid. Quickly, some noted that a few of the targets were already patched, leading the rest of us to believe that the entire collection came a bit too late. However, anyone who thought that might have to back...
Read more...
A hacking group that calls itself Shadow Brokers claims to have stolen sophisticated surveillance tools previously used by a group of high-tech hackers with ties to the U.S. National Security Agency (NSA). The group announced plans to auction off the tools, though security experts aren't sure if what they have is the real deal or if this is an elaborate hoax.In a post that's since been removed on Tumblr, the hacking group said it's in possession of cyber weapons made by the creators of Duqu, Flame, and Stuxnet and that this cache of tools is even more dangerous. Stuxnet is still considered one...
Read more...
