Jump to content

NSA Targeted Popular Anti-Virus Software to Enhance Own Capabilities


securitybreach

Recommended Posts

securitybreach

From The Intercept:

 

The National Security Agency and its British counterpart, Government Communications Headquarters, have worked to subvert anti-virus and other security software in order to track users and infiltrate networks, according to documents from NSA whistleblower Edward Snowden.

 

The spy agencies have reverse engineered software products, sometimes under questionable legal authority, and monitored web and email traffic in order to discreetly thwart anti-virus software and obtain intelligence from companies about security software and users of such software. One security software maker repeatedly singled out in the documents is Moscow-based Kaspersky Lab, which has a holding registered in the U.K., claims more than 270,000 corporate clients, and says it protects more than 400 million people with its products.

 

British spies aimed to thwart Kaspersky software in part through a technique known as software reverse engineering, or SRE, according to a top-secret warrant renewal request. The NSA has also studied Kaspersky Lab’s software for weaknesses, obtaining sensitive customer information by monitoring communications between the software and Kaspersky servers, according to a draft top-secret report. The U.S. spy agency also appears to have examined emails inbound to security software companies flagging new viruses and vulnerabilities.

 

The efforts to compromise security software were of particular importance because such software is relied upon to defend against an array of digital threats and is typically more trusted by the operating system than other applications, running with elevated privileges that allow more vectors for surveillance and attack. Spy agencies seem to be engaged in a digital game of cat and mouse with anti-virus software companies; the U.S. and U.K. have aggressively probed for weaknesses in software deployed by the companies, which have themselves exposed sophisticated state-sponsored malware.

 

Anti-virus software is an ideal target for a would-be attacker, according to Joxean Koret, a researcher with Coseinc, a Singapore-based information security consultancy. “If you write an exploit for an anti-virus product you’re likely going to get the highest privileges (root, system or even kernel) with just one shot,” Koret told The Intercept in an email. “Anti-virus products, with only a few exceptions, are years behind security-conscious client-side applications like browsers or document readers. It means that Acrobat Reader, Microsoft Word or Google Chrome are harder to exploit than 90 percent of the anti-virus products out there.”........

 

#GCHQ, #NSA, #Snowden

 

https://ghostgen.com...n-capabilities/

Link to comment
Share on other sites

V.T. Eric Layton

Getting closer and closer to that time when I'll be permanently going...

 

sp_offgrid.jpg

 

No Internet. No cell phone. No TV other than over-the-air broadcast. Once I hit that lottery, I'll be living in a little Airstream in NW New Mexico somewhere out in the hills on Navaho Hwy 1.

 

vintage-airstream-katie-arnolds_h.jpg

 

Send my mail c/o "Bill" at the Two Gray Hills Trading Post.

 

Two-Gray-Hills-1.jpg

  • Like 1
Link to comment
Share on other sites

Two Gray Hills Trading Post

 

Is that anywhere near the camps where the rest of us will be?

Edited by frapper
  • Like 1
Link to comment
Share on other sites

V.T. Eric Layton

Two Gray Hills Trading Post looks like a nice place...

 

Yes. Quiet, off the beaten path. ;)

 

The reality, though, is that I would not want to be that far from a hospital or a library, so I'd probably end up selling my place in Tampa and buying something in Farmington, NM. :)

 

Maybe it's all just a wild dream, too. :(

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...