Slashdot Mirror

← Back to Stories (view on slashdot.org)

Russian Spy Ring Needed Some Serious IT Help

Posted by samzenpus on from the close-your-spy-network dept.

coondoggie writes "The Russian ring charged this week with spying on the United States faced some of the common security problems that plague many companies — misconfigured wireless networks, users writing passwords on slips of paper, and laptop help desk issues that take months to resolve."

7 of 191 comments (clear)

  1. Passwords by birukun · · Score: 5, Insightful

    Nothing wrong with writing down your long complex passwords..... UNLESS YOU LEAVE IT LAYING AROUND

    The complaint read like a spy novel.... A ready-made Bourne script!

    --
    Self Defense - A Human Right www.a-human-right.com
  2. Re:Spying? There's no App for that?! by Mitchell314 · · Score: 5, Funny

    Yes. iSpy: with my little i. (Wonder if applescript would actually accept it).

    --
    I read TFA and all I got was this lousy cookie
  3. Re:Well this just proves by flajann · · Score: 5, Interesting

    the incompetent can be easily caught. Perhaps these were even decoys for the competent operation still running.

    Took the words right out of my mouth. You'll never know if you have a real competent spy around. Those Russians are very shrewd when it comes to this. Many years ago a US statesman was given a "gift" -- a wood carving supposedly made by children -- when he went to Russia. When he got back, he hung it up in the very conference room, he hung the thing up on the wall.

    Over time, they noticed that discussions were slipping out of the room to the Russians, so they had the room checked for bugs. They could find nothing. And yet secrets still kept slipping.

    They eventually checked the "gift" -- turned out it had a passive resonant circuit attached to a capacitor that had a diaphragm modulated by sound. How it was activated? Externally by a radio source at 300 MHz. It was quite ingenious, because there were no electronics as such-- just a tube with the diaphragm attached at the end.

    The US guys couldn't figure it out, so they consulted British scientists!!! Can you believe that? Man, how stupid the US gov can be sometimes.

    --
    Ruby Neural Evolution of Augmenting Topologies
  4. Re:Well this just proves by Anonymous Coward · · Score: 5, Informative

    That seal is hanging at the NSA museum. If you go there, you can open it up and see the microphone. Pretty neat.

    http://www.nsa.gov/about/cryptologic_heritage/museum/virtual_tour/museum_tour_text.shtml

    look for "great seal"

  5. Re:I find this entire story to be a load of shit by schwaang · · Score: 5, Interesting

    Unlike typical spies with foreign diplomatic cover, these alleged "illegals" cannot just be summarily expelled back to their home countries. Any act against them requires due process, the first step of which is pressing charges.

    The lack of diplomatic cover also means they are not protected from any charges that may stick. Spying without diplomatic cover is a very risky game. It makes this case all the more interesting.

  6. If spies can't even get it right by Anonymous Coward · · Score: 5, Interesting

    I have little to no hope that the corporate world ever will.

    I'm an IT director at a mid-sized company in the US. I've worked hard to educate top executives on security issues, and to encourage them (it's hard to force a CEO or CFO to do anything) to use best practices. I've experienced a lot of resistance.

    Most companies think of IT, and security in particular, as an afterthought, if at all. Our CEO, who is responsible for active contracts that are worth tens of millions of dollars, and who has very sensitive financial data and intellectual property on his laptop, balked when I told him I did not want to know his password. He'd ask me to fix a problem with his machine, and be bothered by the fact that I would ask him to type in his password himself when I needed it. Eventually I gave in and started typing it in myself. Apparently it's an open secret from middle-management up. He uses the same password for everything, and all of the privileged managers know what it is. What if one of us quits or is fired? I imagine he uses the same password for his online banking as well. It's a big risk. He travels internationally on a regular basis. Having 20 people that know the password to all of your accounts. . . well, that scares the shit out of me, but it doesn't seem to bother him.

    And I get the sense that most people, whether they work in espionage or in the private sector, see security as more of an annoyance than anything else. That is, until a breach happens. When that happens, the IT department is blamed.

    In those situations, "I told you so," is not an acceptable response. When bad things happen, heads roll. I'm afraid that despite my most strenuous efforts to encourage best practices for top executives, my head will one day be on the chopping block for one of their mistakes.

    Sorry to post anonymously (it's the first time I have!), but other folks in my department read ./ and I can't really expose my name / UID in this particular case.

  7. Re:Thats the least of their problems. by interkin3tic · · Score: 5, Funny

    That is indeed the least of their problems. I've heard their computers were themselves full of

    (puts on sunglasses)

    spyware.