Slashdot Mirror

← Back to Stories (view on slashdot.org)

NSA Broke Into Links Between Google, Yahoo Datacenters

Posted by timothy on from the smiley-makes-it-all-ok dept.

barlevg writes "The Washington Post reports that, according to documents obtained from Edward Snowden, through their so-called 'MUSCULAR' initiative, the National Security Agency has exploited a weakness in the transfers between data centers, which Google and others pay a premium to send over secure fiber optic cables. The leaked documents include a post-it note as part of an internal NSA Powerpoint presentation showing a diagram of Google network traffic, an arrow pointing to the Google front-end server with text reading, 'SSL Added and Removed Here' with a smiley face. When shown the sketch by The Post and asked for comment, two engineers with close ties to Google responded with strings of profanity." The Washington Post report is also summarized at SlashBI. Also in can't-trust-the-government-not-to-spy news, an anonymous reader writes: "According to recent reports, the National Security Agency collects 'one-end foreign' Internet metadata as it passes through the United States. The notion is that purely domestic communications should receive greater protection, and that ordinary Americans won't send much personal information outside the country. A researcher at Stanford put this hypothesis to the test... and found that popular U.S. websites routinely pass browsing activity to international servers. Even the House of Representatives website was sending traffic to London. When the NSA vacuums up international Internet metadata, then, it's also snooping on domestic web browsing by millions of Americans."

8 of 394 comments (clear)

  1. At the risk of stating the obvious... by DoofusOfDeath · · Score: 5, Informative

    Fucking traitors.

    1. Re:At the risk of stating the obvious... by Erbo · · Score: 4, Informative

      English cuss words don't cut it anymore. Perkeleen vittupää. (HT: Linus Torvalds)

      --
      Be who you are...and be it in style!
  2. NSA denies everything by barlevg · · Score: 4, Informative

    http://www.businessweek.com/news/2013-10-30/alexander-denies-nsa-infiltrated-google-to-yahoo-servers

    1. Re:NSA denies everything by jandrese · · Score: 4, Informative

      Calling them out on lies or pushing for followup information is how you lose your White House Press Pass.

      --

      I read the internet for the articles.
  3. Re:Why the secret data collection? by barlevg · · Score: 5, Informative
    Read this: http://www.washingtonpost.com/blogs/the-switch/wp/2013/10/30/prism-already-gave-the-nsa-access-to-tech-giants-heres-why-it-wanted-more/?hpid=z1

    There are some obvious reasons: The operations take place overseas, where many statutory restriction on surveillance don't apply -- and where the Foreign Surveillance Intelligence Court (FISC) has no jurisdiction. In fact, the FISC ruled a similar, smaller scale program involving cables on U.S. territory illegal in 2011. So if the NSA decides to harvest that data on foreign soil, it can skip most of the oversight mechanisms.

  4. Re:Wrong, choice is between who will get noticed by Trogre · · Score: 4, Informative

    Oh my goodness. How can someone entirely miss the whole point of the Kang/Kodos election, or Douglas Adams' lizards? The point, which you appear to have somehow totally missed, is to highlight the folly of a two-party system.

    The problem is not people voting for the wrong lizard, it is people voting for one of the two lizards IN THE FIRST PLACE.

    So long as Democrats and Republicans continue to be rife with corruption, your civic duty is to vote third party.

    Otherwise you really are throwing your vote away.

    --
    "Nine times out of ten, starting a fire is not the best way to solve the problem." - my wife
  5. Re:Reap what you sow by swillden · · Score: 4, Informative

    Google (and the others) shrugged and played nice with the NSA, to what extent we don't know.

    Google hasn't "shrugged and played nice" with the NSA. Google has flatly and emphatically denied any cooperation. And after the Snowden disclosures began, Google started taking a hard look at internal operations to see if there's anywhere that the NSA could have gotten unauthorized access. The result was a crash company-wide initiative to encrypt all data communications -- specifically to ensure that connections between data centers couldn't be tapped.

    (Disclaimer: I'm a Google software engineer, focused on security infrastructure. I do have a great deal of insider knowledge about Google security infrastructure, but all of the above is from Google's public statements.)

    I wonder if Google can sue? And if they can, will they?

    Google has file a suit to be allowed to disclose the extent of the legal, government-required information sharing. I have no idea if they could sue for any illicit taps. There is no doubt in my mind that if they could sue for damages with some hope of success, they would. This is my own opinion, not an official statement.

    --
    Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
  6. Re:The post-it note by swillden · · Score: 4, Informative

    No you fucking moron, it means since there is no Encryption inside the "google cloud" (because it is added at the border) when they tap the links between data centres (those squares "inside" google are data centres) they get full unencrypted information.

    They don't need to break encryption to do this, since google isn't encrypting the private fibre lines the NSA is tapping.

    Correction: Google wasn't encrypting the private fibre lines. Google announced a month or two ago that they're now encrypting all traffic in transit, even inside.

    --
    Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.