Slashdot Mirror

← Back to Stories (view on slashdot.org)

NSA Says It Foiled Plot To Destroy US Economy Through Malware

Posted by timothy on from the big-brother-says-he's-got-your-back dept.

mrspoonsi writes "Business Insider Reports: The National Security Agency described for the first time a cataclysmic cyber threat it claims to have stopped On Sunday's '60 Minutes.' Called a BIOS attack, the exploit would have ruined, or 'bricked,' computers across the country, causing untold damage to the national and even global economy. Even more shocking, CBS goes as far as to point a finger directly at China for the plot — 'While the NSA would not name the country behind it, cyber security experts briefed on the operation told us it was China.' The NSA says it closed this vulnerability by working with computer manufacturers. Debora Plunkett, director of cyber defense for the NSA: One of our analysts actually saw that the nation state had the intention to develop and to deliver — to actually use this capability — to destroy computers."

37 of 698 comments (clear)

  1. NSA failed to halt subprime lending, though. by fractoid · · Score: 5, Insightful

    ...and subprime lending really DID destroy the U.S. economy.

    --
    Rampant carbon sequestration destroyed the Dinosaurs' tropical paradise. I'm here to help repair the damage.
    1. Re:NSA failed to halt subprime lending, though. by Anonymous Coward · · Score: 5, Insightful

      And Iraq had WMDs. And the NSA never lied to congress or the people... how stupid do they think we are?

    2. Re:NSA failed to halt subprime lending, though. by mellon · · Score: 2, Insightful

      The attack being described probably would have been worse. And if the NSA stopped it, that's great—they should get credit and appreciation for that. This is exactly what the NSA _should_ be doing. It's too bad that they have spent so much focus on stuff _other_ than this. People forget that the NSA has actually done a _lot_ over the past century that has been of extreme benefit, because they have done so many inappropriate things recently. It would be really great if we could get back to the old NSA.

    3. Re:NSA failed to halt subprime lending, though. by afxgrin · · Score: 5, Insightful

      It's a fucking propaganda piece. It's quite easy to see right through the bullshit.

      If a BIOS exploiting malware was a real threat where's the CVE for it? Where's the advisory?? A BIOS crippling virus released into the wild has no need for secrecy unless the NSA themselves released it. It's quite convenient they mention they thwarted a "major cyber attack" without releasing the name of the virus nor when this supposedly happened.

      What a fucking joke that entire interview was....

    4. Re:NSA failed to halt subprime lending, though. by Cenan · · Score: 5, Insightful

      This is exactly what the NSA _should_ be doing. It's too bad that they have spent so much focus on stuff _other_ than this.

      Which begs the question, how come this was not among the first things touted as their reason for being? How come this was not mentioned before Congress? Or to the media? How come this whole thing sounds utterly made up?

      --
      ... whatever ...
    5. Re:NSA failed to halt subprime lending, though. by mellon · · Score: 4, Insightful

      Because there's a shit-ton of money in pervasive surveillance, and a lot less of it in doing what the NSA should be doing.

    6. Re:NSA failed to halt subprime lending, though. by LVSlushdat · · Score: 4, Insightful

      ... how stupid do they think we are?

      You don't want to know just how stupid *they* think we are.. And the really sad part?? *They* are absolutely right on a large percentage of the American people.. The ones who drink the koolaide that comes from BOTH parties.. Its becoming apparent that none of the media, better known now as the defacto US Department of Propaganda, is telling the truth.. oh sure, they tell *their* "version" of the "truth", but not the TRUTH.. We are well and truly screwed...

      --
      THANK YOU, Edward Snowden!! Americans owe you a debt of gratitude (whether they know it or not..)
    7. Re:NSA failed to halt subprime lending, though. by jedidiah · · Score: 4, Insightful

      The attack being described is nonsense, especially if China was supposed to be the perpetrator. Undermining the US economy is really the LAST thing the Chinese would want to do. It makes no sense from a business perspective.

      North Korea would have made a much better scapegoat.

      --
      A Pirate and a Puritan look the same on a balance sheet.
    8. Re:NSA failed to halt subprime lending, though. by Anonymous Coward · · Score: 2, Insightful

      Posting AC, although I wish for an "Advocatus Diaboli" button:

      If the US had a propaganda department, it sure isn't working. Look at the morale of the population. Look at the government mistrust, and the pushback against the ACA.

      Other countries have far better effect on the US people. Take China for example. It is common for people in the US believe that China has risen to the point where they have far better technology, and the peasant in the rice paddy has been replaced by the 1950s American middle class person.

      Regardless of the truth, the NSA will not get credit. If they did stop a malware attack, most Americans won't believe it. If they didn't, I'm sure they wouldn't bother trying to appeal to a dubious populace.

      Plus, the evidence is in their favor. All and all, most operating systems have had some hardening done by them to reduce attack surface, be it BSDs, Linux's SELinux, or the multiple access contexts in Windows. A malware attack against a soft infrastructure would do a lot of damage, so someone, somewhere probably has done work to keep things working.

      But what do I know... I'm just a dumb AC, emphasis on the "C" part of the abbreviation.

    9. Re:NSA failed to halt subprime lending, though. by Runaway1956 · · Score: 5, Insightful

      More accurately, Iraq had a lot of chemical weapons in the 1980's, and we stood idly by while Saddam expended them. When I say "we", I mean that very literally, and very personally. I was there, along with my shipmates, to see it happening. We helped to document it. We stood idly by while Saddam expended huge quantities of chemical weapons.

      By 2002, when we decided that Sadman was so very sad that we had to do something about him, he had very little to nothing left.

      Our governments (US and UK) knew very well what Saddam had, and what Saddam was capable of. Our governments exaggerated everything by orders of magnitude, and bald faced LIED TO US. Those truckloads of stuff that went to Syria? Probably some bad stuff. Most of it was far more likely to have been plundered treasures, destined to ensure a life of security, if not ease, for certain select people dear to Sadman.

      But, you go on believing the propaganda.

      You will note, I hope, that I've said nothing in Saddam Hussein's defense. I have ONLY pointed out how dishonest our own governments are.

      --
      "Windows is like the faint smell of piss in a subway: it's there, and there's nothing you can do about it." - Charlie Br
    10. Re:NSA failed to halt subprime lending, though. by mrchaotica · · Score: 5, Insightful

      Regardless of the truth, the NSA will not get credit. If they did stop a malware attack, most Americans won't believe it. If they didn't, I'm sure they wouldn't bother trying to appeal to a dubious populace.

      I'll happily believe the NSA stopped the malware attack in question, and I'll happily give them credit for it.

      However, it does not give them even a single tiny shred of excuse for all the unconstitutional totalitarian treason, for which I will continue to call for their prosecution.

      --

      "[Regarding the 'cloud,'] ownership was what made America different than Russia." -- Woz

    11. Re:NSA failed to halt subprime lending, though. by bickerdyke · · Score: 3, Insightful

      Learn to READ before comment!

      His point was that he never installed a BIOS update, because it isn't delivered through regular OS update channels.

      As probably everyone here hasn't installed a BIOS update if your system is running without problems.

      But he (and no one here) suffered from no mystery-chinese BIOS attack. So how could the NSA have done that mystery feat? Protecting a nation from BIOS attacks withiout making sure that BIOSes are updated?

      Makes this whole story sound quite unbelievable. More like "Wag the dog"-like spin-doctoring.

      --
      bickerdyke
    12. Re:NSA failed to halt subprime lending, though. by Typical+Slashdotter · · Score: 4, Insightful
      Per Article 3, Section 3 of the US Constitution,

      Treason against the United States, shall consist only in levying War against them, or in adhering to their Enemies, giving them Aid and Comfort.

      Let's not dilute the word by using it for other bad things.

    13. Re:NSA failed to halt subprime lending, though. by Jeremi · · Score: 4, Insightful

      The ones who drink the koolaide that comes from BOTH parties.. Its becoming apparent that none of the media, better known now as the defacto US Department of Propaganda, is telling the truth.. oh sure, they tell *their* "version" of the "truth", but not the TRUTH..

      What qualifications do you have that allow you to reliably discern the TRUTH from the lies?

      Are you 100% sure you aren't drinking someone else's brand of koolaid?

      What makes your sources of information more reliable than other peoples'?

      Often when someone is pushing a story about a vast conspiracy, the conspiracy is fictional, or at least highly exaggerated, and the people pushing the conspiracy narrative have their own political reasons for pushing it.

      --


      I don't care if it's 90,000 hectares. That lake was not my doing.
    14. Re:NSA failed to halt subprime lending, though. by WindBourne · · Score: 1, Insightful

      Sigh. Chinese leaders are in a cold war with the west. The attack would not be against America, but against the entire west.
      And when you are in a cold war, using cheap economics means to bring the west to their knees is dirt cheap compared to a hot war.

      --
      I prefer the "u" in honour as it seems to be missing these days.
    15. Re:NSA failed to halt subprime lending, though. by dAzED1 · · Score: 5, Insightful

      No. It is not possible they did this. Doing this would require fixing the vulnerability - did they hack into the bios programming tools at all the motherboard manufacturers and secretly fix this problem? Did they hack everyone's computer and install the firmware update? An OS patch is one thing, but a firmware patch? This particular problem can not have been fixed with just a handwaving. It's one thing to say they intercepted a phone call and foiled a terrorist plot. It's another thing to claim they updated all current and future disparate BIOS firmware to protect against an undisclosed vulnerability. That is impossible, and makes them even more ridiculous.

    16. Re:NSA failed to halt subprime lending, though. by sexconker · · Score: 5, Insightful

      It is entirely possible that they did, indeed, halt a plot, just as they said they did.

      Not it fucking isn't.

      The NSA says it closed this vulnerability by working with computer manufacturers.

      Where are motherboards and BIOS shit is fucking manufactured / written? (Hint: China and Taiwan)

      Do you really think it's possible that a BIOS update was created by those manufacturers that:
      1: Applied to all the vulnerable systems, many of which are 10+ years old and manufactured by a now defunct-company
      2: Worked
      3: Got deployed
      4: Had all of the above happen with no one knowing about it outside of the NSA, the manufacturers, and the one guy in the world who writes BIOS patch notes
      ?

      Hell, I'll GIVE you the fucking BIOS patch notes.

      BIOS Version 2.3.5

      1 - Updated tables to half-support new Intel processors. Buy a new motherboard with new socket if you want it to actually work, though.
      2 - Updated Intel Option ROM. Just kidding, we're not updating that anymore, this motherboard has been out for 2 months already.
      3 - Various menu items have been slightly changed, and some of your settings will be wiped, we won't document which or why, though.

      At least this shit is believable.

    17. Re:NSA failed to halt subprime lending, though. by AK+Marc · · Score: 3, Insightful

      So they are not levying war against the people? Given the government's use of "war" (on drugs, cold, etc.), I would say yes.

      --
      Learn to love Alaska
    18. Re:NSA failed to halt subprime lending, though. by iksbob · · Score: 3, Insightful

      In all seriousness, I was thinking the exact same thing.
      As others here have pointed out, the premise of a BIOS-flashing piece of malware seems tenuous, and even laughable to those familiar with the subject. So why would the NSA make such a claim? One strong possibility in my mind is that they really have produced such a piece of malware (keylogger, packet sniffer, whatever) and are afraid of the public backlash and/or damage claims (my motherboard failed! it must be the NSA!) that would arise when its existence is made clear by a Snowden release. As such, they are desperately trying to spin it off on China before said release can be made.

  2. Expect these claims to be walked back by the_scoots · · Score: 5, Insightful

    Once those pesky real journalists that insist on facts and sources start digging into this, I'd expect the cataclysmic claims will be slowly walked back to something much less sinister, like almost all other claims of thwarted plots.

    1. Re:Expect these claims to be walked back by bluefoxlucid · · Score: 4, Insightful

      It doesn't matter. You have the resounding shout into the ears of the masses, followed by the trickling in of facts. The big emotional movement comes from the resounding shout; unless you're torn down in a huge uproar from an angered populous, the facts will be ignored and shrugged at.

      --
      Support my political activism on Patreon.
  3. Not buying this by Akratist · · Score: 5, Insightful

    China holds a huge amount of our debt. They want us to buy their stuff and to borrow money from them. Why cripple our economy? Or, even worse, why do something like this that will point a finger back to them and stir up the pot against them? (and possibly lad to embargos, and so on)

  4. What a load of bollocks by dido · · Score: 5, Insightful

    If these attackers the NSA supposedly thwarted (the Chinese it is speculated), managed to gain control over large numbers of computers with access enough to damage their firmware, it would make far better sense to keep those machines alive and working for them instead. You could cause far more damage to the US economy by keeping those machines alive and pwn3d than if you simply bricked them. A bricked machine will cost a few hundred dollars to fix. A pwn3d machine is a gift that keeps on giving!

    --
    Qu'on me donne six lignes écrites de la main du plus honnête homme, j'y trouverai de quoi le faire pendre.
  5. We DO need global surveillance. by mha · · Score: 1, Insightful

    I would really like to have a global database accessible to anyone where everyone who actually believes this and other utter nonsense and obvious BS stories is registered. Forum owners and people interacting with such people are then automatically informed by their software whenever they read information from one of those people, and they will have to wear a t-shirt that says "I'm really gullible".

    Basically, I don't mind Facebook, Google or the NSA - I *do* mind that they keep the data to themselves and that they exempt themselves. Put everything in the open - and I mean *every thing*. Ooops, that 2nd sentence went off on a tangent...

  6. Prove it by bradley13 · · Score: 5, Insightful

    Right, sure they did. A BIOS attack of the sort hinted at in this interview is difficult to believe.

    If they worked with computer manufacturers to close some such massive security hole, then they can easily point to the historical vulnerability. The technical community can verify their claims. Failing that, no, I do not believe such an attack ever existed outside the overheated imagination of some technically illiterate NSA bureaucrat.

    In other news, I have a bridge I'd like to sell you.

    --
    Enjoy life! This is not a dress rehearsal.
  7. BIOS Attacks by the+eric+conspiracy · · Score: 5, Insightful

    Have been known for years. The problem is you have to gain admin access to the machine first, so basically you are bricking your own botnet.

    LOL.

  8. Stated more accurately by xednieht · · Score: 3, Insightful

    China has discovered NSA's backdoor into computers, and worked with computer manufacturers to build a much more better and newer back door for NSA.

    --

    Hope is the currency of fools
  9. Yeah, right, NSA, we believe you soooo much (not) by tekrat · · Score: 5, Insightful

    Please. I saw this on 60 Minutes and that entire pandering two-parter on Sunday night was a such a load of bullshit, I could smell it through the TV.

    And this segment of it was the worst, because it made no sense. I mean, they dumbed the story down for Ma and Pa in Pigsknuckle Arkansas, but for anyone with even a hint of technical acumen, it came off as complete tripe.

    Why *exactly* would China want to destroy the global economy? Such a move would hurt them more than us, because they are in a period of crazy growth, and their entire stability *depends* upon that growth or they'd have rioting.

    Secondly, if a nation wanted to destroy us, why use "malware"? A better way would be to use lobbyists to force more deregulation and let us cut our own throats as we've already seen. Our own greedy bastards will happily destroy the global economy if it means 6 more dollars in *their* pockets.

    The whole thing is fishy and smells of NSA desperation to look good to the average american, and paint the Chinese and Edward Snowden as bad guys we need to be afraid of so that the NSA can "protect" us, by of course, stripping us of all our rights.

    --
    If telephones are outlawed, then only outlaws will have telephones.
  10. Prove it by gman003 · · Score: 3, Insightful

    This doesn't pass the sniff test. What would China gain by *destroying* our economy?

    Sure, China planting surveillance software on every computer, I can believe that. But bricking all the computers in the US doesn't make sense as an espionage move, it doesn't make sense as an economic move (do you think anyone would trust Chinese-made computers when rebuilding?), it doesn't make sense as a propaganda move. It might make sense as a military move as a prelude to invasion, but a) China doesn't want that, b) China probably couldn't do it if they wanted to, and c) even if not fired, the risks of such a weapon being uncovered outweighs any benefit.

    So it doesn't seem like something China would do. So who could it be? Even the NSA is explicitly calling it a nation-state, so it's not a terrorist group like al-Qaeda. If it's a nation-state, it has to be one that thinks (correctly or not) that they can beat the US when it is inevitably discovered (either before or after the attack). Russia's on that list, but I don't see how they would benefit except, again, as a pre-invasion attack, and our relations aren't that bad yet. North Korea might be dumb enough to think they can get away with it, but for the same reasons they probably don't have the capabilities of developing an attack like this. Iran is probably smart enough not to provoke the US with a direct attack, but maybe I'm wrong, or maybe they thought framing China would work.

    Honestly, if someone in the Chinese government got on TV and said "yeah, we made that as a training exercise for defense drills, how the hell did you guys find it in the wild?", I'd believe them more than I'm believing CBS/NSA right now, because that at least makes sense with all the other information.

    Especially since it's REAL FUCKING CONVENIENT for the NSA to suddenly have a major "victory" when they're being revealed as basically a bunch of puppy-kicking freedom-hating fascists.

  11. Re:Piss-poor reporting by Anonymous Coward · · Score: 5, Insightful

    From your link:

    Matt Blaze, a computer and information sciences professor at the University of Pennsylvania, said that BIOS could be overwritten by malware, bricking an unsuspecting computer. But the vagueness of the description of the “BIOS Plot” made him suspicious.

    “It would take significant resources – and an extraordinary bit of co-ordination and luck – to actually deploy malware that could do this at scale,” Blaze said.

    “And it's not clear how you'd ‘thwart’ such a scheme if you found out about it if you were NSA, since it's basically a combination of a large number of vulnerabilities spread among a zillion computers rather than one big problem that can be fixed with a single patch.”

    The lack of specificity made cybersecurity expert Robert David Graham dubious that the plot NSA claimed to discover matched the one it described on TV. “All they are doing is repeating what Wikipedia says about BIOS,” Graham blogged, “acting as techie talk layered onto the discussion to make it believable, much like how Star Trek episodes talk about warp cores and Jeffries Tubes.”

  12. Somebody is playing stupid so hard... by tibit · · Score: 4, Insightful

    There's this moment when you're acting out when you cross from plausible belief to total, in-your-face disbelief. Does NSA seriously imply that such an attack would have lasting consequences? Do they really think that there wouldn't be many BIOS recovery solutions popping up left, right and center literally within hours? My bet is that within a week there'd be a thriving BIOS recovery business going on all around us, and the damage would be well contained in spite of whatever bullshit the clueless media would be spewing around.

    --
    A successful API design takes a mixture of software design and pedagogy.
  13. Snowden claims... by Charliemopps · · Score: 3, Insightful

    Edward Snowden claims to have uncovered a plot to subvert our constitutional rights by a super secret organization. Both claims are far fetched... which do we have more proof of?

  14. stopping an attempt should not be the goal by dAzED1 · · Score: 3, Insightful

    a better response than my previous...

    If such a virus was found that affected a large portion of the computers out there. If that is so, stopping a single virus deployment attempt is worthless; the virus still exists, and more importantly the vulnerability still exists. If they are being truthful in any way, then they have done absolutely nothing useful. As you say, where's the CVE? Where's the details? Without details this is useless.

    With a terrorist attack or something, "trust us, it happened!" can sortof work...I guess. For this though - it's useless without details. More, without details - we're forced to believe that the NSA is just making crap up. Did they think about getting a person with any sort of compsci background to help the marketing/PR at NSA person come up with a valid "threat" that was being stopped? In theory there should be one or two there....

  15. Saddam pretended to have WMD to trick Iran by drnb · · Score: 3, Insightful

    Lies! Iraq had WMDs! Didn't you see the 3D renderings of the mobile port-potties that Saddam had?!?

    How does the fact that the US government lied tell us whether Saddam had or did not have WMD? It doesn't. It merely shows that the US gov't did not know but wanted to sell the war to the public. The truth is Saddam worked to maintain the IMPRESSION that he had WMD, he was scared of Iran and thought the fear of WMD could keep them at bay. He was afraid to admit he no longer had any. He explained it all to his FBI interrogator. It was a proper humane interrogation where the interrogator builds confidence and trust and uses psychology to persuade. A documentary was made. Its often cited as an example that "enhanced" interrogations are not needed.

    1. Re:Saddam pretended to have WMD to trick Iran by drnb · · Score: 3, Insightful

      How does the fact that the US government lied tell us whether Saddam had or did not have WMD?

      Simple: various intelligence agencies warned that Chalabi was lying and the Bush Administration propagated the lie. That's how we know that the lies meant Saddam didn't have WMDs. Or did you not hear the memo that he fabricated his supposed evidence?

      You need to seriously reexamine your logic. The fact that the US lied or was lied to does *not* indicate that Saddam was WMD free. There were people lying and guessing on both the pro and anti WMD sides, none of this lying or guesswork is evidence of anything. Only boots on the ground by outsiders could prove things one way or the other. Ideally that would have been UN weapons inspectors receiving full cooperation from the Iraqi government. Regrettably Saddam didn't like that plan.

      "After several months, Saddam started to talk. There were no longer weapons of mass destruction in Iraq, he said, although the capability to build them remained. But Saddam said he kept up the ruse that those weapons still existed to preserve his power and protect Iraq against Iran, which Saddam viewed as his country’s biggest threat. Not even senior leaders within his government knew that there weren’t any weapons, Piro said."
      http://www.phillyburbs.com/news/local/the_intelligencer_news/fbi-agent-saddam-interrogation-was-unique-historic-opportunity/article_6306f1c9-b9c0-5fc7-b4ff-398cf04ad103.html

  16. Re:Only boots on the ground answer the WMD questio by Alomex · · Score: 4, Insightful

    Our governments certainly lied but they did not know what Saddam had. Not until there were US/UK boots on the ground did we really know one way or the other.

    Sorry, but no. Many other foreign countries had a look at the evidence and they voted "no WMD". Only US lapdogs went along (coalition of the willing), everyone else took a pass. So people were able to tell "one way or another".

  17. Re: URL: #badBIOS by dirkmitt · · Score: 3, Insightful

    You have suggested we look at the hash-tag #badBIOS , to see the system in action, that deploys PC firmware updates via Windows. This is one of the several articles written on the Web about this, all from the same guy, who goes by the name "Ruiu": Suggested Link What I find the most dubious about all this, is the ability "to transmit small amounts of network data with other infected machines even when their power cords and Ethernet cables were unplugged and their Wi-Fi and Bluetooth cards were removed." Also note, "(badBIOS) has the ability to use high-frequency transmissions passed between computer speakers and microphones to bridge airgaps." Can I be forgiven for not taking such claims seriously? To the best of my own knowledge, (1) Actual BIOS updates are infrequent, not a part of any routine workflow. (2) Even though virus-writers can use them to cripple computers - via a running O/S - SysAdmins can't use them unless they shut down the computer first, precisely because they do not work as described in this article. (3) Attempts are frequently made to bypass Protected Memory on the O/S, to result in viruses gaining access to all the hardware. But this cannot - presently - be used to produce a changed BIOS which works normally. (4) Instead of using floppy disks, we use USB sticks today. We put a file onto that USB drive, which has the filename extension .ROM . It stands for 'a ROM Image'. And because some advanced File Systems require than special drivers be loaded, even in this day and age we format those USB sticks with FAT32, just in case. (5) It's considered gauche, if there is even more than one .ROM File on the stick, even though technically, the BIOS itself, booted into admin mode, displays the .ROM Files in a list, for the user to choose from.