Slashdot Mirror

← Back to Stories (view on slashdot.org)

NYT: NSA Put 100,000 Radio Pathway "Backdoors" In PCs

Posted by Unknown on from the do-you-trust-your-data-center? dept.

retroworks writes "The New York Times has an interesting story on how NSA put transmitters into the USB input devices of PCs, allowing computers unplugged from the Internet to still be monitored, via radio, from up to 8 miles away. The article mainly reports NSA's use of the technology to monitor Chinese military, and minor headline reads 'No Domestic Use Seen.' The source of the data was evidently the leak from Edward J. Snowden."

20 of 324 comments (clear)

  1. Where are they? by RMH101 · · Score: 5, Interesting

    Genuine question - where are these devices? Has any physical evidence of them been detected? Has anyone found one? I'm not sceptical that they did it, I think it's entirely possible. I'm just curious if there's any physical evidence that's been found yet...?

    1. Re:Where are they? by sking · · Score: 5, Informative

      According to TFA, a tiny transceiver can be built into the plastic plug base of a USB cord. Of course, one has not been spotted in the wild, but it sounds theoretically possible.

      --
      The AntiJoey
    2. Re:Where are they? by ledow · · Score: 5, Insightful

      I agree - however, there is the question of "who did they use them on?" and also that they were basically DESIGNED not to be detected.

      Most people who they targeted probably were arrested or they never even thought they were a target. In that case they can recover their hardware.

      The number of devices compromised is likely to be very small as a percentage of the devices out there. Almost certainly neither you or I have one of these devices in our kit. If we did have, how often have you popped open every keyboard/mouse/usb stick you own to make sure there's not something else in there that wasn't supposed to be?

      And if they are in collusion with even a single manufacturer to produce a compromised device, then you may never know about the devices hidden functions until you do a chip-analysis of everything inside the device (probably involving decapping and analysing the whole thing which can take years and decades of expertise).

      As such, it's unlikely you will ever see one, even with everyone on the Internet looking. That's also what I would expect if they were doing their job properly (or else these things would be discovered quickly and be useless to them).

      Much more importantly - if this is true, and we even if we start to use only trusted hardware, this is just more reason to have more "open" machines.

      Who knows what's inside a chip on your particular computer, even if it looks very similar to a mass-market item, if they could have got their hands on it and/or been the ones supplying it to you?

    3. Re:Where are they? by SuricouRaven · · Score: 5, Interesting

      " mainly because a simple frequency scanner would allow one to detect the presence of transmissions by the device"

      Burst transmission. Buffer data for days, then send it all in a burst of under a minute. Nothing to detect unless the counterintelligence people are monitoring continually or get very lucky. It's old tech, dating back to the pre-IC days. Bugs back then did it by recording onto a magnetic tape. When the tape reached the end it turned on the transmitter and re-wound at high speed. The listeners then just had to play it back slowed-down and backwards to recover the original audio.

    4. Re:Where are they? by AHuxley · · Score: 5, Informative

      The device as a layer of physical hardware in a USB device has been posted as a pic as part of the COTTONMOUTH I and II effort.
      http://www.dailytech.com/Tax+and+Spy+How+the+NSA+Can+Hack+Any+American+Stores+Data+15+Years/article34010.htm (scroll down for the slide)
      What it sends out to?
      The usual new spy "rocks" or some other "network"
      http://rt.com/usa/spy-rocks-lockheed-usa-771/
      http://www.theguardian.com/world/2012/jan/19/fake-rock-plot-spy-russians

      --
      Domestic spying is now "Benign Information Gathering"
    5. Re:Where are they? by mdragan · · Score: 5, Informative

      This devices are listed in the leaked "NSA Toolbox Catalog" document, that was reported in this Spiegel article:
      http://www.spiegel.de/international/world/catalog-reveals-nsa-has-back-doors-for-numerous-devices-a-940994.html

      Some pictures:
      Cottonmouth-I, USB spying device
      http://www.spiegel.de/static/happ/netzwelt/2014/na/v1/pub/img/USB/S3223_COTTONMOUTH-I.jpg
      Cottonmouth-II, USB spying device
      http://www.spiegel.de/static/happ/netzwelt/2014/na/v1/pub/img/USB/S3223_COTTONMOUTH-II.jpg
      Cottonmouth-III, USB spying device
      http://www.spiegel.de/static/happ/netzwelt/2014/na/v1/pub/img/USB/S3223_COTTONMOUTH-III.jpg
      Firewalk, ethernet spying device
      http://www.spiegel.de/static/happ/netzwelt/2014/na/v1/pub/img/USB/S3223_FIREWALK.jpg
      Ragemaster, monitor cable spying device
      http://www.spiegel.de/static/happ/netzwelt/2014/na/v1/pub/img/Bildschirm/S3224_RAGEMASTER.jpg

      There's many more in that cataloge, including software and hardware tools and devices.

    6. Re:Where are they? by aeranvar · · Score: 4, Informative
      From TFA:

      1. Tiny transceivers are built into USB plugs and inserted into target computers. Small circuit boards may be placed in the computers themselves.

    7. Re:Where are they? by TWiTfan · · Score: 5, Funny

      Pics or it didn't happen

      I got a laugh this morning watching NBC's morning show. Some reporter was talking about how some of these devices were embedded in USB cables. "Like these," he said, as he held up a RJ-45 ethernet cable. :-)

      --
      The cow says "Moo." The dog says "Woof." The Timothy says "Thanks, valued customer. We appreciate your input."
    8. Re:Where are they? by mspohr · · Score: 4, Informative

      http://www.spiegel.de/international/world/a-941262.html
      Pics of the devices from the NSA catalog.

      --
      I don't read your sig. Why are you reading mine?
    9. Re:Where are they? by Goaway · · Score: 4, Informative

      It is not a transmitter. It is a radar reflector. You illuminate them with a strong radar, and detect the signal they create in turn. That allows them to be small and have long range.

    10. Re:Where are they? by Dishevel · · Score: 4, Insightful
      When you find how a person is spying on you you never remove it or allow the spy to think that you may know about it.

      You use this device to feed disinformation to your enemy.

      You would make an incredibly bad intelligence agent.

      --
      Why is it so hard to only have politicians for a few years, then have them go away?
  2. wait a second.... by datapharmer · · Score: 5, Insightful

    Ok, so I get the whole whistle blower thing but isn't this what the NSA is supposed to be doing? Spying on Americans is ok to get fussy about but why was this leaked and why doesn't the NYT realize that this actually does set back U.S. intelligence? Are they also going to release a story detailing what the Chinese are doing to spy on US from leaked Chinese intelligence?

    --
    Get a web developer
  3. Here's what I don't understand by langelgjm · · Score: 5, Interesting

    The NSA claims that it doesn't steal trade secrets from foreign companies in order to give US businesses a competitive edge. I suspect they are lying, given that it seems like they lie about everything, and that we already have reason to suspect they are lying about this in particular.

    However, the implication is that it would be wrong or immoral for them to do so (unlike the French or Chinese who have no such qualms). E.g., in the article, we read:

    At that session, Mr. Obama tried to differentiate between conducting surveillance for national security — which the United States argues is legitimate — and conducting it to steal intellectual property.

    It goes on to quote Peter Singer saying that for the Chinese, economic advantage is part of national security.

    Maybe the Chinese are right. And here's the thing - the U.S. already behaves as if securing economic advantages for our domestic industry is a critical interest. In trade negotiations, we ram our IP laws down the throats of every other country while dangling our domestic market in front of them, all the while never actually liberalizing agriculture at home. I don't understand why it's acceptable for us to promote our domestic businesses through trade diplomacy, but somehow it becomes unacceptable to do so through spying.

    In my mind, we are trying to accomplish the same thing as the Chinese, just via a different means (or probably, via both means). Yet we criticize them as if we are somehow morally superior in the way we do it.

    --
    "Anyone who [rips a CD] is probably engaging in copyright infringement." - David O. Carson
    1. Re:Here's what I don't understand by FriendlyLurker · · Score: 4, Insightful

      FTFA: Leaked documents show: "the program, code-named Quantum, has also been successful in inserting software into... trade institutions inside the European Union"

      NSA propaganda reply: "Vanee Vines, an agency spokeswoman, said in a statement. 'We do not use foreign intelligence capabilities to steal the trade secrets of foreign companies on behalf of — or give intelligence we collect to — U.S. companies to enhance their international competitiveness or increase their bottom line.' "

      The NSA really go out of their way to deny Industrial espionage, yet they have been caught targeting trade institutions in the EU. Yeah, I also suspect the NSA is lying as usual. From past marketing releases they really try to downplay Industrial Espionage as their motivation, which probably means it is their #1 bread and butter function.

  4. Re:Here's a silly question by ledow · · Score: 4, Insightful

    I'm dubious about the distance but remember that they are TARGETTING their devices.

    As such, they could be on a roof 12km away with a whole array of receivers pointed to within inches of the radio source, and so 12km isn't as insane as it sounds. But it doesn't mean they have a commercially viable tech that others don't.

    Pringles tins on wireless dongles - the range can be immense, and if you are good at antenna design, it can get insane. If you know to within-an-inch where you're supposed to be pointing at and/or can trigger it to do a one-off high-powered transmit to download information (by a similar one-off high-powered transmit from a distance), then it's not all that impossible.

    But you're not going to see another 802.11 wireless revision out of their work. It's a whole different ball game.

  5. Re:Skeptical about the 8 miles by TWX · · Score: 4, Informative

    Well, if a computer is poorly shielded that might not be all that hard. Handheld 5W ham radios can go much more than that distance on 2m, and lower frequencies can go much further. When the weather allows it, a 5W 2m transmission can go dozens or even a hundred miles, and in especially unusual weather conditions a friend of mine in California managed to talk with someone in Hawaii, once.

    So, while inside a case it might not go 20 miles to cover a whole city, I could see being able to reach 8 miles, depending on how intelligently the system was designed in order to reduce the chances of being discovered. The other downside is that strong radio transmissions can interfere with things including speakers, which might make them obvious if not handled correctly.

    --
    Do not look into laser with remaining eye.
  6. Reading comprehension by the_other_chewey · · Score: 5, Informative
    I don't doubt the existence of physical bugs, but the claimed scale
    of 100k devices in the field isn't supported by the article.

    They infected 100k machines with software, most of them remotely.
    (In that case, I consider the claimed number to be rather low even.)

    It's right there in the first two paragraphs of TFA:

    The National Security Agency has implanted software in nearly 100,000 computers around the world that allows the United States to conduct surveillance on those machines and can also create a digital highway for launching cyberattacks.

    While most of the software is inserted by gaining access to computer networks, the N.S.A. has increasingly made use of a secret technology that enables it to enter and alter data in computers even if they are not connected to the Internet

  7. The real important question: by Anonymous Coward · · Score: 5, Funny

    Does the hardware have good Linux drivers?

  8. Americans by Anonymous Coward · · Score: 4, Interesting

    Ok, so I get the whole whistle blower thing but isn't this what the NSA is supposed to be doing? Spying on Americans is ok to get fussy about

    As an European, I don't care if US authorities spy on US citizens, that would be their own internal business. But I find it quite offensive that US spies on Europeans, in order to protect US interests. EU should really stand up and announce that such spying is totally unacceptable, any person caught to be part of such will serve serious jail time, diplomatic immunity or not. And any country caught doing so shall loose all diplomatic privileges inside EU, and have their embassies searched for more evidence (with a proper search warrant, of course).

    I wouldn't mind if EU would also ground all flights and money transfers to/from the US for a few days. It would underline how seriously we view the matter, and make it clear for all Americans that we can no longer trust their government.

    1. Re:Americans by geoffrobinson · · Score: 5, Informative

      News flash: Europeans spy on American companies.

      --
      Except for ending slavery, the Nazis, communism, & securing American independence, war has never solved anything.