NYT: NSA Put 100,000 Radio Pathway "Backdoors" In PCs

retroworks writes "The New York Times has an interesting story on how NSA put transmitters into the USB input devices of PCs, allowing computers unplugged from the Internet to still be monitored, via radio, from up to 8 miles away. The article mainly reports NSA's use of the technology to monitor Chinese military, and minor headline reads 'No Domestic Use Seen.' The source of the data was evidently the leak from Edward J. Snowden."

Where are they?

[RMH101]

Genuine question - where are these devices? Has any physical evidence of them been detected? Has anyone found one? I'm not sceptical that they did it, I think it's entirely possible. I'm just curious if there's any physical evidence that's been found yet...?

Re:Where are they?

[sking]

According to TFA, a tiny transceiver can be built into the plastic plug base of a USB cord. Of course, one has not been spotted in the wild, but it sounds theoretically possible.

Re:Where are they?

[ledow]

I agree - however, there is the question of "who did they use them on?" and also that they were basically DESIGNED not to be detected.

Most people who they targeted probably were arrested or they never even thought they were a target. In that case they can recover their hardware.

The number of devices compromised is likely to be very small as a percentage of the devices out there. Almost certainly neither you or I have one of these devices in our kit. If we did have, how often have you popped open every keyboard/mouse/usb stick you own to make sure there's not something else in there that wasn't supposed to be?

And if they are in collusion with even a single manufacturer to produce a compromised device, then you may never know about the devices hidden functions until you do a chip-analysis of everything inside the device (probably involving decapping and analysing the whole thing which can take years and decades of expertise).

As such, it's unlikely you will ever see one, even with everyone on the Internet looking. That's also what I would expect if they were doing their job properly (or else these things would be discovered quickly and be useless to them).

Much more importantly - if this is true, and we even if we start to use only trusted hardware, this is just more reason to have more "open" machines.

Who knows what's inside a chip on your particular computer, even if it looks very similar to a mass-market item, if they could have got their hands on it and/or been the ones supplying it to you?

Re:Where are they?

[SuricouRaven]

" mainly because a simple frequency scanner would allow one to detect the presence of transmissions by the device"

Burst transmission. Buffer data for days, then send it all in a burst of under a minute. Nothing to detect unless the counterintelligence people are monitoring continually or get very lucky. It's old tech, dating back to the pre-IC days. Bugs back then did it by recording onto a magnetic tape. When the tape reached the end it turned on the transmitter and re-wound at high speed. The listeners then just had to play it back slowed-down and backwards to recover the original audio.

Re:Where are they?

[AHuxley]

The device as a layer of physical hardware in a USB device has been posted as a pic as part of the COTTONMOUTH I and II effort.
http://www.dailytech.com/Tax+and+Spy+How+the+NSA+Can+Hack+Any+American+Stores+Data+15+Years/article34010.htm (scroll down for the slide)
What it sends out to?
The usual new spy "rocks" or some other "network"
http://rt.com/usa/spy-rocks-lockheed-usa-771/
http://www.theguardian.com/world/2012/jan/19/fake-rock-plot-spy-russians

Re:Where are they?

[mdragan]

This devices are listed in the leaked "NSA Toolbox Catalog" document, that was reported in this Spiegel article:
http://www.spiegel.de/international/world/catalog-reveals-nsa-has-back-doors-for-numerous-devices-a-940994.html

Some pictures:
Cottonmouth-I, USB spying device
http://www.spiegel.de/static/happ/netzwelt/2014/na/v1/pub/img/USB/S3223_COTTONMOUTH-I.jpg
Cottonmouth-II, USB spying device
http://www.spiegel.de/static/happ/netzwelt/2014/na/v1/pub/img/USB/S3223_COTTONMOUTH-II.jpg
Cottonmouth-III, USB spying device
http://www.spiegel.de/static/happ/netzwelt/2014/na/v1/pub/img/USB/S3223_COTTONMOUTH-III.jpg
Firewalk, ethernet spying device
http://www.spiegel.de/static/happ/netzwelt/2014/na/v1/pub/img/USB/S3223_FIREWALK.jpg
Ragemaster, monitor cable spying device
http://www.spiegel.de/static/happ/netzwelt/2014/na/v1/pub/img/Bildschirm/S3224_RAGEMASTER.jpg

There's many more in that cataloge, including software and hardware tools and devices.

Re:Where are they?

[TWiTfan]

Pics or it didn't happen

I got a laugh this morning watching NBC's morning show. Some reporter was talking about how some of these devices were embedded in USB cables. "Like these," he said, as he held up a RJ-45 ethernet cable. :-)

wait a second....

[datapharmer]

Ok, so I get the whole whistle blower thing but isn't this what the NSA is supposed to be doing? Spying on Americans is ok to get fussy about but why was this leaked and why doesn't the NYT realize that this actually does set back U.S. intelligence? Are they also going to release a story detailing what the Chinese are doing to spy on US from leaked Chinese intelligence?

Here's what I don't understand

[langelgjm]

The NSA claims that it doesn't steal trade secrets from foreign companies in order to give US businesses a competitive edge. I suspect they are lying, given that it seems like they lie about everything, and that we already have reason to suspect they are lying about this in particular.

However, the implication is that it would be wrong or immoral for them to do so (unlike the French or Chinese who have no such qualms). E.g., in the article, we read:

At that session, Mr. Obama tried to differentiate between conducting surveillance for national security — which the United States argues is legitimate — and conducting it to steal intellectual property.

It goes on to quote Peter Singer saying that for the Chinese, economic advantage is part of national security.

Maybe the Chinese are right. And here's the thing - the U.S. already behaves as if securing economic advantages for our domestic industry is a critical interest. In trade negotiations, we ram our IP laws down the throats of every other country while dangling our domestic market in front of them, all the while never actually liberalizing agriculture at home. I don't understand why it's acceptable for us to promote our domestic businesses through trade diplomacy, but somehow it becomes unacceptable to do so through spying.

In my mind, we are trying to accomplish the same thing as the Chinese, just via a different means (or probably, via both means). Yet we criticize them as if we are somehow morally superior in the way we do it.

Reading comprehension

[the_other_chewey]

I don't doubt the existence of physical bugs, but the claimed scale
of 100k devices in the field isn't supported by the article.

They infected 100k machines with software, most of them remotely.
(In that case, I consider the claimed number to be rather low even.)

It's right there in the first two paragraphs of TFA:

The National Security Agency has implanted software in nearly 100,000 computers around the world that allows the United States to conduct surveillance on those machines and can also create a digital highway for launching cyberattacks.

While most of the software is inserted by gaining access to computer networks, the N.S.A. has increasingly made use of a secret technology that enables it to enter and alter data in computers even if they are not connected to the Internet

The real important question:

Does the hardware have good Linux drivers?

Re:Americans

[geoffrobinson]

News flash: Europeans spy on American companies.