Slashdot Mirror

← Back to Stories (view on slashdot.org)

The NSA Leak Is Real, Snowden Documents Confirm (theintercept.com)

Posted by msmash on from the boom dept.

Sam Biddle, reporting for The Intercept: On Monday, A hacking group calling itself the "ShadowBrokers" announced an auction for what it claimed were "cyber weapons" made by the NSA. Based on never-before-published documents provided by the whistleblower Edward Snowden, The Intercept can confirm that the arsenal contains authentic NSA software, part of a powerful constellation of tools used to covertly infect computers worldwide. The provenance of the code has been a matter of heated debate this week among cybersecurity experts, and while it remains unclear how the software leaked, one thing is now beyond speculation: The malware is covered with the NSA's virtual fingerprints and clearly originates from the agency. The evidence that ties the ShadowBrokers dump to the NSA comes in an agency manual for implanting malware, classified top secret, provided by Snowden, and not previously available to the public. The draft manual instructs NSA operators to track their use of one malware program using a specific 16-character string, "ace02468bdf13579." That exact same string appears throughout the ShadowBrokers leak in code associated with the same program, SECONDDATE. SECONDDATE plays a specialized role inside a complex global system built by the U.S. government to infect and monitor what one document estimated to be millions of computers around the world. Its release by ShadowBrokers, alongside dozens of other malicious tools, marks the first time any full copies of the NSA's offensive software have been available to the public, providing a glimpse at how an elaborate system outlined in the Snowden documents looks when deployed in the real world, as well as concrete evidence that NSA hackers don't always have the last word when it comes to computer exploitation.

4 of 146 comments (clear)

  1. Witty comment here... by wbr1 · · Score: 5, Insightful

    The real interesting thing will be when detection tools for this malware are created. Then we will see how many people -without warrants- the NSA is using this on.

    --
    Silence is a state of mime.
  2. Re:Censorship? by b0bby · · Score: 5, Informative

    What kind of major outlets are you looking for?

    http://abcnews.go.com/Internat...

    https://www.washingtonpost.com...

    http://www.wsj.com/articles/gr...

    http://www.npr.org/sections/th...

    Hell, even the NY Daily News covered it:

    http://www.nydailynews.com/new...

  3. Re:code by imatter · · Score: 5, Funny

    So the combination is... A, C, E, zero, two, four, six, eight, B, D, F, one, three, five, seven, nine. That's the stupidest combination I've ever heard in my life! That's the kind of thing an idiot would have on his luggage!

  4. Re:Censorship? by clubby · · Score: 5, Insightful

    At this point, anything broadly considered to be a "major US news outlet" has, at best, a tangential relationship with "news." CNN is hopelessly clueless and out of touch, while Fox & MSNBC are the propaganda arms of their respective parties. The NYT sat on a vitally important story, clearly in the public interest, in order to help GWB's re-election campaign. These groups are marketing organizations, who sometimes publish news as a means of promoting their brand.

    On the plus side, a major US journalism outlet, The Intercept, is on it.