NSA Cracked Open Encrypted Networks of Russian Airlines, Al Jazeera, and Other 'High Potential' Targets

An anonymous reader quotes a report from The Intercept: The National Security Agency successfully broke the encryption on a number of "high potential" virtual private networks, including those of media organization Al Jazeera, the Iraqi military and internet service organizations, and a number of airline reservation systems, according to a March 2006 NSA document. The fact that the NSA spied on Al Jazeera's communications was reported by the German newsmagazine Der Spiegel in 2013, but that reporting did not mention that the spying was accomplished through the NSA's compromise of Al Jazeera's VPN. During the Bush administration, high-ranking U.S. officials criticized Al Jazeera, accusing the Qatar-based news organization of having an anti-American bias, including because it broadcasted taped messages from Osama bin Laden.

According to the document, contained in the cache of materials provided by NSA whistleblower Edward Snowden, the NSA also compromised VPNs used by airline reservation systems Iran Air, "Paraguayan SABRE," Russian airline Aeroflot, and "Russian Galileo." Sabre and Galileo are both privately operated, centralized computer systems that facilitate travel transactions like booking airline tickets. Collectively, they are used by hundreds of airlines around the world. In Iraq, the NSA compromised VPNs at the Ministries of Defense and the Interior; the Ministry of Defense had been established by the U.S. in 2004 after the prior iteration was dissolved. Exploitation against the ministries' VPNs appears to have occurred at roughly the same time as a broader "all-out campaign to penetrate Iraqi networks," described by an NSA staffer in 2005.

Well, you know what they say...

We have it all.
Q

Re:Well, you know what they say...

Oh, yay. Time to LARP

Good

That's what they exist to do.

Re:Good

Good we hack the Russians, Bad the Russians hack us.

Got it.

You DO know we are not at war with them, right?

I think the word is, Hypocrite

Re:Good

Where have you been since 1945?

Re:Good

All is well, until you spy in my backyard.

Re: Good

We have been, are, and always be at war with Russia in one form or another

Re: Good

[OtisSnerd]

We have been, are, and always be at war with Russia in one form or another

"We've always been at war with Eastasia."

Re:Good

[AHuxley]

Thats nice AC. Until the same powerful methods walk out. Then get sold to anyone with cash.
Then get given to other nations due to share faith, split loyalty.
End up in a police collection product?
The everyone has decryption and all internet use is weakened.
Better to work on the best encryption and make encryption great again.

Re:Good

Where have you been since 1989?

Re:Good

Good we hack the Russians, Bad the Russians hack us.

Got it.

You DO know we are not at war with them, right?

I think the word is, Hypocrite

We were attacked blatantly by an organized campaign of cyber warfare to manipulate our elections. The fact that the congress didn't declare war, doesn't change the fact that it was an act of war. I think congress declaring a cyber war would have been a valid response, though you'd want to focus methods that expose corruption in Russia probably, rather than what Russia did which was anything they could to stir chaos.

Now you could argue that escalating it is a bad idea, but there is only one idea worse, that is being attacked and smiling as if it never happened. Of course right now Russia is less of a problem than the disaster in the white house, but then again logically the only explanation is he is a Russian asset of some type, likely because of money, but I wouldn't rule out money laundering. Hell I wouldn't rule out the pee tape.

Re: Good

There was peace between 1989 when the Berlin Wall fell and 2000 when Putin became president.

Re:Good

I can’t figure out if you’re stupid or just gullible. Maybe both, the koolaid you’re gulping must have caused already brain damage.

Re: Good

There was no "peace", the war was being fought in Moscow back then. Then Russia threw the warriors out of its territory.

Seriously, the US has been fighting Russia ever since the Socialist Revolution in 1917.

Out of fear of its power elites that "Communism" may infiltrate the US.

Read up on the anti-workers measures before the war, and on the emergence of the CIA and the FBI.

Re:Good

They thrive with impovering everyone with bad security, until the Final Blowup.

Re: Good

[BlueStrat]

Out of fear of its power

No, out of quite-justified fear of what Communists always do. Murder tens of millions of people (mostly their own) After all, Marx himself said that Socialism was the step between Capitalism and Communism.

And before anyone goes off about the Nordic countries, they have been corner-cases firstly because they're only partially Socialist (and mostly Capitalist), and secondly because until relatively recently they've been a very small and culturally/racially/religiously/ideologically homogeneous culture (somewhere around 5-7 million population in Norway I think?). They are now running away from Socialism because of all the foreign refugees who don't share the same culture, ideology, beliefs, or values. Socialism breaks down in a large and very culturally, religiously, and morally diverse society because of the natural tribal nature of humans.

As usual in this world, people are why we can't have nice things.

Strat

Re:Good

[cryptogranny]

Funny thing is here in Russia my friend and I always argue about whether U.S. is a threat. Raised in USSR my friend firmly believes U.S. is solely committed to dominate Russia. "I don't want them told us what to do" - these are his words. I'm not so sure really. Both U.S. and Putin's Russia extends influence by every possible means. Both often break international law and manipulate press. And generally behaves very much the same. My point is that no doubt politics has their agenda and citizens of both countries divides on those who willingly go to play their game as a pawns and those who don't. And as long as you are trying to justify which side is more flawed you are into that game.

Re: Good

No, out of quite-justified fear of what Communists always do.

LOL, and what did US know of that between 1918 and 1922, when they took part in the Western wars against the emerging Soviet rule in Russia? Or, you mean, they acted preemptively, expecting "what Communists always do"?

Maybe, after four years of dirty warfare, Russia had some reason to assume foreign influence attempts in her subsequent history and politics, even if we forget about all the rest "soft" and "hard" power trips of the Western nations?

Murder tens of millions of people

According to inflated, rumor-based literary works by the likes of Solzhenitsyn. Real data point to very different numbers, but they aren't really popular with the Western propaganda.

Socialism breaks down in a large and very culturally, religiously, and morally diverse society because of the natural tribal nature of humans.

Check out the big brains on Strat, having gobbled up the Mein Kampf, he already knows all about the world and the human nature.

Re:Good

[arglebargle_xiv]

Good we hack the Russians, Bad the Russians hack us. Got it. You DO know we are not at war with them, right?

We have always been at war with East^H^H^H^Eurasia.

Re:Good

Likewise the Russian cock you're sucking has lobotomised you.

Sounds like they were doing their job

[93+Escort+Wagon]

More or less, anyway. But I don't understand how they found time for this, what with all the domestic spying they were doing...

Re:Sounds like they were doing their job

Of course they were. Just like Russian shitposters are doing their jobs.

Sane people understand that nation states don't buttfuck each other while singing kumbaya, and therefore, don't hysterically scream for war between nuclear powers based on omnipresent intelligence gathering and meddling.

Re:Sounds like they were doing their job

for the domestic spying, there's not much effort needed... they can just force companies to give them everything by sending them a letter...

Re:Sounds like they were doing their job

Domestic spying consists of reading Facebook and following Twitter feeds. The government doesn't need to waste resources on domestic spying when the information is readily provided by the individual. And anyone who thinks anonymity is a right don't know the difference between privacy and anonymity. Beside if the government really wants some information all they need to do is access the IRS data stores.

And there should be no limits what so ever on International spying. None, nada, zip... The US absorbs more hacking attempts in one day then most countries face in a year. US Military,Industry, Academic, Political, and private citizens are prime targets by both "friends" and "enemies". At least enemies own their actions while those claiming to be friends and allies lie their asses off and then whine like little bitches when the US ignores their petty complaints.

So, a spy agency successfully spied?

<SARCASM>I'm shocked!</SARCASM>

Open your borders

You made your riches by stealing from other countries. Now open your borders, we're coming in!

NSA cracked open networks?

Isn't that what they're supposed to do?

Please tell my why this is news? I expect them to do this. If they didn't, THAT would be news, because it means they are negligent.

Re:NSA cracked open networks?

Just wait until the POTUS directs the DOJ to bring the NSA up on criminal charges for... get this... doing their job

Because... Russia, you know

Re:NSA cracked open networks?

[Megol]

If someone cracks US networks - an act of war.
If the US cracks others networks - ...

Which VPNs?

[duke_cheetah2003]

So, naturally, I want to know which VPN suites they broke into, any particulars on the settings used in such VPNs would also be great.

I would like to improve my own VPN to be.. not what they broke into. No real point in this article if we can't learn how to better secure our own VPNs from it.

Re:Which VPNs?

Meh,
corporate networks are most likely to use MPLS, which is not encrypted. VPN does not mean encryption, it means segregation.

Re: Which VPNs?

[guruevi]

Working with vendors insisting on Cisco gear: outdated protocols (MD5, RC4 and 56-bit DES is standard if you want to use the âaccelerationâ(TM) module.

Re: Which VPNs?

[MightyMartian]

My VPN uses ROT13, you insensitive clod!

Re: Which VPNs?

[amorsen]

I wouldn't be surprised if the NSA has a fairly generic way to take on IPSEC running aggressive mode IKEv1 with group PSK and XAUTH. Because all other options are still a pain...

The various *SWAN implementations of IKE showed us 15(?) years ago how to do secure roadwarrior VPNs with "raw" public key authentication, no insecure CA's or anything involved. No commercial implementation exist. IKEv2 can do cert-for-the-server + PSK-for-the-client, which is half way decent without relying on a full PSK infrastructure that ~noone gets right, but commercial implementations are generally broken or practically impossible to configure to do so.

Which leaves IKEv1 with group PSK and XAUTH as the obvious choice. Unfortunately that can be broken offline, if the attacker can watch an authentication attempt.

Re: Which VPNs?

I triplerot13 that

Re: Which VPNs?

[shellster_dude]

Considering the recent USENIX talk on exploiting most mainstream IKE implementations via a Bleichenbacher attack, this seems most probable. Related paper: https://www.ei.rub.de/media/nd...

Re:Which VPNs?

[AHuxley]

We know of Bullrun https://en.wikipedia.org/wiki/...
The world now knows more now with this news.
The security services know of the origin network, the VPN use in the middle and the destination network.
Is it decryption in the middle or really perfected decrypted collection on both ends?

Re:Which VPNs?

[gweihir]

Probably Cisco. They are thoroughly compromised, both from no skill and from no integrity.

Re: Which VPNs?

Cisco guy here. Don't user depreciated hardware. Just because some companies insist on it does not mean that it's good or representative of all products. Nobody needs it anymore.

The hardware became fast enough a very long time ago, thus why that POS isn't updated anymore.

Re:Which VPNs?

Don't worry. It wasn't the VPN you were using when you uploaded those photos. You know which photos I'm talking about. Not that VPN.

Re: Which VPNs?

[rtb61]

From what I understand of the US government, would not the US government declare those acts to be acts of war and should generate the potential for a first strike nuclear retaliatory attack. Just saying, according to American exceptionlism that would be the common consensus within corporate controlled main stream media, the US congress and Senate and the White house. So what does the US feel is the appropriate response by the targeted countries, where is the press release to define that, just saying.

Re: Which VPNs?

Quadruple ROT13 FTW!

Re: Which VPNs?

[guruevi]

Dude, those configurations are recommended on current gear (IOS 15)

Good

I've no problem with our intelligence agencies spying on everyone else. That's their job. I expect them to spy on Russia, China etc. What pisses me off is when they spy on us.

Re:"Collusion"!!!!

[CajunArson]

As long as you don't like Trump, literally everything else is inconsequential.

Oh, and we all know that Snowden totally heroically defected years before Trump ever even announced his candidacy to expose Trump's evil abuse of power.

Get with the program.

Re:"Collusion"!!!!

Hi Yvan and Alexander ! Still divide and conquer trolling technics?

Hacking Russian airline Aeroflot is very useful...

[ffkom]

... because of all the superior airplane technology and the military secrets that can be sourced from there, right?

Or was this network just hacked to later stage really relevant attacks originating from there, that are then attributed to evil Russians?

Re:"Collusion"!!!!

Because the people who called Snowden a hero had fallen for the Russian agitprop which was implemented by Greenwald and followed up by Assange

If you have not realized they used this tool (Snowden) to intentionally direct people AWAY from voting, then you really are not all that bright

US VPN's?

So can the NSA crack consumer VPN's in the U.S.? like turdVPN..?

Re:US VPN's?

turdVPN is a venture of the NSA, you insensitive clod.

That's their job

[mschuyler]

It's what they are tasked to do.

Re:That's their job

[CanadianMacFan]

Then don't complain when the foreign governments break into CNN, Fox, United Airlines, and other such companies because they are just doing their jobs too.

Re:That's their job

Then don't complain when the foreign governments break into CNN, Fox, United Airlines, and other such companies because they are just doing their jobs too.

Fox? All they'd find are horrific images of wrinkly old cleavage.

Re:That's their job

That's some weird logic you have there.

The principle here is simple: presumably the person who said "that's their job" was commending his country's spy agency for looking out for his and other of his fellow citizen's interests. If a foreign agency, looking out for their own interests, were to succeed in breaking into his country's defences he would have every right to complain because that would oppose his interests. In fact, in that case he could argue that his country's security agencies were failing at their job.

Re:That's their job

I want my government to do their job and I want foreign spy agencies to fail at theirs.

Espionage isn't supposed to be fair. That's why its so sneaky dumbass.

Re:That's their job

But they don't complain about their security agencies failing. They point fingers at the foreigners being evil enemies!!!

Re:Hacking Russian airline Aeroflot is very useful

Oh, oh, Yvan then Alexander and now Mikhail, let's spread FUD, camarade!

How much does it take for NSA to monitor a VPN?

This makes me wonder if what the cost/effort for NSA is to crack a VPN? Is it high enough that somebody there has to justify it?

• It costs something: "Al Jazeera talks to high-value targets, we should expend the effort/resources to crack their VPN"
• It costs little: "Al Jazeera might have interesting conversations, add them to the list"
• It costs nothing (or already paid for): Network sniffer detects VPN encyrpted patterns, adds them to the list to crack, auto-scaling group chews on that list continuously

The pessimist in me fears its the latter, or will be that very soon...

Re:How much does it take for NSA to monitor a VPN?

[AHuxley]

AC nobody knows the math side to this.
Has the NSA found an easy way around all consumer VPN products rather than into VPN encryption
Is the NSA and GCHQ tracking all networks back from a VPN use and just getting in networks beyond their later VPN use?
CIA placing devices that collect before VPN use and the NSA ensures their data flow out of nations?
Some sort of design problem network wide that only the NSA/GCHQ discovered over decades makes all collection very easy?

PRISM could be the way to understand this. Collection is at the origin before any later difficult VPN networking.

Cold news

[manu0601]

Summary miss the method of exploitation: this was done thought LogJam. Note that this is a 12 years old source within Snowden leaks.

Re: Hacking Russian airline Aeroflot is very usefu

If you compromise state carrier airline booking systems you then know who's travelling where.

So, you suspect General Whackovich is meeting with military suppliers somewhere and you then confirm he flew first class on that day to the same city a bunch of the suppliers flew to as well.

Etc etc

Its very handy to know peoples travel arrangements.

Even better if General Whackovich travelled with a hot 20 year old blonde. Be a real shame if the wife was to find out about that, huh comrade ?

Misinformation

Cracking of encryption is generally done via special circuitry on chips. But in order to mask this pervasive technique, and to also cover any data transfers involved, there is usually some "virus" installed at the "hacker" level. But the decryption at chip level would work regardless. Keyboard chips are a favorite.

It took five years to disclose this!!!!

They were hacking journalists VPNs and they took 5 years to disclose this.
The choices the journalists with this information are making on it's disclosure are very strange, to say the least.

captcha: loyalty

Re: Hacking Russian airline Aeroflot is very usefu

you then know who's travelling where.

You must be quite the idiot if you think General Whackovich travels on Aeroflot aircraft. The general has his own Tu-154 with a crew of hot blondes, and that's what he's flying with.

Just like his U.S. counterpart, Gen. "Buck" Turgidson.

Saudi Arabia

[CaffeinatedBacon]

U.S. officials criticized Al Jazeera, accusing the Qatar-based news organization of having an anti-American bias, including because it broadcasted taped messages from Osama bin Laden.

So Qatar is the badguy because they broadcast messages, but Saudi Arabia is on our side because actually causing 911 is OK.
Good to know, funding terrorists and killing thousands of Americans is not as bad as gloating about it afterwards.

Re:Saudi Arabia

Did you every hear what Donald Trump says when he is giving a speech?
".... Fake News...."
There is actually a policy in USA that only fake news can be broadcast in the country.
If the news cannot be controlled for the type of news reported then they will be off-air.
Same as other countries like China, North Korea, Iran, Saudi Arabia, etc....