ICT Security-Sécurité PC et Internet

L'Agence nationale de sécurité américaine (NSA) entraîne ses hackers au combat cybernétique, d'après des documents étudiés par Der Spiegel.

Learn more:

- http://www.scoop.it/t/securite-pc-et-internet/?tag=Quantum

- http://www.scoop.it/t/securite-pc-et-internet/?tag=cyberwar

- http://www.scoop.it/t/securite-pc-et-internet/?tag=NSA

- http://www.scoop.it/t/securite-pc-et-internet/?tag=TAO

Leaked documents indicate that the NSA was in North Korean systems but didn't warn Sony about the attack, covertly uses innocent victims’ infected PCs when hijacking botnets, as well as secretly redirecting blame to scapegoats and tapping into 'unwitting data mules' to pass along exfiltrated information.

Learn more:

- http://www.scoop.it/t/securite-pc-et-internet/?tag=SONY

- http://www.scoop.it/t/securite-pc-et-internet/?tag=cyberwar

- http://www.scoop.it/t/securite-pc-et-internet/?tag=NSA

- http://www.scoop.it/t/securite-pc-et-internet/?tag=TAO

De nouveaux documents d’Edward Snowden montrent la stratégie offensive de l’agence secrète dont le but final est clairement indiqué : obtenir la suprématie du cyberespace. Et ça fait peur.

Learn more:

- http://www.scoop.it/t/securite-pc-et-internet/?tag=cyberwar

- http://www.scoop.it/t/securite-pc-et-internet/?tag=NSA

- http://www.scoop.it/t/securite-pc-et-internet/?tag=TAO

"Heartbleed" ist eine der größten Sicherheitslücken in der Geschichte des Internets - und der US-Geheimdienst NSA hat diese offenbar ausgenutzt. Laut Nachrichtenagentur Bloomberg soll der US-Geheimdienst schon lange davon gewusst haben.

Learn more:

• http://www.scoop.it/t/securite-pc-et-internet/?tag=Heartbleed

The surveillance system is capable of recording “100 percent” of calls in at least one foreign country.

The National Security Agency has built a surveillance system capable of recording “100 percent” of a foreign country’s telephone calls, enabling the agency to rewind and review conversations as long as a month after they take place, according to people with direct knowledge of the effort and documents supplied by former contractor Edward Snowden.

A senior manager for the program compares it to a time machine — one that can replay the voices from any call without requiring that a person be identified in advance for surveillance.

We already knew that the NSA has weaponized the internet, enabling them to "shoot" exploits at anyone they desire. But the Edward Snowden slides and story published yesterday convey a wealth of new detailed information about the NSA's technology and its limitations.

And that’s the bottom line with the NSA’s QUANTUM program. The NSA does not have a monopoly on the technology, and their widespread use acts as implicit permission to others, both nation-state and criminal.

Victims? More like SCAPEGOATS

The NSA quietly commandeered a botnet targeting US Defence agencies to attack other victims including Chinese and Vietnamese dissidents, Snowden documents reveal.

The allegation is among the latest in a cache of revelations dropped by Der Spiegel that revealed more about the spy agency.

The "Boxingrumble" botnet was detected targeting the Defence Department's Nonsecure Internet Protocol Router Network prompting NSA bods to redirect the attack to a server operated by the Tailored Access Operations unit.

A DNS spoofing attack tricked the botnet into treating the spies as trusted command and control agents. The NSA then used the bot's hooks into other victims to foist its own custom malware.

Learn more:

- http://www.scoop.it/t/securite-pc-et-internet/?tag=Quantum

- http://www.scoop.it/t/securite-pc-et-internet/?tag=cyberwar

- http://www.scoop.it/t/securite-pc-et-internet/?tag=NSA

- http://www.scoop.it/t/securite-pc-et-internet/?tag=TAO

In addition to having its own digital arsenal, the National Security Agency also hijacks and repurposes third-party malware.

Learn more:

- http://www.scoop.it/t/securite-pc-et-internet/?tag=Quantum

- http://www.scoop.it/t/securite-pc-et-internet/?tag=cyberwar

- http://www.scoop.it/t/securite-pc-et-internet/?tag=NSA

- http://www.scoop.it/t/securite-pc-et-internet/?tag=TAO

Wieso waren sich die USA so sicher, dass Nordkorea hinter dem Sony-Hack steckt? Einem Bericht der "New York Times" zufolge lag es unter anderem an eigenen Online-Attacken. Die NSA soll schon seit 2010 Zugriff auf nordkoreanische Computer haben.

Learn more:

- http://www.scoop.it/t/securite-pc-et-internet/?tag=SONY

- http://www.scoop.it/t/securite-pc-et-internet/?tag=cyberwar

- http://www.scoop.it/t/securite-pc-et-internet/?tag=NSA

- http://www.scoop.it/t/securite-pc-et-internet/?tag=TAO

The NSA denied a report claiming it was aware of and even exploited the "Heartbleed" online security flaw to gather critical intelligence.

Learn more:

• http://www.scoop.it/t/securite-pc-et-internet/?tag=Heartbleed

The U.S. National Security Agency knew for at least two years about a flaw in the way that many websites send sensitive information, now dubbed the Heartbleed bug, and regularly used it to gather critical intelligence, two people familiar with the matter said.

The NSA’s decision to keep the bug secret in pursuit of national security interests threatens to renew the rancorous debate over the role of the government’s top computer experts.

Learn more:

• http://www.scoop.it/t/securite-pc-et-internet/?tag=Heartbleed
  

In a letter to Congress released on Tuesday, the US government confirmed what we all knew (or at least suspected) – the National Security Agency has conducted warrantless searches on Americans' pri...

Former CIA contractor Edward Snowden has alleged that NSAs surveillance is even more widespread than first thought.

The latest documents released by Snowden, first published on Glenn Greenwald's new Interceptwebsite, suggest that the NSA's approach to monitoring targets' computers using eavesdropping malware has been on a near industrial scale, rather than carefully targeted.

Amongst the many tools used to carry out the targeted attacks - via compromised routers or Facebook - is an automated infection application known as ‘TURBINE' that can scale to millions of infection attempts a day.

Spy tools, whether designed by intelligence agencies, cyber crooks or internet creeps, can turn your camera on without illuminating the indicator light. Online tutorials even instruct neophyte hackers on how to hijack your webcam. Fortunately, WIRED is here with a solution.