BEST OF THE WEB

More revelations of the NSA’s capacity to get into IT networks

Yesterday we told you about a report in Germany’s Der Spiegel about the ability of the U.S. National Security Agency to plant spyware in IT equipment headed for people the agency targets.

Today we’ll delve a little deeper into a second article, which goes into more detail about the tools the NSA has that employees can order for intercepting data from unsuspecting users.

They include FEEDTROUGH, an application that allegedly can get into Juniper Network firewalls so NSA code can get into data centres; DEITYBOUNCE, which gets into the BIOS of certain Dell PowerEdge servers; IRONCHEF, which gets into the BIOS of certain Hewlett-Packard 360DL G5 servers; and GINSU, which helps get into Windows desktops up to Vista for setting up wireless remote control.
Ars Technica has taken a deeper look into the documents and found NIGHTSTAND, a Wi-Fi hacking system that can break into networks up to eight miles away.


As both articles point out, there is no evidence IT companies are working with the NSA to enable these exploits.
But as I have said elsewhere, these and other reports make it clear that security will be the number one issue in 2014.

In some ways these revelations should be no surprise: Every coder ought to know the weaknesses of an application, ditto every manufacturer. One question is if the NSA has these capabilities, do other governments and criminal organizations?
Read the Spiegel article here

Read the Ars Technica article here

Howard Solomon
Howard Solomon
Currently a freelance writer, I'm the former editor of ITWorldCanada.com and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including ITBusiness.ca and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times. I can be reached at hsolomon [@] soloreporter.com

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.


Jim Love, Chief Content Officer, IT World Canada

Featured Download

ITW in your inbox

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

More Best of The Web