Feeds

* Posts by WatAWorld

702 posts • joined 24 Feb 2012

Page:

Miscreants leak banking baddie's secret source

WatAWorld
Bronze badge

Where are GCHQ, the NSA and CSIS on providing espionage tools to terrorists?

I see CSIS in an article like this I expect it to be the Canadian Security Intelligence Service (annual budget, $513,007,839 (2013–14)) has chocked up a victory for our side.

Instead the CSIS Danish security consultancy probably not even 1% of that size.

The source code to these trojans all represent risks to national security far greater and far more real than any risks claimed for the revelations of Snowden.

The source code to these trojans all represent far greater and far more real gifts to terrorist organizations than anything claimed for what Snowden revealed.

The source code can be used to raise funds for terrorism.

The source code can be used by terrorists to design trojans for gaining secret, top secret and compartmentalized information.

So why, how, when GCHQ, the NSA and CSIS have not completed job #1 their "War on Islam"*, er uh correction, "War on Terrorism", how do they find the time and money to spy on peaceful: trade negotiators, lawyers consulting on trade negotiations, local grass roots politicians, business leaders, academics and regular people's emails and web visits, plus have the additional free time to monitor teenage daughters sexting?

Focus people. Think. Threats to the common person's computer security are national security threats.

Sure you like to hide behind the commercial crooks, use some of the same tools, and hide your malware traffic in with their malware traffic.

GCHQ, NSA and CSIS, with your lax attitude on trojans and spyware for commercial theft you're inadvertently aiding terrorists; you're standing by and watching people give espionage tools to terrorists.

Obviously many of the spyware techies of those agencies read this website. Please lobby your bosses on this issue.

You and us, we're on the same side. I realize this is probably just an oversight on your bosses' part, not seeing the potential these tools, thinking they're only a base criminal threat and not realizing their a gift to terrorists. Please help your bosses see the reality.

2
2

FAKE Google web SSL certificates tip-toe out from Indian authorities

WatAWorld
Bronze badge

Difficult to solve does not equal impossible to solve

Difficult to solve does not equal impossible to solve.

Merkel was on to something with her idea to keep EU internet traffic within the non-Five-Eyes part of the EU -- just like most companies do already. Keep the traffic internal when you can.

Why trust so many? Why not have the option to only trust the part of the web located in countries where you have human rights and the protection of the law?

Sure it isn't fool proof, but nothing is. You own a car. It can be hacked. You still choose to own it, you're just careful where you park it.

1
0
WatAWorld
Bronze badge

must be something they learned form us during the British raj.

India acting like the USA, UK, Canada, Australia and NZ?

Oh yeah, must be something they learned form us during the British raj.

I mean really, its out in the open, probably most countries are doing this sort of thing.

And if criminals are doing it, well, how many criminals kill people using signature based drone attacks?

Let's face it: Our internet is full of security holes because those who run our countries want it full of security holes.

4
0

YouTube in shock indie music nuke: We all feel a little less worthy today

WatAWorld
Bronze badge

Youtube simply doesn't understand how we find music

This reflects a fundamental misunderstanding of how people use the web:

"and relatively few recordings are so compelling that consumers would leave YouTube if they were not available."

When I search for a song I go where that song is.

If the song is not on Youtube I never go into Youtube so there is no Youtube to leave.

Independent labels could put their music anywhere, so long as google indexes it we'll find it.

3
0

Stopping IT price gouging would risk SOCIALIST DYSTOPIA!

WatAWorld
Bronze badge

Same thing in Canada -- hidden monopolies and anticompetitive agreements

If they were selling in a free market then there would be no urge by Australian consumers to import directly -- and there would be no foreign commercial contracts bar against foreign retailers selling to Australian consumers by mail order.

We have the same problem in Canada -- hidden monopolies and anti-competitive agreements.

Here it doesn't affect computer gear or video disks, but it affects almost all other consumer electronics, automobiles, cosmetics, household chemicals, etc.

And WE CAN EASILY TELL WHEN THESE THINGS ARE IN EFFECT. All I have to is go to Amazon's US site and try to have the thing shipped to Canada. If neither Amazon no any retailer will be ship it here, then there must be an export prohibition.

And since Canada and the US have NAFTA, that export prohibition is not some law, it is a commercial agreement. A manufacturer has told a US retailer he cannot sell to Canadians -- thus ENDING THE FREE MARKET.

1. Lack of competition because of big retail chains.

2. Commercial agreements giving exclusive import rights to one or two companies.

3. Retailers and importers coordinating prices.

4. Manufacturers preventing wholesalers and retailers selling to Canadians.

"The latter two squirmed uncomfortably as they articulated arguments that they charge what the market will bear, as is their right even if it means local punters inexplicably pay twice as much as customers in comparably-wealthy nations."

7
0

Thanks for nothing, OpenSSL, grumbles stonewalled De Raadt

WatAWorld
Bronze badge

45 days is not much time to audit the code of anything meaningful

A month and a half, 45 days, is not much time to audit the code of anything meaningful, let alone think about designing fixes, coding the fixes, doing system testing, and doing regression testing.

6
0
WatAWorld
Bronze badge

Re: What law/legal requirement

But that is the thing, the aforementioned BSD person had tried to do this but was thwarted by secrecy.

1
2
WatAWorld
Bronze badge

Five-eyed vampire squid must be unhappy

Five-eyed vampire squid must be unhappy.

The possible impending need to subvert updates to OpenSSL and LibreSSL.

And at time when there might actually be a few of those so-called "many eyes" looking at this open source code.

1
0

REVEALED: GCHQ's BEYOND TOP SECRET Middle Eastern INTERNET SPY BASE

WatAWorld
Bronze badge

Spying destroys democracy - an act of 'international treason' against democracy.

The people who have most to fear from GCHQ are honest loyal Britons and their loyal allies.

Enemy security agencies and terrorists know they're targets of spying and take precautions, where as our allies do not expect us to spy on them in return for them not spying on us.

That is why the Guardian reports that at G7 conferences GCHQ is successful at spying on everyone but the Russians (and the other 2 five eyes there, US and Canada).

If enemies are encrypting their data who is being spied upon?

To what end are the hundreds and billions of pounds being spent on?

The answer is to fight foreign commercial interests and to fight democratic movements.

Fighting democracy at home and abroad by keeping track of grassroots movements and sabotaging them.

Sabotaging opposition parties.

Why was Tony Blair re-elected so many times? Were the British public that stupid?

Or did the Americans ensure the other parties could not select an effect leader to run against him?

We won't know for 35 years, maybe 100 years.

How does the pond scum at these agencies sleep at night?

Spying on enemy militaries and enemy governments, spying on enemy arms makers, that is their appropriate job -- a good decent job.

But spying on people's political discussions, spying on peaceful political discussion and decent -- that is an act of 'international treason' against democracy.

3
3
WatAWorld
Bronze badge

Re: TRAITORS

The people doing this spying are the traitors.

That is the thing. When those in government and military service put loyalty to unit, division, department or ministry ahead of loyalty to the nation and its people they become the most vile form of traitors.

"these installations cost tens of millions to design and build"

That's tens of millions of dollars spent by the most traitors acting against the interest of the British public.

1
2
WatAWorld
Bronze badge

Good work. Being patriots to your country often involves going against bureaucrats.

Patriots to your country.

The sad thing is that too many in government and military service put loyalty to unit, division, department or ministry ahead of loyalty to the nation and its people.

That makes those officers, soldiers and civil servants traitors against the country and its people.

1
1
WatAWorld
Bronze badge

GCHQ, the NSA, CSEC, in a D-Day scenario they'd be on the side being invaded.

D-Day was launched against our enemies, a bunch of dictatorships that spied on their own civilians and the civilians of their allies.

What GCHQ, NSA, and CSEC are doing is against our own people and against democratic movements.

GCHQ, the NSA, CSEC, in a D-Day scenario they'd be on the side being invaded.

1
3
WatAWorld
Bronze badge

Re: Yawned but found it interesting enough to be the one thing today he commented on

Yawn, old news, but new enough and important enough that it was the article you chose to comment on today.

What gets commented on gets further stories -- even when those comments say "yawn". Kardasians are a prime example.

0
0
WatAWorld
Bronze badge

Re: Why is this a surprise?

<snip>

"AC as I might need a security clearance on my next job!"

Gee, and you posted on websites that publish articles hostile to the bureaucracy.

Your IP address corresponds to an IP address that messaged a forum that was messaged by someone who messaged a forum that Snowden visited.

Your sunk by the very traitors we're all against.

0
0
WatAWorld
Bronze badge

Red Herring Re: Been going on for years....

There is spying on foreign militaries, spying on hostile governments and so on. Yes been going on for years.

But that is a red herring. This is not about that.

This is about the new type of spying we're doing where we capture all traffic, all civilian conversations, it is spying on the process of democracy, spying on peaceful political discussion.

This new type of spying we're doing is incompatible with democracy at home and abroad.

1
0
WatAWorld
Bronze badge

It was new enough news that you took time out of your busy day to comment on it.

It was new enough news that you took time out of your busy day to comment on it.

How many other news articles were that important today?

0
0
WatAWorld
Bronze badge

Re: We have a right to know what is being done, but perhaps a little too much detail?

The people in Oman don't need sophisticated equipment to look out their car windows as they driver past.

This was only secret from us.

0
0
WatAWorld
Bronze badge

Re: Congrats

Jim, this sort of thing is only secret from us taxpayers, our enemies know all about it.

It is kept secret from us because it can be and is used against us, against our democracy, by our own government employees -- government bureaucrats in and out of uniform -- pond scum whose loyalty to their unit trumps any thought of loyalty to the nation and its people.

2
2
WatAWorld
Bronze badge

Re: Now Trident makes sense.

That Saddam had nukes was the excuse given to us.

Blair and Cheney knew Saddam didn't have nukes and the proof is that if he did we wouldn't have invaded without first neutralizing them. And if we'd neutralized them there'd be physical proof they existed.

1
1

Why won't you DIE? IBM's S/360 and its legacy at 50

WatAWorld
Bronze badge

Was IBM ever cheaper?

I've been in IT since the 1970s.

My understanding from the guys who were old timers when I started was the big thing with the 360 was the standardized Op Codes that would remain the same from model to model, with enhancements, but never would an Op Code be withdrawn.

The beauty of IBM s/360 and s/370 was you had model independence. The promise was made, and the promise was kept, that after re-writing your programs in BAL (360's Basic Assembler Language) you'd never have to re-code your assembler programs ever again.

Also the re-locating loader and method of link editing meant you didn't have to re-assemble programs to run them on a different computer. Either they would simply run as it, or they would run after being re-linked. (When I started, linking might take 5 minutes, where re-assembling might take 4 hours, for one program. I seem to recall talk of assemblies taking all day in the 1960s.)

I wasn't there in the 1950s and 60s, but I don't recall any one ever boasting at how 360s or 370s were cheaper than competitors.

IBM products were always the most expensive, easily the most expensive, at least in Canada.

But maybe in the UK it was like that. After all the UK had its own native computer manufacturers that IBM had to squeeze out despite patriotism still being a thing in business at the time.

3
0

USA opposes 'Schengen cloud' Eurocentric routing plan

WatAWorld
Bronze badge

The problem is when you send an EU<>EU email and it goes through a US controlled backbone

The problem is when you send an EU<>EU email and it goes through a US controlled or US monitored backbone or US controlled or US monitored exchange.

Sure there are German and French email companies, but your email has to get to the one you are using and then get to the one the other guy is using.

You could encrypt the entire thing, including headers, but then you'd be "violating the rules" on how separate mail servers are supposed to connect.

Much better to play by the rules and ensure the EU's internet is EU owned, EU controlled and only monitored subject to EU human rights laws -- at least as much as technically possible.

3
0
WatAWorld
Bronze badge

Obama is acting like Putin

Putin breaks the peace and invades Crimea and then acts surprised The West takes actions to defend itself from further invasion by Russia.

Obama spies on the world, denies that non-Americans are humans deserving of human righrts, and then acts surprised when the world takes actions to defend itself from further human rights abuses by the USA.

7
0
WatAWorld
Bronze badge

How Europe routes its traffic is none of the USA's business

I wonder how Bush, er Obama, would react if Europe started insisting that interstate internet traffic pass through Europe.

It is none of the USA's business how Europe connects to the internet provided it follows the standards. And this can be accomplished easily without violating any standards.

Europe isn't advocating anything so drastic, but if Europe wanted to put itself behind an NAT firewall that is none of the USA's business.

11
0

Can you tell a man's intelligence simply by looking at him? Yes

WatAWorld
Bronze badge

Do you like men who are perpetually smiling, the way most white collar women are?

Or do you like men who crack a smile when they talk to you?

In my experience in urban areas in most of Canada and the USA most women go wandering around smiling. They're not smiling at anyone, they're simply smiling pretty much all the time. Generally there is nothing flirtatious about it and being happily married for 20 years with 4 kids doesn't change it.

In rural areas women act more like men, cracking a smile when there is a reason to and straight-faced otherwise.

Women over a certain age, maybe 60, are another exception, usually straight-faced.

And while what I say has probably been true for a couple of decades, I don't pretend that it is some immutable human characteristic that appears at all times for all ages and races and places.

This is the problem with junk science, it extrapolates to an absurd level.

2
0
WatAWorld
Bronze badge

Another reason its junk science

""The subjects were instructed to adopt a neutral, non-smiling expression," the paper details, "and avoid facial cosmetics, jewellery, and other decorations."

Subjects would have had only limited experience seeing women's faces in such a condition, whereas that is the normal condition of men's faces.

In most of urban Canada and the USA, one seldom sees a woman's face. Instead one sees her makeup.

5
1
WatAWorld
Bronze badge

To call the extrapolation invalid is putting it lightly.

More junk "social science" that studies a few dozen undergraduates at one university in one city in one country, over a span of less than 6 months, and makes claims about the characteristics of all of humanity all over the world in perpetuity.

5
3

Assange not running in new Australian election

WatAWorld
Bronze badge

Too many make their first loyalty to a foreign power.

He probably cares more about the interests of Australians than the traitors in Australia's government that aid the NSA in spying on Australian citizens.

A government employee must ask himself one question: Is my first loyalty to my country and its citizens or to some foreign power?

Too many make their first loyalty to a foreign power, which is the definition of a traitor.

0
1
WatAWorld
Bronze badge

Prohibiting eligible people running for election -- a banana republic tactic

Prohibiting eligible people running for election is a banana republic tactic.

And I guess that is sadly what Australia has become, just another banana republic doing what it is told to do by Washington.

0
6

China's CERT blames US for a THIRD of all attacks on Middle Kingdom PCs

WatAWorld
Bronze badge

Re: It's China also counts any PC "compromised" by its own users to get past state control

Whereas here Big Brother lets us surf pretty much as we please, and notes of what we do.

1
0
WatAWorld
Bronze badge

The Chinese are probably right

Let us face it, if you or I were going to illegally hack computers it would be a lot safer to hack computers in a country that our justice system does not cooperate with much.

So China, Russia, Iran, etc.

Their blackhats hack here. Our blackhats hack there. Probably true to a large extent.

Plus the NSA and GCHQ can't simply order workers at ISPs to wire their facilities up for direct or indirect access like they do here.

So there the NSA and GCHQ have to go through all the bother of individually hacking at least key computers and servers in China.

2
0

US saves self from Huawei spying by spying on Huawei spying

WatAWorld
Bronze badge

This explains how Mike Rogers could assure us there would be bugs in Huawei equipment

This explains Mike Rogers, chairman of the US House Intelligence Committee coming to Canada and telling there would be bugs in any Huawei equipment Canada bought, so we should buy from US manufacturers instead.

He knew there'd be bugs alright -- NSA bugs.

Here is what Mike Rogers told Canadians:

http://www.cbc.ca/news/politics/canada-at-risk-from-chinese-firm-u-s-warns-1.1213967

...

"I absolutely would not do it," Rogers said. "The key word there is new secure network; I would not have the faith and confidence."

..

"The Republican congressman from Michigan says ordinary Canadian consumers have every reason to worry about threats to cyber-security.

'This is your personal data. This could be your medical records, your financial records, everything that you hold dear that you think is locked away in a safe place on your computer that goes across these networks and becomes subject to being gathered by the Chinese government.'"

...

"There are bugs, back doors and beaconing going on in Huawei gear," he claims. "We have had lots of reports of that happening.

"I will bet my bottom dollar, as we say in the U.S., that activity is happening in Canada as well."

...

same article:

Ray Boisvert, who until recently was assistant deputy director of intelligence for Canada’s spy agency, told CBC News: "The threat comes down to…can a company that manufactures hardware embed certain codes that would allow them to back-door a lot of information that goes through the network?

"I have seen it hands-on through my own experience. It is true."

He saw it hands on in equipment from US vendors. We now know from Snowden that he and his co-workers at CSEC helped put the bugs there.

Thank you people of Michigan and the USA for giving the world such honest politicians who are dedicated to the public good, NOT.

15
0

Women! You too can be 'cool' and 'fun' if you work in tech!

WatAWorld
Bronze badge

Re: Sexism against men? No way.

"Just as you can not be racist against white people."

Hitler was racist against white people.

Stalin was racist against white people.

People all over the world have racial slurs for white people.

In China the oppressors are Chinese.

In Zimbabwe the oppressors are black.

In a over 50% of Anglo marriages in the USA the oppressor is a woman.

0
1
WatAWorld
Bronze badge

Re: I don't understand

Where will the savings come from.

Women, immigrants, the powers that be want them because the powers that be think they can be paid less. Paying people less, that is where the savings come from.

1
0
WatAWorld
Bronze badge

They think they can drop IT salaries because women don't care about money.

"the lack of women in ICT roles was costing the European Union billions of euros"

Exactly how does that work?

The sexists think they can drop IT salaries because "women don't care about money".

0
0

MH370 airliner MYSTERY: The El Reg Pub/Dinner-party Guide

WatAWorld
Bronze badge

Why are emergency locator beacons so failure prone in water crashes ?

ELT beacons are supposed to work in the event of crashes even if the crash is on water.

So why did they fail in both the AF 422 and the MH 370 case.

And Aviation Herald had a report of another crash on water a month or two ago where it took a few days to find the wreck site, so again an ELT failure with a crash on water.

2
0

IBM: We gave NOTHING to the NSA, stateside or elsewhere

WatAWorld
Bronze badge

How does data get to IBM?

IBM would not have to turn over data from foreign governments, companies and individuals to the NSA if the NSA intercepted that data on its way from overseas to IBM USA or when it traveled between IBM facilities over US owned or US controlled networks.

So even if IBM issued a broad statement and was truthful, the issue still stands that the data is passing through the USA or US controlled networks, and so IBM cannot assure anyone that that data is not being intercepted during that transmission.

Part of the solution is for foreign governments, companies and individuals to keep their data in their own country (or the EU) so their own country's human rights laws and privacy legislation can protect it.

It is not IBM's sole responsibility that its government does not recognize the ordinary citizens of long-time allies as human beings with human rights, but that is how it is. IBM has to live with that fact until it can convince its government that treating the rest of the world's population as untermenschen is bad for business.

0
0
WatAWorld
Bronze badge

Localization apparently actually accomplished and accomplishes quite a bit then.

"Governments should reject short-sighted policies, such as data localization requirements, that do little to improve security but distort markets and lend themselves to protectionist tendencies."

"Do little" he says.

[I added the numbering below.]

"1. IBM has not provided client data to the National Security Agency (NSA) or any other government agency under the program known as PRISM.

2. IBM has not provided client data to the NSA or any other government agency under any surveillance program involving the bulk collection of content or metadata.

3. IBM has not provided client data stored outside the United States to the U.S. government under a national security order, such as a FISA order or a National Security Letter."

Analysis:

1. Denial only covers PRISM.

2. Denial only covers bulk collection.

3. Denial only covers data that was localized to a foreign country.

In other words what US law forces IBM to do is results in a privacy benefit to foreign governments, foreign companies and foreign private citizens who localize their country's data within their own country, or at least localized anywhere but the USA.

Localization apparently actually accomplished and accomplishes quite a bit then.

Probably the only downside of localization is that it hurts the bottom line of large multinational storage and cloud providers.

0
0

Daring danger-drone dives into VOLCANIC eruption – what happens next has to be seen

WatAWorld
Bronze badge

What is Error #2035 ?

What is Error #2035 ?

2
0

Hacking Team snoopware found on US servers

WatAWorld
Bronze badge

I suspect the entire rest of the "Munk School of Global Affairs" is hiding in shame.

I suspect the entire rest of the "Munk School of Global Affairs" is hiding in shame as the rest of U of Toronto laughs and points fingers.

I wonder if Peter Munk will ask to have his name removed.

0
0
WatAWorld
Bronze badge

Re: And so it spreads.

To me, it is only news when a country is doing snooping on all of its own people or all of the people of a long-time alley.

Are these servers big enough for that? I didn't think so.

Uzbekistan, Poland, Mexico, Colombia, Morocco, Thailand, the UAE, Korea* Morocco and Azerbaijan.

It is likely that they are doing normal spying on government and military of military enemies.

Poland is only a new ally (it illegally hosted a torture camp for the USA and joined NATO).

And Mexico and Columbia, well we (at least those of us who follow the news) know Mexico and Columbia have been heavily spied upon by the USA.

0
0
WatAWorld
Bronze badge

The news is actually available in Canada, Citizen Labs just doesn't watch it.

Isn't the official US position that spying on elected leaders, elected and un-elected officials, and regular ordinary people is perfectly acceptable behaviour.

And the US position is that a government doesn't have to obey a foreign government's laws.

So the US can't have a complaint.

It might be illegal, it might be unethical, it might be anti-democratic, it might be a step in Putinizing ones own country, but the USA has led the way in doing it on an unprecedented scale.

"“The extensive and deliberate use of dedicated US hosting companies by foreign countries’ wiretapping activities raises a number of pressing legal and policy concerns,” Citizen Labs says. “These include whether RCS client countries violate US law and longstanding international legal principles on sovereignty and nonintervention through use of this spyware. Moreover, RCS client countries, by exposing wiretap data to US and other jurisdictions, may have violated internal laws governing the safeguarding of wiretapped material.”"

They're completely ignorant of current affairs.

0
0

New FBI boss says cyber crime, not terrorism, is top of Feds' todo list

WatAWorld
Bronze badge

"You must live in fear so that we can feel secure"

"Security has promoted liberty, there's not a tradeoff,"

What about those governments that say to the people of other nations, "You must live in fear so that we can feel secure" ?

Historically, in the Americans, Africa, Asia and Europe, excessively powerful "security services" have been the main big threat to democracy.

Security promotes liberty when that security is tightly focused by publicly known laws that enforce publicly known regulations established by elected legislatures rather than bureaucrats and executives. Hopefully the FBI will go in that direction, but from the article that isn't clear.

0
0
WatAWorld
Bronze badge

On the surface of it, I would say these comments give me some hope.

On the surface of it, I would say these comments give me some hope.

We definitely need law enforcement to help protect our cyber security, and crime is a bigger threat to our lives and liberty than terrorism in both the physical and cyber worlds.

Of course perhaps the biggest or second biggest obstacle is the international nature of much (not all) cyber crime. Will other countries cooperate with the FBI? Will the FBI cooperate with other countries?

Up there with the international nature of much cyber crime is the obstacle that much of it is not illegal in the country from where the attacks are launched -- because it is being done by government employees "just following orders" without regards to morals, ethics or religious principals (like "do unto others as you would have others do unto you").

I doubt the FBI will be able to help protect us from the NSA, GCHQ, CSEC or their Israeli, French, Russian, and Chinese counterparts.

0
0

Q&A: Schneier on trust, NSA spying and the end of US internet hegemony

WatAWorld
Bronze badge

I would rather be spied upon by the Russians and Chinese than USA or UK

I'm in Canada, a dual Canadian/UK citizen.

I'm never going to visit Russia or China. I do not care if I am on their "no fly lists".

Russian and Chinese network spies are not my neighbours. I do not need to worry about them stalking my teenage daughter.

And Russian and Chinese companies do not compete with my employer.

The USA and UK, they export the same sorts of goods and services Canada does. Our corporate secrets are much more valuable to them.

Politically, Canada does much more trade with the USA than it does with China or Russia (and the USA does more trade with Canada than it does with China or Russia or anyone else).

That means the USA has much more motive to spy on our companies than China or Russia do.

9
0

New Flash vuln exploited (again). Adobe posts emergency fix (again)

WatAWorld
Bronze badge

Re: Hangonamo...

Undoubtedly. Which is why big banks and governments mostly run Windows. Windows has been far more thoroughly tested for vulnerabilities than competing PC operating systems including full function open source operating systems for generalized computing.

You don't think a big bank could afford Apple? Of course they could. But banks and governments face the threat of custom written malware targeted just at them. It doesn't matter what malware is out there so much as how difficult it would be to write a new piece of malware.

2
0
WatAWorld
Bronze badge

Re: Nobody is taking this seriously enough.

"Things like this happen for one reason alone: Nobody but Adobe has the Source Code to the Flash player, and therefore nobody but Adobe can search for and repair vulnerabilities."

If what you said was true there would never be vulnerabilities in Linux or Apache.

Open source is no magic bullet.

1
0
WatAWorld
Bronze badge

Re: Chinese State espionage + Flash = Fail

I took it to mean a country with less expertise than the USA, UK and China.

0
0
WatAWorld
Bronze badge

Re: "Your technological terror is insignificant..."

And by definition it isn't terror if the USA or some other national government does it.

It is "shock and awe".

1
0
WatAWorld
Bronze badge

From Fire Eye "this actor has the tradecraft abilities and resources"

Exploits are going to be happening more and more frequently as foreign spy agencies worldwide are forced to emulate what the NSA is doing (spying on friendly nations, their citizens and their companies) in order to maintain their own national security and national interests.

From the Fire Eye blog:

"This threat actor clearly seeks out and compromises websites of organizations related to international security policy, defense topics, and other non-profit sociocultural issues. The actor either maintains persistence on these sites for extended periods of time or is able to re-compromise them periodically.

This actor also has early access to a number of zero-day exploits, including Flash and Java, and deploys a variety of malware families on compromised systems. Based on these and other observations, we conclude that this actor has the tradecraft abilities and resources to remain a credible threat in at least the mid-term."

1
0

Angela Merkel: Let US spies keep their internet. The EU will build its own

WatAWorld
Bronze badge

The US uses Chinese microchips in military equipment including Air Force One.

I totally agree that IP protocols need a huge overhaul and I share you wish that that would happen.

I suspect she is really suggesting something more minor, at least for Phases I and II.

- ISPs with no board of US citizens liaising to process surveillance requests, as is mandated by the USA for undersea cable connections in Asia (the connections not routed through the UK).

- Hopefully a requirement of EU citizenship (or only non-UK EU citizenship) for technicians working on the EU's internet backbone.

- Either routing tables that mandate sticking to intra-EU pathways where possible, or an NAT router between the non-UK EU and the rest of the world.

The US uses Chinese microchips in military equipment including Air Force One. I don't see a need for the EU to be even more paranoid than the USA.

But I would not be surprised to see EU designed electronics components used all over the world by African and Asian countries seeking privacy from the US, Five Eyes, Russia and China.

1
0

Page: