More NSA fun

LZ1 · December 20, 2013, 3:55pm

Another Snowden leak :lol:

Basically the NSA paid RSA 10 million to use a type of cryptography that was insecure and they could break

More info from an article in 2007 https://www.schneier.com/blog/archives/2007/11/the_strange_sto.html

TradersBASE · December 20, 2013, 9:02pm

Pretty damn wild, though not surprising. I can only imagine what has not been uncovered at this point.

BOBBYGRV · December 30, 2013, 11:36am

Some more fun:

Here’s how they hack your iPhone:

“DROPOUT JEEP is a software implant for the Apple iPhone that utilizes modular mission applications to provide specific SIGINT functionality. This functionality includes the ability to remotely push/pull files from the device. SMS retrieval, contact list retrieval, voicemail, geolocation, hot mic, camera capture, cell tower location, etc. Command, control and data exfiltration can occur over SMS messaging or a GPRS data connection. All communications with the implant will be covert and encrypted.”

LXIFLYBY · December 30, 2013, 6:19pm

This thread title reminds me of a bad Craigslist personal ad lol

Geehee · December 31, 2013, 5:28am

I guess I shouldnt be, but I’m surprised by RSA. Being an industry standard security firm and putting your rep on the line like that?

TradersBASE · December 31, 2013, 6:01am

I can see it but for $10 million? Is that all national security is worth today, in the age of TRILLIONS?

LZ1 · December 31, 2013, 6:07am

Well this was years ago

I’m sure as a large corp its hard hide some insane amount of money 10 million isn’t that much…

Also the way in which this happened it was easy to place blame and act innocent.

boardjnky4 · December 31, 2013, 6:23am

RSA may very well have not known that the crypto was flawed. However, they probably should have looked into it. If NSA pays you 10 million to use something they made and make it the default choice for your customers, then you should realize that something’s fishy.

That crypto algorithm was the default in the program, but individual administrators are/were free to choose whatever crypto they wanted. It being default, though, probably leads to the majority of RSA’s customers using it.

LZ1 · December 31, 2013, 7:46am

It’s been making me consider taking additional math classes when I go back to college

boardjnky4 · December 31, 2013, 8:06am

crypto is fascinating topic… I have a hard time following it though, since it’s a very dry topic. With this NSA stuff going around, and with encryption being used more and more to protect data, it’s becoming an increasingly useful knowledge area.

Topic		Replies	Views
How RSA got hacked resulting in multiple defense contractors getting hacked NYSpeed Off Topic	23	867	August 30, 2011
NSA has some cool toys. NYSpeed Off Topic	2	172	December 30, 2013
krazyjon all is lost NYSpeed Off Topic	2	321	June 14, 2007
Apple stepping up NYSpeed Off Topic	65	11894	March 6, 2016
Pretty Damn interesting. PittSpeed Off Topic	2	156	May 26, 2005

More NSA fun

Related topics