NSA News, Articles and Updates

Ex-NSA worker stole classified data, related to Kaspersky incident

A former NSA employee pleaded guilty to taking classified national defence information that was later stolen by Russian spies.

Kaspersky offers alternate theory for how NSA hacking tools were stolen

Kaspersky Lab has released findings from its own internal probe into how Russian cyber spies identified and stole U.S. hacking tools from an NSA contractor's laptop - found evidence that the laptop had been infected with malware.

NSA hacking tool EternalRomance found in BadRabbit

BadRabbit evidence is multiplying, like well rabbits, with the latest revelation being the malware used another stolen NSA tool to help it move laterally through networks.

NSA worker infected computer provided access to Equation Group surveillance code, Kaspersky says

After the consumer version of Kaspersky Lab's antivirus software picked up the source code for surveillance tools used by the Equation Group, the NSA''s elite hacking arm, the file was immediately deleted, according to Kaspersky.

Update: Russian hackers use Kaspersky AV, find NSA info on home device

Home computer of National Security Agency (NSA) worker contained classified data, detected by Russian hackers using Kaspersky AV software.

ICYMI: Spyware; US data law; NSA tools hack; Games DDoS'd; Skills gap

In Case You Missed It: Spyware in 1,000 apps; US global data grab; NSA tools used to hack hotels; Warcraft DDoS'd; Students narrow skills gap

UPDATE: 'NotPetya' ransomware at heart of new global campaign

A yet-indeterminate ransomware strain has infected systems all over the world with particular enthusiasm for Ukrainian targets.

NSA claims to have identified contractor as source of news media leak

A National Security Agency contractor named Reality Winner has been accused of leaking classified information about possible Russian interference in the US election to a news organisation.

WannaCry fallout: is hoarding exploits, delaying fixes ever justified?

With the lethality of WannaCry being blamed on the NSA's EternalBlue exploit, we asked the cyber-security industry about the wisdom of allowing intelligence agencies to stockpile zero days.

WannaCry not first to exploit NSA EternalBlue, DoublePulsar malware

Turns out that WannaCry's creators were not the first to the table when it comes to exploiting the leaked NSA hacking tools EternalBlue and DoublePulsar.

Bored cyber-security expert's wizard radar page secures the world

Ten years ago, a bored cyber-security expert named Andy Cuff set up a website on his kitchen table in Bath. Today, that website has become the go-to place for all the world's biggest security agencies.

Snowden film fails to shed light on essential questions

Oliver Stone's latest foray into political pseudo-documentary filmmaking presents a one-sided account of a formative moment in history.

MalwareMustDie closes blog in NSA/CIA spy protest

MalwareMustDie, the white-hat security research group, has closed its blog in protest of alleged American espionage against friendly countries.

ICYMI: National Strategy; NHS attack; NSA's secrets; Fraud report; Directors' liability

This week In Case You Missed it looks at: £1.9 bn for UK cyber strategy; Hospital hacked; More NSA leaks; Fraud attack league; Directors' breach liability

Past behaviour did not stop leaker from accessing sensitive NSA Data

The NSA's latest alleged leaker apparently had a variety of issues, including alcohol abuse and criminal charges, which did not cast doubt on his security clearance.

Second Shadow Brokers dump released

The hacking group named The Shadow Brokers has released more NSA-related files, these are said to show IP addresses linked to the Equation Group, a hacking group believed to be an NSA contractor.

Former NSA deputy director talks Snowden, pardons and privacy [Video]

Chris Inglis, former deputy director at the NSA, says the organisation had not been prepared for an insider threat of the magnitude of Edward Snowden and rejected calls for him to be pardoned.

ICYMI: NSA, Microsoft, Phishing and FastPOS

This week: NSA webcam exploits, Microsoft Exchange, top 5 phishing lures and FastPOS malware

NSA spy details how to tap into webcam on Mac without user noticing

An ex NSA spook has shown how to tap into a Mac's webcam without the user even knowing

NSA contractor nabbed for pilfering agency codes

Harold T. Martin III, 51, who worked for Booz Allen Hamilton, was arrested after an FBI search of his home and car uncovered an abundance of highly classified documents, which Martin was not authorized to have

No takers for stolen NSA tools, Shadow Brokers rant

The Shadow Brokers Saturday posted a rant to voice their discontent over the lack of bids for the stolen goods.

Privacy orgs file brief against US, allies on bulk surveillance

A coalition of privacy organisations are suing the United States and its allies for involvement in a bulk data collection program, which they say violates the European Convention on Human Rights.

ICYMI: Equation group, Hutzero, Cyber-security unemployment, CEO responsibility and Lord Blunkett

This week: Leaked NSA hacking tools go to work on Cisco customers, The first class of a new cyber-security school graduates, European CEOs no longer pass the buck on security, and Lord Blunkett opens a Cyber-Highway

NSA hacking tools used against Cisco customers

The Shadow Brokers' dump of NSA-linked hacking tools are now being used against Cisco customers

CREST takes over cyber-assurance programme from NSA in America

The National Security Agency has handed over responsibility for operating and promoting its CIRA accreditation programme to CREST, best known in the UK for its accreditation schemes with GCHQ, CESG and the Bank of England.

Former DGSE head confirmed French targeted foreign countries

France's former head of external intelligence service discussed a French cyber campaign that targeted Iran, Canada, Spain, Greece, Norway and other nations.

Extrabacon flaw isn't being patched quick enough by organisations

Cisco issues patch for Extrabacon vulnerability but thousands of routers at risk from exploit allegedly created by the NSA's Equation Group.

Minimising the damage caused by a breach

Protecting data is a significant task faced by security managers every day. Paul German discusses creating cyber-security strategies for government agencies.

Juniper confirms leaked "NSA exploits" affect its firewalls

Juniper confirms exploits leaked by the Shadow Brokers group appear to affect its firewalls, but has not yet patched the vulnerabilities.