Skip to Content
Uncategorized

The NSA Has Lost Cyberdefense Details to Russian Hackers

October 6, 2017

Here we go again. The Wall Street Journal reports that Russian hackers stole details of “how the National Security Agency penetrates foreign computer networks, the computer code it uses for such spying, and how it defends networks inside the U.S.” from the home computer of an NSA contractor in 2015.

Perhaps the most tantalizing (or troubling) detail from the report is that the newspaper claims the files were found using an exploit in a Kaspersky Lab antivirus program on the contractor’s computer—Russian software that the Department of Homeland Security recently banned for U.S. government use over security concerns. A spokesperson tells the Journal that the NSA doesn’t use Kaspersky antivirus software. Clearly, though, such protections don’t extend to the homes of contractors.

Perhaps the bigger point here is that yet another contractor has been able to remove files from the NSA’s network and get them into the outside world. (The most famous previous offender being Edward Snowden, though more recently Harold Martin also managed a similar feat.) And when a high-profile government agency keeps hemorrhaging sensitive data, that’s deeply worrying.

Or as Slate puts it rather more bluntly: “The U.S. can’t trust its own spy agency.”

As for the Kaspersky link, there are a couple of points worth bearing in mind. First, as Ars Technica points out, the newspaper provides no supporting evidence that the hack was achieved via Kaspersky software. And second, even if it was, it may have been an honest security flaw in the program rather than a deliberate back door built by the Russian state.

But that’s being generous. Now it will prove fascinating to find out if the suspicions of the DHS were founded all along.

Keep Reading

Most Popular

Here’s how a Twitter engineer says it will break in the coming weeks

One insider says the company’s current staffing isn’t able to sustain the platform.

Technology that lets us “speak” to our dead relatives has arrived. Are we ready?

Digital clones of the people we love could forever change how we grieve.

How to befriend a crow

I watched a bunch of crows on TikTok and now I'm trying to connect with some local birds.

Starlink signals can be reverse-engineered to work like GPS—whether SpaceX likes it or not

Elon said no thanks to using his mega-constellation for navigation. Researchers went ahead anyway.

Stay connected

Illustration by Rose Wong

Get the latest updates from
MIT Technology Review

Discover special offers, top stories, upcoming events, and more.

Thank you for submitting your email!

Explore more newsletters

It looks like something went wrong.

We’re having trouble saving your preferences. Try refreshing this page and updating them one more time. If you continue to get this message, reach out to us at customer-service@technologyreview.com with a list of newsletters you’d like to receive.