Most Popular
1. It’s a New Macro, the Gold Market Knows It, But Dead Men Walking Do Not (yet)- Gary_Tanashian
2.Stock Market Presidential Election Cycle Seasonal Trend Analysis - Nadeem_Walayat
3. Bitcoin S&P Pattern - Nadeem_Walayat
4.Nvidia Blow Off Top - Flying High like the Phoenix too Close to the Sun - Nadeem_Walayat
4.U.S. financial market’s “Weimar phase” impact to your fiat and digital assets - Raymond_Matison
5. How to Profit from the Global Warming ClImate Change Mega Death Trend - Part1 - Nadeem_Walayat
7.Bitcoin Gravy Train Trend Forecast 2024 - - Nadeem_Walayat
8.The Bond Trade and Interest Rates - Nadeem_Walayat
9.It’s Easy to Scream Stocks Bubble! - Stephen_McBride
10.Fed’s Next Intertest Rate Move might not align with popular consensus - Richard_Mills
Last 7 days
THEY DON'T RING THE BELL AT THE CRPTO MARKET TOP! - 20th Dec 24
CEREBUS IPO NVIDIA KILLER? - 18th Dec 24
Nvidia Stock 5X to 30X - 18th Dec 24
LRCX Stock Split - 18th Dec 24
Stock Market Expected Trend Forecast - 18th Dec 24
Silver’s Evolving Market: Bright Prospects and Lingering Challenges - 18th Dec 24
Extreme Levels of Work-for-Gold Ratio - 18th Dec 24
Tesla $460, Bitcoin $107k, S&P 6080 - The Pump Continues! - 16th Dec 24
Stock Market Risk to the Upside! S&P 7000 Forecast 2025 - 15th Dec 24
Stock Market 2025 Mid Decade Year - 15th Dec 24
Sheffield Christmas Market 2024 Is a Building Site - 15th Dec 24
Got Copper or Gold Miners? Watch Out - 15th Dec 24
Republican vs Democrat Presidents and the Stock Market - 13th Dec 24
Stock Market Up 8 Out of First 9 months - 13th Dec 24
What Does a Strong Sept Mean for the Stock Market? - 13th Dec 24
Is Trump the Most Pro-Stock Market President Ever? - 13th Dec 24
Interest Rates, Unemployment and the SPX - 13th Dec 24
Fed Balance Sheet Continues To Decline - 13th Dec 24
Trump Stocks and Crypto Mania 2025 Incoming as Bitcoin Breaks Above $100k - 8th Dec 24
Gold Price Multiple Confirmations - Are You Ready? - 8th Dec 24
Gold Price Monster Upleg Lives - 8th Dec 24
Stock & Crypto Markets Going into December 2024 - 2nd Dec 24
US Presidential Election Year Stock Market Seasonal Trend - 29th Nov 24
Who controls the past controls the future: who controls the present controls the past - 29th Nov 24
Gold After Trump Wins - 29th Nov 24
The AI Stocks, Housing, Inflation and Bitcoin Crypto Mega-trends - 27th Nov 24
Gold Price Ahead of the Thanksgiving Weekend - 27th Nov 24
Bitcoin Gravy Train Trend Forecast to June 2025 - 24th Nov 24
Stocks, Bitcoin and Crypto Markets Breaking Bad on Donald Trump Pump - 21st Nov 24
Gold Price To Re-Test $2,700 - 21st Nov 24
Stock Market Sentiment Speaks: This Is My Strong Warning To You - 21st Nov 24
Financial Crisis 2025 - This is Going to Shock People! - 21st Nov 24
Dubai Deluge - AI Tech Stocks Earnings Correction Opportunities - 18th Nov 24
Why President Trump Has NO Real Power - Deep State Military Industrial Complex - 8th Nov 24
Social Grant Increases and Serge Belamant Amid South Africa's New Political Landscape - 8th Nov 24
Is Forex Worth It? - 8th Nov 24
Nvidia Numero Uno in Count Down to President Donald Pump Election Victory - 5th Nov 24
Trump or Harris - Who Wins US Presidential Election 2024 Forecast Prediction - 5th Nov 24
Stock Market Brief in Count Down to US Election Result 2024 - 3rd Nov 24
Gold Stocks’ Winter Rally 2024 - 3rd Nov 24
Why Countdown to U.S. Recession is Underway - 3rd Nov 24
Stock Market Trend Forecast to Jan 2025 - 2nd Nov 24
President Donald PUMP Forecast to Win US Presidential Election 2024 - 1st Nov 24

Market Oracle FREE Newsletter

How to Protect your Wealth by Investing in AI Tech Stocks

How the NSA Hacked Google and Yahoo!

Politics / Intelligence Agencies Oct 31, 2013 - 10:30 AM GMT

By: Mike_Shedlock

Politics

In response to NSA Breaks Into Secure Communication Links of Google and Yahoo I received a few comments worth exploring.

Reader "Fury" commented "True encryption using the RSA algorithm is unbreakable today. No way can the NSA break the prime number encryption that is used, I don't care how many supercomputers they have."


A knowledgeable friend commented "The secure parts are impenetrable by computer technology. A break-in is impossible unless Google let them in or the NSA somehow got the encryption key. The latter would require human agents."

The article I linked to above came from an October 30 article in the Washington Post. Here is the chart in question.

Top Secret Current Efforts Google

Man in the Middle

Mainstream media is nearly always late to these stories, and so was I. The answer to how the NSA hacked Google and Yahoo! comes from Schneier on Security a "blog covering security and security technology".

With thanks to reader "marvinmartian" for the link, please consider Bruce Schneier's September 13 post New NSA Leak Shows MITM Attacks Against Major Internet Services.

The Brazilian television show "Fantastico" exposed an NSA training presentation that discusses how the agency runs man-in-the-middle attacks on the Internet. The point of the story was that the NSA engages in economic espionage against Petrobras, the Brazilian giant oil company, but I'm more interested in the tactical details.

The video on the webpage [NSA Documents Show United States Spied Brazilian Oil Giant] is long, and includes what I assume is a dramatization of an NSA classroom, but a few screen shots are important. The pages from the training presentation describe how the NSA's MITM attack works:

However, in some cases GCHQ and the NSA appear to have taken a more aggressive and controversial route -- on at least one occasion bypassing the need to approach Google directly by performing a man-in-the-middle attack to impersonate Google security certificates. One document published by Fantastico, apparently taken from an NSA presentation that also contains some GCHQ slides, describes "how the attack was done" to apparently snoop on SSL traffic. The document illustrates with a diagram how one of the agencies appears to have hacked into a target's Internet router and covertly redirected targeted Google traffic using a fake security certificate so it could intercept the information in unencrypted format.

Documents from GCHQ's "network exploitation" unit show that it operates a program called "FLYING PIG" that was started up in response to an increasing use of SSL encryption by email providers like Yahoo, Google, and Hotmail. The FLYING PIG system appears to allow it to identify information related to use of the anonymity browser Tor (it has the option to query "Tor events") and also allows spies to collect information about specific SSL encryption certificates.

Flying Pig Screenshot

Flying Pig Screenshot

Spying on Petrobras - Brazil's Largest Company

Let's take a closer look at NSA Documents Show United States Spied Brazilian Oil Giant

One of the prime targets of American spies in Brazil is far away from the center of power - out at sea, deep beneath the waves. Brazilian oil. The internal computer network of Petrobras, the Brazilian oil giant partly owned by the state, has been under surveillance by the NSA, the National Security Agency of the United States.

These new disclosures contradict statements by the NSA denying espionage for economic purposes.

The information was found by journalist Glen Greenwald, co-author of this story along with TV Globo Reporter Sonia Bridi, amid the thousands of documents given to him by Edward Snowden in June.

This statement addressed to "The Washington Post" this week highlights that 'The department does ***not*** engage in economic espionage in any domain, including cyber.'"

However, a top secret presentation dated May 2012 is used by the NSA to train new agents step-by-step how to access and spy upon private computer networks - the internal networks of companies, governments, financial institutions - networks designed precisely to protect information.

The name of Petrobras - Brazil's largest company - appears right at the beginning, under the title: "MANY TARGETS USE PRIVATE NETWORKS."

The documents are classified as "top-secret", to be seen only by those named by the Americans as "Five Eyes" - the five countries allied in spying: the United States, Australia, Canada, Great Britain and New Zealand.

The name of Petrobras appears on several slides, as the training goes deeper in explaining how date from the target companies is monitored.

Individual folders are created for each target - and contain all the intercepted communications and IP addresses - the identification of each computer on the network - which should be immune to these attacks.

Petrobras has two supercomputers, used mainly for seismic research - which evaluate oil reserves from samples collected at sea. This is how the company mapped the Pre-salt layer, the largest discovery of new oil reserves in the world in recent years.

There is no information on the extent of the spying, nor if it managed to access the data contained in the company's computers. It's clear Petrobras was a target, but no documents show exactly what information the NSA searched for. But at any rate, Petrobras has strategic knowledge of deals involving billions of dollars.

The NSA presentation contains documents prepared by the GCHQ - the British Spy agency, from a country that appears as an ally of the United States in spying. The British agency shows how two spy programs operate. "Flying Pig" and "Hush Puppy" also monitor private networks which carry supposedly secure information. These networks are known as TLS/SSL.

The presentation explains how data is intercepted, through an attack known as "Man in the Middle". In this case, data is rerouted to the NSA central, and then relayed to its destination, without either end noticing.

A few pages ahead, the document lists the results obtained. "Results - what do we find?" "Foreign government networks", "airlines", "energy companies" - like Petrobras - and "financial organisations."

TLS/SSL networks are also the security system used in financial transactions, such as when someone accesses their bank account through an ATM. The connection between a remote terminal and the bank's central goes through a sort of secure tunnel through the internet. No one is supposed to see what travels through it.

Later, the NSA presentation shows in detail how the data of a chosen target is rerouted through spy filters beginning at the very source, until they reach the NSA's supercomputers.

In this document the NSA names Latin America as a key target of the "SILVERZEPHYR" program, which collects the contents of voice recordings, faxes, as well as metadata, which is the overall information being transmitted in the network.

"Flying Pigs", "Hush Puppy", "SILVERZEPHYR"

The NSA was clearly caught lying.

What else besides corporate espionage? Political enemies? (Why not given the target on friends?) State trials? Client attorney privileges?

Once again, I praise Edward Snowden as a national hero for leaking these documents. We would otherwise not know about any of this stuff, and without that leak, it is 100% certain nothing about this would have been done.

Instead, Big Brother would likely have expended to look at every document, every phone call, every corporation, every blog, and literally everything written or said by everyone on the planet, with taxpayers footing the bill.

My fear is that happens regardless.

By Mike "Mish" Shedlock
http://globaleconomicanalysis.blogspot.com

Click Here To Scroll Thru My Recent Post List

Mike Shedlock / Mish is a registered investment advisor representative for SitkaPacific Capital Management . Sitka Pacific is an asset management firm whose goal is strong performance and low volatility, regardless of market direction.

Visit Sitka Pacific's Account Management Page to learn more about wealth management and capital preservation strategies of Sitka Pacific.

I do weekly podcasts every Thursday on HoweStreet and a brief 7 minute segment on Saturday on CKNW AM 980 in Vancouver.

When not writing about stocks or the economy I spends a great deal of time on photography and in the garden. I have over 80 magazine and book cover credits. Some of my Wisconsin and gardening images can be seen at MichaelShedlock.com .

© 2013 Mike Shedlock, All Rights Reserved.

Disclaimer: The above is a matter of opinion provided for general information purposes only and is not intended as investment advice. Information and analysis above are derived from sources and utilising methods believed to be reliable, but we cannot accept responsibility for any losses you may incur as a result of this analysis. Individuals should consult with their personal financial advisors.

Mike Shedlock Archive

© 2005-2022 http://www.MarketOracle.co.uk - The Market Oracle is a FREE Daily Financial Markets Analysis & Forecasting online publication.


Post Comment

Only logged in users are allowed to post comments. Register/ Log in