Silk Road forums
Discussion => Security => Topic started by: kmfkewm on August 05, 2013, 06:48 pm
-
http://arstechnica.com/tech-policy/2013/08/researchers-say-tor-targeted-malware-phoned-home-to-nsa/
-
Thank you for sharing this.
Color me surprised-yet-not-surprised.
-
Gotta love USA, where intelligence agencies illegally bust criminals and then classify all of the information related to it so it cannot be used in court, all with the approval of secret courts. Yay Nazi America. Time for people to start bombing government buildings and sniping politicians and police, the government has declared war on the people by sending military intelligence agencies after us.
-
Gotta love USA, where intelligence agencies illegally bust criminals and then classify all of the information related to it so it cannot be used in court, all with the approval of secret courts. Yay Nazi America. Time for people to start bombing government buildings and sniping politicians and police, the government has declared war on the people by sending military intelligence agencies after us.
You said it. ;)
-
Gotta love USA, where intelligence agencies illegally bust criminals and then classify all of the information related to it so it cannot be used in court, all with the approval of secret courts. Yay Nazi America. Time for people to start bombing government buildings and sniping politicians and police, the government has declared war on the people by sending military intelligence agencies after us.
Agreed (for the most part). Maybe people can open their eyes and realize both sides of the political "isle" are effectively the same. Differences between Republicans and Democrats are cosmetic only. If you don't support a third party, this is the type of behavior you endorse.
Reminds me of Simpsons joke where Kang and Kodos the two evil aliens take over Bob Dole and Bill Clinton... The two party system can eat my asshole.
-
They're just trying to scare people off TOR:
The use of a hard-coded IP address traceable back to the NSA is either a strange and epic screw-up on the part of someone associated with the agency (possibly a contractor at SAIC) or an intentional calling card as some analyzing the attack have suggested. One poster on Cryptocloud's discussion board wrote, "It's psyops—a fear campaign... They want to scare folks off Tor, scare folks off all privacy services."
-
As the story is still breaking, here's the most updated info (which contradicts reports of NSA involvement):
There are incorrect press reports circulating that the command-and-control IP address, 65.222.202.54, belongs to the NSA. Those reports are based on a misreading of domain name resolution records. The NSA’s public website, NSA.gov, is served by the same upstream Verizon network as the Tor malware command-and-control server, but that network handles tons of government agencies and contractors in the Washington DC area.
source: http://www.wired.com/threatlevel/2013/08/freedom-hosting/
Although the Patriot Act gave the NSA some new and broad powers for domestic surveillance, this operation appears to be more criminal in nature than an issue of national security and thus outside of their jurisdiction. It's more than likely FBI.
And to those that would scoff about issues of jurisdiction in regards to NSA acts, consider what the exploits were hoping to accomplish. They were attempting to identify users involved in some seriously depraved criminality for the purpose of prosecution. The FBI, not the NSA, has authority in this regard.
-
They're just trying to scare people off TOR:
The use of a hard-coded IP address traceable back to the NSA is either a strange and epic screw-up on the part of someone associated with the agency (possibly a contractor at SAIC) or an intentional calling card as some analyzing the attack have suggested. One poster on Cryptocloud's discussion board wrote, "It's psyops—a fear campaign... They want to scare folks off Tor, scare folks off all privacy services."
My thoughts too. Sabre rattling on the NSA's part to scare certain individuals from thinking of using Tor in the hopes that they will just stay put on the regular clearnet... seeing as you're not safe on Tor so why bother going through the hassle of installing a simple software bundle. Basically, they want to kill the momentum Tor picked up after Snowden's revelation.
kmfkewm's right though. We ARE under attack by a military organization. I guess they want their Tor network back.
-
As the story is still breaking, here's the most updated info (which contradicts reports of NSA involvement):
There are incorrect press reports circulating that the command-and-control IP address, 65.222.202.54, belongs to the NSA. Those reports are based on a misreading of domain name resolution records. The NSA’s public website, NSA.gov, is served by the same upstream Verizon network as the Tor malware command-and-control server, but that network handles tons of government agencies and contractors in the Washington DC area.
source: http://www.wired.com/threatlevel/2013/08/freedom-hosting/
Although the Patriot Act gave the NSA some new and broad powers for domestic surveillance, this operation appears to be more criminal in nature than an issue of national security and thus outside of their jurisdiction. It's more than likely FBI.
And to those that would scoff about issues of jurisdiction in regards to NSA acts, consider what the exploits were hoping to accomplish. They were attempting to identify users involved in some seriously depraved criminality for the purpose of prosecution. The FBI, not the NSA, has authority in this regard.
Considering it just broke that the NSA has been sharing criminal intelligence with the DEA, I think it makes sense to assume they are sharing criminal intelligence with the FBI as well.
-
Kmf,
A few days ago you were telling me that was not possible...?
-
The only time I used PGP was to send name / address to vendors (only 2 times so far). All my other communication with vendors has been not PGP. Is asking questions of vendors in NON-PGP messages about their products dangerous?
-
Kmf,
A few days ago you were telling me that was not possible...?
It is illegal and most people thought NSA would never share intelligence with feds, even Roger Dingledine recently said he is surprised by these developments.
-
Did you read the article?
"Further analysis using a DNS record tool from Robtex found that the address was actually part of several blocks of IP addresses allocated by SAIC to the NSA. This immediately spooked the researchers."
So it is the NSA.
-
NSA monitors foreign communications. Tor is a means to become "foreign". So Tor falls under the department of the NSA, which gets to use the "child porn" "terrorism" and "narcotics" reasoning to share info under the grounds of national security. I find it really difficult to believe the general public would care if the alphabet mafia is sharing info between each other when they just arrested the FH guy on grounds of running the worlds largest child porn network. Tell me it isn't coincidental this FBI story broke last week, then this freedom hosting thing went down. The government is trying to drum up support for surveillance by appealing to the general disdain for child porn.
http://www.washingtontimes.com/news/2013/jul/29/fbi-arrests-150-76-city-child-prostitution-ring/
Federal Bureau of Investigations agents arrested 150 suspects on Monday on charges related to a child prostitution ring that wove through 76 cities around the nation.
Agents also recovered 105 children who were believed to have been involved in the ring, USA Today reported.
The FBI made the arrests in a three-day sweep. It’s the largest law enforcement raid that the agency has conducted in relation to child prostitution, USA Today said.
“Child prostitution remains a persistent threat to children across American,” said Ron Hosko, assistant director of the FBI’s Criminal Investigative Division, in USA Today. “This operation serves as a reminder that these abhorrent crimes can happen anywhere and that the FBI remains committed to stopping this cycle of victimization and holding the criminals who profit from this exploitation accountable.”
105 childeren? I don't believe that one bit, my guess is 0 childeren. They most likely came up with this "105" to appeal to the general public.
-
A part of me jumps up with the OP shouting YESSSSS!! but then the other, more experienced part of me, quietly sighs "shit!" ....
Becoz, these "problems" didn't just happen in the last few weeks!
These things took time to build, with hundreds of thousands of people "co-operating" to create things like PRISM et al.
The REAL "problem" IS, that it's "you and me" who let things like PRISM get built in the first place, by "allowing these cunts their "black budgets" etc :(
And these are people we ALL KNOW, people who work 'for the government', in what they see as 'their irrelevant job in IT ... with a small company that SUB-CONTRACTS to the military to make this shit', some ASIC they dont really know what it's going to be used for .... which, in fact is a part of a guidance system that when added to a bunch of 'other shit' becomes a drone or cruise missile! :o :(
IF these people "knew about what they DID" and then thoughtfully considered the effects of their work on everyone, and the planet they live on!
, and CHOSE to stop doing it. things would begin to change! Being a geologist can be a fine job,...being a geologist who's helping 'fuck things up' by working for a 'frackinng company' which pollutes the groundwater for miles around >:( Now that's NOT a cool job! IMO! And they're are many more .... I wouldn't work for McDonalds ..... but the issue is that for basic wage type jobs, people often cant 'pick and choose' becoz they need the money, whereas the geologist on $120+k, p.a. could save more in one year than these folks could pronanly save in ten!
What I'm saying, is the people in the "most important jobs" ... ones which MUST STOP/CHANGE now, asap, are the one who CAN AFFORD TO, but, they're probably SO TRAPPED in their lifestyle, that they "depend on that income" to "maintain THEIR standard of living" ..sheesh!
And they'll say, "they're not hurting anyone" .... But are they sure? After all, Mike works at Boeing as an engineer, and makes a good salary, They're so 'lucky' becoz they appreciate the 'finer things' and 'the money makes life easier'......
While people needlessly die all around the world becoz their family maket "air plane parts" for the Air Force, and have been since WW1! :o :o These people, who's mind are so focused on themselves, are common, and then they go to a "Revival Christian Church" and 'believe in God, and Jesus saves and the Bible' ....
Oh God fuckin help me! Can you see what 'we're' up against! OMFG :P :o
What we CAN DO is TO HELP MAKE THE "UNAWARE, AWARE!" .... "we" NEED TO talk with our friends and family about this stuff, get them 'in the know', so they will also become "smart enough" to stop believing, and then supporting this crazy fucked up world we've ALLOWED TO OCCUR!!.
The Occupy movement, was the people showing they're Not Happy with 'how things are' AND are prepared to get out on the streets and say it!
BUT, they dont really know "what else to do?" ... withdraw your support, in EVERY WAY POSSIBLE! Dont do anything to cause too much distress BUT, IF you, or someone you know and love, works in one of these industries making this "killingry" and "control systems" ,,, if you want things to change, they MUST GET ANOTHER JOB, and stop working 'for the man' asap!
IF we REALLY WANT TO SEE THINGS CHANGE ,, then we the People, MUST SUPPORT it and help these people IF they DO make a 'moral decision' , when they DO 'stop their job', and we SHOULD "meet them with thanks and assistance" until they get their lives a bit more stable, as leaving a long term job, for moral reasons, IS a BIG DEAL! And ANYONE who does this, or who leaves the military becoz "it's not ok" IMO deserves a big pat on the back for "becoming smart enough to begin helping the world, rather than intentionally hurt it!" 8)
phew ... I think that's about all I can say about this, I've been up all night (alll good ;D And not from having any speed, quite the opposite, H, and 'up' all night is also a bit wrong as I was in a chair kicked back in the Land of Nod ;D 8) although now I've gone and FU
TL:DR "Knowledge IS power, SHARE the knowledge and empower people to be able to act! Do your very best to help people you love and care for,as nuch as they can 'take' about the current "Global Hegemony" which was silently growing into the "massive Beast" It's become,, Help them to Learn about ALL the ways they have been and still are, instead of the diet of complete pigshit! These bibke thumping 'muricans are
Stay safe everybody, and take care of each other :D
"The two things you can 'give away, and never lose' are "what you know" and 'how you feel'
m m m motek x
-
What better way to make people aware that we disapprove of them than by shooting them and blowing them up?
-
Guess I gotta change my handle. I don't want to be confused with "Freedom Hosting".
Anyways, here's more:
"SAIC is, needless to say, deep in the core of the cyber-military complex... and certainly not the FBI.
That IP address is part of IP space directly allocated to the NSA's Autonomous Systems (AS). It's not FBI; it's NSA.
What is an NSA IP address doing as a command & control contact for javascript malware being deployed in the #torsploit attack? That remains to be seen... but we already know that PRISM data has been "jumping the wall" and leaking into other law enforcement hands. Is this an example of further abuse of PRISM's "national security only" dataset? That appears the most likely explanation, at this point in time.
Glenn Greenwald has been warning us this is happening - and here's another hard, objective, irrefutable data point. The NSA's Alexander - who only last week was at DefCon doing his best to charm the audience - is once again caught lying bald-faced."
https://www.cryptocloud.org/viewtopic.php?f=9&t=2894&p=3852#p3852
-
As the story is still breaking, here's the most updated info (which contradicts reports of NSA involvement):
There are incorrect press reports circulating that the command-and-control IP address, 65.222.202.54, belongs to the NSA. Those reports are based on a misreading of domain name resolution records. The NSA’s public website, NSA.gov, is served by the same upstream Verizon network as the Tor malware command-and-control server, but that network handles tons of government agencies and contractors in the Washington DC area.
source: http://www.wired.com/threatlevel/2013/08/freedom-hosting/
Although the Patriot Act gave the NSA some new and broad powers for domestic surveillance, this operation appears to be more criminal in nature than an issue of national security and thus outside of their jurisdiction. It's more than likely FBI.
And to those that would scoff about issues of jurisdiction in regards to NSA acts, consider what the exploits were hoping to accomplish. They were attempting to identify users involved in some seriously depraved criminality for the purpose of prosecution. The FBI, not the NSA, has authority in this regard.
Considering it just broke that the NSA has been sharing criminal intelligence with the DEA, I think it makes sense to assume they are sharing criminal intelligence with the FBI as well.
That may be a safe assumption but doesn't necessarily make it true in this particular case, particularly considering that the DEA was going to great lengths to hide NSA involvement through the use of 'parallel construction' to build a criminal case against those caught by NSA information. That being a necessity since the information used to make those arrests was obtained unconstitutionally, and would have been unusable in a court of law. I don't have the link to the article, but there was an LE official quoted as saying that defendants who refused plea deals and instead chose to fight it in court had the charges dismissed to avoid potentially revealing NSA involvement and to prevent LE perjury in court.
The idea that NSA was surely involved came from the misreading of the DNS records, as I quoted above. Without that, it would be merely speculative that the NSA was involved even with the revelations about NSA involvement in domestic criminal activity.
Further, would you agree that the exploit was designed to de-anonymize individuals who were accessing cp? That's indisputably obvious, right? Would it be safe to assume from that then that the feds are seeking to identify those individuals for prosecution? That's a fairly safe assumption, too, isn't it? And if that's true, I find it extremely unlikely that the feds would risk jeopardizing their criminal cases by contaminating it with NSA surveillance since it would be impossible to claim 'parallel construction' even if they wanted to perjure themselves (or ask any of their agents/employees to, which they should rightly refuse).