« | Home | Categories | »

Russian government hackers used antivirus software to steal U.S. cyber capabilities

Posted on October 6th, 2017 at 22:24 by John Sinteur in category: News -- Write a comment


ussian government hackers lifted details of U.S. cyber capabilities from a National Security Agency employee who was running Russian antivirus software on his computer, according to several individuals familiar with the matter.

The employee had taken classified material home to work on it on his computer, and his use of Kaspersky Lab antivirus software enabled Russian hackers to see his files, the individuals said. The case, which dates to 2015 and has not been made public, remains under investigation by federal prosecutors.

The NSA declined to comment on the breach, which was first reported by the Wall Street Journal.

The employee involved was a U.S. citizen born in Vietnam and had worked at Tailored Access Operations, the elite hacking division of the NSA that develops tools to penetrate computers overseas to gather foreign intelligence, said the individuals, who spoke on the condition of anonymity to discuss an ongoing case. He was removed from the job in 2015, but was not thought to have taken the materials for malicious purposes such as handing them to a foreign spy agency, they said.

So the NSA employee had NSA-designed malware on his PC and kaspersky software recognized it as malware, uploaded it for analysis, and suddenly it’s a spy case? Sounds like dreadfully bad op-sec by the NSA, and they got what they deserved.

previous post: How bad can the new spying legislation be? Exhibit 1: it’s called the USA Liberty Act

next post: A modern dating horror story