NSA Cracked Open Encrypted Networks of Russian Airlines, Al Jazeera, and Other 'High Potential' Targets (theintercept.com) 68
An anonymous reader quotes a report from The Intercept: The National Security Agency successfully broke the encryption on a number of "high potential" virtual private networks, including those of media organization Al Jazeera, the Iraqi military and internet service organizations, and a number of airline reservation systems, according to a March 2006 NSA document. The fact that the NSA spied on Al Jazeera's communications was reported by the German newsmagazine Der Spiegel in 2013, but that reporting did not mention that the spying was accomplished through the NSA's compromise of Al Jazeera's VPN. During the Bush administration, high-ranking U.S. officials criticized Al Jazeera, accusing the Qatar-based news organization of having an anti-American bias, including because it broadcasted taped messages from Osama bin Laden.
According to the document, contained in the cache of materials provided by NSA whistleblower Edward Snowden, the NSA also compromised VPNs used by airline reservation systems Iran Air, "Paraguayan SABRE," Russian airline Aeroflot, and "Russian Galileo." Sabre and Galileo are both privately operated, centralized computer systems that facilitate travel transactions like booking airline tickets. Collectively, they are used by hundreds of airlines around the world. In Iraq, the NSA compromised VPNs at the Ministries of Defense and the Interior; the Ministry of Defense had been established by the U.S. in 2004 after the prior iteration was dissolved. Exploitation against the ministries' VPNs appears to have occurred at roughly the same time as a broader "all-out campaign to penetrate Iraqi networks," described by an NSA staffer in 2005.
According to the document, contained in the cache of materials provided by NSA whistleblower Edward Snowden, the NSA also compromised VPNs used by airline reservation systems Iran Air, "Paraguayan SABRE," Russian airline Aeroflot, and "Russian Galileo." Sabre and Galileo are both privately operated, centralized computer systems that facilitate travel transactions like booking airline tickets. Collectively, they are used by hundreds of airlines around the world. In Iraq, the NSA compromised VPNs at the Ministries of Defense and the Interior; the Ministry of Defense had been established by the U.S. in 2004 after the prior iteration was dissolved. Exploitation against the ministries' VPNs appears to have occurred at roughly the same time as a broader "all-out campaign to penetrate Iraqi networks," described by an NSA staffer in 2005.
Good (Score:1)
That's what they exist to do.
Re: (Score:1)
Good we hack the Russians, Bad the Russians hack us.
Got it.
You DO know we are not at war with them, right?
I think the word is, Hypocrite
Re: (Score:1)
Re: (Score:2)
We have been, are, and always be at war with Russia in one form or another
"We've always been at war with Eastasia."
Re: (Score:2)
Out of fear of its power
No, out of quite-justified fear of what Communists always do. Murder tens of millions of people (mostly their own) After all, Marx himself said that Socialism was the step between Capitalism and Communism.
And before anyone goes off about the Nordic countries, they have been corner-cases firstly because they're only partially Socialist (and mostly Capitalist), and secondly because until relatively recently they've been a very small and culturally/racially/religiously/ideologically homogeneous culture (somewh
Re: (Score:2)
Good we hack the Russians, Bad the Russians hack us. Got it. You DO know we are not at war with them, right?
We have always been at war with East^H^H^H^Eurasia.
Re: (Score:2)
Then get given to other nations due to share faith, split loyalty.
End up in a police collection product?
The everyone has decryption and all internet use is weakened.
Better to work on the best encryption and make encryption great again.
Sounds like they were doing their job (Score:5, Insightful)
More or less, anyway. But I don't understand how they found time for this, what with all the domestic spying they were doing...
Re: (Score:2)
If someone cracks US networks - an act of war. ...
If the US cracks others networks -
Which VPNs? (Score:3)
So, naturally, I want to know which VPN suites they broke into, any particulars on the settings used in such VPNs would also be great.
I would like to improve my own VPN to be.. not what they broke into. No real point in this article if we can't learn how to better secure our own VPNs from it.
Re: Which VPNs? (Score:3)
Working with vendors insisting on Cisco gear: outdated protocols (MD5, RC4 and 56-bit DES is standard if you want to use the âaccelerationâ(TM) module.
Re: Which VPNs? (Score:5, Funny)
My VPN uses ROT13, you insensitive clod!
Re: (Score:3)
I wouldn't be surprised if the NSA has a fairly generic way to take on IPSEC running aggressive mode IKEv1 with group PSK and XAUTH. Because all other options are still a pain...
The various *SWAN implementations of IKE showed us 15(?) years ago how to do secure roadwarrior VPNs with "raw" public key authentication, no insecure CA's or anything involved. No commercial implementation exist. IKEv2 can do cert-for-the-server + PSK-for-the-client, which is half way decent without relying on a full PSK infrastruc
Re: (Score:2)
Re: (Score:3)
From what I understand of the US government, would not the US government declare those acts to be acts of war and should generate the potential for a first strike nuclear retaliatory attack. Just saying, according to American exceptionlism that would be the common consensus within corporate controlled main stream media, the US congress and Senate and the White house. So what does the US feel is the appropriate response by the targeted countries, where is the press release to define that, just saying.
Re: (Score:2)
Dude, those configurations are recommended on current gear (IOS 15)
Re: (Score:2)
The world now knows more now with this news.
The security services know of the origin network, the VPN use in the middle and the destination network.
Is it decryption in the middle or really perfected decrypted collection on both ends?
Re: (Score:3)
Probably Cisco. They are thoroughly compromised, both from no skill and from no integrity.
Hacking Russian airline Aeroflot is very useful... (Score:2)
Or was this network just hacked to later stage really relevant attacks originating from there, that are then attributed to evil Russians?
That's their job (Score:2)
It's what they are tasked to do.
Re:That's their job (Score:5, Insightful)
Then don't complain when the foreign governments break into CNN, Fox, United Airlines, and other such companies because they are just doing their jobs too.
How much does it take for NSA to monitor a VPN? (Score:1)
This makes me wonder if what the cost/effort for NSA is to crack a VPN? Is it high enough that somebody there has to justify it?
The pe
Re: (Score:2)
Has the NSA found an easy way around all consumer VPN products rather than into VPN encryption
Is the NSA and GCHQ tracking all networks back from a VPN use and just getting in networks beyond their later VPN use?
CIA placing devices that collect before VPN use and the NSA ensures their data flow out of nations?
Some sort of design problem network wide that only the NSA/GCHQ discovered over decades makes all collection very easy?
PRISM could be the way to understand t
Cold news (Score:2)
Saudi Arabia (Score:2)
U.S. officials criticized Al Jazeera, accusing the Qatar-based news organization of having an anti-American bias, including because it broadcasted taped messages from Osama bin Laden.
So Qatar is the badguy because they broadcast messages, but Saudi Arabia is on our side because actually causing 911 is OK.
Good to know, funding terrorists and killing thousands of Americans is not as bad as gloating about it afterwards.