A new Snowden leak, reported by Laura Poitras in Der Spiegel, shows that the UK spy agency GCHQ used fake versions of Slashdot and LinkedIn to attack tech staff at Global Roaming Exchanges -- interchange points where large networks meet up. It's speculated that the attacks were used to compromise Belgacom International Carrier Services (BICS).
GRX is roughly analogous to an IX (Internet Exchange), and it acts as a major exchange for mobile Internet traffic while users roam around the globe. There are only around two dozen such GRX providers globally. This new attack specifically targeted administrators and engineers of Comfone and Mach (which was acquired over the summer by Syniverse), two GRX providers.
Der Spiegel suggests that the Government Communications Headquarters (GCHQ), the British sister agency to the NSA, used spoofed versions of LinkedIn and Slashdot pages to serve malware to targets. This type of attack was also used to target “nine salaried employees” of the Organization of Petroleum Exporting Countries (OPEC), the global oil cartel.
This new revelation may be related to an attack earlier this year against Belgacom International Carrier Services (BICS), a subsidiary of the Belgian telecom giant Belgacom. BICS is another one of the few GRX providers worldwide.
UK spies continue “quantum insert” attack via LinkedIn, Slashdot pages [Cyrus Farivar/Ars Technica]
John Deere is notorious for arguing that farmers who buy its tractors actually “license” them because Deere still owns the copyright to the tractors’ software; in 2015, the US Copyright Office affirmed that farmers were allowed to jailbreak their tractors to effect repairs and modifications.
Real Alternatives organizes and funds the notorious, deceptive anti-abortion centers (“crisis pregnancy centers”) that pretend to be abortion clinics, luring in women who wish to terminate their pregnancies with deceptive advertising and then lying to them about abortion procedures in an effort to coerce them into carrying their fetuses to term; they got $30,000,000 from […]
Senate Republicans have introduced a bill to ensure that the FCC won’t be able to prevent your ISP from spying on your internet usage and selling your private information. What does that mean in practice?
The Lightning port has thus far resisted the cruel fate that befell the headphone jack, and despite rumors that it may be disappearing come iPhone 8, for the present and foreseeable future, Lightning cables are a hot commodity for iPhone users. As such, we must make do in this strange time in which long, glorified […]
All the filters in the world won’t save your smartphone pics from a shaky hand. To really step up your mobile photography game, you’ll need some kind of mount to hold it steady. You could buy a smartphone attachment for a conventional camera tripod, but who wants to carry that kind of gear everywhere they […]
The forced transition from analog to digital TV signals was probably met with relative indifference from people with Netflix subscriptions and the “I don’t even own a TV” snoots. But anyone living in the vast swaths of the country that don’t have guaranteed high-speed internet, broadcast TV is a perfectly valid (and 100% free) way […]