TAO: the NSA's hacker plumber-wunderkinds

A new Snowden leak disclosed in Der Spiegel details the operations of the NSA's Tailored Access Operations group (TAO), the "plumbers" of the spy agency who collect and deploy exploits to infiltrate computer systems. Reportedly, Edward Snowden turned down a chance join the group.

TAO's repertoire of attacks included unpublished exploits and back-doors for products from major US IT companies like Microsoft and Cisco, as well as foreign companies like Huawei. Spiegel reports that TAO infiltrated networks in 89 countries, including "the protected networks of democratically elected leaders of countries." They took special interest in Mexico's anti-terror efforts, running an operation called WHITETAMALE that compromised the Mexican Secretariat of Public Security.

The tactics deployed by TAO relied upon other NSA programs, like the infamous XKeyscore, which was used to passively intercept crash reports from computers running Windows in order to profile these systems and tailor attacks aimed at them. TAO also compromised the Blackberry's BES email servers, and were able to read mail sent and received by Blackberry users.

One interesting wrinkle: TAO used interception of ecommerce shipping reports to discover when a target ordered new computer equipment. These shipments would be intercepted and loaded with malware before delivery. I know an ex-MI5 whistleblower who only buys computers by walking into a store at random and plucking them off the shelf, to prevent this sort of attack. When I learned about this practice, it sounded a little paranoid to me, but it seems that it's actually a very reasonable precaution.

According to internal NSA documents viewed by SPIEGEL, these on-call digital plumbers are involved in many sensitive operations conducted by American intelligence agencies. TAO's area of operations ranges from counterterrorism to cyber attacks to traditional espionage. The documents reveal just how diversified the tools at TAO's disposal have become -- and also how it exploits the technical weaknesses of the IT industry, from Microsoft to Cisco and Huawei, to carry out its discreet and efficient attacks.

The unit is "akin to the wunderkind of the US intelligence community," says Matthew Aid, a historian who specializes in the history of the NSA. "Getting the ungettable" is the NSA's own description of its duties. "It is not about the quantity produced but the quality of intelligence that is important," one former TAO chief wrote, describing her work in a document. The paper seen by SPIEGEL quotes the former unit head stating that TAO has contributed "some of the most significant intelligence our country has ever seen." The unit, it goes on, has "access to our very hardest targets."

Inside TAO: Documents Reveal Top NSA Hacking Unit [Der Spiegel]

Notable Replies

  1. IMB says:

    All types of packages are being intercepted. I have experienced this a few times. You can see where it was opened and re-taped. What's to stop them from putting any spyware into the stock at the stores before they hit the shelves?

  2. they are looking to target a certain person, putting it in all computers wouldn't be better than what they already do.

  3. IMB says:

    They are casting a net over everyone as it stands now. So I'd imagine they might think, "Why not?".

  4. Well now. There ya go! He didn't lie after all. Obama DOES operate the 'most transparent' administration in US history! It's only transparent to his own ghouls, but he did it.

    Consider - no official, hired or elected, and no agency of this government is safe from the powers that reside with the Commander-in-Chief. Not one of them. He controls every opportunity to corrupt any and every process in this country - up to, and including the courts where the cases against the NSA are now pending, the named plaintiffs, and their attorneys. Complaints that the White House was monitoring the press? Pffft! If not one way, they can simply use another. Any time they want to gin up a 'suspicion' of some kind of corruption or perversion against political opposition, he can call up his fave Code Monkeys' Commandant, and have whatever he likes on whoever he likes. Remember that, next time you see him looking smug in a press release.

    It's done. America is over. Doesn't even matter who we try to elect, because he owns them, too. As will his successor.

  5. Hello,

    One of the authors of this article was Jacob Applebaum, whose apartment in Berlin was reportedly broken into one week ago.

    I wonder what whomever did that thinks of this latest article?


    Aryeh Goretsky

Continue the discussion bbs.boingboing.net

7 more replies