Apparently the NSA tried to hack Chinese systems with a zero day, but Chinese intelligence intercepted and used it on US allies instead.
China was attacked by NSA hackers -- and grabbed their hacking tools, then used them against many targets. A tale from the digital wild west, where there aren't a lot of rules. With and
Chinese intelligence agents acquired NSA hacking tools and repurposed them to attack American allies and private companies in Europe and Asia, a leading cybersecurity firm has discovered
NEW: How Chinese Spies Got the N.S.A.’s Hacking Tools, and Used Them for Attacks w/
Wow. 'Symantec believe the Chinese did not steal the code but captured it from an N.S.A. attack on their own computers — like a gunslinger who grabs an enemy’s rifle and starts blasting away.' by
⁩ tried to hack Chinese systems...but Chinese intel intercepted, repurposed & used to attack us. #CyberInsecurity
How Chinese Spies Got the N.S.A.’s Hacking Tools, and Used Them for Attacks
Amazing story. As Hayden said elsewhere: "If they cannot protect the tools, I just can't mount the argument to defend that they should have them."
Exclusive: Symantec researchers believe not that the Chinese stole the code but captured it from an NSA attack on their computers, like a gunslinger grabbing an enemy rifle and blasting away ⁦⁩ ⁦⁩ ⁦
Exploits are, in effect, "secret weapons", with all that that implies: once deployed, they don't stay secret for long (especially when used against sophisticated targets). Once this happens, only sensible policy is to disclose/fix underlying vul.
"Symantec believe the Chinese did not steal the code but captured it from an N.S.A. attack on their own computers — like a gunslinger who grabs an enemy’s rifle and starts blasting away."
How Chinese Spies Got the N.S.A.’s Hacking Tools, and Used Them for Attacks - The New York Times #China #CPDC
Symantec: a Chinese state-sponsored hacker group co-opted and repurposed NSA hacking tools to attack US allies and private companies in Europe and Asia in 2016 (New York Times)
Chinese intelligence agents acquired National Security Agency hacking tools and repurposed them in 2016 to attack American allies and private companies in Europe and Asia, a leading cybersecurity firm has discovered
It has become very clear that NSA has long operated on wildly inaccurate assumptions about its ability to maintain control of its exploits. Without that assumption, the case for maintaining them, at least for widely-used software, is frankly untenable.
NSA's cyberweapons hacked by the Chinese and used in cyberattacks. Blowback discovered by the same folks at Symantec who broke down the Stuxnet code. The wild west of cyber. No rules in a gunfight. Without treaties, chaos will continue.
“We need tech companies to create back doors in their products and give them to governments, because they’ll keep them safe”
Digital Wild West
See this for an example of the “digital Wild West” which has resulted from the various unreported vulnerabilities and exploits bouncing around. ”How Chinese Spies Got the NSA’s Hacking Tools, and Used Them for Attacks”