US LAWMAKERS ARE SO STUPID – SCREW THE PASSWORDS THEY ARE THE REASON FOR ALL THE BREACHES
@jsrailton
CATASTROPHIC: Chinese hackers massively wiretapped USA by compromising the interception portals mandated under US law.
Remember this the next time a government demands encryption backdoors.
READ https://www.wsj.com/tech/cybersecurity/u-s-wiretap-systems-targeted-in-china-linked-hack-327fc63b?st=byoB7m
By:
@bysarahkrouse @dnvolz @aviswanatha @bobmcmillan @RonDeibert
The surveillance systems believed to be at issue are used to cooperate with requests for domestic information related to criminal and national security investigations. Under federal law, telecommunications and broadband companies must allow authorities to intercept electronic information pursuant to a court order. It couldn’t be determined if systems that support foreign intelligence surveillance were also vulnerable in the breach.
The attack and its significance was discovered in recent weeks and remains under active investigation by the U.S. government and private-sector security analysts. Investigators are still working to confirm the breadth of the attack and the degree to which the actors observed data and exfiltrated some of it, the people said.
The hackers appear to have engaged in a vast collection of internet traffic from internet service providers that count businesses large and small, and millions of Americans, as their customers. Additionally, there are indications that the hacking campaign targeted a small number of service providers outside the U.S., the people said. <>
@jsrailton
Manufacturers of networking and phone gear must follow specific standards for ‘lawful interception’ in different jurisdictions (e.g. CALEA & ETSI’s standards)
But as we learn time & time again, the scope of potential access & harm almost never matched by efforts to detect & block malicious use.
Failure to comply with those demands is met with big sanctions. Just look at Durov.
Yet I predict that there will be zero meaningful accountability over this breach.