As they say in the article, they hardly ever have to bother paying for exploits.
Perhaps to crack into the Iranian centrifuges, but for most Windows networks it's just poking around a little to find the guy with the compromized "smart" phone that logs into the corporate network, or the unauthorized addition of an "Internet of Things" device like a "smart" videocam or a WAP or the laptop the sales guys take home and let their kids play with. People share a link from their Google Drive or Dropbox on a public list. Or that FTP server marketing set up to update their WordPress site. It amazes me that sysadmins don't read their logs. They're right there: the 836 password attempts from Romania; the hundreds of http-404 errors looking for weak software all coming from the same Chinese ISP. I have (no rocket science) automated intrusion detection systems that block this stuff, logs emailed daily, alarms set on various server parameters. Spycraft involves stealing things and breaking into places people don't want you to. Mostly it's not that hard. With computer nets, you rarely even have to get your hands dirty. A little social engineering can get a lot of the way there. There was a remarkable post last week on stealing a person's identity via Amazon... https://medium.com/@espringe/amazon-s-customer-service-backdoor-be375b3428c4#.1x6v4if1b On Sat, Jan 30, 2016 at 5:03 PM, Ken Dibble <[email protected]> wrote: > >> >> http://www.wired.com/2016/01/nsa-hacker-chief-explains-how-to-keep-him-out-of-your-system/ > > > "How the NSA Gets You", eh? > > How the NSA gets you is by buying zero-day exploits on the black market for > tens of thousands of dollars apiece, and stockpiling them, and refusing to > inform the software vendors about them so they can be patched, as any > ethical IT security professional would do. > > Ken Dibble > www.stic-cil.org > > [excessive quoting removed by server] _______________________________________________ Post Messages to: [email protected] Subscription Maintenance: http://mail.leafe.com/mailman/listinfo/profox OT-free version of this list: http://mail.leafe.com/mailman/listinfo/profoxtech Searchable Archive: http://leafe.com/archives/search/profox This message: http://leafe.com/archives/byMID/profox/cacw6n4teydunu+l3khay+5qryyko964eopb64quur6f0tys...@mail.gmail.com ** All postings, unless explicitly stated otherwise, are the opinions of the author, and do not constitute legal or medical advice. This statement is added to the messages for those lawyers who are too stupid to see the obvious.
