HardOCP News
[H] News
- Joined
- Dec 31, 1969
- Messages
- 0
![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
NSA Hiding Equation Spy Program On Hard Drives
- Thread starter HardOCP News
- Start date
CreepyUncleGoogle
Supreme [H]ardness
- Joined
- Mar 10, 2013
- Messages
- 6,871
*grabs popcorn*
rotarymotor
Weaksauce
- Joined
- Apr 24, 2013
- Messages
- 115
So...what they're saying is buy more SSD's?
EchtoGammut
2[H]4U
- Joined
- May 7, 2007
- Messages
- 4,055
In before the people who believe this information shouldn't have been leaked and our benevolent government always knows best.
EchtoGammut
2[H]4U
- Joined
- May 7, 2007
- Messages
- 4,055
... unless it is Obama ...
EchtoGammut
2[H]4U
- Joined
- May 7, 2007
- Messages
- 4,055
That dudes a dictator, unlike that assertive, fine ass guy, Putin.
Retronym
[H]F Junkie
- Joined
- Mar 5, 2007
- Messages
- 13,605
bucketlist
Gawd
- Joined
- Oct 8, 2013
- Messages
- 1,019
*Wonder's when someone will modify this to steal people's personal info or turn into ransom-ware by encrypting their HDDs.....
Comixbooks
Fully [H]
- Joined
- Jun 7, 2008
- Messages
- 22,002
Yeah I had the CIA after me once it was no big deal was questioned for 6 hours or so I told them I worked at Walmart stocking toilet paper and they let me go six months later.
Probably already happening. This reminds me of Sony and their rootkits:
http://en.wikipedia.org/wiki/Sony_BMG_copy_protection_rootkit_scandal
Simmonz
2[H]4U
- Joined
- May 14, 2008
- Messages
- 2,506
Would writing zeroes multiple times to a fresh drive solve the issue ?
bucketlist
Gawd
- Joined
- Oct 8, 2013
- Messages
- 1,019
That's because Wally is pro China.
percydaman
Limp Gawd
- Joined
- Jun 26, 2011
- Messages
- 294
Probably not.
bucketlist
Gawd
- Joined
- Oct 8, 2013
- Messages
- 1,019
Damn, that's dirty, didn't know it was that bad.
Because de facto rolling out policy to implement law which Congress shot down speaks Democracy & respecting Separation of Powers.
dgingeri
2[H]4U
- Joined
- Dec 5, 2004
- Messages
- 2,830
Sounds familiar:
http://www.tomshardware.com/news/kaspersky-equation-group-cyber-threat,28573.html
Maybe It's the NSA that Kaspersky is talking about.
http://www.tomshardware.com/news/kaspersky-equation-group-cyber-threat,28573.html
Maybe It's the NSA that Kaspersky is talking about.
mullet
[H]ard|Gawd
- Joined
- Aug 19, 2004
- Messages
- 2,016
This^^^^^^
You will not find this on your hard drives - not because you can't see it, but because it isn't there.
The linked article buries it pretty well, while this article explains it better: these hacks were used only in a very targeted manner, such as by intercepting hardware or media being mailed to the intended targets. The NSA doesn't have the time to be interested in the likes of you.
The linked article buries it pretty well, while this article explains it better: these hacks were used only in a very targeted manner, such as by intercepting hardware or media being mailed to the intended targets. The NSA doesn't have the time to be interested in the likes of you.
No. The issue is with the firmware on the drive, not any data on the drive's platters or memory chips. Think bios, but for the hard drive.
Hearing this crap makes me sort of want to throw out all my electronics. Nothing is safe anymore because of these d-bags.
amddragonpc
[H]ard|Gawd
- Joined
- Sep 20, 2012
- Messages
- 1,996
Not surprised at this. When STUXNET was revealed, I felt no computer was safe anymore because supposedly this virus had to travel through the Internet to get to Iran. If so, that means every computer has this virus and who knows what it's doing. If the Iran centrifuges couldn't be reached through the Internet, installed hardware was another avenue. Who is going to think of checking the firmware of computer hard drives for malware?
Maybe if you wrote them to the firmware. However you wouldn't have a usable drive after that.
mynamehere
[H]ard|Gawd
- Joined
- Jun 30, 2007
- Messages
- 1,763
I wonder how many would even know what this is, let alone ever used one, not to mention actually owning one of these manually powered beauties.
![Zarathustra[H]](https://cdn.hardforum.com/data/avatars/m/9/9298.jpg?1707758471){kind=avatar}
Zarathustra[H]
Extremely [H]
- Joined
- Oct 29, 2000
- Messages
- 38,830
Truth is, something like this would not remain very effective in the wild for long, that is why the spy agencies have been very selective in using it.
They figure out a way to get code to store in drive firmware. Their proprietary code uses 0-day vulnerabilities to infect the host, regardless of how many times it is wiped.
If this went wild and were used liberally, it would be detected quickly, and those 0-days it relies on to get from the firmware onto the rest of the machine wouldn't remain 0-days for very long.
This is a pretty cool attack vector for spy agencies, but I don't think it would be very effective on a mass-ransomware scale. At least not against people who patch their machines.
It would get a few people at first, and then the patches would go out once discovered.
For ransomware to be effective for a scammer, they need ti to remain effective for a long period of time, infecting millions, so that the certain small percentage that falls for it, and pays up amounts ot real money.
Zarathustra[H]
Extremely [H]
- Joined
- Oct 29, 2000
- Messages
- 38,830
They are very difficult to use after getting used to a computer.
I constantly jam up the keys by typing too quickly, and make so many typos that I am used to just be able to fix that now require correction tape, or starting over.
Honestly, I think I'd rather just write by hand.
heatlesssun
Extremely [H]
- Joined
- Nov 5, 2005
- Messages
- 44,154
I have and I think I'd rather live with spyware.
Zarathustra[H]
Extremely [H]
- Joined
- Oct 29, 2000
- Messages
- 38,830
Zarathustra[H];1041432446 said:
That, and I believe in the 60's or 70's Soviet spy agencies figured out that they could use listening devices placed inside typewriters to be able to reconstruct what was being typed by the subtle differences in sound between each key press, so you can still be spied on
D
Deleted member 93354
Guest
RIF: They wrote it into the drive's firmware....not the platters.
D
Deleted member 93354
Guest
Zarathustra[H];1041432457 said:That, and I believe in the 60's or 70's Soviet spy agencies figured out that they could use listening devices placed inside typewriters to be able to reconstruct what was being typed by the subtle differences in sound between each key press, so you can still be spied on
true story.
D
Deleted member 93354
Guest
Zarathustra[H];1041432441 said:
You do realize the UEFI BIOS hack existed for years and is still not fixed on a number of legacy motherboards.
Don't even get me started on routers.
lord_farfig
[H]ard|Gawd
- Joined
- Jun 3, 2004
- Messages
- 1,410
Zarathustra[H]
Extremely [H]
- Joined
- Oct 29, 2000
- Messages
- 38,830
I can't find the article I originally read about spying techniques of the 60's, but if they can do it for a soft membraned desktop keyboard, as shown here, they sure as hell can do it for a typewriter.
heatlesssun
Extremely [H]
- Joined
- Nov 5, 2005
- Messages
- 44,154
Should have been a pre-QWERTY model.
Wasn't the QWERTY arrangement created to intentionally slow typing speed because jamming was such a big problem with early typewriters?
chockomonkey
[H]F Junkie
- Joined
- Oct 11, 2003
- Messages
- 8,328
I've heard the same thing.
Which makes me wonder why we haven't ever changed it up sot hat we can type EVEN FASTER!!!
The HDD firmware is used to infect whatever OS the user installs on the HDD. In each case, the malware is custom-written to suit whatever OS the target is using, be it Windows, Mac OS X, Linux, or whatever else.
You all do understand the total number of infections of this is somewhere in the tens of thousands over the course of 14 years, right?
Didn't one of the Edward Snowden leaks about a year ago mention how this was happening within the firmware of many computer components worldwide? I faintly remember hearing this and how its so deep within hard drives in the instance that even doing a secure wipe wouldn't delete data in a way that couldn't be reversed.
It sounded really silly at the time, but the only way you could make wiping a drive useless would be by messing with the software that makes the hard drive work in the first place. Pretty scary stuff.
1984 ain't got shit on today.
It sounded really silly at the time, but the only way you could make wiping a drive useless would be by messing with the software that makes the hard drive work in the first place. Pretty scary stuff.
1984 ain't got shit on today.
DarkStar_WNY
2[H]4U
- Joined
- Dec 27, 2006
- Messages
- 2,363
Zarathustra[H];1041432441 said:
10's, if not 100's of millions of computer users fail to update their operating system, what's the chance they will update their HDD's firmware?
Yep.
Neither the fresh drive nor the drive you are using will have the infection at all, unless you are on the NSA's list of the 10,000 most interesting people to surveil.
Zarathustra[H]
Extremely [H]
- Joined
- Oct 29, 2000
- Messages
- 38,830
I believe that was the intent of the DVORAK layout, but it turns out that the learning curve switching from QWERTY to DVORAK was steep enough, that only very few people adopted it.
lol