National Security Agency

THE NSA FILES DECODED

Click here

How the NSA Plans to Infect ‘Millions’ of Computers with Malware

THE INTERCEPT – By Ryan Gallagher and Glenn Greenwald – March 12, 2014

Top-secret documents reveal that the National Security Agency is dramatically expanding its ability to covertly hack into computers on a mass scale by using automated systems that reduce the level of human oversight in the process.

The classified files – provided previously by NSA whistleblower Edward Snowden – contain new details about groundbreaking surveillance technology the agency has developed to infect potentially millions of computers worldwide with malware “implants.” The clandestine initiative enables the NSA to break into targeted computers and to siphon out data from foreign Internet and phone networks.

The covert infrastructure that supports the hacking efforts operates from the agency’s headquarters in Fort Meade, Maryland, and from eavesdropping bases in the United Kingdom and Japan. GCHQ, the British intelligence agency, appears to have played an integral role in helping to develop the implants tactic.

In some cases the NSA has masqueraded as a fake Facebook server, using the social media site as a launching pad to infect a target’s computer and exfiltrate files from a hard drive. In others, it has sent out spam emails laced with the malware, which can be tailored to covertly record audio from a computer’s microphone and take snapshots with its webcam. The hacking systems have also enabled the NSA to launch cyberattacks by corrupting and disrupting file downloads or denying access to websites.

Read on: https://firstlook.org/theintercept/article/2014/03/12/nsa-plans-infect-millions-computers-malware/

What Europe Should Know about US Mass Surveillance

Whistleblower delivers written testimony to European Parliament.

Common Dreams – By Edward Snowden – March 7, 2014

Common Dreams editor’s note: What follows is a statement addressed to an investigative panel of the European Parliament looking into the nature and scope of U.S. surveillance conducted by the National Security Agency and its partner agencies in Europe. Subsequent to the statement are specific answers to written questions posed by the panel to Mr. Snowden. The original statement from which this was reproduced is available here as a pdf.I would like to thank the European Parliament for the invitation to provide testimony for your inquiry into the Electronic Mass Surveillance of EU Citizens. The suspicionless surveillance programs of the NSA, GCHQ, and so many others that we learned about over the last year endanger a number of basic rights which, in aggregate, constitute the foundation of liberal societies.

The first principle any inquiry must take into account is that despite extraordinary political pressure to do so, no western government has been able to present evidence showing that such programs are necessary. In the United States, the heads of our spying services once claimed that 54 terrorist attacks had been stopped by mass surveillance, but two independent White House reviews with access to the classified evidence on which this claim was founded concluded it was untrue, as did a Federal Court.

Looking at the US government’s reports here is valuable. The most recent of these investigations, performed by the White House’s Privacy and Civil Liberties Oversight Board, determined that the mass surveillance program investigated was not only ineffective — they found it had never stopped even a single imminent terrorist attack — but that it had no basis in law. In less diplomatic language, they discovered the United States was operating an unlawful mass surveillance program, and the greatest success the program had ever produced was discovering a taxi driver in the United States transferring $8,500 dollars to Somalia in 2007.

After noting that even this unimpressive success – uncovering evidence of a single unlawful bank transfer — would have been achieved without bulk collection, the Board recommended that the unlawful mass surveillance program be ended. Unfortunately, we know from press reports that this program is still operating today.

I believe that suspicionless surveillance not only fails to make us safe, but it actually makes us less safe. By squandering precious, limited resources on “collecting it all,” we end up with more analysts trying to make sense of harmless political dissent and fewer investigators running down real leads. I believe investing in mass surveillance at the expense of traditional, proven methods can cost lives, and history has shown my concerns are justified. …

Read on: www.commondreams.org/view/2014/03/07-4

Dishfire and What Obama Couldn’t Say About the N.S.A.

Obama is draping the banner of change over the NSA status quo. Bulk surveillance that caused such outrage will remain in place

The New Yorker – Posted by Amy Davidson – January 17, 2014

“DISHFIRE contains a large volume of unselected SMS traffic,” a says a presentation that was put together by Britain’s General Communications Headquarters, and obtained by the Guardian thanks to Edward Snowden. The volume is very large: close to two hundred million text messages from around the world every day. “This makes it particularly useful for the development of new targets, since it is possible to examine the content of messages sent months or even years before the target was known to be of interest.” The documents go on to say that Dishfire, a National Security Agency program, whose products the G.C.H.Q. was allowed to look at, “collects pretty much everything it can, so you can see SMS from a selector which is not targeted.”

And there, in a few sentences, is an expression of why so many of the reassurances that we have heard since the first Snowden revelations seem hollow—and why President Obama has been pushed to confront their inadequacy in a speech on Friday morning. The N.S.A. collects information on people that it has no reason to suspect; it does so indiscriminately; its standard is what “it can” do, not what it ought to; and it includes not just abstract metadata but rich content. Also, the phrase “not targeted” means “surveilled without the paperwork” or, in plain English, “targeted.” The Guardian notes that the agency has “minimization” procedures for information that it somehow gets from Americans whom it hasn’t targeted. As the N.S.A. said in a statement to the paper:

Dishfire is a system that processes and stores lawfully collected SMS data. Because some SMS data of US persons may at times be incidentally collected in NSA’s lawful foreign intelligence mission, privacy protections for US persons exist across the entire process concerning the use, handling, retention, and dissemination of SMS data in Dishfire.

And yet, the minimizing never quite seems to make the volume as small as the N.S.A.’s practices makes it large. …

Read on: www.newyorker.com/online/blogs/closeread/2014/01/dishfire-and-what-obama-shouldnt-say-about-the-nsa.html

Obama’s NSA ‘reforms’ are little more than a PR attempt to mollify the public

Obama is draping the banner of change over the NSA status quo. Bulk surveillance that caused such outrage will remain in place

The Guardian – By Glenn Greenwald – January 17, 2014

In response to political scandal and public outrage, official Washington repeatedly uses the same well-worn tactic. It is the one that has been hauled out over decades in response to many of America’s most significant political scandals. Predictably, it is the same one that shaped President Obama’s much-heralded Friday speech to announce his proposals for “reforming” the National Security Agency in the wake of seven months of intense worldwide controversy.

The crux of this tactic is that US political leaders pretend to validate and even channel public anger by acknowledging that there are “serious questions that have been raised”. They vow changes to fix the system and ensure these problems never happen again. And they then set out, with their actions, to do exactly the opposite: to make the system prettier and more politically palatable with empty, cosmetic “reforms” so as to placate public anger while leaving the system fundamentally unchanged, even more immune than before to serious challenge.

This scam has been so frequently used that it is now easily recognizable. In the mid-1970s, the Senate uncovered surveillance abuses that had been ongoing for decades, generating widespread public fury. In response, the US Congress enacted a new law (Fisa) which featured two primary “safeguards”: a requirement of judicial review for any domestic surveillance, and newly created committees to ensure legal compliance by the intelligence community.

But the new court was designed to ensure that all of the government’s requests were approved: it met in secret, only the government’s lawyers could attend, it was staffed with the most pro-government judges, and it was even housed in the executive branch. As planned, the court over the next 30 years virtually never said no to the government…

Read on: www.theguardian.com/commentisfree/2014/jan/17/obama-nsa-reforms-bulk-surveillance-remains

NSA and GCHQ activities appear illegal, says EU parliamentary inquiry

Civil liberties committee report demands end to indiscriminate collection of personal data by British and US agencies

The Guardian – Nick Hopkins and Ian Traynor – January 9, 2014

Mass surveillance programmes used by the US and Britain to spy on people in Europe have been condemned in the “strongest possible terms” by the first parliamentary inquiry into the disclosures, which has demanded an end to the vast, systematic and indiscriminate collection of personal data by intelligence agencies.

The inquiry by the European parliament’s civil liberties committee says the activities of America’s National Security Agency (NSA) and its British counterpart, GCHQ, appear to be illegal and that their operations have “profoundly shaken” the trust between countries that considered themselves allies.

↓ ↓ Show more ↓ ↓


See also…

The EU DRAFT REPORT on the NSA and GCHQ surveillance programme and impact on EU citizens’ fundamental rights from Statewatch (325kB pdf).