Friendly forums for passionate Dems!
More than 94 million posts since 2001
Home Latest Greatest Videos Forums Hide ads Join up!
Home Latest Greatest
Videos Forums Help
Hide ads Join up!
Latest Discussions»General Discussion»NSA Knew About And 'Explo...
Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News Editorials & Other Articles General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search

General Discussion

Related: Editorials & Other Articles, Issue Forums, Alliance Forums, Region Forums
 

WillyT

(72,631 posts) Fri Apr 11, 2014, 07:36 PM Apr 2014

NSA Knew About And 'Exploited' Heartbleed For Years: Bloomberg

NSA Knew About And 'Exploited' Heartbleed For Years: Bloomberg
The Huffington Post | by Dino Grandoni
Posted: 04/11/2014 3:10 pm EDT Updated: 04/11/2014 5:59 pm EDT

<snip>

The Heartbleed bug just went from bad to worse to truly, utterly terrifying.

The National Security Agency knew of the existence of the catastrophic bug for at least two years and kept it a secret from the public and the cybersecurity community in order to exploit it, according to a bombshell report from Bloomberg News. However, the agency is denying the story.

While it's unclear what the agency was able to do with its knowledge of the exploit, we at least know this: If the report is true, the NSA knew about one of the most dangerous bugs in Internet history, and it did nothing to warn us about it.

"NSA was not aware of the recently identified vulnerability in OpenSSL, the so-called Heartbleed vulnerability, until it was made public in a private sector cybersecurity report," the Office of the Director of National Intelligence said in a statement to HuffPost. "Reports that say otherwise are wrong." A White House spokesperson also stated that no federal agency was aware of the bug.

First discovered by Google and Codenomicon, a security firm, the Heartbleed bug is a flaw in the encryption used to protect vast number of websites from hackers. The fear is that the bug may expose credit card numbers, passwords and more.

Yahoo, Amazon and many, many other major websites used the free code, called OpenSSL, since encryption software is notoriously difficult to write.

Immediately after news of Heartbleed broke, some suspected that the NSA was exploiting the security lapse to access people's private data. Others saw it coming even before that: The documents leaked by former NSA contractor Edward Snowden indicated that the NSA partnered its British spying equivalent, the GCHQ, to try to crack SSL and other encryption standards that protect the Internet.

<snip>

More: http://www.huffingtonpost.com/2014/04/11/nsa-heartbleed_n_5134813.html


26 replies, 1389 views
26 replies = new reply since forum marked as read
Highlight: NoneDon't highlight anything 5 newestHighlight 5 most recent replies
NSA Knew About And 'Exploited' Heartbleed For Years: Bloomberg (Original Post) WillyT Apr 2014 OP
just meta data, doncha know? grasswire Apr 2014 #1
2 For 1 Special, I Suppose... WillyT Apr 2014 #2
we're not being spied on! because the One said so! MisterP Apr 2014 #13
More info BlindTiresias Apr 2014 #3
k and r nt Mojorabbit Apr 2014 #4
They did not write the code RobertEarl Apr 2014 #5
Sorry... WillyT Apr 2014 #7
According to the Bloomberg artilce... idendoit Apr 2014 #6
Prove it is false, because so far the only thing we have is a denial from NSA ... nt MindMover Apr 2014 #8
I'm not the one making the assertion. idendoit Apr 2014 #9
People in the know, YES .... MindMover Apr 2014 #10
Try to emulate your avatar and not worry so much. idendoit Apr 2014 #12
I know, for a FACT, that the NSA was not behind it.... PosterChild Apr 2014 #23
That's EARNED trust. Pholus Apr 2014 #11
Only two choices? idendoit Apr 2014 #14
Yup, the two people are questionable. Pholus Apr 2014 #15
+100 !!! PosterChild Apr 2014 #22
Wow, I feel so much safer...Thanks NSA! Oilwellian Apr 2014 #16
K&R. JDPriestly Apr 2014 #17
NSA steals our property and NSA apologists enable them. There is pragmatic_dem Apr 2014 #18
So everyone will know everything about each and every one of us. mia Apr 2014 #19
who cares? here is who cares pragmatic_dem Apr 2014 #20
Only those looking to control or imprison others dreamnightwind Apr 2014 #21
Every day, and in every way, I feel Safer and Safer! n/t n2doc Apr 2014 #24
I'd have thought the NSA would only be one of dozens of organizations to have taken advantage Blue_Tires Apr 2014 #25
K&R DeSwiss Apr 2014 #26

MisterP

(23,730 posts)
13. we're not being spied on! because the One said so!
Reply to grasswire (Reply #1)
Fri Apr 11, 2014, 10:07 PM
Apr 2014
http://en.wikipedia.org/wiki/Fideism
boxes and ballerinas and ChiCom spymasters and high-speed rail
 

RobertEarl

(13,685 posts)
5. They did not write the code
Reply to WillyT (Original post)
Fri Apr 11, 2014, 08:51 PM
Apr 2014

So stop saying that. They would not break laws. Everyone spied on deserves it. It is so written right there in the law.

How's my imitation doing?

 

idendoit

(505 posts)
6. According to the Bloomberg artilce...
Reply to WillyT (Original post)
Fri Apr 11, 2014, 09:11 PM
Apr 2014

..."two people familiar with the matter said". Well, it's just gotta be true then. This is all pure speculation.

 

idendoit

(505 posts)
9. I'm not the one making the assertion.
Reply to MindMover (Reply #8)
Fri Apr 11, 2014, 09:42 PM
Apr 2014

Tell the posters and Bloomberg, for that matter, to prove their speculation. Is two unidentified people saying so enough to make you believe?

MindMover

(5,016 posts)
10. People in the know, YES ....
Reply to idendoit (Reply #9)
Fri Apr 11, 2014, 09:45 PM
Apr 2014

and for the NSAer out there looking at this ....

I do not watch porn on the net nor am I convicted of any crime other than speeding tickets ....

PosterChild

(1,307 posts)
23. I know, for a FACT, that the NSA was not behind it....
Reply to MindMover (Reply #8)
Sat Apr 12, 2014, 03:05 PM
Apr 2014

... it was sloppy coding, a bug. If the NSA had done it, they would have done it right.

Pholus

(4,062 posts)
11. That's EARNED trust.
Reply to idendoit (Reply #6)
Fri Apr 11, 2014, 09:58 PM
Apr 2014

Anyone impartially weighing statements has no choice but to rank statements made by two anonymous people familiar with the matter over public statements from the organization run by General "Least Untruthful Manner" Clapper.
 

idendoit

(505 posts)
14. Only two choices?
Reply to Pholus (Reply #11)
Fri Apr 11, 2014, 10:27 PM
Apr 2014

How can you be sure that 'two people familiar with the matter' aren't the reporter and their spouse? Are you saying the entire federal government is operating outside the law?

“Those of us who support the call records program do so with a sincere belief that it, along with other programs, is constitutional and helps keep the country safe from attack. I believe the program can benefit from additional transparency and privacy protections—including additional public reporting and added court review provisions which were recently adopted by the Senate Intelligence Committee in the bipartisan FISA Improvements Act.” ~ Senator Feinsten.

Under Section 215 of the US Patriot Act, Congress and the President, (secretly) tasked the NSA with what it is now legally doing. Congress has oversight. The Supreme Court turned down an EFF suit hearing, the matter is now on hold pending an appeal by the DOJ. This section is due to expire June 1, 2015. Will Congress renew the law? Will the President renew his support? Odds are, I think it's safe to say, all branches will say again: It's the Law.

Pholus

(4,062 posts)
15. Yup, the two people are questionable.
Reply to idendoit (Reply #14)
Fri Apr 11, 2014, 10:33 PM
Apr 2014

Compare that with the leadership of the NSA. They're certainly NOT questionable since they have already established that they will not tell the truth, nor do they feel the need to.

Oilwellian

(12,647 posts)
16. Wow, I feel so much safer...Thanks NSA!
Reply to WillyT (Original post)
Fri Apr 11, 2014, 10:40 PM
Apr 2014

Last edited Sat Apr 12, 2014, 05:13 PM - Edit history (1)

You knew Americans were vulnerable to this bug and instead of protecting us from an international consortium of hackers and criminals, you decided to join them! Bravo! Simply Bravo!

 

pragmatic_dem

(410 posts)
18. NSA steals our property and NSA apologists enable them. There is
Reply to WillyT (Original post)
Fri Apr 11, 2014, 10:52 PM
Apr 2014

no difference between the NSA apologist and global warming denier.

No difference between the NSA apologist and the people suppressing voting rights.

No difference between the NSA apologist and the people calling Wall Street CEOs "job creators".

No difference between the NSA apologist and the people calling torture "enhanced interrogation".

They all have one thing in common - protecting the 1% behind gated communities while hundreds of millions of us watch our incomes drop, opportunities fade, environment degrade and civil protections get trashed.

"It's all for our own good".

No, it isn't.

It's all for their own good.







mia

(8,480 posts)
19. So everyone will know everything about each and every one of us.
Reply to WillyT (Original post)
Fri Apr 11, 2014, 11:11 PM
Apr 2014

Who cares.
So much fear and terror about nothing in the scheme of things.
It's time to reveal more about the real villains who suck the breath out of all humanity.

 

pragmatic_dem

(410 posts)
20. who cares? here is who cares
Reply to mia (Reply #19)
Sat Apr 12, 2014, 12:07 AM
Apr 2014

1. the reporter documenting government corruption and wrongdoing

2. the political challenger facing an opponent with power ties to government

3. the whistle blower exposing government corruption

4. the ordinary person planning to protest keystone xl pipeline

5. the religious extremist in government targeting abortion rights activists

6. someone being blackmailed to give information

That's for starters.

If you don't have anything to protect, that means you have nothing to lose, including democracy.

I feel very sorry for you.

dreamnightwind

(4,775 posts)
21. Only those looking to control or imprison others
Reply to mia (Reply #19)
Sat Apr 12, 2014, 12:13 AM
Apr 2014

will know everything about everyone. The rest of us will be kept in line with the threat of embarrassing or incriminating information.

If this somehow resulted in us knowing all of the dirt and activities of the oligarchs and their minions, it might, as you suggest, be worth the loss of our privacy. Somehow I don't see it spinning out that way. We'll never know their activities, but they will know ours.

 

Blue_Tires

(57,596 posts)
25. I'd have thought the NSA would only be one of dozens of organizations to have taken advantage
Reply to WillyT (Original post)
Sat Apr 12, 2014, 04:46 PM
Apr 2014

Of course, now that the NSA has been mentioned with the story, everyone else is going to get a pass...

But ultimately I'll wait and see if any solid sources can corroborate this on the record...

 

DeSwiss

(27,137 posts)
26. K&R
Reply to WillyT (Original post)
Sat Apr 12, 2014, 11:30 PM
Apr 2014
“To see what is in front of one’s nose needs a constant struggle.” ~George Orwell
Reply to this discussion
Latest Discussions»General Discussion»NSA Knew About And 'Explo...
Home | Latest Discussions | Greatest Discussions | Latest Videos | All Forums

About | Copyright | Privacy | Terms of service | Contact

In Memoriam

© 2001 - 2026 Democratic Underground, LLC. Thank you for visiting.