05 Jun 2019

Even the NSA is urging Windows users to patch BlueKeep (CVE-2019-0708)

In the wake of Microsoft’s second alert regarding the highly critical BlueKeep security flaw (CVE-2019-0708) that impacts Remote Desktop Protocol (RDP) implementations on older Windows operating systems, the National Security Agency (NSA) has now issued a similar warning. The agency is urging users to patch the flaw as soon as

Read More
27 May 2019

In Baltimore and Beyond, a Stolen NSA Tool Wreaks Havoc

The ransomware attack on the City of Baltimore that has rendered the city’s email system and various other systems unavailable since May 7 involved the use of EternalBlue, a hacking tool developed by the National Security Agency (NSA) that was leaked about two years ago by the Shadow Brokers, a

Read More
07 May 2019

Chinese Hackers Used NSA Tool a Year Before Shadow Brokers Leak

Over a year before the mysterious hacking group Shadow Brokers leaked DoublePulsar, an NSA-linked hacking tool, Chinese state-backed cyber espionage group Buckeye (aka APT3, UPS Team, Gothic Panda, and TG-0110), was already using the tool in a campaign targeting Hong Kong, new research by Symantec shows. The Shadow Brokers caused

Read More
25 Apr 2019

NSA reportedly recommends retiring phone surveillance program

In a surprising turn of events, the US National Security Agency (NSA) has advised the Trump administration to abolish its controversial surveillance program for domestic calls and text messages. The program was established in 2001 under the Patriot Act to collect metadata on electric communications that could in theory make

Read More
29 Mar 2019

Cyber Threat Analysis Report Volume 1, Edition 3

Can you trust NSA tools? This and more as OODA Network Expert Michael Tanji provides insightful analysis of the most recent and significant cyber news.

Read More
06 Mar 2019

NSA releases cybersecurity tool to the public

The National Security Agency has made its custom reverse-engineering tool known as Ghidra available for download to anyone with an Internet connection. The move is intended to make it easier for security researchers in the public and private sector to study malicious code. Ghidra was designed to help NSA researchers

Read More
28 Feb 2019

Huawei: ‘U.S. Fears We Will Stop NSA Spying — This Has Nothing To Do With China’

On Tuesday, Chinese tech giant Huawei devoted part of its keynote speech at the Mobile World Congress, held in Barcelona, to launch what seems like a carefully crafted campaign to portray the US government as an untrustworthy cyber espionage force. The effort is a response to the US government’s boycott

Read More
31 Jan 2019

Ex-NSA cyberspies reveal how they helped hack foes of UAE

A new exclusive report from Reuters traces the shadowy “Project Raven,” a program run by the United Arab Emirates that hired ex-NSA cyberspies to hack the devices of targets around the world. The only named source of the information reportedly became disillusioned with the work when the program began spying

Read More
06 Nov 2018

Pentagon official: Cyber Command and NSA may split infrastructure

“A Department of Defense official said Nov. 1 that U.S. Cyber Command needs to have its own infrastructure and not lean as heavily on the National Security Agency for some cyber tools, a transition that may foreshadow an eventual split between the two dual-hatted agencies. Cyber Command has operated on

Read More
27 Sep 2018

NSA employee who brought hacking tools home sentenced to 66 months in prison

A 68-year-old NSA employee has been sentences to 66 months in prison after taking home highly sensitive hacking tools between 2010 and 2015 in order to have more time to study them, win better performance reviews, and secure higher pay. Because the materials were removed from the NSA’s secure internal

Read More