Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Endpoint //

Privacy

Richard Clarke: Foreign Governments Not So Surprised by US Snooping

50%
50%

Former White House cybersecurity advisor Richard Clarke thinks foreign governments' outrage about American cyber-snooping is largely an act being put on for the benefit of political and economic agendas.

Comment  | 
Print  | 
Comments
Oldest First  |  Newest First  |  Threaded View
DarkReadingTim
50%
50%
DarkReadingTim,
User Rank: Strategist
3/27/2014 | 10:33:14 AM
Why is the NSA's activity such a surprise to anyone?
I'm amazed at the strong reaction to the NSA's surveillance activity, which has always been vast and deep. The NSA has been doing deep surveillance for many years. In fact, it used to be that all telecom carriers were required to have a presence in Jessup, Md. -- providing an easy location for the NSA to listen in.
securityaffairs
50%
50%
securityaffairs,
User Rank: Ninja
3/27/2014 | 2:52:02 PM
Re: Why is the NSA's activity such a surprise to anyone?
Well Tim we must distinguish two aspect:

I agree with Richard Clarke, foreign governments are not surprised by US snooping because almost every state is developing its surveillance programme, more or less efficient. China, Russia and many other countries are investing to improve cyber capabilities on both defensive and offensive perspective. Suverillance and monitoring are common practices, they are the essential part of every cyber strategy, necessary to protect homeland security.

The extension of NSA activity, despite US isn't the unique government with a so aggressive cyber espionage programme, is embarrassing. US Governments has spied also on allies and it has arranged hacking campaigns (see FoxACID and TURBINE) to hack foreign enterprises like Huawei and Siemens. 

Frankly, it is gone too far ... it's policy will damage US IT industry

 
tmccreight
50%
50%
tmccreight,
User Rank: Apprentice
3/27/2014 | 10:43:48 PM
Why is the NSA's activity such a surprise to anyone?
I agree with Richard's comments and his insight into the drivers behind some of the comments from foreign states.

I remember working on CALEA projects (there's an oldie for you) back in the 90's that caused concern wtih so many people, yet proved invaluable when we provided assistance to intelligence agencies in North America.  I understand and appreciate the difficult position Western nations are in - they don't want to let potential intelligence go undetected, but must also face harsh criticisms when they 'invade' the personal electronic space of citizens (both foreign and domestic).  I don't envy the daily decisions these folks make, but I can say I've seen the benefits of that information.
How Attackers Could Use Azure Apps to Sneak into Microsoft 365
Kelly Sheridan, Staff Editor, Dark Reading,  3/24/2020
Malicious USB Drive Hides Behind Gift Card Lure
Dark Reading Staff 3/27/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-10940
PUBLISHED: 2020-03-27
Local Privilege Escalation can occur in PHOENIX CONTACT PORTICO SERVER through 3.0.7 when installed to run as a service.
CVE-2020-10939
PUBLISHED: 2020-03-27
Insecure, default path permissions in PHOENIX CONTACT PC WORX SRT through 1.14 allow for local privilege escalation.
CVE-2020-6095
PUBLISHED: 2020-03-27
An exploitable denial of service vulnerability exists in the GstRTSPAuth functionality of GStreamer/gst-rtsp-server 1.14.5. A specially crafted RTSP setup request can cause a null pointer deference resulting in denial-of-service. An attacker can send a malicious packet to trigger this vulnerability.
CVE-2020-10817
PUBLISHED: 2020-03-27
The custom-searchable-data-entry-system (aka Custom Searchable Data Entry System) plugin through 1.7.1 for WordPress allows SQL Injection. NOTE: this product is discontinued.
CVE-2020-10952
PUBLISHED: 2020-03-27
GitLab EE/CE 8.11 through 12.9.1 allows blocked users to pull/push docker images.