Kaspersky AV provided a way to identify a computer storing known NSA hacking tools?
professor rat
pro2rat at yahoo.com.au
Sun Aug 14 06:39:05 PDT 2022
>>> WSJ reported in 2017 that the Kaspersky Anti-Virus software Pho was running on his home computer led the Russian security firm to discover that Pho had the NSA’s hacking tools on the machine. Somehow (the implication is that Kaspersky alerted the Russian government) that discovery led Russian hackers to subsequently target Pho’s computer and steal the files.
In response to the WSJ report, Kaspersky issued their own report (here’s a summary from Kim Zetter). It acknowledged that Kaspersky AV had pulled in NSA tools after triggering on a known indicator of NSA compromise (the report claimed, and you can choose to believe that or not, that Kaspersky had deleted the most interesting parts of the files obtained). But it also revealed that in that same period, Pho had briefly disabled his Kaspersky AV and downloaded a pirated copy of Microsoft Office, which led to at least one backdoor being loaded onto his computer via which hostile actors would have been able to steal the NSA’s crown jewels <<<
https://www.emptywheel.net/2022/08/14/18-usc-793e-in-the-time-of-shadow-brokers-and-donald-trump/
Reposts etc
More information about the cypherpunks
mailing list