From the How Is This Not Front Page News In Every Paper In The Country? Files, Bloomberg brings us the tale of how our good friends at the National Security Agency (hi guys!) have known about Heartbleed — a critical Internet security flaw that affects "the basic security of as many as two-thirds of the world’s websites"—for "at least two years."
"... attempt to exploit would stick out like a sore thumb"
How? None of those TLS heartbeat requests are logged anywhere, you would never know. You can definitely target someone - you only need know what websites they tend to visit. Granted, it's more useful to an identity thief / fraud type than the NSA, but in no way is it a "weak" exploit - it's rather devastating.
2.6 million requests wouldn't take long. Six months is not long for someone collecting data. It's not as if they're sitting there looking at it the whole time, if ever.
OK, so the agency that&#039;s been caught spying on and attempting to blackmail Congress (&quot;attempting&quot; as far as we know) is also <i>maybe</i> just flat-out not doing their actual job? They&#039;d all get fired if everybody in charge wasn&#039;t afraid of them.
There is no way the NSA does not have a team of coders that know the OpenSSL code by heart. They&#039;ve definitely known about it.
&quot;... attempt to exploit would stick out like a sore thumb&quot;
How? None of those TLS heartbeat requests are logged anywhere, you would never know. You can definitely target someone - you only need know what websites they tend to visit. Granted, it&#039;s more useful to an identity thief / fraud type than the NSA, but in no way is it a &quot;weak&quot; exploit - it&#039;s rather devastating.
2.6 million requests wouldn&#039;t take long. Six months is not long for someone collecting data. It&#039;s not as if they&#039;re sitting there looking at it the whole time, if ever.
You mean the guy who later went (back) to work for the NSA? That guy?
But Big Brother can be defeated: <a href="http://westernrifleshooters..." target="_blank">" rel="nofollow noopener" title="http://westernrifleshooters.files.wordpress.com/2...">http://westernrifleshooters...
Huh?
We could fund Obamacare...
<a href="http:\/\/wmpoweruser.com\/watch-what-you-store-on-skydriveyou-may-lose-your-microsoft-life\/" target="_blank">Or not. </a>
It&#039;s all there in Step 2, the one right before &quot;Profit!&quot;
and the TeeVee remote
This was all because of Our Glorious War on Terror Which Will Never End.
Luckily, their motto is not: &quot;To Protect &amp; To Serve!&quot;
The least NSA could do would be to leak a few webcam pics of Sarah Palin - without her wig.
OK, so the agency that&#039;s been caught spying on and attempting to blackmail Congress (&quot;attempting&quot; as far as we know) is also <i>maybe</i> just flat-out not doing their actual job? They&#039;d all get fired if everybody in charge wasn&#039;t afraid of them.
J. Edgar Hoover would be <i>so</i> proud!
No, you&#039;re thinking of &quot;Girls.&quot;