Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Endpoint //

Privacy

Richard Clarke: Foreign Governments Not So Surprised by US Snooping

50%
50%

Former White House cybersecurity advisor Richard Clarke thinks foreign governments' outrage about American cyber-snooping is largely an act being put on for the benefit of political and economic agendas.

Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
tmccreight
50%
50%
tmccreight,
User Rank: Apprentice
3/27/2014 | 10:43:48 PM
Why is the NSA's activity such a surprise to anyone?
I agree with Richard's comments and his insight into the drivers behind some of the comments from foreign states.

I remember working on CALEA projects (there's an oldie for you) back in the 90's that caused concern wtih so many people, yet proved invaluable when we provided assistance to intelligence agencies in North America.  I understand and appreciate the difficult position Western nations are in - they don't want to let potential intelligence go undetected, but must also face harsh criticisms when they 'invade' the personal electronic space of citizens (both foreign and domestic).  I don't envy the daily decisions these folks make, but I can say I've seen the benefits of that information.
securityaffairs
50%
50%
securityaffairs,
User Rank: Ninja
3/27/2014 | 2:52:02 PM
Re: Why is the NSA's activity such a surprise to anyone?
Well Tim we must distinguish two aspect:

I agree with Richard Clarke, foreign governments are not surprised by US snooping because almost every state is developing its surveillance programme, more or less efficient. China, Russia and many other countries are investing to improve cyber capabilities on both defensive and offensive perspective. Suverillance and monitoring are common practices, they are the essential part of every cyber strategy, necessary to protect homeland security.

The extension of NSA activity, despite US isn't the unique government with a so aggressive cyber espionage programme, is embarrassing. US Governments has spied also on allies and it has arranged hacking campaigns (see FoxACID and TURBINE) to hack foreign enterprises like Huawei and Siemens. 

Frankly, it is gone too far ... it's policy will damage US IT industry

 
DarkReadingTim
50%
50%
DarkReadingTim,
User Rank: Strategist
3/27/2014 | 10:33:14 AM
Why is the NSA's activity such a surprise to anyone?
I'm amazed at the strong reaction to the NSA's surveillance activity, which has always been vast and deep. The NSA has been doing deep surveillance for many years. In fact, it used to be that all telecom carriers were required to have a presence in Jessup, Md. -- providing an easy location for the NSA to listen in.
Data Leak Week: Billions of Sensitive Files Exposed Online
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/10/2019
Intel Issues Fix for 'Plundervolt' SGX Flaw
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/11/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The Year in Security: 2019
This Tech Digest provides a wrap up and overview of the year's top cybersecurity news stories. It was a year of new twists on old threats, with fears of another WannaCry-type worm and of a possible botnet army of Wi-Fi routers. But 2019 also underscored the risk of firmware and trusted security tools harboring dangerous holes that cybercriminals and nation-state hackers could readily abuse. Read more.
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-5252
PUBLISHED: 2019-12-14
There is an improper authentication vulnerability in Huawei smartphones (Y9, Honor 8X, Honor 9 Lite, Honor 9i, Y6 Pro). The applock does not perform a sufficient authentication in a rare condition. Successful exploit could allow the attacker to use the application locked by applock in an instant.
CVE-2019-5235
PUBLISHED: 2019-12-14
Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone to be abnormal.
CVE-2019-5264
PUBLISHED: 2019-12-13
There is an information disclosure vulnerability in certain Huawei smartphones (Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9). The software does not properly handle certain information of applications locked by applock in a rare condition...
CVE-2019-5277
PUBLISHED: 2019-12-13
Huawei CloudUSM-EUA V600R006C10;V600R019C00 have an information leak vulnerability. Due to improper configuration, the attacker may cause information leak by successful exploitation.
CVE-2019-5254
PUBLISHED: 2019-12-13
Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have an out-of-bounds read vulnerability. An attacker who logs in to the board m...