NSA and GCHQ mimic Google

Stefan Mileschin · 12th September 2013, 08:34

US intelligence has been mimicking the search engine Google to conduct "man in the middle" surveillance of suspects.

Buried in among all the NSA leaks, which have shown direct economic and private espionage, was the news about an operation code-named Flying Pig.

According to Techdirt, Flying Pig has not been mentioned before, although there were rumours that the NSA and others had been using "man in the middle attacks".

The NSA was reportedly running the attacks against the likes of Google, Yahoo and Microsoft.

The system is good as far as GCHQ and the NSA are concerned because they do not need to approach Google directly.

An NSA presentation that also contains some GCHQ slides describes how the attack was used to snoop on SSL traffic. It illustrates with a diagram how one of the agencies appears to have hacked into a target's internet router and covertly redirected targeted Google traffic using a fake security certificate. This allowed it to intercept the unencrypted information.

The British GCHQ network exploitation team developed Flying Pig because there was a rise in SSL encryption by email providers like Yahoo, Google, and Hotmail.

http://news.techeye.net/security/nsa...q-mimic-google

12th September 2013, 08:34	#1
Stefan Mileschin [M] Reviewer Join Date: May 2010 Location: Romania Posts: 153,514	NSA and GCHQ mimic Google US intelligence has been mimicking the search engine Google to conduct "man in the middle" surveillance of suspects. Buried in among all the NSA leaks, which have shown direct economic and private espionage, was the news about an operation code-named Flying Pig. According to Techdirt, Flying Pig has not been mentioned before, although there were rumours that the NSA and others had been using "man in the middle attacks". The NSA was reportedly running the attacks against the likes of Google, Yahoo and Microsoft. The system is good as far as GCHQ and the NSA are concerned because they do not need to approach Google directly. An NSA presentation that also contains some GCHQ slides describes how the attack was used to snoop on SSL traffic. It illustrates with a diagram how one of the agencies appears to have hacked into a target's internet router and covertly redirected targeted Google traffic using a fake security certificate. This allowed it to intercept the unencrypted information. The British GCHQ network exploitation team developed Flying Pig because there was a rise in SSL encryption by email providers like Yahoo, Google, and Hotmail. http://news.techeye.net/security/nsa...q-mimic-google

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
NSA, GCHQ break encryption, collaborate with top tech companies	Stefan Mileschin	WebNews	0	9th September 2013 09:46
GCHQ agents destroyed hard drives in Guardian basement	Stefan Mileschin	WebNews	0	21st August 2013 08:30
DARPA plans a "cortical processor" to mimic the brain	Stefan Mileschin	WebNews	0	21st August 2013 07:42
GCHQ talks of Assange sex scandal "fit-up"	Stefan Mileschin	WebNews	0	21st May 2013 07:24
iOS 7 said to mimic 'flatness' similar to Windows Phone 8	Stefan Mileschin	WebNews	0	30th April 2013 08:13
Google News updated with enhanced Google+ integration, real-time coverage	Stefan Mileschin	WebNews	0	7th May 2012 07:30
China Hacks Google Servers, Google decides to remove content filter on Google.cn	jmke	WebNews	0	13th January 2010 16:39
Scientists mimic essence of plants' energy storage system	jmke	WebNews	0	3rd August 2008 02:26
Pimp Your Windows XP to mimic and even surpass Vista	jmke	WebNews	0	23rd June 2007 15:44
See No Google, Hear No Google, Speak No Google	Sidney	WebNews	1	15th September 2004 07:45