@Tryptameanie 572408 wrote:
This sort of software is a prime example of why the NSA and buddies should not be making attempts to weaken critical software such as encryption algorithms and holding back from notifying vendors of zero days in their software so they have offensive capabilities, it shows that if NSA and co. can find the holes, so can others, making everybody a sitting duck.
90% of the time NSA don’t even need to bother with stuff like backdooring crypto; and a lot of networking equipment used in larger installations has the surveillance facilities built it (they are often used for legitimate purposes such as indentifying faulty devices) but has weak security; and once you have physical access to a device or any part of the network it is on you can get at all sorts of data.
has worked since analogue days (a German professor put up the circuit on his website (to hack an 1980s analogue telephone) and said “try it!” ) – I am listening to the oompah music inside the room where the phone is rather than the phone call (as i’m not answerinf the phone; it could be spies)
https://www.youtube.com/watch?v=gcq7_JG6oGQ
this is a special extra wire across those phone pairs; I can clip the test set to these and monitor what is on theese circuits although I’ve got a code to check all traffic from my mobile and auto record on some circuits
https://www.youtube.com/watch?v=4T9GZPAqBZ8
I had set up this business grade router for work in 2011 but mislaid the British Telecom paperwork with the passcodes (it needed a firmware upgrade) Although its config files are supposedly encrypted; the crypto is that week a python script can deal with it within a few seconds. It took me 5 minutes to obtain the data this way (far quicker than speaking to British Telecoms call centre and going through their security procedures)
it is not uncommon for me to have to hack embedded systems simply to check they are working as they should.
