Nice to see gov recognizes that undermining vendor software updates is bad idea. But that's exacty what Flame did http://wrd.cm/1MO15pg
-
-
Replying to @KimZetter
@KimZetter Flame was national security (different equities), targeted, and not intended to be public, so no expected reaction.3 replies 0 retweets 0 likes -
Replying to @SteveBellovin
@SteveBellovin This wouldn't have been made public either, though. Would it have?@KimZetter1 reply 0 retweets 0 likes -
Replying to @emptywheel
@emptywheel@SteveBellovin Well if you start using it for criminal cases, it would eventually show up in court docs and discovery.1 reply 0 retweets 0 likes -
Replying to @KimZetter
@KimZetter It took how many years b4 Stingrays got noticed? And it's not like Ulbricht got notice of hacking to find him.@SteveBellovin3 replies 0 retweets 0 likes -
Replying to @emptywheel
@emptywheel@SteveBellovin so I don't think it would take as long for something like this to come to light.1 reply 0 retweets 0 likes -
Replying to @KimZetter
@KimZetter@emptywheel Certainly, governments are far more likely to look hard for evidence of other governments' work.1 reply 0 retweets 1 like -
Replying to @SteveBellovin
@SteveBellovin@emptywheel And the AV companies, like Kaspersky, won't hesitate to expose such operations either if they find them.1 reply 0 retweets 0 likes -
Replying to @KimZetter
@KimZetter@emptywheel Open question: do some AV companies "not notice" their own government's work?2 replies 0 retweets 0 likes
@SteveBellovin Yes, but one big Q is where there's not coverage. Kaspersky'll notice US, US firms will notice China, but France? @KimZetter
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.