Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
×
United States Privacy

Getting Data From NSA Takes 'Days' So Federal Counterintelligence Agency Turned To Private Company, Documents Show (404media.co) 33

Slash_Account_Dot writes: A federal counterintelligence agency tracking hackers has bought data harvested from the backbone of the internet by a private company because it was easier and took less time than getting similar data from the NSA, according to internal U.S. government documents. According to the documents, going through an agency like the NSA could take "days," whereas a private contractor could provide the same data instantly. The news is yet another example of a government agency turning to the private sector for novel datasets that the public is likely unaware are being collected and then sold.
This discussion has been archived. No new comments can be posted.

Getting Data From NSA Takes 'Days' So Federal Counterintelligence Agency Turned To Private Company, Documents Show

Comments Filter:
  • Then shouldn't the same red tape apply when performing the same task through the civilian sector?

    Or is it okay for companies to go around censoring speech because government is willing to spend money instead of being burdened with the bureaucracy of pesky laws like the constitution.

    This post brought to you by Pfizer

    • Government agencies are in fact bound by more laws and sometimes different laws as well, than private companies.
    • by mjwx ( 966435 )

      Then shouldn't the same red tape apply when performing the same task through the civilian sector?

      Or is it okay for companies to go around censoring speech because government is willing to spend money instead of being burdened with the bureaucracy of pesky laws like the constitution.

      This post brought to you by Pfizer

      If only the government would thing about some General Protection for Data, possibly even making it a Regulation.

      Nah, that would just be stupid.

  • Private company (Score:4, Interesting)

    by Deal In One ( 6459326 ) on Tuesday September 26, 2023 @09:57AM (#63878195)

    So there are private companies having data monitoring / data harvesting systems on the backbone of the internet?

    I think all governments should be very afraid that such capability exists for potential sale to the highest bidder.

    And can someone from EU please use the GDPR to sue these companies out of existance?

    • and screw this news outlet (404 media?) for even suggesting it does.

      This is about bypassing warrants and/or congressional oversight. By buying it from private companies it's now just a purchase from a vendor, so it doesn't trigger any of the (albeit limited, it's the NSA) oversight mechanisms in place to stop them from abusing information gathering.

      Police depts have been caught doing this a *lot* lately, so it's no surprise the NSA was doing it. Hell, the police probably learned it from the NSA. We'
      • by Anonymous Coward

        Police depts have been caught doing this a *lot* lately, so it's no surprise the NSA was doing it.

        If you read the article, you'd see that it's not the NSA doing it-- it is about a different agency buying data commercially because the NSA wouldn't provide it (or, possibly, wouldn't provide it fast enough.)

        The article [404media.co] itself names that other agency as the Defense Counterintelligence and Security Agency, DCSA (formerly known as Defense Security Service); an agency that somehow manages to avoid much public scrutiny.

        Not entirely clear to me from the article whether this data being collected is protected priv

    • by boulat ( 216724 )

      Yes, they exist.

      Also you not gonna do jack shit about it.

    • by HBI ( 10338492 )

      If the GDPR had any teeth, a lot of this stuff wouldn't exist. I mean, Echelon and the like have existed for as long as i'm alive, and that violates the spirit and the letter of the GDPR. The authors were kidding themselves. It might be useful against China or internal eavesdropping in the EU, but the US can violate with impunity.

      Probably if Europe didn't feel dependent on the US for defense, there would be more chance of effective regulation. As it stands, this soft power stuff is for the birds, ultimat

      • If the US didn't exist there would be just as much spying on their own people going on in Europe.

        For example, the U.K. (yes I know they left the EU) is the poster child for public camera surveillance. The US didn't make them do that.

        • by HBI ( 10338492 )

          The degree to which modern societies that purport to be free and democratic rely on surveillance that would be decried in the past as a mark of authoritarian rule is astounding.

          It's hard to construct a quality argument that we are the good guys anymore.

    • Depends on the data. The article isn't very specific about what exactly the data contains but it sounds generic and doesn't point to individuals. If it is publicly available data then there really isn't anything wrong here, if it is an issue then you'd need a change in the law.
  • If the states make it a priority to handle such information then the states will get it immediately. If they'd rather trust some, any grinning snake of a CEO for state security then red tape is just common sense.

  • by groobly ( 6155920 ) on Tuesday September 26, 2023 @10:18AM (#63878245)

    Doing things legally is so inconvenient.

  • Why are our tax dollars even going to an agency that spies on its own people? Yet, here we are.

  • by Bruce66423 ( 1678196 ) on Tuesday September 26, 2023 @10:45AM (#63878335)

    “The network data includes data from over 550 collection points worldwide, to include collection points in Europe, the Middle East, North/South America, Africa and Asia, and is updated with at least 100 billion new records each day,”

    https://sam.gov/opp/96b4874e76... [sam.gov]

  • GOOD, that the NSA puts up roadblocks even to other government agencies.

    BAD, that private industry isn't at least as protective of sensitive information.

    • by bobby ( 109046 )

      Overstating the obvious, but private industry is 100% about profit. Ethics, rules, society's wishes are brushed aside, if they're acknowledged at all.

      The problem is We the People have not spoken loudly enough to get personal privacy laws in place. More specifically, our "representatives" listen to paid lobbyists far more than what we want. That plus there's always a mantra of keeping commerce and the economy flowing. Then you'll have companies whining about how it'll cost money and hurt business if they

  • How does this work when almost all web traffic is https encrypted nowadays?
    • It's unclear if they can already unencrypt or are just saving the data streams for later when they can.

      Also, even if you can't read the data, you can see the meta data. If I knew you were making a tcp/up connection to a server in Tehran's embassy and sending gigabytes of data then maybe we should be taking a closer look at you, eh?

    • by XXongo ( 3986865 )
      According to the article, the data is giving them the connections: which computer is connecting to which by what route.

      They're using it to try to track encrypted traffic back to the source computer. (e.g., where is the malware sending its data?) That lets them know where the hackers actually are, not just which computer was used as the last node for connection.

    • Comment removed (Score:4, Interesting)

      by account_deleted ( 4530225 ) on Tuesday September 26, 2023 @12:50PM (#63878805)
      Comment removed based on user account deletion
  • The upgrades just aren't getting done, and things have *really* slowed down a bit.

  • I am still waiting for them to send me a copy of the hard drive data that they mysteriously copied off my computer and into one of their massive data farms.

    .

    /sarcasm

Genius is ten percent inspiration and fifty percent capital gains.

Working...