Former employee disclosure: theft of United States Council is easy-IT information
Beijing time on October 29, according to foreign media reports, aidehua·sinuodeng (Edward Snowden) due to leaks, including United States National Security Agency (NSA) "prisms" within the project in the United States Government secret intelligence watch fame. But the NSA contractor, worked with Lord Snowdon haluode·Mading employed by the same company (HaroldMartin), might be considered as United States history eavesdropper.
Martin arrested
In late August, 51 years old, Martin was FBI raids in their homes and were arrested. According to the latest indictment, Martin was accused of stealing a number of NSA more than 10 computers and tens of thousands of documents in the server. It is reported that in 20 years of cooperation with the NSA, Martin stole files, data size exceeds the 50TB.
Initially, the theft of Martin was accused of misdemeanors only, but soon upgraded to spying by the authorities, partly because he stole a large amount of confidential data. Face criminal charges, Martin or face 10 years in prison.
We it is not clear how authorities discovered and caught Martin. But the larger question is: How did Martin steal such a large amount of data, and for such a long time, why it had not been found?
Easy stealing
Former NSA employee, who asked not to be named, said Martin is likely to ease after stealing secret documents and blatantly from the NSA came out of the front door.
"Gates of NSA Security staff, feel free to check it from the staff bag or tote bag, and do not check their clothes pockets," the employee said. This left NSA employees in seven or eight years ago, he worked on multiple positions at NSA for nearly 30 years. "As long as it is can put down anything in their pockets, are able to take out, no problem," he added.
Another former NSA employees agree with this statement, he left NSA in seven or eight years ago. "In fact, NSA security system that can scan all the employees," the former employee said, and hinted at NSA Headquarters in Fort Meade, Maryland in front of the security system is very bad. Approximately 30,000 employees work at NSA Headquarters, these employees leave the building every day to carry out security checks, usually takes a few hours.
The second employee said, the vast majority of NSA employees through security is proven and NSA have an inherent trust for its employees. No wonder the United States Director of national intelligence James Clapper (JamesClapper) said in 2014, it will not appear to leak like Snowdon, because the security of the institution "based on personal trust."
Technical obsolescence
Because this involves national security, according to Martin's indictment did not say how the NSA computer and server gets the data. But two former NSA employees talk about their personal views.
"Based on what he did, (Martin) may have used a USB memory stick," the first employee said. According to market data show that over the past more than 20 years, USB storage size exponentially, Martin is slowly and gradually succeeding.
Second ex-employees say, theft of data is not difficult, because NSA focused on "some of the best hackers in the world".
Understanding "Martin steal data", almost all of them mentioned the case with Lord Snowdon, because do not know how the mastermind of two cases from the NSA access to data in the system. But according to a report, said multiple intelligence sources, snow means of theft of data is very simple, just "some thumb-size USB flash drive, and would like to use the old loophole in the security system" can be realized. Quoted one source as saying, in 2013, the NSA still use the 2003 technology. ”
"I'm sure they found a (Cleanup) method, this method will not be detected. "The employee said, but gave no further details, but he added that the system probably will not end" normal or moderately skilled Insider "operations.
Martin's lawsuit claims the FBI found in a letter written by Martin, who boasted of "found a great deal (NSA) technology secrets," and suggested that NSA's system is not as expected, so safe, "you lack the most basic security practices, that you are the best. Things like bread and butter will trip you up. At this point, believe me "
However, little is known about Martin. Their LinkedIn page, Martin's identity has been a contractor and consultant roles over the years, and served as China's Defense Ministry consultant.
前员工爆料:窃取美国安局资料非常容易 - IT资讯
北京时间10月29日消息,据外媒报道,爱德华·斯诺登(Edward Snowden)因泄密包括美国国家安全局(NSA)“棱镜”项目在内美国政府多个秘密情报监视项目而名声大噪。但NSA的承包商、曾与斯诺登受雇于同一家公司的哈罗德·马丁(HaroldMartin),则可能成为美国历史上最大的窃密者。
马丁被捕
今年8月下旬,51岁的马丁在自己的家中遭FBI突袭并被逮捕。根据最新的起诉书称,马丁被指控盗窃了NSA数十几台电脑和服务器内的上万份文件。据悉,在与NSA合作的20年间,马丁偷走的文件、数据容量超过了50TB。
最初,马丁的盗窃行为仅被指控为品行不端,但很快被当局升级为间谍行为,部分原因是他盗走了大量秘密数据。面对每项有罪指控,马丁或将面临着10年监禁。
我们目前尚不清楚当局是如何发现并抓住了马丁。但心头更大的一个疑问是:马丁是如何窃取了这么庞大的数据量,而且过去了这么长时间,为何未被发现?
从容窃取
一位不愿透露姓名的NSA前雇员表示,马丁很可能在从容窃取秘密文件之后,并大摇大摆地从NSA前门走了出来。
“NSA大门的安检人员,只是随意地检查一下离行人员的书包或手提袋,并不会检查他们的衣着口袋,”这名雇员工表示。这名雇员在七、八年前离开了NSA,他在NSA的多个岗位上工作了近30年时间。“只要是口袋里能够放的下的任何东西,都能够带出去,没有问题,”他补充说。
另一位NSA前雇员同意上述说法,他也是在七、八年前离开了NSA。“实际上,NSA的安检系统不会扫描所有员工,”这名前员工表示,并暗示位于马里兰州米德堡的NSA总部门口的安检系统很糟糕。大约30000名员工在NSA总部工作,每天这些员工在离开这幢大楼都要进行安检,通常需要数小时时间。
第二位雇员还称,绝大多数NSA雇员通过安检时都是久经考验,因此NSA对其雇员产生了一种固有的信任感。难怪美国国家情报总监詹姆斯·克拉珀(JamesClapper)在2014年时曾表示,这里不会出现第二例类似斯诺登一样的泄密事件,因为该机构的安全“基于个人信任”。
技术陈旧
因为这涉及国家安全,针对马丁的起诉书没有透露其是如何从NSA电脑和服务器当中获取数据的。但两位NSA前雇员谈及了他们的个人观点。
“基于他的所作所为,(马丁)可能使用了U盘,”第一名员工表示。根据市场数据显示,在过去二十多年时间里,USB存储规模成倍增长,马丁正是这样慢慢逐步得手。
第二名前雇员则表示,窃取数据并非难事,因为NSA集中了“部分全球最优秀的黑客”。
在了解“马丁窃取数据案”后,几乎所有人都将该案与斯诺登案相提并论,因为均不知道两起案件的主谋是如何从NSA系统里获取数据的。但根据一份报告称,多个情报部门消息人士指出,斯诺登窃取数据手段非常简单,只需要“一些拇指大小的U盘,并乐意利用那些陈旧安全系统上的漏洞”即可实现。援引一位消息人士的话称,2013年时,NSA使用的仍是2003年的技术。”
“我敢肯定,他们找到了一种(清理文件的)方法,而这种方法不会被探测到。”这名雇员称,只是没有透露进一步细节,但他补充说,该系统很可能不会终止“正规或适度熟练内部人员”的操作。
针对马丁的起诉书称,在FBI发现马丁所写的一封信件中,其本人吹嘘自己“发现了大量(关于NSA的)科技秘密,”并暗示NSA的系统并不像想象中的那么安全,“你缺少最基本的安全实践,认为你是最好的。类似面包和黄油一样的东西就会绊倒你。在这一点上,相信我”
尽管如此,人们对马丁还是知之甚少。其LinkedIn页面显示,马丁多年来身份一直是承包商和顾问角色,并担任中国国防部工程顾问。