Federal Agents Using Spyware联邦特工使用的间谍软件
US drug enforcement agents use key loggers to美国缉毒特工使用按键记录,以 bypass 旁路 both PGP and Hushmail encryption:双方的PGP和加密与Hushmail :
An agent with the Drug Enforcement Administration persuaded a federal judge to authorize him to sneak into an Escondido, Calif., office believed to be a front for manufacturing the drug MDMA, or Ecstasy.代理人与缉毒当局游说一名联邦法官准许他潜入一个Escondido的加州,办公室被认为是一个幌子制造毒品摇头丸,迷魂药。 The DEA received permission to copy the hard drives’ contents and inject a keystroke logger into the computers.That was necessary, according to DEA Agent Greg Coffey, because the suspects were using PGP and the encrypted Web e-mail service Hushmail.com.缉毒局收到许可复制硬盘上的内容并注入一个按键侧录到computers.that是必要的,根据DEA的代理人格雷戈coffey的,因为犯罪嫌疑人使用的PGP和加密的网络电子邮件服务hushmail.com 。 Coffey asserted that the DEA needed “real-time and meaningful access” to “monitor the keystrokes” for PGP and Hushmail passphrases. coffey宣称DEA的需要"的实时性和有意义的接触" ,以"监控按键"的PGP ,并与Hushmail passphrases 。
And the FBI used spyware和联邦调查局利用间谍 to monitor 监察 someone suspected of making bomb threats:有人怀疑炸弹威胁:
In an affidavit seeking a search warrant to use the software, filed last month in US District Court in the Western District of Washington, FBI agent Norman Sanders describes the software as a “computer and internet protocol address verifier,” or CIPAV.The full capabilities of the FBI’s “computer and internet protocol address verifier” are closely guarded secrets, but here’s some of the data the malware collects from a computer immediately after infiltrating it, according to a bureau affidavit acquired by Wired News.在誓章寻求搜查令,对软件的使用,提出了在上个月美国联邦地方法院在华盛顿西区,联邦调查局特工人员诺曼桑德斯描述软件作为一个"电脑及互联网规约地址核查人" ,或者cipav.the全方位能力根据美国联邦调查局的"电脑及互联网规约地址核查人的"壁垒森严机密,但这里的一些数据,恶意收集可以从电脑上后,立即渗透,据一份宣誓书局收购有线新闻。
- IP address IP地址
- MAC address of ethernet cards MAC地址的以太网卡
- A list of open TCP and UDP ports名单打开TCP和UDP端口
- A list of running programs列出运行程序
- The operating system type, version and serial number操作系统类型,版本和序号
- The default internet browser and version预设的网际网路浏览器及版本
- The registered user of the operating system, and registered company name, if any注册用户的作业系统,和注册公司名称,如果有的话
- The current logged-in user name当前登录用户名
- The last visited URL最近访问过的URL
Once that data is gathered, the CIPAV begins secretly monitoring the computer’s internet use, logging every IP address to which the machine connects.一旦数据收集, cipav开始秘密监控电脑的网际网路使用,测井,每IP地址,其中机连接。
All that information is sent over the internet to an FBI computer in Virginia, likely located at the FBI’s technical laboratory in Quantico.所有这些信息是通过互联网发送到计算机,联邦调查局在弗吉尼亚州,有可能设在美国联邦调查局的技术实验室在quantico 。
Sanders wrote that the spyware program gathers a wide range of information, including the computer’s IP address; MAC address; open ports; a list of running programs; the operating system type, version and serial number; preferred internet browser and version; the computer’s registered owner and registered company name; the current logged-in user name and the last-visited URL.桑德斯去函表示,间谍程序收集多方面的资料,包括电脑的IP地址, MAC地址;开放口岸;名单的运行程序;操作系统类型,版本和序号;首选互联网浏览器及版本;计算机的登记车主及注册公司名称;当前登录用户名和最后访问的URL 。
The CIPAV then settles into a silent “pen register” mode, in which it lurks on the target computer and monitors its internet use, logging the IP address of every computer to which the machine connects for up to 60 days.该cipav然后稳定下来,成为一个无声的"手写登记册"的模式,其中潜伏着对目标计算机和显示器,其在互联网上使用,伐木的IP地址,每一台计算机,其中以机器相连,最长可达60天。
I’ve been saying this for a while: the easiest way to get at someone’s communications is not by intercepting it in transit, but by accessing it on the sender’s or recipient’s computers.我一直这样说了一会儿:最简单的方式,获得在某人的通信,是不是由它拦截过境的,但一旦进入,这对寄件人或收件人的电脑。
I should add that the police got a warrant in both cases.我要补充一点,就是警察抓回手令在这两种情况下。 This is not a story about abuse of police power or surveillance without a warrant.这不是一个故事,关于警察滥用权力或监视,没有逮捕证。 This is a story about how the police conducts electronic surveillance, and how they bypass security technologies.这是一个故事,警方如何进行电子监控,以及它们如何绕过安全技术。
FBI 联邦调查局 Section has more related reports 科更多相关报道 Help keep RINF going..有利于保持rinf去..Comment on 'Federal Agents Using Spyware' : 评论'联邦特工使用的间谍软件' :
Related News: 相关新闻:
