Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
×
Government

New Report Says American Government Agencies Are Using Malware Similar To Banned Pegasus Spyware (digitalinformationworld.com) 77

A new report has revealed that a government agency in the US, namely the Drug Enforcement Agency (DEA), is allegedly using a spyware called Paragon Graphite that shares similarities with the notorious Pegasus spyware. From a report: Pegasus was sold off to the government and other law firms. Moreover, we saw the firm making plenty of purchases through the likes of hackers. The software tends to give in to exploitation that can be achieved through zero clicks, all thanks to the great skill of hackers. Moreover, such software can produce its target without any interaction. [...] New reports by the Financial Times stated how the American Government makes use of this technology as it can pierce all sorts of protections linked to modern-day smart devices. Similarly, it can evade various forms of encryption for messaging applications such as WhatsApp and harvest data thanks to the likes of cloud backups. And yes, it's very similar to its counterpart Pegasus in this ordeal.

For now, the DEA is awfully hushed on the matter and not releasing any more comments on this situation. But it did reveal how its agency ended up purchasing Graphite to be used by agencies in Mexico so they could curb the drug cartel situation.
"According to four [industry figures], the US Drug Enforcement and Administration Agency is among the top customers for Paragon's signature product nicknamed Graphite," reports the Financial Times. "The malware surreptitiously pierces the protections of modern smartphones and evades the encryption of messaging apps like Signal or WhatsApp, sometimes harvesting the data from cloud backups -- much like Pegasus does."

The report adds: "Congressman Adam Schiff, the chair of the House Intelligence Committee, wrote to the DEA in December asking for more details on the purchase. Mexico is among the worst abusers of NO's Pegasus which it bought nearly a decade ago.

Schiff wrote: "such use [of spyware] could have potential implications for US national security, as well as run contrary to efforts to deter the broad proliferation of powerful surveillance capabilities to autocratic regimes and others who may misuse them."
This discussion has been archived. No new comments can be posted.

New Report Says American Government Agencies Are Using Malware Similar To Banned Pegasus Spyware

Comments Filter:
  • Update - it's also been largely confirmed that... water is wet.

  • by oldgraybeard ( 2939809 ) on Wednesday May 31, 2023 @07:52PM (#63566091)
    The laws and regulations don't apply to them, they only apply to the peasants.
  • This is extremely vague sourcing. I don't doubt that American spooks have no regards for civil rights or privacy, and are using every trick in the book whether it's legal or not. But this article has a strong odor of clickbait.

    • by ZipNada ( 10152669 ) on Wednesday May 31, 2023 @08:20PM (#63566127)

      Here's a similar article with more detail;
      https://arstechnica.com/tech-p... [arstechnica.com]

      • by Geoffrey.landis ( 926948 ) on Wednesday May 31, 2023 @09:16PM (#63566199) Homepage

        Here's a similar article with more detail;
        https://arstechnica.com/tech-p... [arstechnica.com]

        and, if you can get through the paywall, the original New York Times article is here: https://www.nytimes.com/2022/1... [nytimes.com]

        • by Shaitan ( 22585 )

          Is it just as blatant a Chinese translation as what is quoted TFS above?

          From TFS,

          "And yes, it's very similar to its counterpart Pegasus in this ordeal" What ordeal?
          "Moreover, such software can produce its target without any interaction" It produces its target? Fascinating. It is spawning things to exploit then?

          And it claims Adam Schiff who had relations with a Chinese spy is Chair of the Intelligence committee. While Schiff ultimately was not censored because they couldn't PROVE wrongdoing after having been

          • And it claims Adam Schiff who had relations with a Chinese spy is Chair of the Intelligence committee. While Schiff ultimately was not censored because they couldn't PROVE wrongdoing after having been informed by intelligence agencies of her loyalties, he was booted from the intelligence committee and should have never been allowed on it in the first place when there are hundreds of other congress critters to choose from with no history doing the dirty with Chinese spies.

            It wasn't Schiff, it was Eric Swa [thepostmillennial.com]

            • There's plenty of evidence that trump was and is a Russian stooge.

              https://www.cnn.com/2019/11/17... [cnn.com]

              • by Shaitan ( 22585 )

                There is no evidence of anything in that article, just a bunch of spin. As for Schiff I'd mixed him and Swalwell up but Schiff was a party to entirely fake Steele Dossier and the drive to investigate the Trump campaign without evidence.

                • It is loads of evidence. And then there is the Mueller report and the Senate Intelligence Committee reports which also outline the extensive collusion.

                  • by Shaitan ( 22585 )

                    Mueller didn't find any evidence of collusion and the other was nothing but propaganda. Buddy, it was FAKE. Even Clinton's campaign manager admitted they were pushing it out knowing it was probably fake. The sources have admitted it was fake.

                    The Durham report showed it was fake and provides enough evidence of people who knew it was fake breaking policy to push it through to only be consistent with an intent of deliberate election interference and obstruction of the Presidency.

                    • Mueller's report has a whole section on collusion. The report from the Senate Intelligence Committee was issued at a time when Mark Rubio was chairman. They name names, describe all the actions. Try reading them. Heck, trump practically falls on his knees whenever he's around Putin. He met with Putin privately for hours with no staff present and no transcript of the meeting.

                      The Durham report was an absolute nothing. Millions of dollars completely wasted.

                    • Mueller's report has a whole section on collusion.

                      ...and how it found zero evidence of it.

                  • It is loads of evidence.

                    Tell us, specifically, one piece of evidence saying Trump colluded with Russia.

                    • Glad to help. Here's a summary, a long list of actions taken in close cooperation with Russia;

                      https://www.lawfareblog.com/fu... [lawfareblog.com]

                    • OK I read it. I specifically asked for "evidence the Trump campaign colluded with Russia." You only showed instances of Russia trying to help the Trump campaign and contacting people who were not in the Trump campaign. Russia does what it's going to do. Trump and his campaign did not, otherwise he'd be in jail, wouldn't he?

                      From your link:
                      "the investigation did not establish that members of the Trump Campaign conspired or coordinated with the Russian government in its election interference activities."

                      Ho

                    • The reports document many instances where Trump and his people specifically worked with Russia. Mueller stated that the sitting President couldn't be indicted, that's why he wasn't charged. Even now Trump is making it clear that he would give Ukraine over to Russia. He's a Russian stooge, and you like him.

                      But hey, what about Hillary's emails? Hilarious!

                    • No, it does not. It has one instance where someone in the campaign (or was it two guys?) started taking pro-Russian stances and they were very quickly fired. It also cites a few instances of Russians trying to contact people or talking to Russians not in the government, or people unsuccessfully trying to set up a meeting.

                      It all points an image of the Russians actively trying to gain a foothold in the Trump campaign, and failing miserably due to the campaign's diligence.

                      I find it hilarious you didn't even

                    • "failing miserably due to the campaign's diligence", hilarious! Trump is totally in the tank for the Russians, and you like him.

                      Now the convicted sex predator is up to his eyeballs in legal trouble related to his attempted subversion of the election, his theft of classified documents, and his hush money payments to a porn star. All of which everyone knows he really did do.

                    • It's sad that this is what passes for debate on /.

                      And BTW, I don't like Trump at all, would never vote for him.

            • by Shaitan ( 22585 )

              Yup, I cross wires on it. They were dumped at the same time.

  • It isn't a surprise here. I'm sure all governments have some way into a phone for remote spying, either some expensive zero days, an app everyone uses that exfiltrates data that it shouldn't, or maybe a maker back door that was "suggested".

    iOS at least has a little bit of a defense with Lockdown Mode, but Android desperately needs something similar where the device will not act on incoming text or other items, and will block third party programs from doing so without having to resort to root and Linux tier

    • I think you're missing the point. Government agencies aren't real things. They're made out of people. People move in an out of government. What happens when a bunch of people who have been hacking phones for the government move into the private sector? What happens when that government agency gets hacked? What happens when the device manufacturer has to give the backdoor to multiple governments? Apple, Miscrosoft and the NSA have destroyed American cyber infrastructure in a bid to keep access but the ac
    • I think you're missing the point. Government agencies aren't real things. They're made out of people. People move in an out of government.

      What happens when a bunch of people who have been hacking phones for the government move into the private sector? What happens when that government agency gets hacked? What happens when the device manufacturer has to give the backdoor to a government on the opposite side of a trade war?

      Apple, Microsoft and the NSA have destroyed American cyber infrastructure in a bi
  • Not only are they using it, they're probably using worse.

  • by myowntrueself ( 607117 ) on Wednesday May 31, 2023 @10:32PM (#63566309)

    Because the Chinese might spy on you!!!!!

    • Part of the security threat from TikTok is that they can push any propaganda or censor any content they like. And users have no control over that.

      In any case, if someone can prove the malware is specifically being used to spy on Americans illegally, you can try to put a stop to it. But don't ignore the very real threat from China. If they're just using it to protect plants or other infrastructure, or for defense reasons, this is not news.

      • Part of the security threat from TikTok is that they can push any propaganda or censor any content they like. And users have no control over that.

        Uh huh.

        Tell me more about American social media platforms...

        • Part of the security threat from TikTok is that they can push any propaganda or censor any content they like. And users have no control over that.

          Uh huh.

          Tell me more about American social media platforms...

          They're American and not directly working for a foreign government intent on destroying us? They're subject to American regulation and warrants in ways a Chinese owned and run company isn't? How can you possibly not know this?

  • I mean I don't think the department of education is using advanced malware and hacking tools...

    When folks talk about right wing bias and media this is what we're talking about. We get a nebulous term like government agencies instead of the more specific term law enforcement. That's not an accident.
    • Don't be paranoid. Saying 'government' is not a conspiracy.

      • Don't be paranoid. Saying 'government' is not a conspiracy.

        Conspiracies are the norm, not the exception. You've been brainwashed into thinking that conspiracies are rare.

        • Don't be paranoid. Saying 'government' is not a conspiracy.

          Conspiracies are the norm, not the exception. You've been brainwashed into thinking that conspiracies are rare.

          There is a very strong, very well orchestrated push to shove out conspiracy theories that are the most outlandishly stupid contrivances. You hear them everywhere now. These crazier conspiracy theories are carefully constructed in a way where just enough people hear them and start to believe before they make it to a semi-sane person with a knack for fact-finding, and by the time the fact-finders challenge the conspiracy, it's already become "defacto truth" to a large enough segment of society that there's re

        • No, they're not. Fuck it, I'm not arguing with moonbats and flat earthers again.

  • It's the hypocrisy that bothers you? If they're using it against our enemies (states or international criminals) or to protect us against infrastructure attacks, not us, then I say no shit, keep doing your job!

    • If they're using it against our enemies...not us...

      This is where Government power ALWAYS falls apart. Our governments (at all levels) are largely incapable of drawing that distinction. Any power granted to a government to protect "us" against "them" will invariably be redirected from "them" towards "us", even if only occasionally. Then that power corrupts, and the difference between "us" and "them" turns into little more than an academic exercise.

      Any other agency tasked with oversight will eventually forego its oversight responsibility, and become absorbed

    • It's the hypocrisy that bothers you? If they're using it against our enemies (states or international criminals) or to protect us against infrastructure attacks, not us, then I say no shit, keep doing your job!

      Exactly. The challenge is to have guardrails in place to prevent abuses, and take action when abuse happens. The notion that we shouldn't be using tools in the manner you describe is simplistic and wrong.

      • Yep. Give them the tools they need, then watch them like hawks. Ignore the libertarians and the woketards.

    • It's the hypocrisy that bothers you? If they're using it against our enemies (states or international criminals) or to protect us against infrastructure attacks, not us, then I say no shit, keep doing your job!

      (On the bolded bit.) Oh my. My, my, my. You really believe any government in the world would have these tools and *NOT* use them against their own people? Have you noticed human nature and what happens to those with a little power and no oversight?

      • Well, lots of them have guns and even heavy military equipment and yet don't go on regular rampages. Some even have nuclear weapons! So yeah, I don't think they can have those tools and use them properly, if there's oversight.

        • *I think they CAN have and use those weapons...

        • Well, lots of them have guns and even heavy military equipment and yet don't go on regular rampages. Some even have nuclear weapons! So yeah, I don't think they can have those tools and use them properly, if there's oversight.

          We've seen a lot of tear gassing and rubber bullets. The way things have been going, you'll probably get to see the rest soon enough.

  • MICROS~1 strikes again!
  • This is a blatant Chinese translation.

    From TFS,

    "And yes, it's very similar to its counterpart Pegasus in this ordeal" What ordeal?
    "Moreover, such software can produce its target without any interaction" It produces its target? Fascinating. It is spawning things to exploit then?

    And it claims Adam Schiff is Chair of the intelligence committee. Schiff was booted from the intelligence committee because of his involvement with the fabricated Steele Dossier used to start the Russiagate probe and his inaction with

  • https://www.theverge.com/2021/... [theverge.com] What is sad is MVT development discontinued. What is good, the last power use tracking app caught tampering. Lets hope Amnesty International can get a cash infusion to keep this detection tool going.
  • If I had read TFA a couple years ago I would have assumed based on word usage and paragraph structure that it had been translated from another language by a non native English speaking translator. Now I assume that this was actually written by an AI text generator. This feels like a 3rd grade book report, which would be commendable if it were done by a third grader as a journalism project.
    At least no human has claimed credit for generating this, or at least there is no authorship information on TFA.
    Maybe

  • It should be illegal for the government.

Our OS who art in CPU, UNIX be thy name. Thy programs run, thy syscalls done, In kernel as it is in user!

Working...