In an e-mail sent to BSD project leader Theo de Raadt, former NETSEC CTO Gregory Perry has claimed that NETSEC developers helped the FBI plant "a number of backdoors" in the OpenBSD cryptographic framework approximately a decade ago.
Perry says that his nondisclosure agreement with the FBI has expired, allowing him to finally bring the issue to the attention of OpenBSD developers. Perry also suggests that knowledge of the FBI's backdoors played a role in DARPA's decision to withdraw millions of dollars of grant funding from OpenBSD in 2003. "This is also probably the reason why you lost your DARPA funding, they more than likely caught wind of the fact that those backdoors were present and didn't want to create any derivative products based upon the same."Read more
The problem with encrypted email is that it’s hard to use – if it weren’t, everyone would be using it. So rather than mucking around with encryption keys, they’re using services like Gmail, which leave their messages open for reading if an intelligence agency is secretly tapping the provider’s fiber, or if law enforcement comes knocking at the front door.
This is why the Dark Mail project, which ended its Kickstarter campaign comfortably past the $196,608 goal late Wednesday, is so intriguing. It represents the evolution of two notable secure email schemes that shut themselves down in the wake of the Snowden disclosures, Lavabit and as such it’s got some hefty talent running the show.Read more
Google is stepping up efforts to toughen data encryption in an effort to limit unofficial snooping on user information in the wake of the revelations about the NSA and PRISM. Eric Grosse, vice president for security engineering at Google said "It's an arms race", as he described government hackers as "among the most skilled players in this game."
In the aftermath of leaked documents from Edward Snowden, suggesting that some US companies have made it easy for information to flow to the government, Google is keen to show it is doing its utmost to protect its users' privacy. The company, that it would still have to comply with any legally approved Foreign Intelligence Surveillance Act requests and would hand over data whenever obligated to.Read more
Wikipedia is taking steps to make its site ‘unsnoopable’ to the NSA following revelations that its site users were being spied on. The measures will include the use of secure encryption for its logged-in users to minimize eavesdropping.
The non-profit US-based organization that manages Wikipedia, Wikimedia, has released a statement, announcing the introduction of HTTPS security protocol on its website to protect its visitors. Wikipedia believes strongly in protecting the privacy of its readers and editors. Recent leaks of the NSA’s XKeyscore program have prompted our community members to push for the use of HTTPS by default for the Wikimedia projects.Read more
It is possible with help of "Back up my data" in mobile operating system. The co-worker of the “Elecontric Frontier Foundation” Micah Lee announced that the function "Back up my data" in OS Android sends passwords from Wi-Fi and private information in plaintext to Google.
"Since backup and restore is such a useful feature, and since it's turned on by default, it's likely that the vast majority of Android users are syncing this data with their Google accounts. Because Android is so popular, it's likely that Google has plaintext Wi-Fi passwords for the majority of users,” Lee pointed out.Read more