Bonum Certa Men Certa

NSA Confirms Remote Computer Bricking by BIOS (or UEFI) as a Real Strategy

UEFI Forum operated by companies in bed with the NSA

UEFI logo with monopoly



Summary: NSA officials say that bricking a large number of PCs by tinkering with the boot process not just an imaginary plot

THE back doors in Windows are more than evident now, but Linux developers have just rewritten the random number generator, meaning perhaps that the NSA subverted the security of Linux by reducing entropy (e.g. via Red Hat staff, which is making requests for inclusion of NSA code in the core). This is troubling. As Phoronix put it (this debate has been going on for months now), "While /dev/random was made faster and more random in Linux 3.13, in light of the NSA controversies and that Intel/VIA hardware encryption and random generators may not even be trustworthy, there's been a rework in how reseeding happens for the Linux kernel's random component."



We previously pointed out that using back doors the NSA can completely brick hardware, especially if it uses UEFI. Surely that's a good reason to boycott UEFI, no?

Anyway, as part of a CBS puff piece (or propaganda piece where NSA gets the carte blanche and critics do not exist), there was an attempt to brick PCs using BIOS (causing irreversible destruction by sending packets). As the British press put it: "Senior National Security Agency (NSA) officials have told US news magazine program “60 Minutes” that a foreign nation tried to infect computers with a BIOS-based virus that would have enabled them to be remotely destroyed."

We already know, based on a lot of evidence, that the NSA is in every way worse than other such agencies; in fact, there is nothing China or Russia, for example, can be accused of that the NSA/CIA cannot be accused of (not anymore anyway). The accusations from the NSA seem to be directed at China (popular scapegoat for NSA hypocrites as it is the biggest computer manufacturer), but given what we have seen when it comes to chip development at the design level (e.g. backdoor by useless encryption at hardware level), it is the US, especially criminal companies like Intel, that we should be concerned about. The government of the US has been compelling and at times bribing companies for back doors (the bribes come through the CIA though, not the NSA). Google is reportedly moving further away from Intel [1, 2], but will it also abandon the second processor in mobile devices (the Trojan horse that turns mobile phones into non-stop listening devices)?

For those who fail to grasp how criminal and void of ethics the NSA has become, in the next post we shall summarise some of the latest news. Don't believe for a second the popular myth/fiction that China is worse when it comes to surveillance.

Recent Techrights' Posts

[Video] To Combat Efforts to Cancel or Kill the Career (and Reputation) of the People Who Made GNU/Linux We Must Rally the Community
nobody speaks better for projects and for licences than their own founders
Electronic Frontier Foundation Incorporated is Run by/for Corporations Now (Members' Money is Less Than a Quarter of the Money EFF Receives)
Facebook bribes
 
IRC Proceedings: Saturday, December 09, 2023
IRC logs for Saturday, December 09, 2023
Links 09/12/2023: Dictator's Nomination in Russia
Links for the day
The EFF Should Know Better, But It Is Promoting Mass Surveillance by Facebook (an Endorsement of Lies)
What is going on at the EFF?
Feedback Desired
Feedback can be sent by E-mail
A Message in Support of Richard Stallman, Condemning Those Who Misportray Him
message about Richard Stallman (RMS)
Links 09/12/2023: Many 'Open'AI Employees Strongly Dislike Microsoft, Many Impending Strikes
Links for the day
IRC Proceedings: Friday, December 08, 2023
IRC logs for Friday, December 08, 2023
Over at Tux Machines...
GNU/Linux news
Open Source Initiative (OSI) is Microsoft, It Presents Microsoft-Controlled Projects Like They're Everything That Exists in the World
They're not assessing the real data, they keep track only of projects foolish enough to choose slavery under Microsoft
Links 08/12/2023: Cyber Resilience Act in EU and Denmark Embracing 'Blasphemy Law'
Links for the day
Linus Torvalds Cannot Easily 'Offend' Companies Anymore, But Weeks Ago He Explained Why (Linux Support and Hardware Documentation Has Significantly Improved)
new clip
Links 08/12/2023: Tidal and Simplilearn Layoffs
Links for the day
IRC Proceedings: Thursday, December 07, 2023
IRC logs for Thursday, December 07, 2023
[Video] The Media Facilitates Microsoft's Abuse, Bribes, and Growing Threats to National Security
The failure of the media to properly and independently explain what's happening will continue to doom the media
[Video] The Next Ten Years of Techrights in a World With Changing Threats and Technological Landscapes (or Trends That Are Buzzwords/Cargo Cults)
The video of today talks about the site's (and capsule's plan) for the future
Wikipedia is Vandalism, Brought to You by Microsoft and Bill Gates
Reprinted with permission from Ryan Farmer