[LINK] FBI "Trojan horse" triggers alarms
David Lochrin
dlochrin@dot.net.au
Tue, 26 Mar 2002 11:11:10 +1100
At 09:52 AM 25-03-2002 +1000, Pilcher, Fred wrote:
>http://www.newscientist.com/hottopics/tech/article.jsp?id=99991608&sub=Security%20and%20Defence
>
>"Software companies may be asked to make their security applications ignore
>FBI computer surveillance tools, but experts say this could create security
>hazards.
>
>The FBI is reportedly developing a "Trojan horse" computer tool called Magic
>Lantern. This program is designed to steal passwords from the computer of a
>suspected criminal. This would allow investigators to unlock and read
>encrypted communications and encrypted files."
The FBI probably doesn't care much about Sun or Linux boxes, since most of their "suspects" will be using MS Windows, and very few will be using firewalls. ISPs don't normally firewall their customers.
All the FBI has to do is to develop a Trojan email attachment and provide its "virus signature" to Symantic, who seem to have the lion's share of the anti-virus software market. Then they pursuade Symantic to patch their AV software so it always runs this virus before raising the alert. Simple, really.
Now where was that open-source AV software?
David
=================================================
David Lochrin
Networked Systems Consultancy Pty. Limited ABN 20 074 899 853
+61 2 9363 1094 (telephone) 9363 9622 (FAX)
http://www.dot.net.au/~nsc
PGP public key available by mail to: pgp-public-keys@keys.pgp.net
subject: GET David Lochrin
=================================================