Contact us today!
(518) 203-2110

Evolve IT

Evolve IT has been serving the Saratoga Springs area since 1995, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
Font size: +
Subscribe to this blog post
Print

Was the NSA Hacked By Enemies Abroad, or Was It an Inside Job?

Evolve IT Blog Security
0 Comments
Was the NSA Hacked By Enemies Abroad, or Was It an Inside Job?

Not long ago, a group referring to itself as the Shadow Brokers distributed hacking tools utilized by the United States National Security Agency (NSA), on various publically-accessible websites. While the motives of the Shadow Brokers are a story for another time, an investigation seems to have locked in on a particular theory of how the Shadow Brokers came into possession of the tools in the first place.

Hypotheses were initially varied as to how the tools were taken from the NSA at all. Some surmised that the leak must have been the work of another agency insider following the lead of the controversial Edward Snowden. Some suspected that Russia, deemed responsible by D.C. lawmakers, had hacked into the NSA headquarters located in Fort Meade.

However, the FBI has begun to focus their efforts on an entirely different source, one that--while certainly less openly malicious than a foreign attack or insider leak--still shows the dangers that human error can present to cyber security.

Based on information provided by the NSA, investigators are looking into reports that an individual associated with the agency, either as an employee or a contractor, had left the tools on a remote computer during an operation approximately three years ago. These tools would allow their users to exploit systems from Fortinet Inc. and Cisco Systems.

Patches have since been released to help protect these systems from the now-public tools. Investigators, however, are not ruling out the possibility that the tools were left exposed on purpose, or that others within the NSA made similar mistakes that ultimately resulted in the Shadow Brokers obtaining them.

To their credit (assuming that it was an honest mistake), the unnamed individual reported their mistake shortly afterwards, according to the NSA--which, it must be mentioned, did not inform the companies of the risk to their systems. Rather, having sought out foreign use of the tools with no results, the NSA saw no need to inform the software manufacturers.

Regardless of blame for the release of these tools into the public domain, the unnamed former NSA representative who left the tools on the remote computer proves that critical data should never leave the safety measures to be found on-premises and taken into the world without considerable measures put in place to ensure its security.

For advisement and assistance in putting measures in place to protect your business from theft, call Evolve IT at (518) 203-2110.

Tweet

Comments

 
No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Monday, 15 June 2026
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Blog Categories

Blog Archive

Free Consultation

Sign up today for a
FREE Network Consultation

How secure is your IT infrastructure?
Let us evaluate it for free!

Sign up!

Free Consultation
 

Tag Cloud

Tip of the Week Security Best Practices Technology Internet Cloud Hackers Privacy Email Productivity Malware Business Software Business Computing User Tips Hosted Solutions Microsoft Upgrade Efficiency Computer Workplace Tips Google Innovation Smartphone Windows 10 IT Support Mobile Devices Gmail Hardware Network Security Ransomware Hacking WiFi Facebook Operating System The Internet of Things Social Media Microsoft Office Bandwidth Office Backup Apps Business Continuity Disaster Recovery Communication Employer-Employee Relationship Managed Service Provider Outlook History Two-factor Authentication Small Business Phishing App Wireless Technology Android Mobile Computing Apple Big Data communications Safety Unified Threat Management Best Practice Quick Tips Alert Networking Smartphones Data storage Firewall Data Windows Experience Content Filtering Cybercrime Website Mobile Device Management Money Network Society Sports Deep Learning Application Google Wallet Spam BDR Running Cable Customer Service Information Technology Windows 8 Internet of Things Vendor Management Hosted Solution Windows XP IT Services Documents Router Artificial Intelligence Tech Support Compliance Monitors Office 365 Drones Saving Money Analytics Social Printer intranet Browser Displays Lithium-ion battery Virtual Desktop Wireless Securty Unified Communications Document Management Social Networking Encryption End of Support Public Speaking Law Enforcement SaaS VoIP IP Address Virtualization Proactive IT Cortana Writing Network Congestion Government Augmented Reality Keyboard Save Money User Music Search Hard Drives Laptop Remote Computing Shortcut Cryptocurrency IBM Retail DDoS Heating/Cooling Google Docs Word Education Holiday Cleaning Black Market YouTube Processors Managed IT services Office Tips Business Management LiFi Staffing BYOD Downtime Competition Passwords Streaming Media Help Desk Bluetooth Disaster Presentation Micrsooft Entrepreneur Visible Light Communication Automation Domains Business Growth Data Management Memory Recovery Hacker Robot Advertising
QR-Code