Spy Agencies Rely on Hackers for Stolen Data and Monitoring Security Experts for Expertise

ID THN:835B6FAB681285C4854E2E16FAD98E27
Type thn
Reporter Swati Khandelwal
Modified 2015-02-05T11:53:54


Spy Agencies Rely on Hackers for Stolen Data and Monitoring Security Experts for Expertise

The NSA and GCHQ have tracked and monitored the activities of independent and nation-state hackers, along with some of the foremost security researchers in order to gather information on targets and pilfer the stolen data from hackers' archives, top secret Snowden documents reveal.

State-sponsored, individual Blackhat hackers and hacking groups target some or other organizations on an ongoing basis. So, by monitoring the work of 'freelance' and rival state hackers, the NSA and its allies get the stolen information, such as email accounts or chats owned by target of their interest, without doing much of hard work.


According to the latest revealed documents provided by whistleblower Edward Snowden, the hacks and sophisticated breaches on the targets were carried out by the state-sponsored and freelance hackers, but the stolen data, referred to as 'take', was then pilfered by the agencies for their own interest, "without notifying the hacking victims of these breaches."

The hackers' sophisticated email-stealing infrastructure was referred to as INTOLERANT and both Canada and the United Kingdom had hands in hacker pockets.

> "Recently, Communications Security Establishment Canada (CSEC) and Menwith Hill Station (MHS) discovered and began exploiting a target-rich data set being stolen by hackers," _reads one of the documents quoted by the Intercept. "The hackers' sophisticated email-stealing intrusion set is known as INTOLERANT."_


> "Of the traffic observed, nearly half contains category hits because the attackers are targeting email accounts of interest to the Intelligence Community. Although a relatively new data source, [Target Offices of Primary Interest] have already written multiple reports based on INTOLERANT collect."

The state-sponsored hackers also targeted a large number of human rights organizations, diplomatic corporations, democracy activists and even journalists. Though, the data collected under the NSA's INTOLERANT project was well organized.

The agencies labeled all kind of stolen data to identify and categorize victims. The categorization in done as following:

  • A = Indian Diplomatic & Indian Navy
  • B = Central Asian diplomatic
  • C = Chinese Human Rights Defenders
  • D = Tibetan Pro-Democracy Personalities
  • E = Uighur Activists
  • F = European Special Rep to Afghanistan and Indian photo-journalism
  • G = Tibetan Government in Exile


Spy Agencies Rely on Hackers for Stolen Data and Monitoring Security Experts for Expertise

In a separate document, it was revealed that the NSA had also run an open source intelligence gathering service known as __Lovely Horse__, a program created by GCHQ to monitor and index public discussion on Twitter and other social media by hackers and security experts including Mark Dowd, Tavis Ormandy _and HD Moore._

> "Analysts are potentially missing out on valuable open source information relating to cyber defence because of an inability to easily keep up to date with specific blogs and Twitter sources," one document states.


Around 60 blogs and 36 other Twitter accounts, all listed by the Intercept, could be flattered by the agency's interest, the document states.

The list also include our website's THE HACKER NEWS official twitter handle (@TheHackersNews), which means that NSA and GCHQ have their eyes on every upcoming hacking news and incidents. The agencies were analyzing and collecting intelligence by monitoring our online activities. We feel proud that GCHQ and NSA found The Hacker News updates worth to follow. Stay Tuned.