all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Security Vulnerabilities in Covert CIA Websites

Add to bookmarks
Sept. 30, 2022, 2:19 p.m. | Bruce Schneier

Security Boulevard securityboulevard.com

Back in 2018, we learned that covert system of websites that the CIA used for communications was compromised by—at least—China and Iran, and that the blunder caused a bunch of arrests, imprisonments, and executions. We’re now learning that the CIA is still “using an irresponsibly secured system for asset communication.”


Citizen Lab did the research:



Using only a single website, as well as publicly available material such as historical internet scanning results and the Internet Archive’s Wayback Machine, …

cia citizen lab covert cyberespionage espionage operational security security vulnerabilities websites

Visit resource

More from securityboulevard.com / Security Boulevard

Scaling Application Security With Application Security Posture Management (ASPM) 35 minutes ago | securityboulevard.com
application application security application security posture management aspm +13
Crunching Some Numbers on PHP Support 4 hours ago | securityboulevard.com
application breaking can continue +16
Google Chrome DBSC Protection Tested Against Cookie Attacks 5 hours ago | securityboulevard.com
attacks authentication browser browser security +31
What is SOC 2 Compliance Audit? 6 hours ago | securityboulevard.com
audit audits businesses client +27
The Dark Side of EDR: Repurpose EDR as an Offensive Tool 7 hours ago | securityboulevard.com
capabilities code dark edr +13
The Ultimate Guide to SBIR and STTR Program Budgeting 11 hours ago | securityboulevard.com
budgeting budgets can corporations +14
Vulnerabilities for AI and ML Applications are Skyrocketing 15 hours ago | securityboulevard.com
ai ai and ml in security ai development applications +34
Cheap ‘Junk-Gun Ransomware’ Emerging on the Dark Web 15 hours ago | securityboulevard.com
affiliates as-a-service blackcat cl0p +30
What Makes Containers Vulnerable? 17 hours ago | securityboulevard.com
containers guide mend security +5

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Information Security Manager & ISSO

@ Federal Reserve System | Minneapolis, MN
View on infosec-jobs.com

Forensic Lead

@ Arete | Hyderabad
View on infosec-jobs.com

Lead Security Risk Analyst (GRC)

@ Justworks, Inc. | New York City
View on infosec-jobs.com

Consultant Senior en Gestion de Crise Cyber et Continuité d’Activité H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com
View more jobs