Hard drives beware, the NSA is coming for you

By Chris Stobing Published February 17, 2015

A new report from the threat research team at Kaspersky Labs has discovered the existence of a highly advanced set of trojans developed in concert by the NSA and its partners, capable of breaking into any hard drive and going undetected for years on end.

The effort, launched on behalf of what Kaspersky is calling the “Equation Group,” was a specialized operation designed to implement surveillance on some of the NSA’s highest profile targets. Unlike the blanket collection methods we saw with the taps of Google’s fiber optic lines or phone call record archives, the NSA kept the secrets of their hard drive intrusion comparatively close to their chest, only bringing out the big guns when it was an absolute necessity.

Recommended Videos

Kaspersky believes this is due to the highly advanced nature of the code that was used to infiltrate the drives, which could have cost upwards of several million dollars to construct, implement, and maintain over the past decade. The agency wasn’t willing to risk having that technology fall into the wrong hands through overuse, and as far as the Russian threat research group could find, the only targets it’s been used on are computers within specific I.P. ranges, most of them in the Middle East.

The code was capable of infiltrating drives from many of the largest providers including Seagate, Western Digital, and Toshiba, rewriting the firmware on each, and making itself resilient to any method of removal including flash wipes.

This is capability that only a nation-state could cook up, and anonymous sources still working within the agency have been able to confirm the existence of the program used to develop it. Kaspersky’s findings suggest the group behind the exploit has been active for at least 15 years, and the hard-drive infecting malware, called GrayFish by Kaspersky, has been around since 2008.

The news comes just a day after the Lab unveiled details of one of the largest banking trojan operations in history, which yielded the hackers behind the scam upwards of one billion dollars, collected over a span of just under two years.

None of the manufacturers of the drives in question claim to have known about the defects in their devices, and state they have never worked or collaborated with the NSA to install secret backdoors in their hardware.

Topics

Former Digital Trends Contributor

Self-proclaimed geek and nerd extraordinaire, Chris Stobing is a writer and blogger from the heart of Silicon Valley. Raised…

Audio / Video

No regrets: Hisense lets you test drive its TVs for free for 100 days

2021 Hisense U6G 4K TV

Though it's not quite intended as a test drive program, Chinese TV brand Hisense has taken the unusual step of creating a free, 100-day trial period for many of its 2021 4K, 8K, and laser TV models. The move comes after Hisense took a survey of U.S. buyers and discovered, unsurprisingly, that 80% of them want the ability to try a TV at home before committing to a purchase. The program started on September 9 and continues through October 31, 2021. During this time, you'll be able to buy a Hisense U800GR, U8G, U7G, U6G, or L9G TV from a participating retailer and return it for a full refund if you're not happy with it.

We've never seen an offer like this from other 4K UHD TV manufacturers, which suggests that Hisense feels that it needs to overcome some hesitancy among TV buyers. Despite being a huge manufacturer and seller of TVs globally, Hisense is a relatively new brand to the U.S. market, so it doesn't enjoy the same recognition as the companies with longer histories (Sony, Samsung, Sharp, Toshiba, and LG), or even some of the relatively newer brands (Vizio, TCL).

Computing

A new supply shortage is now hitting SSDs and hard drives

Two Samsung SSDs on a graphics card.

Cryptocurrency miners are already blamed for the shortage of graphics cards in recent years, and the situation has become especially dire during the global pandemic when coupled with supply chain disruptions. If miners have their way, there's another important PC component that could become scarce. It's reported that if the new Chia cryptocurrency takes off, the PC industry and gamers may have to grapple with a shortage of storage, as inventory of hard disk drives and solid-state drives could quickly become depleted.

Unlike existing cryptocurrencies, the Chia currency heavily relies on storage space, as it's based on a "proof of space and time" model. On the other hand, currencies like Bitcoin are based on a "proof of work," which doesn't require as much storage.

Computing

What is a hard drive?

how to install sata drive hard

What is a hard drive? It's a common question and one that we're more than happy to answer. Whether you are looking for ways to upgrade your hard drive, trying to buy a computer with the right hard drive, or just trying to figure out what everyone is talking about, read on. We'll explain everything and give you tips on which hard drive properties are essential.
The hard drive's purpose

The hard drive is where a computing device stores data for the long term -- not just the things you save, but all the code required for the operating system, the framework browsers use to access the internet, drivers for accessories, and everything else. When referring to computer storage, "hard drive" (or solid-state drive, see below) is typically used.