|
|
|
|
|
|
by fweespee_ch
3708 days ago
|
|
|
https://www.eff.org/deeplinks/2015/06/damn-equities-sell-you... > Noted eagle eye and EFF Investigative Researcher Dave Maass happened on an interesting item from earlier this week on FedBizOpps, the site for government agencies to post contracting opportunities. The Navy put up a solicitation explaining that the government wants “access to vulnerability intelligence, exploit reports and operational exploit binaries affecting widely used and relied upon commercial software,” including Microsoft, Adobe, Android, Apple, “and all others.” If that weren’t clear enough, the solicitation explains that “the vendor shall provide the government with a proposed list of available vulnerabilities, 0-day or N-day (no older than 6 months old). . . .The government will select from the supplied list and direct development of exploit binaries.” http://www.zdnet.com/article/nsa-purchased-zero-day-exploits... > The National Security Agency bought hacking tools from a security firm, based on documents unearthed by a FOI request. The US is doing it. The GCHQ likely does it too and I bet at least some of this list was built via information purchased from others: https://www.schneier.com/blog/archives/2014/07/gchq_catalog_... |
|
|