U.S. government biggest buyer of exploits?

Although the United States government accuses other nations of cyber espionage it intelligence and military agencies are actually among the world’s biggest buyers of hacking tools, according to a recent special report from newswire agency Reuters.

This activity is part of an offensive strategy by Washington to infiltrate computer networks overseas and insert surveillance programs or malware that can disrupt data or damage systems, the report said.

The preemptive strategy worries some people in the technology industry because the tools being bought by the U.S. relies on vulnerabilities of existing software programs.

“The more the government spends on offensive techniques, the greater its interest in making sure that security holes in widely used software remain unrepaired,” Reuters said.

The U.S. government’s strategy of buying up exploits makes sense, according to some national security officials and security executives, because it prevents these exploits from falling into the hands of organized criminals and repressive regimes.

The interest of the U.S. Department of Defense and U.S. intelligence agencies such as the National Security Agency, in information about security holes of computer systems is encouraging the growth of a market in exploits, according to security researchers and former government officials.

RELATED CONTENT

U.S. lawmakers point to China as cause of cyberattacks
Report: Flame US-Israeli cyberattack against Iran

“If the U.S. government knows of a vulnerability that can be exploited, under normal circumstances, its first obligation is to tell U.S. users,” according to Richard Clarke, a former White House cybersecurity adviser. “There is supposed to be some mechanism for deciding how they use the information for offensive or defense. But there isn’t.”

Instead, the situation has resulted in many talented hackers who previously alerted companies like Microsoft Corp to security flaws in their software now turning to selling information on exploits sometimes to defense contractors.

“Defense contractors and agencies spend at least tens of millions of dollars a year on just exploits, which are the one essential ingredient in a broader cyber-weapons industry generating hundreds of millions annually,” the report said.

 

Read the whole story here

 

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.


Jim Love, Chief Content Officer, IT World Canada

Featured Download

Featured Articles

Cybersecurity in 2024: Priorities and challenges for Canadian organizations 

By Derek Manky As predictions for 2024 point to the continued expansion...

Survey shows generative AI is a top priority for Canadian corporate leaders.

Leaders are devoting significant budget to generative AI for 2024 Canadian corporate...

Related Tech News

Tech Jobs

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

Tech Companies Hiring Right Now