NSA Loses Report on Lessons Learned from Foreign Exploitation of Backdoored Juniper Firewalls
takyon writes:
It's said the NSA drew up a report on what it learned after a foreign government exploited a weak encryption scheme, championed by the US spying agency, in Juniper firewall software.
However, curiously enough, the NSA has been unable to find a copy of that report.
On Wednesday, Reuters reporter Joseph Menn published an account of US Senator Ron Wyden's efforts to determine whether the NSA is still in the business of placing backdoors in US technology products.
[...] Juniper acknowledged in 2015 that "unauthorized code" had been found in ScreenOS, which powers its NetScreen firewalls. It's been suggested that the code was in place since around 2008.
The Reuters report, citing a previously undisclosed statement to Congress from Juniper, claims that the networking biz acknowledged that "an unnamed national government had converted the mechanism first created by the NSA."
Wyden staffers in 2018 were told by the NSA that a "lessons learned" report about the incident had been written. But Wyden spokesperson Keith Chu told Reuters that the NSA now claims it can't find the file. Wyden's office did not immediately respond to a request for comment.
Previously: "Unauthorized Code" in Juniper Firewalls Decrypts Encrypted VPN Traffic
Researchers Solve Juniper Backdoor Mystery; Signs Point to NSA
Read more of this story at SoylentNews.