GCHQ, with help from the NSA, was able to exploit vulnerabilities in Juniper firewalls at least as far back as 2011.

Mitch Wagner, Executive Editor, Light Reading

December 23, 2015

2 Min Read
British Spy Agency & NSA Tied to Juniper Vulnerabilities – Reports

The British spy agency GCHQ, with help from the NSA, learned to covertly exploit vulnerabilities in 13 models of Juniper firewalls, according to a top-secret 2011 document, as reported by The Intercept."The six-page document, titled 'Assessment of Intelligence Opportunity – Juniper,' raises questions about whether the intelligence agencies were responsible for or culpable in the creation of security holes disclosed by Juniper Networks Inc. (NYSE: JNPR) last week," according to The Intercept. "While it does not establish a certain link between GCHQ, NSA, and the Juniper hacks, it does make clear that, like the unidentified parties behind those hacks, the agencies found ways to penetrate the 'NetScreen' line of security products..." (See Juniper Warns of 'Unauthorized Code' on Its Firewalls.)The document, provided by NSA whistleblower Edward Snowden, refers to Juniper as a " 'threat' and a 'target' because it provides technology to protect data from eavesdropping," The Intercept says. "Far from suggesting that security agencies should help U.S. and U.K. companies mend their digital defenses, it says the agencies must 'keep up with Juniper technology' in the pursuit of SIGINT, or signals intelligence."The 2011 capabilities against Juniper are likely not connected to vulnerabilities disclosed last week, Matt Blaze, a cryptographic researcher and director of the Distributed Systems Lab at the University of Pennsylvania, tells The Intercept.Want to know more about security? Visit Light Reading's security content channel.And yet the NSA might be indirectly responsible for the recently disclosed vulnerability, according to a report on Wired. The culprits may have modified a backdoor previously created by the NSA.The incident underscores the problems with recent US and UK government proposals to require that encryption technology contain backdoors that can be used by government and law enforcement, according to the blog Techdirt."Putting backdoors into technology is a bad idea," says Techdirt. "Security experts and technologists keep saying this over and over and over and over again -- and politicians and law enforcement still don't seem to get it. And, you can pretty much bet that even though they now have a very real-world example of it -- in a way that's impacting their own computer systems -- they'll continue to ignore it. Instead, watch as they blame the Chinese and the Russians and still pretend that somehow, when they mandate backdoors, those backdoors won't get exploited by those very same Chinese and Russian hackers they're now claiming were crafty enough to slip code directly into Juniper's source code without anyone noticing."Related posts:Broad Threats Require Network-Based SecurityCisco Launches Code Review Following Juniper Backdoor DisclosureFBI Investigating Juniper VPN Hack— Mitch Wagner,  , West Coast Bureau Chief, Light Reading. Got a tip about SDN or NFV? Send it to [email protected].

About the Author(s)

Mitch Wagner

Mitch Wagner

Executive Editor, Light Reading

San Diego-based Mitch Wagner is many things. As well as being "our guy" on the West Coast (of the US, not Scotland, or anywhere else with indifferent meteorological conditions), he's a husband (to his wife), dissatisfied Democrat, American (so he could be President some day), nonobservant Jew, and science fiction fan. Not necessarily in that order.

He's also one half of a special duo, along with Minnie, who is the co-habitor of the West Coast Bureau and Light Reading's primary chewer of sticks, though she is not the only one on the team who regularly munches on bark.

Wagner, whose previous positions include Editor-in-Chief at Internet Evolution and Executive Editor at InformationWeek, will be responsible for tracking and reporting on developments in Silicon Valley and other US West Coast hotspots of communications technology innovation.

Beats: Software-defined networking (SDN), network functions virtualization (NFV), IP networking, and colored foods (such as 'green rice').

See more from Mitch Wagner
Subscribe and receive the latest news from the industry.
Join 62,000+ members. Yes it's completely free.
Sign me up

You May Also Like

Latest News

Basketballer at Rakuten-sponsored event
Cloud
Rakuten Symphony hones pitch to be one cloud for all telco needs
Rakuten Symphony hones pitch to be one cloud for all telco needs

Apr 23, 2024

Verizon retail store in New York City
Fixed Wireless Access (FWA)
Verizon's FWA business loses some steam in Q1
Verizon's FWA business loses some steam in Q1

Apr 22, 2024

Verizon signage at MWC 2023 in Las Vegas
AI & Machine Learning
Verizon shows mobile customer gains, promises AI opportunities
Verizon shows mobile customer gains, promises AI opportunities

Apr 22, 2024

Hands holding a phone with Malaysia's capital, Kuala Lumpur, in the background.
5G
Malaysia's 5G deadlocked again as talks with DNB break down
Malaysia's 5G deadlocked again as talks with DNB break down

Apr 22, 2024

Upcoming Webinars
More Webinars

Popular whitepapers in 5G

thumbnail
5G
Operator transitions to 5G SA core decline YoY in 2023 – Counterpoint ResearchOperator transitions to 5G SA core decline YoY in 2023 – Counterpoint Research
Feb 29, 2024
3 Min Read
thumbnail
5G
5G Network Strategies Operator Survey: Powering 5G SA Networks5G Network Strategies Operator Survey: Powering 5G SA Networks
Feb 23, 2024
1 Min Read
thumbnail
5G
Apple, Samsung still tops in 5G smartphones – Counterpoint ResearchApple, Samsung still tops in 5G smartphones – Counterpoint Research
Feb 23, 2024
2 Min Read
May 21 - May 23, 2024
Join us for an immersive experience where the future of North American telecom industry unfolds in 2024.
LEARN MORE

Featured Videos

5G
Partner Content - How China Broadnet Built Its 5G Core Network – And How It’s Approaching 5.5G Core Network
Partner Content - How China Broadnet Built Its 5G Core Network – And How It’s Approaching 5.5G Core Network
Digital Transformation
Partner Content – What are the success factors for Ethio Telecom’s rapid digital transformation?
Partner Content – What are the success factors for Ethio Telecom’s rapid digital transformation?
5G
Partner Content - After 5G Success, e& Looks To 5G-Advanced For Continued Growth
Partner Content - After 5G Success, e& Looks To 5G-Advanced For Continued Growth