The U.S. government, notably the National Security Agency has been paying a French security firm for backdoors.
According to a contract released in response to a Freedom of information request, last year the National Security Agency purchased a 12-month subscription to a “binary analysis and exploits service” sold by Vupen, a zero-day Exploit marketer primarily based in France. VUPEN is one in all a few of corporations that sell exploits and vulnerability details.
They sold those exploits to the Governments and law enforcement agencies. VUPEN has secure that the corporate solely can sell its services to global organization countries and can not modify oppressive regimes.
Last year, Vupen researchers with success cracked Google's Chrome browser, however declined to point out developers however they did therefore even for a formidable money bounty. “We wouldn’t share this with Google for even $1 million,” Vupen CEO Chaouki Bekrar told at that point.
Vupen has previously drawn criticism from security experts, further as privacy advocates like Soghoian, United Nations agency delivered a presentation regarding the exploit vulnerability marketplace at the recent Virus Bulletin conference and characterised the firm as being a "zero-day cyber weapon merchant." These flaws will then be exploited to achieve access to a system and its data, or the vulnerabilities will be sold oversubscribed on the black market, wherever Vupen is doing one thing similar by not serving to the vendors.
No comments:
Post a Comment