In addition, it is reported that breached SSL sessions have been traced back to IP resources located in the North Pole and controlled by one "Kr1S Kr1gL3" who has apparently privately purchased access rights to all Hushmail data in an effort to determine which users have been "naughty" and which have been "nice." Coincidence? I don't think so. t > -----Original Message----- > From: Juha-Matti Laurio [mailto:juha-matti.laurio@xxxxxxxx] > Sent: Friday, December 21, 2007 8:16 AM > To: bugtraq@xxxxxxxxxxxxxxxxx > Subject: Cryptome: NSA has real-time access to Hushmail servers > > A frequent source 'A' sending updated NSA-Affiliated IP resources to > Cryptome's Web site has reported the following new information: > > "Certain privacy/full session SSL email hosting services have been > purchased/changed operational control by NSA and affiliates within the > past few months, through private intermediary entities." > > Reportedly the following services are controlled: > > Hushmail / Canada (http://www.hushmail.com/ ), > Guardster / USA (http://www.guardster.com/ ), and > SAFe-mail.net / Israel (http://www.safe-mail.net/ ) > > Link: > NSA Controls SSL Email Hosting Services: > http://cryptome.org/nsa-ssl-email.htm > > SecuriTeam Blogs: > http://blogs.securiteam.com/?p=1052 > > Additionally, there is more information about NSA's role on Windows > security software industry provided ('further details regarding which > publishers and their means of facilitation' mentioned by Cryptome post > on 1st Nov, link mentioned in Bugtraq post referenced below). > > Cryptome: NSA has access to Windows Mobile smartphones > http://www.securityfocus.com/archive/1/483129 > > Juha-Matti
