Syria Dropping Off The Internet In 2012 Was Result Of NSA Hack Gone Wrong, Not Syrian Government
from the because-of-course-it-was dept
At the time, Cloudflare’s analysis was one of the most thorough, noting that it almost certainly “was done through updates in router configurations” rather than a physical failure or a cable cut or something. Of course, everyone assumed that it was the Syrian government, trying to cut off access to the outside world.
However, in James Bamford’s big Wired article about Ed Snowden, Snowden reveals it was actually an NSA hack gone wrong:
One day an intelligence officer told him that TAO?a division of NSA hackers?had attempted in 2012 to remotely install an exploit in one of the core routers at a major Internet service provider in Syria, which was in the midst of a prolonged civil war. This would have given the NSA access to email and other Internet traffic from much of the country. But something went wrong, and the router was bricked instead?rendered totally inoperable. The failure of this router caused Syria to suddenly lose all connection to the Internet?although the public didn’t know that the US government was responsible. (This is the first time the claim has been revealed.)
Inside the TAO operations center, the panicked government hackers had what Snowden calls an ?oh shit? moment. They raced to remotely repair the router, desperate to cover their tracks and prevent the Syrians from discovering the sophisticated infiltration software used to access the network. But because the router was bricked, they were powerless to fix the problem.
Fortunately for the NSA, the Syrians were apparently more focused on restoring the nation?s Internet than on tracking down the cause of the outage. Back at TAO?s operations center, the tension was broken with a joke that contained more than a little truth: ?If we get caught, we can always point the finger at Israel.?
Thus, it appears that Cloudflare’s speculation that it was done as a router update was entirely correct — just that no one realized it was the NSA that was updating the routers, rather than the Syrians.