The Other Players Who Helped (Almost) Make the World’s Biggest Backdoor Hack
theintercept.com
Same story, but this one adds some more details and other links.
You are viewing a single comment
Same story, but this one adds some more details and other links.
Fascinating read - interesting that the origin of the hack is not yet known (or at least, released). I wonder what the stats are on these sorts of exploits in OSS - the concept relies so much on trust and individuals.
Everything does though.
Ken Thompson talked about this back in 1984, his talk/article "Reflections on trusting trust" is a short but scary read.
https://www.cs.cmu.edu/~rdriley/487/papers/Thompson_1984_ReflectionsonTrustingTrust.pdf
In the end, what can we trust?
Ultimately, nothing, unless you built everything yourself from scratch, just about from the silicon up.
Everything is risk management.