The Microsoft Windows _NSAKEY Backdoor

The Microsoft Windows _NSAKEY Backdoor

Microsoft _NSAKEY is a signing key found in Microsoft’s CryptoAPI since Windows 95. Many claimed this was the ultimate backdoor for the National Security Agency. But is this a hoax, or is the _NSAKEY a real backdoor in Microsoft Windows?

A British researcher discovered that Microsoft was cryptographically signing its CryptoAPI with two keys. This means two separate entities could approve software running inside Windows. One of those entities was Microsoft. The identity of the other one remained a mystery.

But then Microsoft shipped a Service Pack 5 for WindowsNT4. Somebody down the chain of command at Microsoft forgot to remove information revealing the true identity of both of the signing keys. Chief security scientist at Ontario-based Cryptonym Andrew Fernandes found the names of the two keys. One was simply called “_KEY”. And the other was “_NSAKEY”.

Websitecyber related posts:

The U.S. Has Cyberattack Options

President Biden has been presented with cyberattack options for the U.S. to carry out massive cyberattacks to disrupt Russia’s military operations in Ukraine.

Shopping Night

Shopping Night is a holiday song that teaches you how to shop online safely and avoid suspicious websites.

DEF CON The Documentary

DEF CON The Documentary, a film about the world's largest hacking convention. Filmed over the summer of 2012 during the DEF CON 20th annual convention.

Woolworths Cyber-Attack

Woolworths says the data of 2.2 million customers of a website it owns MyDeal.com.au has been exposed in a cyber-attack.

Women Abused by Romantic Frauds

How smart women are being swindled by romantic frauds. This happened to journalist Stephanie Wood when she fell in love with a man she met online.

Financial Power & Money Manipulation

Watch 97% OWNED, a documentary that reveals how financial power and money manipulation is used with the creation of credit.

Cyber Warfare Technician

The need for skilled professionals in the field of cyber warfare has become increasingly important. This is where Cyber Warfare Technician Sailors come in.

The Origins of Anonymous

Anonymous, a name that strikes fear into the hearts of corporations and government agencies alike with their high-profile cyber attacks.

Russian Hacker Stole $10 MILLION

Russian hacker who committed the first online bank robbery, we learn about Vladimir Levin who hacked Citibank and stole 10.7 million in 40 bank robberies

Web Threats

Web threats Securelist

A.I. Fake Kidnapping Scams

Recent reports suggest that Artificial Intelligence (AI) is being used by cybercriminals to commit fake kidnapping scams.

FBI Warns Against Romance Scam

A Grand Rapids man has been caught up in a romance scam after his photos were used by someone to catfish women on dating apps.
Share Websitecyber