UK Police Buy Covert Cellphone Surveillance System 103
digitig writes "UK Metropolitan Police have purchased a 'covert surveillance technology that can masquerade as a mobile phone network, transmitting a signal that allows authorities to shut off phones remotely, intercept communications and gather data about thousands of users in a targeted area.' Other customers apparently include 'the U.S. Secret Service, the Ministry of Defence and regimes in the Middle East.'"
Question: (Score:4, Interesting)
Will a phone in flight mode release its IMSI and IMEI identity codes?
Re: (Score:2)
Will a phone in flight mode release its IMSI and IMEI identity codes?
How could it? Its radio is off.
What use is a phone in flight mode though? It might still be a mini-computer but it's useless as a communication device.
Re: (Score:3)
What use is a phone in flight mode though? It might still be a mini-computer
There's your answer. My current phone is more powerful than all but one of the laptops that I've ever owned.
From the description of the system (spoofs cellphone masts by being more powerful and thus preferred), you can simply set your phone not to roam outside your chosen network for voice calls as well as data.
Re: (Score:2)
What use is a phone in flight mode though? It might still be a mini-computer
There's your answer. My current phone is more powerful than all but one of the laptops that I've ever owned.
But as a communication device it's worthless. No phone network, no wifi. Mobile or not most computers are networked these days.
If you want to develop software on a tiny screen or just play angry birds that's great.
Re: (Score:3, Informative)
But as a communication device it's worthless. No phone network, no wifi.
No. "Flight Mode" is just a shortcut which can be used instead of manually disabling cell communication, cell data, GPS, and wifi. You can shut down everything except wifi capability, for example.
From what I read in the article this system generates a signal which spoofs the cell tower networks, and asks the devices to respond with unique phone info, etc. So as long as you have just the cellular portion of your phone shut down, it won't release anything but still remain useful via wifi.
Assuming Android here
Re: (Score:1)
But as a communication device it's worthless. No phone network, no wifi. Mobile or not most computers are networked these days.
Android devices allow you to be in airplane mode and turn WIFI and bluetooth back on. Modern smart phones have multiple radios. Android allows you to turn them on/off individually. Which means with Android, you can be hidden from the carrier network and still have VoIP services.
Re: (Score:2)
From the description of the system (spoofs cellphone masts by being more powerful and thus preferred), you can simply set your phone not to roam outside your chosen network for voice calls as well as data.
Except work on GSM from last CCC has shown that doesnt work, phone will still say HI to every BTS it sees.
Re: (Score:2)
Presumablly they could set the device to masquerade as whatever network they wanted.
Re: (Score:2)
British phones don't roam outside their chosen network while inside the UK anyway, with the exception of Orange and T-Mobile, which are now the same company. This thing would pretend to be a mast for your phone company so it does connect.
Re: (Score:2)
Flight mode is *required* when you go flying, they require you to put your phone in to flight mode *then* shut it down.
Old iPhones would do networking even when turned off (can't say for sure about android or newer), so there is your reason for flight mode, to make sure it stays quiet.
Re: (Score:3, Interesting)
There are always to ends of a stick. That scheme relies on devices' intelligent behavior. Phones could be hacked to ignore "the best signal cell-tower" or to emit false IMSI and IMEI at first, to test network sanity. If it accepts BS or takes too long to authenticate (it's a giveaway of Man in the Middle attack), ignore it!
Re: (Score:2)
Why not just turn the legitimate cell phone tower into a super spying device? This new thing sounds redundant.
You need to connect to a cell phone tower to communicate. Make the cell phone tower the spy. Easy... right?
Re:Question: (Score:5, Interesting)
There's an app for Android phones, called Antennas. It shows you the location and status of nearby towers, and can be configured to run and collect the status of nearby towers in the background.
If a modified version of this app was used to crowd-source information about towers, false towers such as this could be identified. These mobile false towers will be physically located close to the interception victim, and will be a lot less powerful and have a lot less range than a typical tower. They'll also have less capacity than a normal tower, and maybe be physically located in an unusual spot (eg, on the street). These details should be able to be aggregated and the information used to warn about a new tower or a tower which has moved, or a tower whose signal strength is not on par with typical towers. Anyone curious about the status of a suspicious tower can drive out to its location and have a look to see if there's a real tower there, or instead it's a "news van" at that spot.
It seems like on a rooted phone, you ought to be able to blacklist certain towers, maybe give the device a whitelist of verified towers to use in a certain area. Maybe even make that black/whitelisting selective - only disable suspicious towers when making / receiving a call (since it seems likely the purpose is not location awareness, but call interception).
Re: (Score:2)
Re: (Score:2)
Re: (Score:1)
Re: (Score:2)
It's like Perspectives for cell phone towers.
Now? (Score:2)
I thought they'd already had this stuff years ago.
Re: (Score:2)
Same here. And in any case, anything that goes over a network you don't control without verified end-to-end encryption should be considered unsecure.
1984 is a guidebook, not a warning (Score:5, Insightful)
Pity really that some idiots actually feel safer when they are constantly monitored.
Re: (Score:3)
You're safer indeed, if the governments would be able to safely store all that data, and if they could guarantee that it would be used only for the protection of the citizens and not for any oppression. But those are two big ifs.
It has been shown again and again that the governments will eventually be hacked. Or some guy just loses a usb/laptop.
And because we actually have functioning democracies in the Western world, you never know what kind of idiots will be in the governments tomorrow.
Re: (Score:3)
You're safer indeed, if the governments would be able to safely store all that data, and if they could guarantee that it would be used only for the protection of the citizens and not for any oppression. But those are two big ifs.
It has been shown again and again that the governments will eventually be hacked. Or some guy just loses a usb/laptop. And because we actually have functioning democracies in the Western world, you never know what kind of idiots will be in the governments tomorrow.
... and if they will act in your interest. I'm sure that people have been mugged while under police surveillance but the police just let it happen so they don't reveal their monitoring.
Re: (Score:3)
You make one of the biggest ASSumptions possible. You ASSume that the government actually cares about the welfare of it's people. In this day, when most western governments are owned by the corporations, the government views you as an ASSet - nothing more, and nothing less. If/when they begin to view you as a liability, all that surveillance will get you killed.
Re: (Score:2)
Re: (Score:2)
And because we actually have functioning democracies in the Western world, you never know what kind of idiots will be in the governments tomorrow.
Depends on how far west you go, perhaps. I'm west of the Atlantic and I don't live in a functioning democracy, and I know just what kind of idiots will be in government tomorrow. I agree with the rest of your post, however.
Re: (Score:3)
I think it could be argued that you may actually be safer while being constantly monitored.
No, it is the government that is safer while you are being constantly monitored.
Re: (Score:2)
Re: (Score:2)
So what are you doing about it, other than moaning in an old irrelevant forum?
Did you think that /. is a place where activists meet? Not really.
We just get here to complain about a lack of poll options, and to tell each other what is wrong about TFA this time. If you call that moaning, then sure, we moan. But don't get the impression that we don't like that, and that the moaning isn't a goal in itself. Because we totally do, and it totally is.
Re: (Score:1)
Did you think that /. is a place where activists meet? Not really.
Shows what you know!!!! I totally pinged their ass
Re: (Score:2)
Re:1984 is a guidebook, not a warning (Score:5, Interesting)
I wrote to my last MP (free to do online via The Work For You) to complain about the ever increasing internet surveillance. In the letter I pointed out that saving a single life, or even many lives, is not justification for the loss of privacy and rights. If saving a life came before all other considerations we would ban cars and shut down the road network. Given that I asked why she voted for the new laws.
Her response was along the lines of "it saved the life of a woman who was said she was going to commit suicide on Facebook because the police were able to backtrace her IP address".
She lost her seat at the last election (I won't say which because it would reveal where I live and I value my privacy). Good riddance.
Re: (Score:2)
"She lost her seat at the last election (I won't say which because it would reveal where I live and I value my privacy). Good riddance."
Right, and who replaced her? Someone with the same values no doubt?
I e-mailed the Conservatives when they were in opposition a few years ago when the DEA was first mentioned as an idea as they were "seeking to get the views of the public" in their attempt to pursue power.
I got a reply back from Jeremy Hunt which was almost word for word a press release from the RIAA, contai
Re: (Score:2)
Right, and who replaced her? Someone with the same values no doubt?
Her replacement is at least more responsive and doesn't brown-nose as much, but being a Tory her party is in favour of reducing privacy.
I also emailed all my MEPs when the EU was debating extending copyright terms. The Greens and Lib Dems were in favour of reducing them, although we now know for certain that the Lib Dems are full of shit. The Tory MEP was in favour of an extension and as in your experience basically parroted the BMI press release.
So what it boils down to is that the Greens are the largest p
Re: (Score:2)
I also emailed all my MEPs when the EU was debating extending copyright terms. The Greens and Lib Dems were in favour of reducing them, although we now know for certain that the Lib Dems are full of shit. The Tory MEP was in favour of an extension and as in your experience basically parroted the BMI press release.
I think I got a similar email response when I emailed about copyright terms. I said I would be very interested in reading the sources he talked about that said it was should be extended, as everything I had read previously said the opposite, so I could ensure I had as much information as possible, and double-check any of my previous sources. I didn't get another reply.
The current lot outside St. Paul's have just been evicted and will be history by the end of the week, and all the promises to ask the hard questions and have a debate by politicians are worthless. Most of the media hasn't even bothered to report what they are protesting about, other than some vague hippies-against-capitalism bullshit.
I don't think they've been evicted yet...
St Paul's suspends legal action against Occupy London protest
Source: http://www.bbc.co.uk/news/u [bbc.co.uk]
Re: (Score:2)
Re: (Score:2)
According to the response I got back when Ed was "reaching out to the people for opinions", yes.
I wasn't terribly surprised, Ed was afterall instrumental in Brown's government, not to mention his right had man Ed Balls and Ball's wife. Really, the party hasn't changed - just reshuffled minus Brown.
David Milliband was probably their best hope for change in the short term, as he was a Blairite, that doesn't make him ideal of course, but it at least meant he's not an authoritarian-socialist Brownite.
Which is o
Re: (Score:2)
They miss their nannies...
Re: (Score:1)
Re: (Score:1)
Re: (Score:1)
Amazing how things can be "reinterpreted". Orwell would approve.
Re: (Score:1)
Just Wrong (Score:1)
So because there may be one bad guy in the area thousands of innocent people get their privacy invaded, and no doubt checked just too make sure they are doing nothing wrong.. I'm sickened by what the UK is becoming.
Re: (Score:3)
So because there may be one bad guy in the area thousands of innocent people get their privacy invaded, and no doubt checked just too make sure they are doing nothing wrong.. I'm sickened by what the UK is becoming.
Not even one bad guy, one suspected bad guy. This trend is disturbing for sure.
Re:Just Wrong (Score:5, Insightful)
This technology is not about "one guy". These are large-scale devices designed to track and suppress communication among protesters. Governments know that shit will hit the fan on a large scale eventually. They're just too corrupt and rotten to continue as they are doing right know without resistance. So they prepare.
For example, in Germany, police already occasionally logs and tracks protesters (yes, peaceful ones). Sure, it was illegal, but who cares? There are no consequences for violating laws if the government does it.
Re: (Score:1)
what is the difference (Score:2)
UK Metropolitan Police, U.S. Secret Service, the Ministry of Defence and regimes in the Middle East
Re: (Score:3)
between the customers?
UK Metropolitan Police, U.S. Secret Service, the Ministry of Defence and regimes in the Middle East
Their methods of suppressing rebellion and their forthrightness while doing so?
Re: (Score:1)
Wrong answer. Suppression is suppression, and that is pretty much the end of the equation. The protests in Syria seem to have left a couple hundred bodies in their wake. If/when the government decides to put a stop to OWS, you think the body count will be less? Oh, the cops will TRY not to kill anyoen, and they'll TRY nonlethal force first. But, when push comes to shove, the government will enforce it's will, and damn the body count.
Ditto in the UK, Germany, or any other country.
Colonel GoofDaffy set a
Re: (Score:2)
Eh no. Sorry, I'm not *that* paranoid. There *is* a difference between Western countries and the rest.
Re: (Score:2)
Yeah, Western government pay more lip service to justice.
95%+ of police officers in Toronto took their badge numbers off when kettling and illegally arresting protesters. Despite the extreme number of infractions not a single police officer, RCMP or local, recalls seeing ANYONE without their identification.
This was done specifically so that charges couldn't be laid and sure enough police have been found not guilty for reason of lack of evidence in many beatings, not because nobody beat the person, but becau
The big question: oversight (Score:4, Informative)
This seems like a law-enforcement version of the WASP drone featured at last summer's Black Hat / Defcon [slashdot.org]
The big question is, since the technology has been available for a while, and is obviously useful for its stated purpose, that of oversight. Privacy-invading technologies will always exist, will always be useful for law-enforcement, and are due to increase the more we mesh our lives with technology. How will authorities deal with data filtering, retention, probable cause, and the opportunity for discovering wrongdoers vs. the invasion of people's privacy? That is the big question.
A somewhat-rosy scenario is detailed in Charlie Stross' [wikipedia.org] Halting State series. The ugly scenario looks like 1984. Which one we choose depends on an educated public steering their politicians, instead of letting their politicians be steered by ??? and profit.
Re: (Score:2)
The problem is that the police can gather intelligence this way, even if it would normally be privileged (e.g. suspect talking to their legal representative). They couldn't use it in court, but unlike the US system it doesn't automatically make prosecution based on evidence gathered based on said intelligence impossible.
This is just a knee-jerk reaction to the riots. Unfortunately we only ever knee-jerk privacy away, never suddenly realising we need to take it back.
Re:The big question: oversight (Score:4, Interesting)
Yup, listen in on conversation illegally and find out that the suspect will have incriminating evidence in their car on Tuesday at 10AM. Then at 10AM on Tuesday a cop happens to notice that they didn't signal 300 yards before changing lanes and pulls them over. Then they notice something unusual and search the car, and boom, you have a legal search finding evidence that can be used. The phone tap that led to it all would simply not be mentioned in court.
Everybody violates the law 50 times a day, so if the cops need a reason to search you at any time chances are that you'll give them a legally valid one.
Re: (Score:2)
Re: (Score:2)
Eh, I think it is feet actually, but in any case I'm sure you violate any of 47 other regulations in the course of two miles of driving, just like everybody else...
Why? (Score:5, Insightful)
Why would the police need to "masquerade" as a phone network. They can just get it from the *real* phone network. All phone companies comply with police requests, as long as they are legal. Oh, I see...
Re: (Score:2)
Why would the police need to "masquerade" as a phone network. They can just get it from the *real* phone network. All phone companies comply with police requests, as long as they are legal. Oh, I see...
I don't think the phone networks are too fussy about checking the legality of requests.
However if the police collect data illegally they can't use it in court. If they are not collecting evidence of wrongdoing what are they collecting this information for? It's either some kind of target selection thing or something altogether more sinister.
Re: (Score:2)
However if the police collect data illegally they can't use it in court.
This isn't the US. "fruit of the poisonous tree" isn't an international rule.
Not sure about the UK but in Germany for example, evidence can be acquired by illegal means (that includes illegal actions by law enforcement) and still be admissible in court. Granted, there may - on paper - be some extreme cases in which evidence is not admissible but these are highly theoretical. Illegal surveillance and anything short of well-documented torture won't get thrown out. Best you can hope for, is the judge saying "nono, bad boy" to the cop who committed the crime.
Then Germany sucks. This story is in the UK were illegal evidence isn't evidence of anything but wrongdoing on the part of whoever collected it. If it was any other way there would be massive police abuse.
Re: (Score:2)
Agreed. Any country that tolerates illegally-obtained evidence is only a step away from outright corruption.
In the UK, if your evidence was obtained illegally then not only do you suffer the appropriate sanctions for that, but ALL evidence gained that way is null and void when it comes to providing prosecutions - you basically wipe out the possibility of EVER prosecuting that person for whatever crime you had evidence of by doing anything illegal yourself. It's not good policing to wipe out all your evide
Re: (Score:2)
Agreed. Any country that tolerates illegally-obtained evidence is only a step away from outright corruption.
In the UK, if your evidence was obtained illegally then not only do you suffer the appropriate sanctions for that, but ALL evidence gained that way is null and void when it comes to providing prosecutions - you basically wipe out the possibility of EVER prosecuting that person for whatever crime you had evidence of by doing anything illegal yourself. It's not good policing to wipe out all your evidence (including other, legally obtained, evidence) and provide your target with almost complete immunity from prosecution because you didn't get approval for your wiretaps etc.
Military things work differently in practice but even "officially" they are supposed to work the same way.
I believe the idea is to gather illegal evidence (that you never intend to use in court) to see who the badguys are. Next you get an "anonymous" tip about who to get a legal wiretap against. Surprise! Your tip was real good!
Re: (Score:2)
Then Germany sucks. This story is in the UK were illegal evidence isn't evidence of anything but wrongdoing on the part of whoever collected it. If it was any other way there would be massive police abuse.
Actually, it's pretty much the same in the UK, at least in primciple. The courts have wide discretion to do whatever they think is appropriate. http://lawiki.org/lawwiki/Improperly_obtained_evidence [lawiki.org]
Re:Why? (Score:5, Insightful)
Doing stuff like this allows you to put EVERYBODY in a huge dragnet and see who is worth looking into more closely. You don't have to actually use any of the data you collect as evidence. You simply need to figure out who to target with legal methods.
Suppose I sniff thousands of phone calls and find out that you are doing something I don't like - such as making drugs, or copying movies, or saying bad things about your school on Facebook, or whatever. I can't use that as evidence, but I know who you are now. Then I just walk down your street and notice that your grass is taller than the local ordinance allows, or claim that I heard a shout for help that seemed to be coming from your house and knock on the door. You open up the door and I happen to see something inside that is suspicious, or whatever. Now I have probable cause and can get a warrant, and I can carve another notch in my baton or whatever.
Legally searching houses is expensive, and it ticks people off when you search the wrong ones. On the other hand, mass interception of phone/internet/etc is cheap and tells you who to target with legal techniques.
Re: (Score:1)
Re: (Score:1)
Sooner or later, even the government catches up with the thieves.
The problem is, at least in the UK, is that the GOVERNMENT are the thieves.
Re: (Score:3, Insightful)
No. The large international corporations, particularly the financial ones, are the thieves. The government is simply an obedient servant.
I wouldn't call them a slave though. They are family and they do get benefits out of their obedience.
Re: (Score:2)
The real phone network probably doesn't have the capability built in to record phone calls, and a MITM GSM AP is quicker and cheaper than adding that capability...
Anti-bombing technology? (Score:2)
Could this be used to prevent bombings?
It seems that more and more, cell phones are being used as triggers for bombs. They are cheap, easily obtained and because the cell network is ubiquitous, the bombs can be detonated outside of line of sight or the range of other cheap radio transmitters (garage door openers, etc). The network also acts almost as a stegonographic mask, as there's no "unusual" radio signature and the spectrum is already flooded with active traffic.
A device that could override and masqu
Re: (Score:2)
The problem with prohibiting secure phone lines (Score:2)
The real problem with prohibiting secure phoning is that criminals [slashdot.org] can also wiretap conversations.
Re: (Score:3)
The real problem with prohibiting secure phoning is that criminals [slashdot.org] can also wiretap conversations.
Indeed now that SMS messages are used for two-factor authentication for many banks this is becoming a more common area of attack [eweek.com]
so who are Datong ? (Score:2, Informative)
Paul Lever
Mr. Paul R.S. Lever serves as Non-Executive Chairman of the Board of Datong plc., since September 2005. He also acts as Chairman in a number of other organisations. He was formerly the Chairman of the National Criminal Intelligence Service (âoeNCISâ) and the National Crime Squad (âoeNCSâ), non-executive Chairman of BSM Group plc and Oxford Aviation Holdings Ltd and Chief Executive of Tube Investments â" small appliance operations, Crown Paints,
Wireless Privacy??? (Score:3)
If you are talking on a cellphone.. or any other wireless device... broadcasting your conversation through the air... and you think your privacy is guaranteed you are a moron. Whatever you say you deserve to have heard and posted for all to see. Of course... given the way things have gone in the last 10 years I wouldn't really expect privacy on a landline either.
I think people have way too much of a 'magic black box' mentality when it comes to technology. By not thinking about how the devices they depend on work they don't see their cellphones as a radio transmitter. Then even without a fake tower to connect to they broadcast their conversations for miles in all directions and expect privacy??? Sure cellular data is encrypted but there are people out there who can decode it. And then of course one just automatically assumes that their phone company plus all other phone companies along the path will play nice with the data...
Maybe secrets are best told in person.
Re: (Score:3)
Re: (Score:3)
Sure cellular data is encrypted but there are people out there who can decode it.
And there are people who can climb a phone pole and attatch a recorder to your phone line.
I don't see any reason to treat cellphone calls different from landline calls just because the methods of gaining illicit access are different.
Re: (Score:2)
Someone listening to a radio signal doesn't have to tamper with anybody's property. They can just sit in their own home passively receiving while you beam your radio waves right to them. In my opinion if you don't want to share something with someone you shouldn't be sending it to them.
Re: (Score:2)
Re: (Score:3)
Re: (Score:2)
Hackers 2: Takedown (and a question) (Score:1)
Re: (Score:1)