NSA and partners wanted to ride smartphone connections to Google Play for surveillance
As part of a pilot project codenamed IRRITANT HORN, NSA and an electronic eavesdropping unit called the Network Tradecraft Advancement Team were working on a method that used the XKEYSCORE spying system to identify smartphone traffic and allow the sending of malicious data "implants" to targeted devices. A typical "man-in-the-middle" attack is described, with hackers placing themselves between the smartphone and server and observing, or modifying the data they communicate.
In the NSA and NTAT's case, the method would have let surveillance operatives covertly insert malicious code inside data packets exchanged between a smartphone and an app server while an app is being downloaded or updated. Moreover, the agencies were investigating the possibility of hijacking connections to send "selective misinformation to targets' handsets". They also demanded access to Samsung and Google's app store servers, so they could secretly use them for harvesting information about particular phone users.
The project was conceived sometime after the unrest in Tunisia in December 2010, in an effort to prepare surveillance operations as the rebellion spread outside the country and into the Middle East and North Africa. The agencies were targeting the African region, but eventually pinpointed app store servers in France, Switzerland, Bahamas, the Netherlands and Russia. Although mobile surveillance makes sense in the event of huge public gatherings (e.g. riots and rallies), where a big mass of people with mobile devices is assembled, the app store-reliant method of surveillance is certainly questionable.
Neither the NSA, nor any of the Five Eyes agencies would answer questions related to the activities, although some of them acknowledged the operations as part of their foreign intelligence duties.
source: CBC News via The Intercept
Posts: 12; Member since: Jan 16, 2015
posted on May 21, 2015, 9:21 AM 3
Posts: 854; Member since: Jan 13, 2015
posted on May 21, 2015, 9:30 AM 5
Posts: 374; Member since: Mar 18, 2015
posted on May 21, 2015, 9:38 AM 11
Posts: 5192; Member since: Oct 28, 2013
posted on May 21, 2015, 9:53 AM 1
Posts: 1695; Member since: Dec 28, 2012
posted on May 21, 2015, 11:20 AM 0
Posts: 17507; Member since: Jun 17, 2009
posted on May 21, 2015, 1:15 PM 1
Posts: 58; Member since: Feb 01, 2013
posted on May 21, 2015, 1:39 PM 1
PhoneArena Comments Rules
A discussion is a place, where people can voice their opinion, no matter if it is positive, neutral or negative. However, when posting, one must stay true to the topic, and not just share some random thoughts, which are not directly related to the matter.
Things that are NOT allowed:
- Off-topic talk - you must stick to the subject of discussion
- Trolling - see a description
- Flame wars
- Offensive, hate speech - if you want to say something, say it politely
- Spam/Advertisements - these posts are deleted
- Multiple accounts - one person can have only one account
- Impersonations and offensive nicknames - these accounts get banned
Moderation is done by humans. We try to be as objective as possible and moderate with zero bias. If you think a post should be moderated - please, report it.
Have a question about the rules or why you have been moderated/limited/banned? Please, contact us.
Send a warning to post author
Send a warning to Selected user.
The user has 0 warnings currently.
Next warning will result in ban!
Ban user and delete all posts
Message to PhoneArena moderator (optional):