Aletho News

ΑΛΗΘΩΣ

US-Israeli Security Company Selling Mobile Phone Surveillance Products To Agencies Around The World

By Tim Cushing | Techdirt | December 17, 2013

Privacy International, which has done a very thorough job digging into the backgrounds of the many private companies involved in the surveillance “industry” around the world, has just released a promotional document from the American-Israeli Verint, a security company that provides NSA-level cell phone surveillance power to entities around the world.

[A] scaled down version of this system is also being sold by private surveillance contractors to the highest bidder. The company behind it? Israeli-American company Verint. Their Skylock technology claims to have the ability to “Remotely locate GSM and UMTS targets located anywhere in the world at cell level precision”.

The brochure Privacy Int’l obtained doesn’t go into detail as to how it achieves this, but what is shown is both impressive and disturbing.

From a brochure collected this year we have discovered one of the newest additions to Verint’s product line: mobile phone tracking on an international scale. Previously, mobile phone tracking required presence in the particular areas of interest, focusing on the tracking of phones through monitoring Base Stations (Cell Towers) and local networks to pinpoint location. In the past, if a law enforcement agency wanted location data they requested information from the relevant telecommunication firm operating in that specific territory. By way of an example, this would result in the UK not being able to obtain a French mobile phone’s location without help from the French. Now it would appear that Verint have bypassed the territoriality requirement.With this latest news, we know that location tracking has become borderless in the same way as communications surveillance. The ability to do this has likely come from a focus on international phone systems rather than domestic or regional networks which would never reach the worldwide nature of location tracking Verint is advertising.

Some details on Verint’s SKYLOCK offering are available online (under the name ENGAGE). While the brochure seems to indicate this is solely a military product (the brochure cover only lists “Military, Special Forces, Navy, Search and Rescue, Border Control” and the photos contained show only military personnel), the inside notes make it clear these products are available to “law enforcement” as well.

As Privacy Int’l points out, Verint’s offering operates “independently of local service providers,” meaning pretty much every legal obstacle is demolished. What no one knows is going on won’t hurt them. One product is targeted at satellite communications, but even considering that limited scope, it’s still very powerful.

Here’s what ENGAGE/SKYLOCK can do:

– Intercept voice calls and text messages
– Decrypt A5/1 and A5/2 encryptions with an embedded decipher
– Operate undetected leaving no electromagnetic signature
– Selectively downgrade UMTS traffic to GSM

Other ENGAGE products target wireless communications. Verint’s intercept-in-a-box can do all of the following.

Actively and passively intercept WiFi communications based on: 802.11 a/b/g/n, 2.4Ghz, and 5GHz
– Active interception of mobile handsets, even when not intentionally connected to a WiFi network
– Intercept target communication at a distance with zero packet loss
– Choose from multiple active interception methods to overcome encryption of private communication
– Identify access points and intercept MAC addresses in the area

Verint also gives its purchasers the power to target phones using 3G networks, remotely activate cell phone mics, and block cellular communication.

The capabilities that were presumed to only be in the hands of national intelligence agencies now can be had by nearly anyone who can come up with the money. Powerful cell phone surveillance products are a growth market. Anything that can increase data and communication harvesting while simultaneously eliminating a majority of legal restrictions and oversight practically sells itself.

We may feel this sort of power is OK in the “right hands,” but we don’t get to decide which hands this ends up in. We may believe the NSA should be able to do this sort of thing (overseas, preferably), but that local law enforcement agencies should be forced to jump through warrant and subpoena hoops before tracking locations and intercepting communications. But ultimately it doesn’t matter what we prefer. That call is made by Verint and it’s in the business of selling surveillance products, not protecting the privacy of the world’s citizens.

Related article

December 17, 2013 Posted by | Civil Liberties, Corruption, Full Spectrum Dominance | , , , , | Leave a comment

UK spyware used against Bahraini activists – court witness

RT | May 12, 2013

UK spy technology was used against British citizen in Bahrain, new evidence filed in a UK high court has claimed. Activists are calling for a judicial review of the UK’s failure to hold firms accountable for sales of spy software to repressive regimes.

The evidence submitted contains a witness statement from Bahraini activist and writer Ala’a Shehabi, 30. She has both Bahraini and British citizenship, and is one of the founding members of Bahrain Watch, an independent research and advocacy organization set up following a security crackdown in the country in February 2011.

Shebabi became one of the targets of the FinSpy malware emails, developed by UK firm Gamma International, the Guardian reported.

The activist claimed she received four phishing emails from what appeared to be authentic email accounts after being released after detention.

The FinSpy software reportedly allows for surveillance of emails, social media messaging and Skype calls, and can retrieve files saved on an infected computer’s hard drive. It also can remotely operate microphones and cameras on computers and mobile phones.

“I have real concerns about the Bahraini regime having effective unfettered access to my computer, reading my emails and monitoring my calls. Not only is this a gross invasion of my privacy, I am concerned that it could put in danger from the Bahraini authorities myself, my family members and other activists,” the paper quoted Shehabi as saying.

In her witness statement, she claims that the first infected email was supposedly from Kahil Marzou, the deputy head of Bahrain’s main opposition party. Other emails purported to have come from an Al Jazeera journalist.

“It upset me a lot, scared me and made me feel quite paranoid. I am very concerned that it appears that a product of a British company,” she stressed.

The campaign group Privacy International (PI) in November reported that Gamma International is selling surveillance technology without a proper license. The technology sold is being used by 25 countries to spy on activists, who are later targeted by repressive regimes – a situation that “amounts to criminal conduct” on the part of the tech firms, the activist group said in an 186-page report it sent to Her Majesty’s Revenue and Customs (HMRC).

In the spring and summer of 2012, Bahraini activists, including Shehabi, received emails containing malware. After the University of Toronto’s CitizenLab investigated the case, it found evidence connecting the malware to FinSpy.

With this new witness statement, privacy rights groups are seeking to force the UK government to review exports of surveillance technology. The activists are pushing for a judicial review of the government’s apparent failure to investigate whether the sale of technology to repressive regimes is a breach of export-license controls.

In April, Privacy International filed an application for judicial review of HMRC over its role in allowing the export of advanced surveillance technology used by repressive regimes worldwide – including Bahrain – to spy on dissidents.

Privacy International’s lawsuit is over the government’s refusal to disclose whether it investigated UK-based Gamma International (GI). GI’s FinSpy software has allegedly been used by some two dozen countries worldwide.

“In the wrong hands, today’s surveillance technologies can have devastating effects, and the public, especially victims targeted by this surveillance, have a right to know what the UK government is doing about it,” said Eric King, head of research at Privacy International.

Gamma International, an Anglo-German company registered in the British Virgin Islands, denied reports it had sold to oppressive regimes, and maintained that it complies with export controls.

The UK’s Department for Business, Innovation and Skills advised Gamma International that FinSpy products have been controlled by EU legislation since 2000 and “require a license” in order to be sold outside the EU. This would require the tech firm to disclose the names of export customers.
Bahrain’s human rights violations

Bahrain’s human rights situation is “critical in the wake of the brutal crackdown on pro-democracy protesters that erupted in February 2011,” Human Rights Watch reported in December.

Police regularly use violence to disperse crowds of protesters, while Bahrainis, led by the country’s Shia Muslim majority, are continuing to protest, demanding greater rights and freedoms from the ruling Sunni minority.

More than 80 people have died in unrest since the pro-democracy protests begun in the February 2011 uprising, with thousands arrested and imprisoned and severe violence reportedly employed during the course of the arrests. Physical and psychological torture of prisoners to sign false confessions has also been reported.

New laws were passed in Bahrain in April making it illegal to insult the country’s king and national symbols, charges that carry five-year jail sentences.

Related article

May 12, 2013 Posted by | Civil Liberties, Full Spectrum Dominance, Subjugation - Torture | , , , , , , | Leave a comment