As most of this blog reader already know, in past years there was a lot of activities related to public research for GSM auditing and cracking. However when there was huge media coverage to GSM cracking research results, the tools to make the cracking was really early stage and still very inefficient. Now Frank Stevenson , norwegian [...]
Archive for the 'interception' Category
GSM cracking in penetration test methodologies (OSSTMM) ?
Published by July 23rd, 2010 in Privacy, intelligence, interception, security and technology. 2 Comments
Blackberry Security and Encryption: Devil or Angel?
Published by July 7th, 2010 in Privacy, business, intelligence, interception, security and technology. 1 CommentBlackberry have good and bad reputation regarding his security capability, depending from which angle you look at it. This post it’s a summarized set of information to let the reader the get picture, without taking much a position as RIM and Blackberry can be considered, depending on the point of view, an extremely secure platform or [...]
The (old) Crypto AG case and some thinking about it
Published by June 7th, 2010 in cyberwarfare, intelligence, interception and security. 0 CommentsIn the ‘90, closed source and proprietary cryptography was ruling the world. That’s before open source and scientifically approved encrypted technologies went out as a best practice to do crypto stuff. I would like to remind when, in 1992, USA along with Israel was, together with switzerland, providing backdoored (proprietary and secret) technologies to Iranian government to [...]
Mobile Security talk at WHYMCA conference
Published by June 2nd, 2010 in Privacy, business, interception, security and technology. 0 CommentsI want to share some slides i used to talk about mobile security at whymca mobile conference in Milan.Read here my slides on mobile security . The slides provide a wide an in-depth overview of mobile security related matters, i should be doing some slidecast about it putting also audio. Maybe will do, maybe not, it [...]
Quantum cryptography broken
Published by May 20th, 2010 in Privacy, interception, security and technology. 0 CommentsQuantum cryptography it’s something very challenging, encryption methods that leverage the law of phisycs to secure communications over fiber lines. To oversimplify the system is based on the fact that if someone cut the fiber, put a tap in the middle, and joint together the other side of the fiber, the amount of “errors” that will [...]
SecurStar GmbH Phonecrypt answers on the Infosecurityguard/Notrax case: absolutely unreasonable! :-)
Published by February 1st, 2010 in Privacy, business, interception and technology. 0 CommentsUPDATE 20.04.2010: http://infosecurityguard.com has been disabled. Notrax identity became known to several guys in the voice security environments (cannot tell, but you can imagine, i was right!) and so our friends decided to trow away the website because of legal responsibility under UK and USA laws. UPDATE: Nice summary of the whole story (i know, it’s [...]
Evidence that infosecurityguard.com/notrax is SecurStar GmbH Phonecrypt – A fake independent research on voice crypto
Published by February 1st, 2010 in Privacy, business, interception and security. 7 CommentsBelow evidence that the security review made by an anonymous hacker on http://infosecurityguard.com is in facts a dishonest marketing plan by the SecurStar GmbH to promote their voice crypto product. I already wrote about that voice crypto analysis that appeared to me very suspicious. Now it’s confirmed, it’s a fake independent hacker security research by SecurStar GmbH, [...]
Dishonest security: The SecurStart GmbH Phonecrypt case
Published by February 1st, 2010 in Privacy, business, interception and security. 0 CommentsI would like to provide considerations on the concept of ethics that a security company should have respect to the users, the media and the security environment. SecurStar GmbH made very bad things making that infosecuriguard.com fake independent research. It’s unfair approach respect to hacking community. It’s unfair marketing to end user. They should not be tricking by [...]
About the SecurStar GmbH Phonecrypt voice encryption analysis (criteria, errors and different results)
Published by January 30th, 2010 in Privacy, business, interception, security and technology. 4 CommentsThis article want to clarify and better explain the finding at infosecurityguard.com regaring voice encryption product evaluation. This article want to tell you a different point of view other than infosecurityguard.com and explaining which are the rational with extensive explaination from security point of view. Today i read news saying: “PhoneCrypt: Basic Vulnerability Found in 12 out [...]
Licensed by Israel Ministry of Defense? How things really works!
Published by January 29th, 2010 in Privacy, cyberwarfare, intelligence, interception and security. 0 CommentsYou should know that Israel is a country where if a company need to develop encryption product they must be authorized by the government. The government don’t want that companies doing cryptography can do anything bad to them and what they can do of good for the government, so they have to first be authorized. Companies providing [...]
Location Based Services: the big brother thanks you ;-)
Published by December 1st, 2009 in Privacy, intelligence, interception and technology. 0 CommentsDo you use your iphone, google phone, blackberry or nokia smartphone with cool built-in GPS? Well law enforcement can now know even better where you are, at any time, even with historical data and much better than BTS based location systems. Sprint has given 8 million times customer’s GPS information to law enforcement (sound something like a [...]
Gold-Lock Security Encryption Contest: be careful!
Published by November 25th, 2009 in Privacy, cyberwarfare, intelligence and interception. 0 CommentsThis post is to talk about the “unfair” marketing approach of Gold-Lock, an israeli company doing mobile voice encryption authorized by Israeli Ministry of Defence . Following an announcement seen on Linkedin “Information Security Community” group: GoldLock is offering US$ 100.000 and a job for an unencryption GoldLock, an israeli encryption and security company [...]
Political conflict in Turkey between Prosecutors and Wiretappers
Published by November 7th, 2009 in Privacy, intelligence and interception. 0 CommentsIt seems that in Turkey the Telecommunication Directorate (TIB), in charge of managing the wiretapping, intercepted the president of the Judge and Prosecutors Associations. Prosecutors and Judge usually does not like being tapped, and so the 1st High Criminal Court ordered an audit of all the recording done by the TIB since 2006. Read more here.
Hackers hacking hackers are always pretty fun. And I am not talking about ZF05 (which was cool reading, even if not as cool as ~El8 was), I am talking about this.
1st august 2009: Switzerland start realtime internet interception
Published by July 21st, 2009 in cyberwarfare, intelligence, interception and security. 0 CommentsThe intelligence strength is increasing everywhere… also in Switzerland that had a well known privacy protection approach! Read the WikiLeaks Article
UAE government placing backdoors into Blackberry devices
Published by July 21st, 2009 in Privacy, cyberwarfare, intelligence, interception and security. 0 CommentsNice attempt to place backdoors inside Blackberry devices. It seems that UAE government wanted to do something nasty placing backdoors trough software upgrades in Etilsat (local mobile operator) blackberry devices, obviously with the cooperation of the mobile operator itself. Fortunately, the power of the security community discovered and unveiled the facts. Check it out. Etisat patch designed for [...]
Voice encryption in government sectors
Published by July 6th, 2009 in Privacy, business, cyberwarfare, intelligence, interception and security. 0 CommentsI will make some in depth articles about how voice encryption really works in government environments. The open standards and open source still have to reach the military and government environments for what’s related to secure speech. To give you an idea of the complexity and kind of particular issues that exists, look at the USA 3G [...]
