Guide to DIY Wiretapping 183
Geeks are Sexy writes "ITSecurity.com has a nice piece this week on how wiretapping works and how you can protect yourself from people who wants to snoop into your life. From the article 'Even if you aren't involved in a criminal case or illegal operation, it's incredibly easy to set up a wiretap or surveillance system on any type of phone. Don't be surprised to learn that virtually anyone could be spying on you for any reason.'" Maybe I'm on the wrong track here, but I guess I assumed that wiretapping now happened in secret rooms at the telco, and not by affixing something physically to a wire in your home, but I'll definitely be aware next time I hear a stranger breathing next time I'm stuck on hold.
voltage drop (Score:5, Interesting)
Re:It was.. (Score:3, Interesting)
Good luck with all that.
Re:voltage drop (Score:2, Interesting)
You don't need a phone to listen in.. (Score:3, Interesting)
Re:It was.. (Score:4, Interesting)
Re:voltage drop (Score:2, Interesting)
Back in the days of modems, my REN was about 4.5.
No matter what device they attach, it will modify your REN number and if it's higher than 4, you'll be able to tell.
Re:How do you wiretap a cell phone? (Score:3, Interesting)
Quite frankly, it's a threat, but no more than the famous slashdot meme: If you have physical access you have root.
Who would abandon their celly? I take mine to the bathroom w/ me. I don't let strangers in my house, and it doesn't leave my pocket unless I am making/recieving a call.
I think this is really just FUD to freak people out. Hey whats that? Why does my phoen blink? Oh, it's just a reply to a post on
Re:voltage drop (Score:5, Interesting)
It has nothing to do with talking on the phone.
What you'd want to do is use an inductive microphone or even an inductive loop around the actual cable. It doesn't touch it, and is very difficult to detect if it's nearby the cable... Search for the USS Halibut, and how it tapped a Soviet military underwater cable by using a nearby inductive coil which never interfered with the cable.
Re:voltage drop (Score:5, Interesting)
If you use a normal phone, yes. Until recently I worked in telecoms and we were all issued with a near perfect bugging device - a butt phone with monitor mode. Monitor mode is high-impedance so undetectable without some clever kit. Connect it to the right pair, hit the button and you can listen in undetected at will. You can buy one [nimans.net] for a hundred quid ($200) or so, probably less if you shop around. Monitoring lines was standard practice, albeit briefly, when working on a line - you listen to make sure nobody is using the phone, then dial a test number using the line to make sure it's the right circuit, then do whatever you need to do. You aren't supposed to listen to people's conversations, merely ensure the line isn't in use, but that doesn't mean it didn't happen.
Telecoms cabinets aren't all that secure, it's easy to break in and put a tap in one and with a little care it wouldn't be obvious to an engineer working in the cabinet there was anything amiss. You could make a tap with a microcontroller with an ADC and some external RAM. The hard part would be finding the right pair without access to the phone company records or target's premises.
WTF?? (Score:4, Interesting)
Re:voltage drop (Score:2, Interesting)
Re:Encrypted VOIP not secure... (Score:3, Interesting)
http://en.wikipedia.org/wiki/Skype [wikipedia.org]
stop glossing over Skype's problem (Score:4, Interesting)
I sometimes feel bad about flaming Skype [slashdot.org]. They really are more resistant to eavesdropping than most everything else, and it's nice they used AES256. They almost got it right.
But saying it's mathematically impossible to crack 'em is bullshit, because Skype's design is flawed (in at least one way that we know of -- and there's a lot we don't know about it, because it's closed and hasn't been really audited by crypto-nerds -- that's Skype first problem). AES256 is useless if the key itself has been compromised by MitM, and Skype's design allows that (that's Skype's second problem). Skype depends on a central server [wikipedia.org] to introduce identities to one another, and that central point is potentially subject to compromise (or coercion). There's no reason VoIP users can't (in many cases, at least) cert each other directly, but unfortunately, that's not how Skype works.
Skype can be tapped, and all this talk about how its heavy crypto prevents that, is a smokescreen. AES is believed to be a strong link in this chain, but don't forget that we're talking about a chain.
STU Phones? (Score:2, Interesting)
Just get a freaking Bearcat scanner and scan... (Score:1, Interesting)
Gotta love mixing old and new technologies. It's amazing how many people enter their credit card info into cordless phones. Baby monitors are also easy to pick up. Most conversations aren't worth listening to, though.
My Conversation with the NSA (Score:2, Interesting)
So I'm sitting in a bookstore, and she calls. Right in the middle of the call there is a strange squeaking noise, reminiscent of digital audio "static" noises, sort of a cross between a cd skip and a modem. Sudden it ends, and we are no longer on the phone alone. Somehow our conversation was crossed with another cell phone conversation.
The strange part is this. The other folks now joined to our conversation were also from Iran. They were speaking Persian.
After about 30 seconds or mass confusion, the call went dead. For about 5 minutes my wife's phone and mine refused to connect out to make a call. Full signal, no access. When we finally got back in contact with each other, she told me that the other people on the line were trying to meet at a restaurant on the other side of Dallas. One had just landed at DFW from Frankfurt, on his way home from Iran. She understood them, I don't know the language.
Now, what are the chances of 4 mobile phones, separated by 20 miles a piece, suddenly crossing conversations at the servers, and being the same fairly limited ethnic/nationality group that just happens to be on the "Axis of Evil" list?
I tell this story to my freinds under the title "My conversation with the NSA" Since then it is a running joke for my freinds to randomly yell "bomb", "assassinate", "Jihad" and "Mohamed" while talking to me on the phone.
Re:You don't need a phone to listen in.. (Score:4, Interesting)
Anyone in telecom.... (Score:2, Interesting)