- People on Twitter ask whose ancestors would’ve passed immigrant ‘wealth test’ Monday 6:54 PM
- Kobe Bryant helicopter crash mocked in teen’s TikTok video Monday 6:38 PM
- Chiefs, Bears, Packers have Twitter accounts hacked Monday 3:48 PM
- Washington Post reporter suspended amid backlash over Kobe Bryant tweet Monday 3:08 PM
- America is united in hating Ken Starr’s impeachment hat Monday 3:01 PM
- In ‘Cuties,’ the contradictions of growing up come to a head Monday 1:55 PM
- Racist tweets blame fruit bat soup for coronavirus Monday 1:25 PM
- What is the #ILeftTheGOP movement? Monday 1:21 PM
- The Grammys were weird and sad—but the Billy Porter hat memes offered some levity Monday 12:36 PM
- Auschwitz Museum calls on Facebook to ban Holocaust denialism Monday 11:59 AM
- YouTuber who said his girlfriend was dead now says he faked it Monday 11:42 AM
- Review: Kentucky Route Zero is one of the most magical games ever made Monday 11:00 AM
- Backlash grows against Clearview as lawsuit looms Monday 10:58 AM
- Tyler the Creator calls out the Grammys for racism over ‘Rap Album’ win Monday 10:25 AM
- Democrats call on John Bolton to testify after book bombshell Monday 9:56 AM
American and British spies broke into the network of a multinational cellphone-chip producer and stole encryption keys that allow them to hack into people’s phones, according to the Intercept.
News of the breach comes just days after President Barack Obama sought to encourage corporations to share cybersecurity data with the federal government.
The encryption keys stolen by the U.S. National Security Agency (NSA) and its British counterpart, the Government Communication Headquarters (GCHQ), would allow the intelligence agencies to bypass cellphone security and monitor calls without seeking the permission of the courts or the phone companies.
“Once you have the keys, decrypting traffic is trivial,” Christopher Soghoian, the principal technologist for the American Civil Liberties Union, told the Intercept. “The news of this key theft will send a shock wave through the security community.”
According to top-secret documents provided by former NSA analyst Edward Snowden, a joint unit consisting of operatives from the NSA and GCHQ hacked into Gemlato, a SIM card manufacturer incorporated in the Netherlands. The breach gave the agencies the ability to secretly monitor “a large portion of the world’s cellular communications,” the Intercept reported.
Both voice and data communications tied to the affected units are compromised. The bulk theft would also enable the NSA to unlock communications previously intercepted by the spy agency but rendered unreadable without the encryption keys.
According to the documents, agency officials hacked into the email and Facebook accounts of Gemalto employees, giving them the data necessary to break into the company’s network. GCHQ officials wrote that they had “successfully implanted several machines” and claimed they had compromised Gemalto’s entire network.
News of the breach and the invasive powers granted the NSA because of it are unlikely to sit well with tech industry leaders. For at least the past two weeks, the White House has been trying to convince Silicon Valley’s largest companies to increase cooperation with the government to further mitigate cybersecurity threats.
The White House organized a cybersecurity and consumer-protection summit at Stanford University last Friday, where Obama signed an executive order meant to encourage the sharing of information between private-sector companies and the government.
Thursday’s revelations, however, call into question the federal government’s commitment to protecting the security of corporations and their customers.
Photo by Luciano Belviso/Flickr (CC BY 2.0)
Dell Cameron was a reporter at the Daily Dot who covered security and politics. In 2015, he revealed the existence of an American hacker on the U.S. government's terrorist watchlist. He is a co-author of the Sabu Files, an award-nominated investigation into the FBI's use of cyber-informants. He became a staff writer at Gizmodo in 2017.