« Early Google Maps Hack Retired

Snowflakes »

German Police Looking to Hack Skype.


Categories: society
Hits for this post:633
Tiny URL: http://r-echos.net/lk/11954
Sunday, February 3rd, 2008 at 12:19 am
Bookmark on del.icio.us | Twitter This Stumble This

German Police Looking to Hack Skype.: “

A news story from Wired reports of documents leaked to WikiLeaks showing the German police contracting DigiTask to create a trojan to intercept Skype traffic before it gets encrypted. The documents can be viewed on WikiLeaks here (in the native German) and here (rough English translation).

Hasn’t this been done before? Last July, Wired reported on how the FBI used spyware to track a person making bomb threats (My blog of the report is here). That was only the latest use of spyware by US law enforcement to circumvent a suspect’s own security, including possible encryption of Internet traffic.
homelandsecurity.jpg
Looks like the Germans are catching on, and quite possibly the rest of the world’s governments with them. Then again, when Duh’bya issues a secret directive to expand net monitoring because of repeated hacker attacks, you have to wonder who really has the upper hand in the hacking game.

The specs on the spookware. The idea behind the warez is to facilitate a ‘man-in-the-middle’ attack. That is, to capture Skype traffic before it is encrypted for transmission, or possibly to capture the public-key encryption code for future hacks of the target’s… maybe all of Skype’s… communications.

The offer DigiTask makes to Germany’s Bavaria state shows the reason behind the reason for the trojan attack:

Encryption of communication via Skype poses a problem for surveillance of telecommunications. All traffic generated by Skype can be captured when surveilling a Dialin- or DSL-link, but it cannot be decrypted. The encryption of Skype works via AES wih a 256-Bit key. The symmetric AES keys are negotiated via RSA keys (1536 to 2048 Bit). The public keys of the users are confirmed by the Skype-Login-Server when logging in. To surveil Skype-communication it thus becomes necessary to realize other approaches than standard telecommunications surveillance.

The concept of DigiTask intends to install a so called Skype-Capture-Unit on the PC of the surveilled person. This Capture-Unit allows recording of the Skype communication, such as Voice and Chat, as well as diverting the data to an anonymous Recoridng-Proxy. The Recording-Proxy (not part of this offer) forwards the data to the final Recording-Server. The data can then be accessed via mobile Evaluation Stations.

The mobile Evaluation Units can, making use of a streaming-capable multimedia player, playback the recorded Skype communication, such as Voice and Chat, also live. To minimize bandwidth usage special codecs for strong compressions are used. The transmission of data to the recording unit is encrypted using the AES algorithm.

The main problem, of course, is getting the warez on the target’s system. The police, assuming they have the proper warrants to do so, will need to enter the target’s place and install the trojan manually, or craft an e-mail to trick the target to install it himself. Depending on the target’s knowledge and/or experience with such malware and his system’s defenses, he may not take the e-mail bait or his anti-malware applications may detect the trojan and destroy it before it can be installed.

Who wants to be Big Brother? America and Germany may only be the tip of the iceberg. Other nations’ law enforcement agencies may already be concocting, or executing, similar hacks under everyone’s nose.

SETEC Astronomy?

(Via cyberpunkreview.com.)

Related Posts

  • No Related Post




You can skip to the end and leave a response. Pinging is currently not allowed.

Leave a Reply

R-Echos

Subscribe in a reader




R-Echos context

Collections

* at the occasion of R-Echos issue 1 we organised some pages into topic oriented piles:

  • Displaying
  • un-Realisation
  • Physical Interface
  • Augmented Reality
  • Publishing
  • Geometry
  • Visualisation
  • Open Source Mobile Phone
  • Fab


    • Since 2004, R-Echos is an experimental online magazine dedicated to republication; topics vary from biology to graphic design, from ecology to business. It agglomerates anything which is about art, computing, science. His form is made out of collages of texts, links, images, references, videos and sounds - choosen with care to take part to this very personnal publication.



  • About
  • Articles
  • Beta version
  • Categories
  • Defragmentation
  • Directory
  • Fab
  • Index
  • Links
  • Monthly Archives
  • Open Source Mobile Phone
  • R-Echos issue 1
  • Somewhere else
  • Tags
  • Visual Index
  • Visualisation



    • Search R-Echos



    * curation / edition / selection is made by Electronest

    On Purpose: Design Concepts

    On Purpose: Design Concepts

    On Purpose: Design Concepts looks at conceptual design practices, the emergence of ‘meta design’, and the question of who or what can define something as design…
    With Åbäke, Droog Design, Daniel Eatock, Electronest, Ann-Sofie Back, Will Holder, Peter Jensen, Onkar Kular & Noam Toran, Metahaven, Alex Rich, Savage, Yuri Suzuki
    September 13 - [...]

    websites and White Cubes

    websites and White Cubes

    Dumb sign, originally uploaded by blackbeltjones.
    Been asked to work on the nominations for designs of the year again at the Design Museum, which is very nice.But it leads me back to this hoary old question – how should interactive work best be shown in a museum or gallery context? Should it be [...]
    R-Echos issue 1 - AMP001

    R-Echos issue 1

    An experiment in the economics of production: how can we shift focus from consumption of a finished product to investment in the processes of design, print & production?

    This is a poster and a text: an analog R-Echos
    Would you be interested in investing in the tangible production of this work?
    1. You can download the digital archive
    and [...]

    What if, VACANT LOT, Hoxton, London

    What if, VACANT LOT, Hoxton, London

    Related PostsBuilding and designing Digitalism’s IdealisticPaper Circuitssub-studio design blog: Herzog and de Meuron Parisian PyramidThe best CNC project machines - Hack a Daygreenpix zero-energy massive LED displayDIY Blubber BotBotanicalls Twitter DIYBuild Your Own War Bot - Wired How-To WikiHOW TO - Embroider digital imagesThe Shipyard ReturnsBottoms Up DoorbellThey [...]
    magazines as objects exhibition

    Colophon events this week

    Colophon events this week

    There are a couple of Colophon-related events in Europe this week. First up, Andrew Losowsky – that’s him above next to a copy of IsNotMagazine – has curated an exhibition of magazines as objects in Milan. CR Blog has an in-depth report with details – it sounds great, lots of magazine-y-ness. Andrew’s [...]



    R-Echos has its own tiny url system:

    * tiny url are url you can copy/paste into email without the risk of having a long line that surely will get broken and a link unusable.

    To get updates via email:

    mailinglist delivered via FeedBurner



    free advertising network