NEWSORZO
No Result
View All Result
Wednesday, April 14, 2021
  • Home
  • Business
  • Tech
  • Startups
  • News
Subscribe
NEWSORZO
  • Home
  • Business
  • Tech
  • Startups
  • News
No Result
View All Result
NEWSORZO
No Result
View All Result
Home Tech

Revealed: Saudis suspected of phone spying campaign in US

by news orzo
March 30, 2020
in Tech
0
152
SHARES
1.9k
VIEWS
Share on FacebookShare on Twitter

Exclusive: Whistleblowers data suggests millions of tracking requests sent over four-month period

Saudi Arabia appears to be exploiting weaknesses in the global mobile telecoms network to track its citizens as they travel around the US, according to a whistleblower who has shown the Guardian millions of alleged secret tracking requests.

Data revealed by the whistleblower, who is seeking to expose vulnerabilities in a global messaging system called SS7, appears to suggest a systematic spying campaign by the kingdom, according to experts.

The data suggests that millions of secret tracking requests emanated from Saudi Arabia over a four-month period beginning in November 2019.

The tracking requests, which sought to establish the US location of Saudiregistered phones, appeared to originate from Saudis three biggest mobile phone companies.

The whistleblower said they were unable to find any legitimate reason for the high volume of the requests for location information. There is no other explanation, no other technical reason to do this. Saudi Arabia is weaponising mobile technologies, the whistleblower claimed.

The data leaked by the whistleblower was also seen by telecommunications and security experts, who confirmed they too believed it was indicative of a surveillance campaign by Saudi Arabia.

The data shows requests for mobile phone location data that were routed through the decades-old SS7 global messaging system, which allows mobile operators to connect users around the world. For example, a mobile user from the US travelling in Germany and seeking to make a call back to the US is connected through the SS7 network.

The SS7 system also enables tracking of phones, which has been a cause for concern by security experts. When a US carrier such as Verizon, T-Mobile or AT&T receives what is known as a Provide Subscriber Information SS7 message (or PSI) from a foreign mobile phone operator, they are getting, in effect, a tracking request.

Such requests are legitimately used to help foreign operators register roaming charges. But excessive use of such messages is known in the mobile telecoms industry to be indicative of location tracking.

Experts expressed alarm at the tracking request data because of the apparently persistent high frequency of the requests that appeared to be emanating from Saudi operators seeking to locate their subscribers once they entered the US.

It is not known whether the Saudi mobile operators that were requesting large amounts of location tracking data about their subscribers were knowingly complicit in any governmentrun surveillance programme.

However, it has already been widely reported that the Saudi government uses cyberweapons to hack dissidents and critics of the kingdoms crown prince, Mohammed bin Salman. In January the Guardian revealed that the Amazon billionaire Jeff Bezoss mobile phone was hacked in 2018 after receiving a WhatsApp message that had apparently been sent from the personal account of Prince Mohammed.

One Middle East expert, Andrew Miller, a former member of Barack Obamas national security council, said surveillance was part of the kingdoms modus operandi. I think they are surveilling not only those they know are dissidents, but those they fear may deviate from the Saudi leadership, Miller said. They are particularly worried about what Saudi nationals will do when they are in western countries.

The whistleblowers data appears to show PSI requests from Saudi Arabia that pinged a major US mobile phone operator. It suggests that the three largest Saudi mobile operators Saudi Telecom, Mobily and Zain sent the US mobile phone operator a combined average of 2.3m tracking requests per month from 1 November 2019 to 1 March 2020.

The data appears to suggest the Saudi mobile phones were being tracked as they travelled through the US as often as two to 13 times per hour. Expert said that frequency suggests users could probably have been tracked on a map to within hundreds of metres of accuracy in a city.

The data seen by the Guardian did not identify the individual Saudi mobile users who were being tracked.

The Saudi embassies in Washington and London did not respond to multiple requests for comment. Neither did Saudi Telecom, Zain or Mobily.

Sid Rao, a security and privacy researcher and technologist at Nokia Bell Labs, said he believed the data indicated it was highly likely that the Saudis were engaged in a surveillance campaign, based on the magnitude of the location requests.

Rao said it could be difficult to determine how many PSI messages might be considered normal, but additional data provided by the whistleblower made him very confident that the requests were not legitimate.

For example, one of the Saudi operators also apparently sent separate location requests known as PSL, or Provide Subscriber Location, requests that were blocked by US mobile operators, indicating a high level of suspicious activity.

John Scott-Railton, a senior researcher at the citizen lab at the Munk school at the University of Toronto, said the data seen by the Guardian appeared to show foreign agents flagrantly abusing the US cellular network to track people moving around the country.

In this moment of crisis, phone companies, regulators and the Department of Justice should step up to prevent foreign powers from tracking us through our phones, he said.

The Guardian requested comments from the three largest US mobile operators T-Mobile, AT&T and Verizon and asked the companies whether they allowed PSI tracking requests to be sent for location tracking purposes.

T-Mobile and Verizon did not comment. AT&T said: We have security controls to block location-tracking messages from roaming partners.

Ron Wyden, a Democratic senator from Oregon on the Senate intelligence committee, has previously said in a letter to the US telecoms regulator that malicious attackers were exploiting SS7 vulnerabilities. He alleged that the Federal Communications Commission had failed to act on such warnings, and blamed the FCC chairman, Ajit Pai, for not regulating US carriers.

In a statement to the Guardian, Wyden said: Because of [Pais] inaction, if this report is true, an authoritarian government may be reaching into American wireless networks to track people inside our country.

Read more: https://www.theguardian.com/world/2020/mar/29/revealed-saudis-suspected-of-phone-spying-campaign-in-us

Tags: EspionageMiddle East and North AfricaMobile phonesSaudi ArabiaSurveillanceTechnologyTelecomsUS newsWorld news
  • Trending
  • Comments
  • Latest

Amazon Seller Certifications Highlight Women and Veteran Owned Small Businesses

February 26, 2020
The Changing Role Of Airports IELTS Reading Answers

The Changing Role Of Airports IELTS Reading Answers

October 4, 2020
Techstars launches a digital space tech accelerator with USAF, the Netherlands and Norway

Teeoh’s avatar social platform aims to beat the odds

January 4, 2020
Best Hand Lettering Quotes For Inspiration

Best Hand Lettering Quotes For Inspiration

October 18, 2020
Your 8-Point Guide to Developing a Memorable Brand Personality

Your 8-Point Guide to Developing a Memorable Brand Personality

0
Red Dead Redemption PC is finally fixed, Rockstar promises

Red Dead Redemption PC is finally fixed, Rockstar promises

0
Techstars launches a digital space tech accelerator with USAF, the Netherlands and Norway

Techstars launches a digital space tech accelerator with USAF, the Netherlands and Norway

0
Techstars launches a digital space tech accelerator with USAF, the Netherlands and Norway

Crimson Tiring Redemption 2 PC gets a repair for stuttering – but it no doubt could perchance per chance also approach at a heed

0
Your 8-Point Guide to Developing a Memorable Brand Personality

Your 8-Point Guide to Developing a Memorable Brand Personality

April 14, 2021
Turner Pest Control promotes regional business analyst

Turner Pest Control promotes regional business analyst

April 13, 2021
T.I. & Tiny Speak Out Following New Sexual Assault Allegations From Three More Women

T.I. & Tiny Speak Out Following New Sexual Assault Allegations From Three More Women

April 13, 2021
Endura’s Simon Richardson dies in a bike accident

Endura’s Simon Richardson dies in a bike accident

April 12, 2021

Recent News

Your 8-Point Guide to Developing a Memorable Brand Personality

Your 8-Point Guide to Developing a Memorable Brand Personality

April 14, 2021
Turner Pest Control promotes regional business analyst

Turner Pest Control promotes regional business analyst

April 13, 2021

Categories

  • Business
  • News
  • Startups
  • Tech

Site Navigation

  • Privacy Policy
  • Disclaimer
  • Contact Us
  • Advertise
NEWSORZO

NEWSORZO is online business journal that focuses on providing news related to the business world, startups, economic developments and more.

© 2020 NEWSORZO - Online business journal that focuses on providing news related to the business world, startups, economic developments and more.

No Result
View All Result
  • Home
  • Business
  • Tech
  • News
  • Startups

© 2020 NEWSORZO - Online business journal that focuses on providing news related to the business world, startups, economic developments and more.

Login to your account below

Forgotten Password?

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In