Slashdot Mirror

← Back to Stories (view on slashdot.org)

Guide to DIY Wiretapping

Posted by CmdrTaco on from the do-you-hear-what-i-hear dept.

Geeks are Sexy writes "ITSecurity.com has a nice piece this week on how wiretapping works and how you can protect yourself from people who wants to snoop into your life. From the article 'Even if you aren't involved in a criminal case or illegal operation, it's incredibly easy to set up a wiretap or surveillance system on any type of phone. Don't be surprised to learn that virtually anyone could be spying on you for any reason.'" Maybe I'm on the wrong track here, but I guess I assumed that wiretapping now happened in secret rooms at the telco, and not by affixing something physically to a wire in your home, but I'll definitely be aware next time I hear a stranger breathing next time I'm stuck on hold.

33 of 183 comments (clear)

  1. Hear a stranger breathing? by Anonymous Coward · · Score: 5, Funny

    If someone is dumb enough to leave the microphone connected on an intercept phone, they deserve to get caught.

    1. Re:Hear a stranger breathing? by Lost+Penguin · · Score: 5, Funny

      You sneeze while on the phone with your friend, and hear "gesundheit".... twice.

      --
      I am the unwilling control for my Origin.
    2. Re:Hear a stranger breathing? by BadHaggis · · Score: 5, Funny
      To the stranger listening on my phone.

      Please provide a transcript of the shopping list my wife just gave me. I think that I may have forgotten to write something down.

      --
      Homo homini lupus
    3. Re:Hear a stranger breathing? by Thelasko · · Score: 3, Informative

      If someone is dumb enough to leave the microphone connected on an intercept phone, they deserve to get caught. You raise a good point. Using a plain speaker is risky, because it can potentially double as a microphone. Telephones have a duplex coil which prevents this from happening.
      --
      One of our competitors trademarked the term "hypothesis". From now on, we will call them "boneheaded ideas".
  2. voltage drop by omeomi · · Score: 5, Interesting

    Most of the land line suggestions in that article don't seem to bother with taking care of the noticeable voltage drop caused by adding an extra phone to a call. You can tell when somebody else in your house picks up the phone while you're on it because the person on the other end gets quieter. The same thing would happen if you plugged a phone into the line outside your house. I thought professional surveillance systems did something to make up for this, so there's no noticeable change in volume when the wiretapper starts listening.

    --
    ZuluPad, the wiki notepad on crack
    1. Re:voltage drop by faloi · · Score: 5, Insightful

      The downside to some of the audible cues is that, at least amongst people I know, the use of cordless phones is prevalent. And most of the people I know tend to immediately write off any abnormality (shifts in volume, clicking, etc.) in their conversation as being because of the phone. Which is probably the case. Either that or I need a better class of acquaintances.

      --
      "It is a miracle that curiosity survives formal education." -Albert Einstein
    2. Re:voltage drop by bugnuts · · Score: 4, Interesting

      The Ringer Equivalence Number is just the number of phones the ringer can drive. More than that, and they won't have the voltage to ring.

      It has nothing to do with talking on the phone.

      What you'd want to do is use an inductive microphone or even an inductive loop around the actual cable. It doesn't touch it, and is very difficult to detect if it's nearby the cable... Search for the USS Halibut, and how it tapped a Soviet military underwater cable by using a nearby inductive coil which never interfered with the cable.

    3. Re:voltage drop by mollymoo · · Score: 5, Interesting

      If you use a normal phone, yes. Until recently I worked in telecoms and we were all issued with a near perfect bugging device - a butt phone with monitor mode. Monitor mode is high-impedance so undetectable without some clever kit. Connect it to the right pair, hit the button and you can listen in undetected at will. You can buy one for a hundred quid ($200) or so, probably less if you shop around. Monitoring lines was standard practice, albeit briefly, when working on a line - you listen to make sure nobody is using the phone, then dial a test number using the line to make sure it's the right circuit, then do whatever you need to do. You aren't supposed to listen to people's conversations, merely ensure the line isn't in use, but that doesn't mean it didn't happen.

      Telecoms cabinets aren't all that secure, it's easy to break in and put a tap in one and with a little care it wouldn't be obvious to an engineer working in the cabinet there was anything amiss. You could make a tap with a microcontroller with an ADC and some external RAM. The hard part would be finding the right pair without access to the phone company records or target's premises.

      --
      Chernobyl 'not a wildlife haven' - BBC News
    4. Re:voltage drop by Anonymous Coward · · Score: 3, Informative

      The "professional" wiretap uses a buttset. These have bed-of-nails clips for monitoring without leaving any particularly obvious traces (a small hole is made through the sheath of the wire, that is all, no cutting or stripping is involved).

      They also have both a regular and monitor mode. The regular mode makes it work like a normal telephone, with about 600 Ohms impedance, causing a voltage drop. The monitor mode has 100+ kOhms impedance, which will cause a voltage drop low enough to be indistinguishable from a moisture leak (happens all the time on analog phone lines).

      Here's a nice one you can buy right now!

    5. Re:voltage drop by smooth+wombat · · Score: 5, Funny

      True story: I have a cordless phone and one time I was talking with my mom and the phone acted a bit weird. She sounded somewhat quieter and there seemed to be static. I shook the phone thinking there was a loose connection and the static was gone but her voice was still quieter.

      She asked me what was going on and I told her, "Eh, must be the wiretap on my phone."

      As far as I can tell, I have not had that problem since that time.

      *cue spooky music*

      --
      We will bankrupt ourselves in the vain search for absolute security. -- Dwight D. Eisenhower
    6. Re:voltage drop by noidentity · · Score: 5, Funny

      It's even simpler in the USA to find out if the line is tapped. If the year is 2000 or later, it is.

    7. Re:voltage drop by StormReaver · · Score: 3, Funny

      "...a butt phone with monitor mode."

      You must have had a shitty job listening to all of those crappy conversations.

  3. No thanks... by Psmylie · · Score: 5, Funny
    I'll hold off on trying any of their wiretapping suggestions until they release guides on "DIY Legal defense" and "How to Avoid Getting Buggered in a Federal Prison".

    Still, if you're feeling paranoid, by all means check your phones. It's true, nosy neighbors could indeed be spying on you. Never underestimate the average person's voyeurism urges...

    --

    psmylie's dictionary: Godzillion (noun) Any number large enough to destroy Tokyo

  4. A blast from the past by chemosh6969 · · Score: 5, Funny

    It's the 90s bomb making/revenge/wiretapping text file guides all over again. Only this time it's Web 2.0

  5. Re:How do you wiretap a cell phone? by introspekt.i · · Score: 3, Funny

    Because how can you wiretap something with no wires? It must be completely immune to wiretapping XD.

  6. "Open up your phone's receiver" by Steauengeglase · · Score: 3, Funny

    Yes, because corporate espionage is so often carried out by nefarious time travelers from the 70s and 80s. This gem should also include look for men with wavy hair and bright rays from the nearest time gate.

  7. Re:It was.. by N1ck0 · · Score: 3, Interesting

    Of course you can still tap any POTS line the good old fashion way. Its just a matter of accounting for the voltage drop on the line. Although yes if you are the telco it is just easier to capture everything while it is in digital format on the switch. Now if you don't use analog, inline (some random place between the CO and customer) tapping can be a bit harder. You basically either have to record the signals on the line and decode it later, or toss a non-terminating CSU/test kit in the line without making too much of a disruption in the signal.

  8. Encrypted VOIP not secure... by bugnuts · · Score: 3, Insightful

    They recommend Skype, which encrypts its traffic.

    But the computer is even more vulnerable than a phone to bugs. Tons of malware exists that can "own" a computer, which has given rise to an entire new security market. A phone is easy to tell if it has a bug ... you can simply open it up and look at it. Computers not so much.

    It also recommends using a cellphone for confidential calls. Just make sure neither provider uses ATT.

  9. Re:It was.. by omeomi · · Score: 4, Insightful

    It's only illegal if someone (or an entity) gets caught, you're able to prove it court, are able to get a ruling in your favor in court, and are able thereafter to enforce remedial action. Good luck with all that.

    Well, it's still illegal. Just because the powers that be think they can ignore laws, and have the power to keep from getting prosecuted doesn't change the legality. Maybe someday they'll be brought to justice. Doubt it, though.

    --
    ZuluPad, the wiki notepad on crack
  10. What a load of crap. by chill · · Score: 5, Informative

    The 80s called and their want their wiretapping tech back.

    This is great if you're worried about the neighbor kid listening in, but not for anyone serious. Wiretapping is done at the telco level and you can't tell you're being tapped. In the digital age there is no clicking, breathing, voltage drops or any other indication. There is a big long checklist when implementing a CALEA node for making certain there is no way the target can tell they're being monitored.

    --
    Learning HOW to think is more important than learning WHAT to think.
  11. @CmdrTaco: it's worse than you think. by palegray.net · · Score: 3, Insightful

    Maybe I'm on the wrong track here, but I guess I assumed that wiretapping now happened in secret rooms at the telco, and not by affixing something physically to a wire in your home, but I'll definitely be aware next time I hear a stranger breathing next time I'm stuck on hold. The type of surveillance you describe is indeed occuring, but it's not particularly selective in many cases. What's concerning is the fact that wiretapping occurs a lot more than people realize, for a variety of reasons, by private and public sector parties. As I'm sure you're aware, physical access is rarely required to accomplish the task these days.
    --
    512 MB RAM, 20 GB disk, 200 GB transfer, five datacenters. $19.95/month.
  12. WTF?? by f8l_0e · · Score: 4, Interesting

    The article also links to this product. They never had toys this fscking cool when I was a kid.

  13. Re:How do you wiretap a cell phone? by GeckoX · · Score: 4, Insightful

    So true, though I'm about to have to add a land line back in the mix again unfortunately.
    Went out with my wife a couple weeks ago, got a baby sitter. Left our contact numbers with her. She asks "Where's the phone?". Er...
    Had to leave my cell phone behind for her to use in case of emergency.

    Won't be many more years before my son has friends calling. I either leave him unable to be contacted by phone, let his friends call my cell, or get a land line.

    Nope, landlines aren't dead yet and won't be for some time I'm sure.

    --
    No Comment.
  14. Wireless phone = more fun by Chyeld · · Score: 5, Funny

    Couple of years ago, one of my neighbors narced on me because they thought I was playing video games too loud. This led to me getting a set of wireless headphones to listen to TV with.

    It completely surprised me the first time I put them on and couldn't get them to tune into the TV's transmitter because all the channels were full of wireless phone conversations.

    Sadly, none of my neighbors have any secrets worth listening to. And even worst, most of them seem to have no issues with taking the phone into the shitter with them :/

    In revenge, I've hooked up the transmitter to a cheap dvd player and leave anime porn running on a loop just before going to work, every few days....

    1. Re:Wireless phone = more fun by apparently · · Score: 4, Funny
      In revenge, I've hooked up the transmitter to a cheap dvd player and leave anime porn running on a loop just before going to work, every few days.

      But at the end of the day, you're still a dude who owns anime porn. FAIL.

  15. Re:It was.. by TheGratefulNet · · Score: 3, Insightful

    Well, it's still illegal. Just because the powers that be think they can ignore laws, and have the power to keep from getting prosecuted
    doesn't change the legality. Maybe someday they'll be brought to justice.

    legality is only for those of us who are NOT in law enforcement or the government.

    you can talk all you want about constitution this or law that; but while you rot in prison being raped by other guys, tell me again how 'illegal'it was that they tapped you.

    laws are an abstract concept. being locked away is the farthest thing from being abstract.

    they all know this and this is why we are kept in fear (ie, in check).

    (lovely country/world we got here, huh?)

    --

    --
    "It is now safe to switch off your computer."
  16. Re:You don't need a phone to listen in.. by mollymoo · · Score: 3, Insightful

    Capacitors don't pass current at DC, but they will pass AC current. An analogue signal (which POTS is) is by definition AC. What you need is high impedance. Any old op-amp will have an input impedance of 10^5 ohms or better (often an order of magnitude better), which would cause a negligible voltage drop and be virtually undetectable.

    --
    Chernobyl 'not a wildlife haven' - BBC News
  17. When I was young... by __aagmrb7289 · · Score: 3, Funny

    I remember when I was younger, going around with a handset with roach clips at the end of the wire, opening phone boxes and plugging in. It was always a bit of a surprise when we tapped an active line, but MAN! So easy to do. I don't know if things are still setup the same way these days - I know the phone boxes around here are locked - not sure if the same key opens all of them anymore, but yeah - easy to tap a phone line? Sure, as long as you don't mind sitting in the bushes! I'm sure there is technology that can make it easier than that, these days.

    Oh, the above story? Not me, of course. When I say I, I'm talking about someone else I heard stories about, of course. I'd never do anything remotely approaching illegal, such as making long distance phone calls on other people's lines. That's crazy!

    1. Re:When I was young... by Sabz5150 · · Score: 3, Funny

      going around with a handset with roach clips at the end of the wire You beige boxing pothead :)
      --
      "Who modded this informative? Whoever it is must've been smokin' some of that martian pot!"
  18. DIY wire tapping? by Thelasko · · Score: 4, Funny

    Why would I want to wiretap myself?

    --
    One of our competitors trademarked the term "hypothesis". From now on, we will call them "boneheaded ideas".
  19. Listen for breathing??? by gatkinso · · Score: 4, Funny

    That won't help me: all my calls consist of heavy breathing.

    --
    I am very small, utmostly microscopic.
  20. stop glossing over Skype's problem by Sloppy · · Score: 3, Interesting
    Countermeasure suggested by article:

    Use an encryption VoIP service like Skype: Skype is an especially difficult service to tap, because of its encryption strategy. Slate reporter David Bennahum writes that "the company has built in such strong encryption that it's all but mathematically impossible with today's best computer technology to decode the scrambled bits into a conversation." You're more protected with this system.

    I sometimes feel bad about flaming Skype. They really are more resistant to eavesdropping than most everything else, and it's nice they used AES256. They almost got it right.

    But saying it's mathematically impossible to crack 'em is bullshit, because Skype's design is flawed (in at least one way that we know of -- and there's a lot we don't know about it, because it's closed and hasn't been really audited by crypto-nerds -- that's Skype first problem). AES256 is useless if the key itself has been compromised by MitM, and Skype's design allows that (that's Skype's second problem). Skype depends on a central server to introduce identities to one another, and that central point is potentially subject to compromise (or coercion). There's no reason VoIP users can't (in many cases, at least) cert each other directly, but unfortunately, that's not how Skype works.

    Skype can be tapped, and all this talk about how its heavy crypto prevents that, is a smokescreen. AES is believed to be a strong link in this chain, but don't forget that we're talking about a chain.

    --
    As copyright owner of this comment, I authorize everyone to defeat any technological measure which limits access to it.
  21. Re:You don't need a phone to listen in.. by Em+Adespoton · · Score: 3, Interesting

    Not recommended, but I used to use a 9VDC battery in a circuit to boost signal in the local circuit back when I was on a party line. It seemed to provide the boost needed and the telco never complained. I never did figure out why it worked, considering analog twisted copper does run AC.