Legal Spying Via the Cell Phone System

An anonymous reader writes "Two researchers say they have found a way to exploit weaknesses in the mobile telecom system to legally spy on people by figuring out the private cell phone number of anyone they want, tracking their whereabouts, and listening to their voice mail."

Obligatory

[OdoylesRule]

In Soviet Russia, phone calls you!

Nothing new here..

Google already does this.

first !

ya ha ahaaaa phone up my asss!

remove battery?

[newdsfornerds]

Is it true that the gubmint can track the location of my cellie even when it's off? Or do I really need to disconnect the battery?

Re:remove battery?

[Monkeedude1212]

I believe that is true.

I've had a cell phone "turned off" for about a month one time to find the battery completely drained. Some activity must be going on. Just my personal experience. You don't have to buy my FUD though.

Re:remove battery?

[characterZer0]

I had a Motorola mobile phone that drained faster while off than it did while on. It could just be poor design or corrosion.

Re:remove battery?

If it's off for the purposes of an airline, (that is, radio off in order prevent interference), then it's off for the purposes of this, since it depends on the phone communicating with the cell tower.

Re:remove battery?

[phasm42]

Is it true that the gubmint can track the location of my cellie even when it's off? Or do I really need to disconnect the battery?

It's theoretically possible since it's a soft power-off. Hypothetically, the phone could still be operating while giving the appearance of being turned off. By the same token, it could be taking pictures and transmitting audio even when you're not on a call and not using the camera, or even when "off". Whether this is ever actually done, I don't know.

Re:remove battery?

[datapharmer]

If you just let a disconnected battery sit in a drawer it will drain itself too. It must be wireless electricity doodads in the battery and phone so the phone can send information on you to the secret police even if the battery is pulled. Quick, run before they find out you know too much!

Or maybe batteries just have a tendency to run dead when not in use due to self-discharge. Now get off my tech site.

Re:remove battery?

[newdsfornerds]

Screw the aluminum foil hat. I'm going with a Ti alloy this time.

Re:remove battery?

[MaskedSlacker]

I once worked in a secured facility (DOE lab) where security briefings included being told that one of the reasons cellphones are not allowed is that they can be remotely tracked, accessed, and the microphones can be activated--even when the phone is off.

Whether its true or not, at a minimum, the people involved in setting security protocols for the DOE certainly think it is.

Re:remove battery?

[poetmatt]

no, it's a bunch of crap. All phones have a battery-less location feature but it's only turned on if you dial 911. Otherwise, having the battery in your phone or not doesn't affect whether or not you can be tracked.

Batteries will naturally dissipate on their own, usually to the tune of 3-30% per day depending on the capacity of the battery. Higher %age on smaller batteries. Have you never heard of that?

Re:remove battery?

[IndustrialComplex]

no, it's a bunch of crap. All phones have a battery-less location feature but it's only turned on if you dial 911. Otherwise, having the battery in your phone or not doesn't affect whether or not you can be tracked.

I think you mean service-less emergency dial feature. Battery-less the phone isn't going to dial anything.

Re:remove battery?

[azh]

What about storing your phone in a Faraday cage?

Re:remove battery?

It seems technically possible. This would mean the phone is not actually off and that it turns off only the user controllable parts. If those guys fear the phones, it might be that they know more than we do about how phones are designed.

Re:remove battery?

[newdsfornerds]

Those are expensive. I'll keep it under my lead foil hat for now.

Re:remove battery?

[kamochan]

I have been demonstrated exploit code for the n900 which does that. Haven't heard of it in the wild, though...

Re:remove battery?

I have an iPhone you iNsensitive clod.

Re:remove battery?

[Captain+Centropyge]

Does a hamster cage count..?

Re:remove battery?

[Matheus]

Why not just live in one (1:03 in)

Re:remove battery?

I once worked in a secured facility (DOE lab) where security briefings included being told that one of the reasons cellphones are not allowed is that they can be remotely tracked, accessed, and the microphones can be activated--even when the phone is off.

With iphones, yes. Iphones never really turn off. And since Steve Jobs hates you, you can't disconnect the battery.

Re:remove battery?

[alan_dershowitz]

He may not have been right about suspecting being spied on because of battery discharge, but the government can in fact remotely activate some cell phones and eavesdrop on nearby conversations with them:

FBI taps cell phone mic as eavesdropping tool

Re:remove battery?

[natehoy]

My house has aluminum siding, and I assure you, it works. I get four bars outside the house, but had to purchase a repeater to get signal inside, or all of my cell phone use at home would have to be while standing next to a window that faces a cell tower.

Re:remove battery?

[xeoron]

There was a article in the Boston Globe a few years back that talked about how the FBI had uploaded a custom software update to a turned off phone that would turn the mic on for them to listen to conversations the person was having while not on the phone, and how the phone company helped them do it. All of this came out about 2 years after the fact when they charged several people for charges related to organized crime.

Re:remove battery?

no, it's a bunch of crap. All phones have a battery-less location feature but it's only turned on if you dial 911. Otherwise, having the battery in your phone or not doesn't affect whether or not you can be tracked.

Take the crack pipe out of your mouth and step away from the keyboard...

Re:remove battery?

Or maybe batteries just have a tendency to run dead when not in use due to self-discharge. Now get off my tech site.

That was a little harsh. Even if you're surely right all the time with a wikipedia link to prove it.

Re:remove battery?

[Buelldozer]

There is no question that all of those things can be done.

Re:remove battery?

Dude, it gets worse, I saw this documentary where this rich guy used all the cell phones in a city to listen to the whole city. It got so bad his friend was, like, made at him and everything. I think the police were in on it cause they had this light thing that signaled him when they wanted him to work for them or something.~

Re:remove battery?

[datapharmer]

I don't usually reply to anonymous cowards, but just to clear the air... I didn't mean to be harsh - many cellphones have a soft off (such as the iphone) and others can be modified for monitoring purposes by law enforcement. I just wanted to make the point that just because the battery drains doesn't mean you need to live in a tin foil fort in the woods. And yes, I know wikipedia isn't always right. I didn't feel like searching any harder for another link - the wikipedia one worked and made my point. And yes, I am surely right all of the time, so there!

Re:remove battery?

[capo_dei_capi]

I wouldn't be so concerned about the gubment, they don't have the staff to track random people just for the hell of it. Since this can apparently be exploited by anyone, I'd be much more worried about that PI your wife hired, and the like.

Re:remove battery?

[slick7]

I have an iPhone you iNsensitive clod.

It's not a weakness, it's a feature....for iSpy, inc.

Re:remove battery?

[PReDiToR]

Staff? Is that like "people"?
Any decent operation could set up a small shell script to take geographic coordinates from their whole customer base and keep them in a database by number/subscriber/account as an index. With a decent warrant they could also use the remote activation features of most phones to gather this data discretely.
Once that information is in a DB those PIs can just look it up if they have the right access/connections.

24 isn't a fantasy, it is the NSA showing off last year's technology. If Jack Bauer can do it, so can the Chinese.

Re:remove battery?

[MRe_nl]

Is the hamster named Faraday?

Re:remove battery?

stick to poems.

Re:remove battery?

[arkane1234]

Batteries lose their charge, it's a given.
It's just that with the ones nowadays, they have to hold a higher charge so they dissipate faster.
Well, also the residual trickle of a charge to detect if the button's been pressed to power it on ;)

Re:remove battery?

[BlackBloq]

Lock in lead box.

Re:remove battery?

[kaizokuace]

Is that so your hat is lighter allowing you to run faster from the boogy men? There is a reason foil is aluminum and not tin anymore... tin foil actually blocked brainwaves from being gleaned...

Re:remove battery?

[newdsfornerds]

Reminds me of when I didn't use my powered-off, fully charged Thinkpad for a month. When I tried booting it, the battery was completely drained so I had to plug in the power supply. I think the batteries can't hold a charge even if the device they support is completely off. I'd like to see if the same behavior is observed when a fully charged battery is left disconnected from the Thinkpad.

Re:remove battery?

[Fastolfe]

It is technically possible to manufacture a phone to do these things, but phones are not normally capable of doing this. Perhaps they were concerned about people bringing in fake phones, or phones that were tampered with or otherwise designed to pretend that they were off? Or maybe they've heard all of the urban legends and, being a "government" facility, they adopt security practices that assume even urban legends are true? Isn't there a phone OS out there that's open source?

Uhm, bad headline.

[dmgxmichael]

Just because it's possible doesn't make it legal.

Re:Uhm, bad headline.

[girlintraining]

Just because it's possible doesn't make it legal.

With good enough lawyers, everything is legal.

Re:Uhm, bad headline.

[warGod3]

It's only illegal if you get caught.

Re:Uhm, bad headline.

Just because it's possible doesn't make it legal.

Indeed. I see various forms of fraud going on here. I am interested to know that it is possible, however.

Re:Uhm, bad headline.

[BhaKi]

With complicated enough law, everything is illegal.

Re:Uhm, bad headline.

Clearly it ought to be legal though.

What the fuck are you smoking that makes you think this should be legal?

Re:Uhm, bad headline.

[SQLGuru]

Saw a line about spoofing caller id info. That isn't legal.....now.

Re:Uhm, bad headline.

[EdIII]

Just because it's possible doesn't make it right.

Unfortunately, everything that they are doing short of the voicemail hacking is currently legal in 49 states, and possibly 50 states.

They are exposing the extremely weak security of the overall telecom industry. What they did was considered normal operations. Maybe not something that an average person would be doing, but not against any TOS or laws.

It boils down to Caller ID spoofing. Create strong laws, stronger than the ones currently in Congress, and you will make stuff like this illegal.

Re:Uhm, bad headline.

[Captain+Centropyge]

^^THIS!!

Re:Uhm, bad headline.

[tophermeyer]

Clearly it ought to be legal though.

What the fuck are you smoking that makes you think this should be legal?

Um. Whoosh! I think? I'm not sure that post was entirely sincere. Or maybe I'm assuming sarcasm where there isn't any. Either way, maybe you should get ahold of some just to curb some of that hostility brah.

Re:Uhm, bad headline.

You aren't sure yourself, so that shows that at least one other person finds his post questionable at the least.

And sorry "brah", but I'm quite adamant when it comes to people thinking that these kind of major privacy violations should be allowed.

I'll accept a "whoosh" if necessary, but I stand by my "hostility" concerning this subject.

Re:Uhm, bad headline.

[crazyvas]

What the fuck are you smoking that makes you think this should be legal?

Whatever it is, it's not legal.

Re:Uhm, bad headline.

[pluther]

But it ought to be.

Re:Uhm, bad headline.

Then it's probably best not to blab about it to everyone!

Re:Uhm, bad headline.

[boniggy]

From the Article:

DePetrillo said. "We created software that iterates through these numbers and can crawl the entire phone database in the U.S. within a couple of weeks... We have done whole cities and pulled thousands of records." "It's not illegal, nor is it a breach of terms of service," Bailey said.

How is this not illegal? its not an open DB that anyone can browse at freewill. You would need a way to hack/social-engineer the servers in order to get into it. I highly doubt that Verizon/ATT/etc have their entire customer DB's open for anyone to peruse with a data-miner. I'm sure the telco's aren't too happy bout this news.... and i bet they would pay high $$ to see them/this disappear. :)

Re:Uhm, bad headline.

[sumdumass]

The used a PBX to forge the incoming numbers. The regular phone service will retrieve the caller ID info.

There are only certain valid numbers allowed in certain area codes. They simple set a script up to scroll through all those numbers and phone another PBX internally which then looks the caller ID information up as normal operation. No hacking or unlawful access to the DBs. It works as designed except for the spoofing of the calling number. And because this can be done without accessing the outside network, I doubt the anti-caller ID-spoofing laws could bite on this action.

Re:Uhm, bad headline.

[b4dc0d3r]

Before anyone latches on to your caller ID spoofing part, these people are not spoofing ID info to a third party - they are generating an incoming call to themselves with spoofed data. From what I can see, the proposed bill does not outlaw that, so they aren't doing anything in this step that *will* be illegal.

And the matching data they buy is not legal in any of the states. They have to buy it from European companies, which obtain it from US companies. So saying it's "legal" is misleading - it's more accurate to say that it's not legal, but they let Europe do that step, and buy the information back, a workaround. "Legal in at least 49 states" implies you can do it start to finish inside the borders, I'd rather see "Legal using a loophole" instead.

The worst thing to come of this is going to be that people see "open-source PBX system", wonder how "hackers" are able to get phone system info, and then the war on open source begins. I suppose we'll see where that part of it goes.

Re:Uhm, bad headline.

[hosecoat]

Just because it's possible doesn't make it legal.

Remember, just because it's illegal doesn't mean it's illegal.

Re:Uhm, bad headline.

[EdIII]

Before anyone latches on to your caller ID spoofing part, these people are not spoofing ID info to a third party - they are generating an incoming call to themselves with spoofed data. From what I can see, the proposed bill does not outlaw that, so they aren't doing anything in this step that *will* be illegal.

That's what I mean by much stronger Caller ID laws. I think that you should be able to prove ownership of a number, on demand, before you can use it as Caller ID. When you are getting an LNP (local number port) to transfer your number around you have to sign an LOA (letter of authorization). During that process it is customary to require a recent bill for the number in addition to the LOA.

I see no reason whatsoever to not require VOIP companies, and Telecoms for that matter, to verify ownership of a number with the LNPs, LOAs, and other such proof of ownership and only allow Caller ID values from a database of owned numbers. I deal with VOIP systems and have programmed some pretty complex gateways, it is not a big deal to do this.

While adding a small and negligible (imho) burden to the companies, it does make spoofing like this quite impossible and does not prevent any other kind of normal operations.

And the matching data they buy is not legal in any of the states. They have to buy it from European companies, which obtain it from US companies. So saying it's "legal" is misleading - it's more accurate to say that it's not legal, but they let Europe do that step, and buy the information back, a workaround. "Legal in at least 49 states" implies you can do it start to finish inside the borders, I'd rather see "Legal using a loophole" instead.

You're right to say it is misleading. What I meant about the 49 states is that Mississippi (I think) recently passed a Caller ID law. However, from reading that law these security researchers still might be alright because that law deals with "intent to deceive". Kind of hard to do that to themselves. IANAL, so they might get away with the Caller ID spoofing in all 50 states right now.

The worst thing to come of this is going to be that people see "open-source PBX system", wonder how "hackers" are able to get phone system info, and then the war on open source begins. I suppose we'll see where that part of it goes.

That's always the risk of open-source software and open systems period. People equate the worst possibilities with those systems to the majority of the activity, while ignoring how much more dangerous it is with walled-garden-utopia systems like Apple products and Sony products.

Funny thing is they have no idea just how much is being operated with open source systems today.

Re:Uhm, bad headline.

[mrfilbert]

The last I read about the law, was that it was working its way through Congress, therefore not a law yet.

Legal? What about the new caller ID law...

[Orga]

From TFA: DePetrillo used open-source PBX software to spoof the outgoing caller ID and then automated phone calls to himself, triggering the system to force a name lookup. I thought spoofing caller ID was now illegal...

Foot meet bullet.

[cosm]

FTA: ""It's not illegal, nor is it a breach of terms of service," Bailey said."

I get mailed revised TOS and privacy policies from companies on a weekly basis. Now that this is publicized, how long will it stay 'legal'? Usually, loudly exclaiming "nener-nener-boo-boo you can't catch me" to one of the largest, consumer unfriendly, profit motivated industries gets their attention.

Re:Legal? What about the new caller ID law...

[Qwell]

Plus the whole breaking into voicemail boxes thing.

Re:Legal? What about the new caller ID law...

[Monkeedude1212]

It is. And yes, they are doing it on a massive scale to pull thousands of records. So how long before a lawsuit?

Re:Legal? What about the new caller ID law...

[russotto]

He's calling himself, so he'd certainly lack any intent to deceive (which is an element of the new caller ID law). Do most people's cell phones work with caller ID with name? Neither mine (ATT) nor my wife's (Verizon) comes up with a name.

Re:Legal? What about the new caller ID law...

What about it? It hasn't been signed yet (at least as of yesterday) and the FCC has to put it in place 6 months after it's signed. So, I guess for this particular research it was fine and will continue to be fine.

Because I said so

""It's not illegal, nor is it a breach of terms of service," Bailey said."

Yeah, right. Don't bend over in the shower.

What makes them think this is legal....?

[sampson7]

As far as I can tell, they assert that it is legal, therefore they think it is legal. Come on folks -- just because you aren't breaking or entering, or murdering someone does not make what you are doing "legal." There are all sorts of privacy laws that come into play here -- and I strongly suspect that I can find at least one prosecutor/judge/jury combo in this country that disagrees. I can't even begin to describe how many laws could be implicated by breaking into someone's voice mail!

Yes, IAAL, but IANYL.

Re:What makes them think this is legal....?

[Monkeedude1212]

Yes, IAAL, but IANYL.

Thats pretty pre-emptive of you, you don't even know how much they'd be willing to pay you should you win the case or not!

Re:What makes them think this is legal....?

[idontgno]

As far as I can tell, they assert that it is legal, therefore they think it is legal.

That's a good point. They forgot their "IANAL" disclaimer, just so people understand exactly how much their "legal opinion" is worth.

This means that the average Slashdotter is more legally savvy then these two "researchers".

Re:What makes them think this is legal....?

[steelfood]

You're right. This sounds like this'll easily run afoul of stalking laws.

Re:What makes them think this is legal....?

[captaindomon]

Legality, for the most part, is based on intent, not methods. That seems to be often misunderstood by technical audiences. This is most definitely still very illegal.

Re:What makes them think this is legal....?

[mjwalshe]

yes try doing this to Obamas mobile and see what happens.

Re:What makes them think this is legal....?

[sampson7]

Good point. Yes, IAAL, and I could be Your lawyer.... if the price is right :)

This is the definition of illegal

[Montezumaa]

These people are smoking crack if they actually believe that taking advantage of a flaw in the system is not illegal. Accessing any information that is believed to be protected is against most all of the state laws in the United States and the federal statues in place for actions like this. Yeah, it might seem cool, but it is a serious felony.

Anyone can try and reason their actions to be legal and/or moral/ethical, but they are not in this case. If I were them, I would quit talking and hope that state governments and/or the Federal Government do not come after them.

Not quite

[Itninja]

They say it's legal, and cite no sources (i.e.'we asked our lawyer"). They seem to indicate that since EU telco 'offer it for free', then it must be legal. I would love to see someone defend this in court; especially if they are using the system to track someone covertly.

Re:Not quite

[Amouth]

just use the same argument the police use for why they don't need a warrant..

we aren't tracking the person - we are tracking the phone, they aren't required to carry it.

Re:Not quite

[PolygamousRanchKid+]

Nelson Rockefeller said of his grandfather, John D. Rockefeller, "He didn't break any laws. But a lot of laws were passed because of what he did."

Re:Not quite

[AlexBirch]

1) Hire them to spy on a friend
2) Tell friend they're spying on him
3) Friend sues them
4) Profit!!!!

Re:Not quite

[muckracer]

> 1) Hire them to spy on a friend
> 2) Tell friend they're spying on him
> 3) Friend sues them
> 4) Profit!!!!

5) Thank $DEITY, that friend will never utter 'I got nothing to hide' again...
6) Move to next person/GOTO 1

Not quite true

Breaking into voice mail systems is not legal.

What's new?

[Senzo]

We already do that, it's called the Homeland Security Act.

Re:What's new?

[Itninja]

I think it's called the Patriot Act:
Oliver Queenan: All cell phone signals are under surveillance, due to the courtesy of our Federal friends over there.
Ellerby: Patriot Act, Patriot Act! I love it, I love it, I love it!

Re:What's new?

[Senzo]

Oh yeah, that was the one I was going for. They are both pretty similar in description though :)

it's not the headline that's bad.

[fyngyrz]

With good enough lawyers, everything is legal.

With the ability to read the constitution - and reason above a third grade level - it is 100% clear that spying on a US citizen's communications without probable cause AND a warrant is not an authorized power for the US government or a US state. It is also doubtful that there exists, or can exist with constitution as currently constructed, a justification for a private citizen exercising such a power.

Re:it's not the headline that's bad.

[IndustrialComplex]

With the ability to read the constitution - and reason above a third grade level - it is 100% clear that spying on a US citizen's communications without probable cause AND a warrant is not an authorized power for the US government or a US state. It is also doubtful that there exists, or can exist with constitution as currently constructed, a justification for a private citizen exercising such a power.

The Constitution's prohibitions against search and seizure do not apply to private citizens at all. There are supplimental laws that may prohibit certain acts, but it is not unconstitutional.

Re:it's not the headline that's bad.

[JesseMcDonald]

You started out so well...

With the ability to read the constitution - and reason above a third grade level - it is 100% clear that spying on a US citizen's communications without probable cause AND a warrant is not an authorized power for the US government or a US state.

But then you had to go and ruin it:

It is also doubtful that there exists, or can exist with constitution as currently constructed, a justification for a private citizen exercising such a power.

The Constitution does not apply to private citizens. It is a document which enumerates the powers granted (or explicitly withheld from) the federal government and the states. It may be argued (though I would disagree) that the Constitution permits the federal government to prohibit private citizens from sending or receiving the radio signals required to eavesdrop on the cell phone system. If so, this would be in the domain of the FCC. However, nothing in the Constitution requires the federal government to prohibit such actions.

Unauthorized interception of someone's physical mail, or tapping into a wired communication system, is prohibited under common law as a violation of another party's property rights (in the mail or the wires, not the content--note that it is up to the owner of the wires to guarantee communications privacy to the end-users). Transmitting radio signals so as to alter the behavior of the cell system could be argued to fall under the same heading. However, nothing in the common law would prevent anyone from passively receiving and decoding the signals that system transmits over the air. If that is a problem, either (a) encrypt your over-the-air communications, or (b) communicate through a channel over which—unlike free-space radio—one can legitimately claim property-rights.

Re:it's not the headline that's bad.

[m.ducharme]

Of course, US presidents have been wiping their asses with the Constitution for 10 (30? 100?) years now, so...yeah.

Re:it's not the headline that's bad.

Former HP's lady CEO told a PI to do it to journalists and was never charged with any wrong doing.

Re:it's not the headline that's bad.

[HereIAmJH]

Probably being pedantic, but I would modify that to:

The Constitutional limitations generally do not apply to private citizens.

Certainly the protections on search and seizure, as well as the right to keep and bear arms apply to private citizens. The limitations, in that I can't forbid you to own a gun or search your house do not apply to me. Although there are laws that could be used to prosecute me if I tried.

OTOH, if I tried to stop you from voting or keep you as my slave, I suspect it could be a constitutional issue where government isn't necessarily involved.

Re:it's not the headline that's bad.

[fyngyrz]

I said justification. Not law. Not the same thing at all. It is 100% clear that the constitution was intended to make the feds recognize, and obey, the existence of certain bounds of privacy that already existed in our society, which private citizens are already expected to comply with.

Re:it's not the headline that's bad.

[fyngyrz]

But then you had to go and ruin it:

I didn't ruin anything. I said justification. Not law. See this essay on privacy. The constitution codifies social rules for privacy in order to limit the authorized powers of the feds. Those rules already existed and they were, and are, quite obvious to anyone in our society that isn't brain damaged or so socially inept they must be kept under supervision.

If that is a problem, either (a) encrypt your over-the-air communications, or (b) communicate through a channel over which--unlike free-space radio--one can legitimately claim property-rights.

No. You have mis-identified the problem. The social boundary already exists. Encryption hardens the boundary, but does not make it appear or go away. You are not welcome to walk in my door just because I have not put a lock upon it; the social boundary is obvious. See the skirt argument in the previously referenced essay.

Regardless of whether I encrypt (or employ other hardening), interception of private communications is understood to be wrong, and obviously so. Our entire society would have to change -- and so the reasoning that created the 4th amendment -- in order for it to be ok for someone to cross boundaries simply because they have not been hardened. Such an event is neither likely, or reasonable.

Re:it's not the headline that's bad.

[sumdumass]

You should read the constitution again. The rights are already there, the constitution does not grant them or entitle anyone to them. It only restricts the government from interfering with them.

The US constitution directs actions of the government(s), not the people. If you look, the right to free speech, freedom of and from religion, and a free press is enumerated by restricting government from making a law concerning them. The right to keep and bear arms is prohibited from being infringed upon, the right to vote in the 19th and 26th amendments is protected by baring the US or a state from restricting it, and slavery is simply baring the US from allowing it to happen except in a limited circumstance.

Now it's it's often considered a matter of tort to have a claim again an individual who acted to deny rights protected by the constitution. But unless they manipulated the government into restricting your rights, then it's a matter of a law or common law that you would sue on and not constitutional grounds. I guess the confusions comes where most of the amendments in the constitution have a provision saying congress can make laws to enforce something. With that in mind, there are a lot of laws that allow criminal and civil prosecution for the same things the amendments protect.

Re:it's not the headline that's bad.

[Jedi+Alec]

100% clear...even though the link you gave is to your own blog which states, and I quote: "It has come to my attention that many people feel that privacy is difficult to define. I was quite surprised to encounter this claim, because the nature of privacy seems quite obvious to me."

In other words, you're proclaiming your personal opinion as fact, and ascribe that very same opinion to the founding fathers while you're at it.

Arrogant much?

Re:it's not the headline that's bad.

[JesseMcDonald]

Those rules already existed and they were, and are, quite obvious to anyone in our society that isn't brain damaged or so socially inept they must be kept under supervision.

I'm so glad that you decided to keep this thread civil...

The constitution codifies social rules for privacy in order to limit the authorized powers of the feds.

Only because the feds are granted powers private citizens don't have. To limit abuses of these powers they are required to get a court to sign off of on violating the property rights of others before they can legally mandate that others grant them access to their private property for search or seizure—something which private citizens are not permitted to do under any circumstances. This has nothing to do with "social rules for privacy".

In the context of your original comment I read "justification" to mean "legal justification", as in: if you don't have justification then the action is unconstitutional. I still think this reading was reasonable. However, if all you meant was "justification for breaking a social convention", feel free to disregard my reply on that point; I really don't care about your mere social conventions in the first place, much less what you feel would or would not justify breaking them, so there is no point in arguing over it.

You are not welcome to walk in my door just because I have not put a lock upon it; the social boundary is obvious.

Sure, if it's just a matter of there not being a lock. I'd have to open the door, which is your private property. It's a different matter if there is no door, however, or if the door is already open. In these cases it is neither generally illegal nor clearly wrong to enter.

Regardless of whether I encrypt (or employ other hardening), interception of private communications is understood to be wrong, and obviously so.

Obviously not by everyone; reasonably people can and do disagree. You are extrapolating your personal sense of morality into a universal code which simply does not exist.

Re:it's not the headline that's bad.

[fyngyrz]

This has nothing to do with "social rules for privacy".

It has everything to do with them. It has been well understood for centuries that privacy was important; the 4th (and to some extent the 3rd) amendment is specifically a mechanism intended to restrain the government from violating privacy unless it has good and sufficient reason, reason it is required to show in order to pursue such a violation. "persons, houses, papers, and effects" precisely define the domain, as of the time of writing, where privacy was most important, and then the nature of the 4th amendment is specifically that of restricting access (search) and possession (seizure), those very things that are the virtual pillars of privacy.

To limit abuses of these powers they are required to get a court to sign off of on violating the property rights of others

That's an over-simplification. It isn't just property rights. The precise wording is "persons, houses, papers, and effects." This is about a whole swath of things that you may or may not (and may not even be able to) own; it isn't simply about property. By its very nature, it covers objects and concepts that would not be your property by limiting access under a general umbrella.

For instance, if you have a vase of mine at your rented home, it is not protected as your property (neither the home or the vase are your property) it is protected by your privacy, and this is precisely what the fourth amendment and law sensibly predicated upon it accomplishes by specifying more than just "property" as the issues at hand, and making the pendant authorization particular to "places... persons... or things" rather than "property."

Further, it shows why the law goes in such ridiculous circles trying to define these boundaries; because the common misunderstanding is about property (which simply doesn't work as the definitive issue), when the actual issue at hand is, and always was, protecting the privacy of the citizen. Which again, the laws predicated upon the 4th recognize over and over again simply by extending these ideas to things like phone calls, medical records, human resources documents and DNA sequences; these are not property issues; they are privacy issues.

Conversely, when power seekers try to carve out exceptions for particular types of communications (email, for instance), it is trivially easy to see not only that they are wrong, but why they are wrong, when you actually understand that the 4th is not about property per se, but only as property is an aspect of a citizen's privacy.

I am perfectly ready to concede that there is a great deal of flawed reasoning extant, and some of it has even made it into legislation; but so far, it has been very easy to demonstrate that such legislation was intended to be unauthorized. The reasoning behind the 4th is almost impeccable, though unfortunately poorly written, like a number of other portions of the constitution (the 2nd is perhaps the poster child for this... you can't understand it unless you analyze it rather thoroughly... which the courts and many citizens often fail to do, and end up with misunderstandings like "the national guard" is somehow involved, or that it might not describe a citizen's individual right to arms, despite its rather significant presence in the bill of rights, or that it is limited to guns, though it clearly says "arms"...)

Personally, I think the greatest mistake made was the presumption that those who would swear an oath to uphold the constitution would actually take that oath seriously. If the authors had understood that politicians, judges and legislators who were to come could be wholly without honor, not to mention not even bothering to study the document they swore to uphold, I suspect they'd have added teeth: Actual punishment for violating the constitution, and we could have seen many dishonorable legislators and judges go down c

Re:it's not the headline that's bad.

[fyngyrz]

Former HP's lady CEO told a PI to do it to journalists and was never charged with any wrong doing.

George Bush jr. caused a US citizen to be incarcerated (very) long term without recourse to a lawyer or even a phone call, and he hasn't been charged with any wrong doing either, or impeached, as would have been entirely appropriate for the gross violation of his oath. So what's your point? That application of justice under the constitution and the law is imperfect? I think we all know that already. The point of public discourse is to keep that in view, and subsequently improve things by hashing out our viewpoints and acting accordingly as opportunities to nudge things one way or another make themselves available to us.

It's nearly illegal (and will be soon).

[Anonymous+Psychopath]

From TFA: "DePetrillo used open-source PBX software to spoof the outgoing caller ID..."

Last week Congress passed the Truth in Caller ID Act of 2010 which will make it illegal "to cause any caller ID service to transmit misleading or inaccurate caller ID information, with the intent to defraud or deceive."

Once that's signed into law they will be on very thin ice arguing that they did not intend to defraud or deceive when they spoof their caller ID to obtain information that they normally would not be able to access.

Re:It's nearly illegal (and will be soon).

luckily no criminals would use this approach.

Trespassing?

[digitalmonkey2k1]

Me thinks that the "researchers" need to research a little more... http://www.answers.com/topic/trespass http://groups.csail.mit.edu/mac/classes/6.805/student-papers/fall97-papers/kim-crime.html

Re:Trespassing?

[slick7]

"Collecting data is only the first step toward wisdom, but sharing data is the first step toward community" -IBM

Charging for data is the first step toward business

Re:Legal? What about the new caller ID law...

[__aasqbs9791]

What if he has multiple personality disorder? Or maybe like many car salesmen I know, he openly lies to himself so he can sleep at night? I wouldn't be so quick to assume there's no deception here.

On a more serious note, I was wondering something along those lines myself. I have T-Mobile and I could have sworn that mine used to do caller ID with name years ago. Now it only does it if the number's in my address book, and I was trying to figure out when that changed, or if I'm just insane (strong possibility some days).

Re:Legal? What about the new caller ID law...

[Eponymous+Coward]

I believe it depends on the intent.

You can still spoof as long as you aren't doing so to deceive or defraud.

Anonymous Coward

If they "[use an] open-source PBX software to spoof the outgoing caller ID and then automated phone calls to himself, triggering the system to force a name lookup" in the US, it looks like they'll be in violation of Truth in Caller ID Act of 2010, which added a subsection e to Section 227 of the Communications Act of 1934 (47 U.S.C. 227):
‘‘(e) PROHIBITION ON PROVISION OF DECEPTIVE CALLER ID INFORMATION.—
‘‘(1) IN GENERAL.—It shall be unlawful for any person within the United States, in connection with any real time voice communications service, regardless of the technology or network utilized, to cause any caller ID service to transmit misleading or inaccurate caller ID information, with the intent to defraud or deceive."

Re:Legal? What about the new caller ID law...

[Cougar+Town]

My phone (Rogers) shows the name.

But Can You ?

publish another brain-dead academic paper on spoofing?

This is another example of ( to quote Rob Pike ) irrelevant systems software research.

Yours In Akademgorodok,
Kilgore Trout.

Not "perfectly legal" for much longer

[laing]

The US House recently passed a bill to make caller ID spoofing illegal. Hopefully the Senate will soon follow suit.

Re:Not "perfectly legal" for much longer

[SleazyRidr]

While I agree that this won't be legal for much longer (assuming it is now), that bill won't make it illegal. the bill makes it illegal to spoof caller ID with intent to deceive. The intent here is not to deceive so they aren't covered.

Someone who RTF, please explain...

If privacy is protected by law (at least in some countries), how can you say you found a legal way of not respecting someone's privacy ?

Maybe not

[laing]

They may successfully argue that it is still legal. Their method is to call themselves with spoofed caller-id. The network fills in the name associated with the phone number and they build their database. Since they are only calling themselves and they know they are spoofing, they are not "intending to defraud or deceive" anyone.

Re:Maybe not

[Anonymous+Psychopath]

They may successfully argue that it is still legal. Their method is to call themselves with spoofed caller-id. The network fills in the name associated with the phone number and they build their database. Since they are only calling themselves and they know they are spoofing, they are not "intending to defraud or deceive" anyone.

Possibly, but I think most reasonable people would agree that using spoofing to trick the phone company into providing database information you shouldn't have falls under the "deceive" label.

Who cares about legality?

Regardless of the legality of this, the fact that anyone can do it means that someone will do it.

I guess if you're fortunate enough to be fairly unknown, the likelihood that someone would really care enough to do something like this for you in particular is pretty small. However the fact that someone can do it means that someone probably is compiling this information and storing it away to be used at some point in the future.

I guess it gives a whole new feeling to the concept of calling my cell phone a leash.

Re:Legal? What about the new caller ID law...

[theY4Kman]

It hasn't been signed into law yet: http://www.govtrack.us/congress/bill.xpd?bill=s111-30

Re:Legal? What about the new caller ID law...

[theY4Kman]

Sorry, that's the 2009 bill. The 2010 version -- the one relevant now -- is here: http://www.opencongress.org/bill/111-h1258/show

Old news...

[Beave]

I'll be interested to read the details, but 2 out of the 3 things have been known for quite some time. The 'caller ID' spoofing trick has been known for _years_. The concept they are touting is known as "back spoofing". I've had friends doing this for a long time. However - there's one problem. No call cell phone associate caller ID with a phone. Yes, back spoofing works great - with _land lines_, but it's always that accurate with cell phones. So, "finding" the cell number that way isn't very reliable. If I have a boost mobile number, bought in cash, under a fake name you'll be out of luck. That is, the caller ID name (CNAM) won't be associated with it in the first place _and_ I gave all fake information to begin with. About the voice mail. Not a big deal. This was reported 6 or more years ago. The idea is that you spoof your targets number with their cell number. The Telco side "sees" this as a call from the cell and drops you into their voicemail system. Some telco's have fixed this, other haven't. It's been a known flaw for years and years. You don't use CID for authentication exactly for this reason. If possible, PIN protect your voicemail will stop these types of attacks (if possible). Anyways, the article is interesting, but several factors must fall into place or this attack won't work.

In Germany?

[DABANSHEE]

Anyway unless the software he's using is illegal or the order of key strokes he's typing is illegal then nothing he's doing is illegal, well unless the result of using that software with those keystrokes is illegal, but then according to common-law it's up to the law enforcement body to prove he knew what the result would be.

You missed something

In Soviet Russia, phone calls you!

You missed a small detail. It's supposed to be funny, too.

Re:You missed something

[mikiN]

Here you go.
In Soviet Russia, Bugs Phone You.

Satisfied?

Re:You missed something

Not bad. Bump the man's score to: 1 7/8ths Funny, But Tired Meme.

And how do you define "legal"?

[mea37]

I find it interesting that they claim this is "legal"; I suspect they mean "we don't know of or haven't thought of the laws that one would be breaking by donig this".

Sure, they point out specific steps of the process that don't break specific laws even though you might think they would; but in the end, a series of actions that would each be legal on its own can add up to a crime. Spying on another individual, tracking their whereabouts and spying on their phone calls, is in and of itself illegal no matter how clever your approach to doing it.

"Why, I'm just driving around and sometimes looking through this telescope. Neither of those things is illegal, is it?" Grow up.

Re:And how do you define "legal"?

[DavidTC]

Yeah, they don't seem to grasp the concept that laws can prohibit any and all actions that lead to specific results.

<sarcasm>Because we all know it's not really 'murder' that's illegal, it's every single action that can result in someone else's death that's illegal. If you invent a new way of killing someone, that's legal until they plug up that loophole.</sarcasm>

Gaining access to voice mail you're not supposed to have access to is illegal no matter how you do it, on top of any crimes you might have committed.

well going by your logic

[DABANSHEE]

Every civilian in the US can be found guilty of cocaine dealing & have all their property forfeitured, just through the uncorroborated testimony of a paid snitch with a dubious past, & no other evidence what so ever - Ever heard of Mobile, Alabama & Union, Texas? Or look at all the prosecutor/judge/jury combos that have put innocent people to death.

Re:Legal? What about the new caller ID law...

[Ungrounded+Lightning]

And once it IS signed it's still legal if you're in one of a number of other countries when you do it. (I wonder if the EU laws on personal information apply to the caller-ID info retrieval step if it's done there?)

As far as I can see (IANAL) the only step that's currently illegal in the US is cracking past the voicemail password. That's illegal under the Computer Fraud and Abuse act (accessing a protected computer) and occurs at the server location even if it's initiated from outside the US so there's jurisdiction.

Re:Legal? What about the new caller ID law...

[Ungrounded+Lightning]

You can still spoof as long as you aren't doing so to deceive or defraud.

Seems to me that spoofing caller ID in order to trick the database into delivering information on some other phone user constitutes intent to defraud.

Legal - where?

[flyingfsck]

Maybe legal in the USA where there are no privacy laws. As for the rest of the world, you should probably not try it.

Re:Legal? What about the new caller ID law...

From TFA: DePetrillo used open-source PBX software to spoof the outgoing caller ID and then automated phone calls to himself, triggering the system to force a name lookup.

Name lookup? What is that?

The article claims that by calling someone with spoofed callerID, the phone system will look up the corresponding name to the spoofed callerID and pass along the corresponding name.

I've never heard of that functionality, but now I've got something to try with the office PBX!

Obviously Illegal - check the CFAA

[randalotto]

This is quite obviously illegal under the Computer Fraud and Abuse Act.

Title 18, Part 1, Chapter 47, Section 1030(a)(2).

It's a crime if someone:

"intentionally accesses a computer without authorization or exceeds authorized access, and thereby obtains ... information from any protected computer."

Given the scale of their activities, it's almost certainly a felony too.

Re:Legal? What about the new caller ID law...

[J053]

From TFA:

I thought spoofing caller ID was now illegal...

Not yet. The bill passed the US House of Representatives, but not the Senate.

Read your own link smartass

[thelexx]

The worst case mentioned on that page was 30% discharge per month.

This reminds me...

[Tsukou]

Of the numb3rs episode Convergence where the thieves were able to piggyback onto the system to figure out the location of specific people using their cellphones. Seems as tho reality has caught up to tv.

Can't you get the same information

[tlambert]

Can't you get the same information by purchasing it from the cell providers? There's already precedent on this.

-- Terry

Re:Legal? What about the new caller ID law...

[Eponymous+Coward]

Sometimes actions reveal intent, but I don't think it does in this case.

These researchers have apparently tried the attack described in TFA on themselves with no intent to defraud.

If you spoof caller id to trick a database, only a machine has been deceived (and that's arguable). What you do (or intend to do) next is the big question.

Can anyone provide a link to the database?

[hellop2]

FTA: "The first part of the operation involves getting a target's cell phone number from a public database that links names to numbers for caller ID purposes"

Public database of CallerID info? A link to that would be great! I've never found anything like that. Thanks.

Wait, but Access other people's Voicemail?

[bjamesv]

The exploit they mention uses two rapid calls, the first one hanging up, to provide the second one access to voicemail without causing the handset to ring.

is it just me or does that not explain how they are able to gain access to the messages?

are they relying on the fact the phone does not ring to quickly brute-force the PIN undetected?
Because that would be illegal in most states, ("Unauthorized use of a computing resource, etc.")

Legality is irrelevant

[mikein08]

Whether legal or not, if it's possible, it will be done. Turn off your cell phone and pull the battery if you don't want to be tracked and/or spied upon. But everyone here knows this, don't you? MK

Re:Legal? What about the new caller ID law...

[MikeBabcock]

So if instead of displaying "Michael" I make my phone display "Mike" I'm deceiving someone? Just checking.

Please.

[fyngyrz]

Arrogant? No. I'm entitled to an opinion, and to state that opinion. As a citizen, there is no requirement that I keep said opinion(s) to myself. You, on the other hand, are absolutely entitled to counter it. By all means, do so. Every mistake of mine I can correct improves me, and I'm all for that. Calling names, however, gets you nowhere. Try not to worry about my willingness to state my position, and instead, look at the actual position, and if you have a counter, let fly.

Also, I am bound to point out that thus far, it appears that my opinion (based, among other things, upon thirty-plus years of study of the constitution and surrounding events, by the way) does describe the situation accurately. No one has yet to post a reasonable counterpoint. But again, if you think otherwise... please, enlighten us all. The floor is yours.