Slashdot Mirror

← Back to Stories (view on slashdot.org)

NSA, GHCQ Implicated In SIM Encryption Hack

Posted by samzenpus on from the protect-ya-neck dept.

First time accepted submitter BlacKSacrificE writes Australian carriers are bracing for a mass recall after it was revealed that a Dutch SIM card manufacturer Gemalto was penetrated by the GCHQ and the NSA in an alleged theft of encryption keys, allowing unfettered access to voice and text communications. The incident is suspected to have happened in 2010 and 2011 and seems to be a result of social engineering against employees, and was revealed by yet another Snowden document. Telstra, Vodafone and Optus have all stated they are waiting for further information from Gemalto before deciding a course of action. Gemalto said in a press release that they "cannot at this early stage verify the findings of the publication" and are continuing internal investigations, but considering Gemalto provides around 2 billion SIM cards to some 450 carriers across the globe (all of which use the same GSM encryption standard) the impact and fallout for Gemalto, and the affected carriers, could be huge.

9 of 155 comments (clear)

  1. Fallout? by The+Rizz · · Score: 5, Insightful

    the impact and fallout for Gemalto, and the affected carriers, could be huge.

    Why is it that the fallout is centered on these companies, instead of on the NSA and GHCQ? Why are these criminal enterprises masquerading as government agencies so completely above the law?

    1. Re:Fallout? by Anonymous Coward · · Score: 5, Insightful

      It would be nice to know who will pay the damages or that NSA and GHCQ can just destroy businesses as they please.

    2. Re:Fallout? by Anonymous Coward · · Score: 5, Interesting

      Certainly very true. Absolutely, NSA and GCHQ are at fault here.

      However, these kinds of stories draw the attention of even the most idiotic of individuals. Those that only a few months ago were, without any consideration, spouting, "I don't care if the NSA sees everything I do or works to break into everything." must now stop and realize they were used and lied to, and that the work of these criminal organizations is directly damaging many companies. Various encryption or communication groups and companies have disappeared without any notice by the average person, but they will see the damage when it comes to their cell phones.

  2. Damages by Anonymous Coward · · Score: 5, Insightful

    So who does Gemalto sue when the bankrupting recall they are forced to do is the result of a government approved hack?

  3. Taxpayers by Anonymous Coward · · Score: 5, Insightful

    So, not only do we fund the hack, but now we need to fund the compensation for it.

    Wonderful job.

    1. Re:Taxpayers by transporter_ii · · Score: 5, Insightful

      They want to know what you are saying, and they are willing to spend every penny you have to find out. And then some.

      --
      Doctors destroy health, lawyers destroy justice, universities destroy knowledge, religion destroys spirituality
  4. We're Number 1! We're Number 1! by Anonymous Coward · · Score: 5, Insightful

    Welcome to the USSA. Just like the old USSR, with better technology.

  5. Sanctions by Anonymous Coward · · Score: 5, Insightful

    The world should introduce trade-sanctions against the USA and the UK, until they stop attacking other countries, and fall in line.

  6. The UK needs to pay by Anonymous Coward · · Score: 5, Interesting

    This is an act of industrial espionage and infrastructure sabotage committed by one EU member against another. The UK needs to be held financially responsible for the damage, and punitive sanctions should follow. The UK should also explain how it sees its own future in the EU in the light of these revelations.