40 Cellphone-Tracking Devices Discovered Throughout Washington

The investigative news "I-Team" of a local TV station in Washington D.C. drove around with "a leading mobile security expert" -- and discovered dozens of StingRay devices mimicking cellphone towers to track phone and intercept calls in Maryland, Northern Virginia, and Washington, D.C. An anonymous reader quotes their report: The I-Team found them in high-profile areas like outside the Trump International Hotel on Pennsylvania Avenue and while driving across the 14th Street bridge into Crystal City... The I-Team's test phones detected 40 potential locations where the spy devices could be operating, while driving around for just a few hours. "I suppose if you spent more time you'd find even more," said D.C. Councilwoman Mary Cheh. "I have bad news for the public: Our privacy isn't what it once was..."

The good news is about half the devices the I-Team found were likely law enforcement investigating crimes or our government using the devices defensively to identify certain cellphone numbers as they approach important locations, said Aaron Turner, a leading mobile security expert... The I-Team got picked up [by StingRay devices] twice off of International Drive, right near the Chinese and Israeli embassies, then got another two hits along Massachusetts Avenue near Romania and Turkey... The phones appeared to remain connected to a fake tower the longest, right near the Russian Embassy.
StringRay devices are also being used in at least 25 states by police departments, according to the ACLU. The devices were authorized by the FCC back in 2011 for "federal, state, local public safety and law enforcement officials only" (and requiring coordination with the FBI).

But back in April the Associated Press reported that "For the first time, the U.S. government has publicly acknowledged the existence in Washington of what appear to be rogue devices that foreign spies and criminals could be using to track individual cellphones and intercept calls and messages... More sophisticated versions can eavesdrop on calls by forcing phones to step down to older, unencrypted 2G wireless technology. Some attempt to plant malware."

Get your hands on one

[ArchieBunker]

Any chances a stingray is in a public location where it could be stolen? That would make for an interesting tear down.

Re:Get your hands on one

[BlueStrat]

Any chances a stingray is in a public location where it could be stolen? That would make for an interesting tear down.

Another interesting idea would be to build some R.F. "white noise" generators with a high-frequency R.F. diode and a few small passive components, use a solar cell to power it and charge a tiny battery, attach a length of wire to serve both as antenna and as a means of slinging it up and hanging it on the pole-mount where the Stingray units are mounted. It would be small, about a quarter the size of a cigarette pack.

They only generate a very low level signal, but placed right next to the Stingray unit, would swamp the receiver's front-end rendering the unit useless.

CB'ers used to use something similar against asshole CB'ers. Sling it into a tree or bushes on the property near the antenna, and the receiver of the CB hears nothing but noise.

"Let them eat noise!"

Strat

Re:Get your hands on one

https://samsungcentral.net/root-the-galaxy-s9-and-s9/

Re: Get your hands on one

[Z00L00K]

A spark gap transmitter blankets all bands.

Re:Get your hands on one

"Let them eat noise!"

If you are quoting Khan it was "Let them eat static", not noise.

Re: Get your hands on one

Even more interesting to call the cops on the guys that come to take the noise generator down...

Ask CIA to put up spying-devices

blame "foreign adversaries" when caught. Nothing new under the sun.

We need 5G

5G will fix that, surely?

Re:We need 5G

"we, the government, wholly agree with our ability to snoop being further reduced by new technologies."

Re:We need 5G

"it's my god given right to snoop and I don't need government nannies to tell me how to exercise my right."

Re: We need 5G

Not likely, and don't call me Shirley.

Re: We need 5G

[Z00L00K]

It would if anything be easier to plant those devices, but only part of the data may be captured due to small cells and multipath solutions.

What might exist and is not possible to detect is the passive receivers that spies can use. It will of course be more complicated to decrypt info, but if it's just used to track people it's good enough once you have identified the IMEI or IMSI of the phone.

Good news?

[b0s0z0ku]

That's "good news" that most of the devices are run by American cops and TLA's? I'd rather most of the devices be run by foreign embassies. At least they don't have an interest in meddling in the lives of the average American...

Re:Good news?

[Papaspud]

Says the person who injects racism into a conversation whenever possible.

Re: Good news?

Here's a disproof. From TFA:
"The phones appeared to remain connected to a fake tower the longest, right near the Russian Embassy."

From https://www.theguardian.com/us-news/2018/may/19/donald-trump-jr-meeting-saudi-arabia-united-arab-emirates-report

"The US intelligence community and the Senate judiciary committee agree that Russian election interference aimed to help Trump defeat his Democratic opponent, Hillary Clinton."

Re:Good news?

[Jahoda]

At least they don't have an interest in meddling in the lives of the average American...

Well, it's kind of funny, dude: In this case, it really is true that as long as you're not a criminal piece of shit, you really don't have too much to worry about. Little advice for you: avoid collusion with foreign governments like your God Emperor, and you really don't have too much to worry about. =D

Cheers!

Re: Good news?

You are a criminal piece of shit if you don't follow the constitution. GTFO and take your fascist corporate run government with you, you fucking lackey POS.

Re:Good news?

This is a very foolish thing to say . . . . . . . . . . .

You're not that important

[OYAHHH]

Just because 40 cell phone trackers were "found" in DC area doesn't mean you, Slashdot reader, are the target. Let's face it if you are reading this you probably aren't worth the bandwidth to track.

And I certainly place myself into that kettle....

Re:You're not that important

Just like no individual fish is the target of a trawl.

Re:You're not that important

[93+Escort+Wagon]

Sure, it’s nice not to be a target... but even if they’re collecting my data incidentally that’s a problem, since we’ve seen time and time again that law enforcement agencies hold onto incidental data as well. This means it can get stolen and misused by other bad actors; or it can potentially be used against you in the future by government and/or private entities without application of the constitutional strictures that exist in a land where people are supposedly innocent until proven guilty.

Re: You're not that important

I'll admit, it's not pleasant. Like salty garbage sprinkled with crushed hopes and dreams.

Re: You're not that important

[Z00L00K]

You don't know what I work with.

Re:You're not that important

Unless you're Google of course

Re:You're not that important

The target can whatever ex girlfriends the police officers feel like stalking, yes that is a problem

Re:You're not that important

Let's face it if you are reading this you probably aren't worth the bandwidth to track.

I am targeted for the crimes of using Linux as my operating system, reading subversive blogs like Linux Journal, and thinking for myself.

https://www.google.com/search?q=linux+users+targeted+nsa

If you don't realize this by now, you are one of the masses of sheeple.

Re:You're not that important

This is the one example I am aware of where a cop got fired from my local PD.

It wasn't even ex-girlfriend's that this guy was stalking. It was 2 women he had encountered on the job. They had either reported a crime or been pulled over for a traffic violation by him.

Re:You're not that important

I know I'm not important or even interesting enough to be monitored by the people who have access to these things, but should they become more commonplace they will find their way into the hands of those who would target just about anybody.

Stupid Governments Everywhere : Invest in privacy

I'm amazed at just how stupid our government officials are. We should be investing in massively better technological solutions designed from the ground up to minimize the intrusiveness of modern technology rather than investing in the deployment of stingrays and other technologies. There is no reason that the next generation of cellular technology couldn't be designed differently.

Right now we subscribe to services (cellular provider) for instance rather than entirely decentralizing the technology. Each provider gets a slice provided they outbid everybody else minimizing the number of providers available and keeping the lid on us having a truly free market. Many countries even mandate the collection of subscriber info (name, address, etc) by the service providers.

What we should be doing instead of this is designing peer to peer networking technology such that there is no subscription necessary and you don't even have to really identify the the device. Rather through the use of mathematically provable anonymous peer-to-peer crypto currencies any network operator would be able to receive small payments easily for X amount of traffic sent/received. As the cellular device could randomly change its identifier and the cellular modem could be standardized in a way as to minimize fingerprinting and the modem could go into a "switched off" mode when not in active use at a semi haphazard random fashion or into a "one way" receive only mode. A network operator could have a single antenna and charge whatever they like and competition amongst the network operators in a given area would determine the ultimate price. Imagine what a truly free market would do to the cost of internet access!

Unsurprising defensive move.

[ErikTheRed]

Of course embassies use their own microcells - running and monitoring their own is the only way they have any assurance that somebody else isn't doing it to them. And in that line of work, you can guarantee other groups would at least be trying - and you have to worry about the host country (especially US / China / Russia / Israel / etc) tapping the cellular and telco switches.

And don't hold your breath waiting for more secure cellular communications (a reasonably straightforward exercise) - our Wise Overlords enjoy being able to snoop when they feel like it. Why do you think they're so upset about peer-to-peer encryption? They've been secretly abusing insecure standards for decades, and they want their unconsitutional toys back...

Software fix?

[Okian+Warrior]

Cell phone towers broadcast an ID, and there are only about 215,000 of them in the US.

Can this be fixed in software, by having the cell phone only communicate with known towers?

(Yes, the towers change slowly over time, but not frequently enough to be a problem. It'd be like upgrading the maps on the GPS device in your car.)

Re:Software fix?

I'd expect that diplomats of certain countries have special phones that do exactly that. I doubt that Russia's important staff members are actually connected to the fake cell tower.

That tech is not for the plebs, however.

Re:Software fix?

[wfj2fd]

I expect that it's exactly the opposite and important staff members are actually connected to the "fake" tower. Nice private cell network for communications you don't want going over other peoples networks.

Re:Software fix?

[AHuxley]

Re "Can this be fixed in software, by having the cell phone only communicate with known towers?"
Depends who paid for the "new" tower.
GCHQ wants to watch over the IRA in the USA? Interesting and sensitive sites get a new GCHQ tower in the USA without telling the NSA, FBI, DEA.
CIA wants to watch over an embassy in the USA domestically but does not want the FBI knowing?
DEA and FBI finds out about an Iran Contra like funding for other US clandestine "agencies" and needs to investigate?
A big US brand is tied of having city investigators track and investigate their gig economy contractors.
Set up a few fake towers near larger police stations and gov buildings to build up a database of all undercover city workers, police and informants.
The gig economy company then has a real time database of all police, city workers, investigators, undercover informants, city contractors and can alter its practices in realtime to avoid most police/city enforcement.
FBI finds out other US clandestine agencies are working with "freedom" fighters all over the USA to help spread "democracy" globally.
The FBI would like digital details on and faces of every US backed "freedom" fighter thats in the US.
US Army, Navy would like to know who is protesting for "peace" outside their base, camp, fort, port. Doing first amendment audits along the fence, using a camera and not showing photo ID off base when asked.

The software detection really gets interesting when you have that kind of support to "create" a tower and have a real telco tower. A tower that can be pass any scan by police, FBI, NSA, CIA, police contractors trying to secure a police building, city workers as it is the type and size of a normal "telco" registered tower.
The only way to be sure would be to sort lists of every tower that exists with every tower every telco really owns in that part of the USA.
Find the telco towers that work 24/7 but no big brand telco worker has every worked on. The contractor supported "Room 641A" towers.

The other reason why so many fake towers exist is that US police and state/federal task forces cannot trust any telco/court worker. So many investigations fail totally when cleared "staff" pass logs of real time investigations back to their own nations, cults, faith groups, criminals, the media due to their faith, for cash, staff with split loyalty to another nation.

When a US investigation has enough budget, why not build your own cell tower that nobody will ever know about. Then just keep using it and upgrading the tech?
Who is going to detect the real reason it was installed and report it? A competing telco? Another part of the US gov? Its just another telco looking tower thats always been in that location... Branding and kept to code.

One tell could be the quality of equipment around the tower. Full backup kept to a spec no private sector telco in the area pays to keep their consumer networks.
Over engineered, way to much cooling, battery and a big power supply that looks new due to years of real support and testing.
A big quality fence, New CCTV in a box on a pole looking over the entire site, extra complex locks, lack of rust, no grass growing into equipment, quality cement was used on site.
All the additional power, bandwidth. Upgrades done before any other telco finally moves to anew standard and upgrades.
The much older idea was for a gov, mil to "clone" their own site an existing telco site. So a telco would build a tower and the gov/mil would have a tower site that looked the same near that side. Same style, size, power. But city maps would only show the telco site. Easy access to the data was needed site to site in the past so location and a short distance was a design consideration.

Re: Software fix?

Hey, AHuxley, why didn't you mention the Russians?

"The phones appeared to remain connected to a fake tower the longest, right near the Russian Embassy."

Re: Software fix?

[AHuxley]

That would be under the "CIA wants to watch over an embassy". Every embassy in the USA.

Re:Software fix?

" I doubt that Russia's important staff members are actually connected to the fake cell tower."

You mean Cohen, Manafort and Co not being important?

Sarah Huckabee Sanders ...

[CaptainDork]

... got yer leakers right here.

Sign of the times

Meh, it is what it is, so you waste time driving around detecting these sites and for what? Like anything will be done about? All of sudden they will just go away because you exposed them? makes for good TV, riles up the tin foil hat people that's about it.

Busted clock

is right twice a day

Is there an app for that?

Notifying you if your're in a StingRay zone?

Re:Is there an app for that?

Yes. You need a rootable Android phone which has a Qualcomm modem (not difficult, they seem to have a monopoly) and a specific kernel option enabled which creates a diagnostic character device (this is usually enabled, I know that it's present in LineageOS).

Go here and get it: https://opensource.srlabs.de/p...

Re:Is there an app for that?

There's also AIMSICD which I think works without root. It probably isn't as reliable, but it alerts you to towers that act strange.

Nothing I've seen can actually force your phone off of the bad tower. Best you can do is cycle airplane mode and hope it picks a different one. The CPU running apps doesn't have that kind of control over the baseband processor, and that's very closed and locked down.

like the good old days

In the 1960's when microwaves were used to transmit phone traffic between New York and Washington diplomatic calls were routinely intercepted by the CIA. Those who imagine electronic communications are private are living in a dream world.

Re:like the good old days

[110010001000]

100% correct. Electronic communications (and networks) are NOT private or secure. Telegraph lines were monitored back in the 1800s.

What good?

[AndyKron]

The good news is? Is there good news in any of this?

Re:Stupid Governments Everywhere : Invest in priva

[Brett+Buck]

What the heck are you talking about? The goal of all globalists/socialists is to create a totalitarian surveillance state, because they have to force people to act against their interests and being able to either dig up or plant dirt on them is the way you do it. This is *exactly* what you would expect them to do, and exactly the same sort of thing that has been done in similar situations in the past (Gestapo, Stasi, NKVD/KGB, etc).

How else are the CIA and FBI...

[Nova+Express]

...supposed to get a jump on bugging the Trump/Pence 2020 campaign?

Re: Stupid Governments Everywhere : Invest in priv

Naa, the goal of socialists is to provide free (at the point of need) health care, ensure everyone has access to housing and can afford to eat and can live in safety.

They may also provide certain key industries that are vital for the national interest, eg roads, public transport transport, power generation/distribution, defence and policing.

Its always been a tactic of the American right to confuse socalism and totalitarianism. You can be socialist and totalitarian eg Soviet Russia, or you can be socialist and democratic eg most of Europe. You can also be capitalist and totalitarian (eg about half the middle East)

Stingrays

or "lawful" interception. Question is, why mobile protocols were not updated to fix the well known MITM security problem?

177 Embassies = thousands of spies

The D.C. area is the nexus of the world's spies. There are 177 embassies in the D.C. area. ( https://en.wikipedia.org/wiki/List_of_diplomatic_missions_in_Washington,_D.C. ) U.S. law enforcement and agency activities account for a fraction of these devices in this region. There are literally thousands of foreigners practicing tradecraft working for governments and the world's big businesses. All of these organizations have access to Stingrays and similar devices and they are using them. Everyone wants leverage. Intercepting a congressman's text of his junk to a page is priceless. It is a completely insane signal intelligence terrain.

Go all the way!

[jtgd]

Why don't we just take the next step: let the government run the entire cellular system. Free cell service for everybody!

FCC a puppet of the telecoms

It ignores important problems like criminal cellphone use in prisons. No one there are cowboy cell nodes like stingray.

Yet

"...doesn't mean you, Slashdot reader, are the target." Yet, is the word you forgot to add there at the end of that sentence.