Groups Similar Look up By Text Browse About



Similar articles
Article Id Title Prob Score Similar Compare
209525 ARSTECHNICA 2021-6-8:
FBI sold phones to organized crime and read 27 million “encrypted” messages
1.000 Find similar Compare side-by-side
209388 THEVERGE 2021-6-8:
The FBI secretly launched an encrypted messaging system for criminals
0.972 0.693 Find similar Compare side-by-side
209647 ZDNET 2021-6-8:
How the FBI and AFP accessed encrypted messages in TrojanShield investigation
0.977 0.677 Find similar Compare side-by-side
209527 ZDNET 2021-6-9:
FBI touts arrest of hundreds thanks to fake app
0.781 0.653 Find similar Compare side-by-side
209646 ZDNET 2021-6-8:
AFP used controversial encryption laws in its 'most significant operation in policing history'
0.558 0.482 Find similar Compare side-by-side
209783 ZDNET 2021-6-11:
Feds strike Slilpp, a marketplace for flogging initial access credentials
0.416 Find similar Compare side-by-side
209596 ZDNET 2021-6-7:
‘Majority’ of ransom paid by Colonial Pipeline seized and returned by DOJ
0.358 Find similar Compare side-by-side
209443 ZDNET 2021-6-9:
Qrypt’s cloud service will distribute entropy for better cryptography
0.351 Find similar Compare side-by-side
209550 VENTUREBEAT 2021-6-5:
U.S. Supreme Court restricts scope of computer fraud law
0.349 Find similar Compare side-by-side
209642 ZDNET 2021-6-7:
After DOJ arrest of Latvian Trickbot coder, experts highlight public-private efforts to tackle cybercrime
0.346 Find similar Compare side-by-side
209608 ZDNET 2021-6-7:
US Justice Department accuses Latvian national of deploying Trickbot malware
0.326 Find similar Compare side-by-side
209430 ARSTECHNICA 2021-6-7:
US seizes $2.3 million Colonial Pipeline paid to ransomware attackers
0.324 Find similar Compare side-by-side
209639 ZDNET 2021-6-7:
Facebook ramps up privacy efforts with end-to-end encrypted audio, video calling trials in Secret Conversations
0.291 Find similar Compare side-by-side
209770 ARSTECHNICA 2021-6-10:
EA source code stolen by hacker claiming to sell it online
0.284 Find similar Compare side-by-side
209572 VENTUREBEAT 2021-6-7:
Identity verification company Trulioo lands $394M
0.281 Find similar Compare side-by-side
209201 TECHREPUBLIC 2021-6-4:
Microsoft Teams: Here's when your calls will get end-to-end encryption
0.276 Find similar Compare side-by-side
209620 ZDNET 2021-6-5:
Stay connected anywhere with the ZOLEO satellite communicator
0.272 Find similar Compare side-by-side
209658 ZDNET 2021-6-8:
A deep dive into Nefilim, a ransomware group with an eye for $1bn+ revenue companies
0.271 Find similar Compare side-by-side
209741 VENTUREBEAT 2021-6-10:
Open source product analytics platform PostHog raises $15M
0.270 Find similar Compare side-by-side
209673 ZDNET 2021-6-10:
Ransomware: Meat firm JBS says it paid out $11m after attack
0.269 Find similar Compare side-by-side
209820 TECHREPUBLIC 2021-6-10:
Security company makes "unbreakable encryption" available via the cloud and APIs
0.260 Find similar Compare side-by-side
209805 ZDNET 2021-6-10:
Hackers selling access to FIFA matchmaking servers and other games after EA attack
0.255 Find similar Compare side-by-side
209834 ZDNET 2021-6-10:
This new hacking group has a nasty surprise for African, Middle East diplomats
0.251 Find similar Compare side-by-side
209769 ZDNET 2021-6-11:
DOJ charges cybersecurity official for attack on Georgia hospital
0.246 Find similar Compare side-by-side
209298 ZDNET 2021-6-4:
US Supreme Court limits scope of CFAA and rules bribing cops for data is not hacking
0.245 Find similar Compare side-by-side

1

ID: 209525

URL: https://arstechnica.com/tech-policy/2021/06/fbi-sold-phones-to-organized-crime-and-read-27-million-encrypted-messages/

Date: 2021-06-08

FBI sold phones to organized crime and read 27 million “encrypted” messages

Messages were routed to an FBI-owned server and decrypted with master key. The Federal Bureau of Investigation created a company that sold encrypted devices to hundreds of organized crime syndicates, resulting in 800 arrests in 16 countries, law-enforcement authorities announced today. The FBI and agencies in other countries intercepted 27 million messages over 18 months before making the arrests in recent days, and more arrests are planned. The FBI teamed up with Australian Federal Police to target drug trafficking and money laundering. They "strategically developed and covertly operated an encrypted device company, called ANOM, which grew to service more than 12,000 encrypted devices to over 300 criminal syndicates operating in more than 100 countries, including Italian organized crime, outlaw motorcycle gangs, and international drug trafficking organizations," Europol said today. Distribution of the devices began in October 2018. The cellphones sold by the FBI-run company were "procured on the black market" and "performed a single function hidden behind a calculator app: sending encrypted messages and photos," The New York Times wrote today. The cellphones were "stripped of all normal functions," with the faux calculator being the only working app. Once users entered a code, they could use the app to send messages that they thought were protected by end-to-end encryption. "For years, organized crime figures around the globe relied on the devices to orchestrate international drug shipments, coordinate the trafficking of arms and explosives, and discuss contract killings, law enforcement officials said," the Times wrote. " Users trusted the devices' security so much that they often laid out their plans not in code, but in plain language. " Unbeknownst to users, messages were routed to an FBI-owned server and decrypted with a master key controlled by the FBI. The operation was given the names "Trojan Shield" and "Greenlight." Europol called it "one of the largest and most sophisticated law enforcement operations to date in the fight against encrypted criminal activities." Anom's website currently has a message saying, "This domain has been seized" and that "[l]aw enforcement has been monitoring messages and attachments from the ANØM platform.  A number of investigations have been initiated and are ongoing." Here are more details on the operation from Europol's announcement: The goal of the new platform was to target global organized crime, drug trafficking, and money laundering organizations, regardless of where they operated, and offer an encrypted device with features sought by the organized crime networks, such as remote wipe and duress passwords, to persuade criminal networks to pivot to the device. The FBI and the 16 other countries of the international coalition, supported by Europol and in coordination with the US Drug Enforcement Administration, then exploited the intelligence from the 27 million messages obtained and reviewed them over 18 months while Anom's criminal users discussed their criminal activities. This culminated in a "series of large-scale law enforcement actions [that] were executed over the past days across 16 countries resulting in more than 700 house searches, more than 800 arrests and the seizure of over 8 tons of cocaine, 22 tons of cannabis and cannabis resin, 2 tons of synthetic drugs (amphetamine and methamphetamine), 6 tons of synthetic drugs precursors, 250 firearms, 55 luxury vehicles and over $48 million in various worldwide currencies and cryptocurrencies," Europol wrote. " Countless spin-off operations will be carried out in the weeks to come." Europol noted that there is "a huge demand for encrypted communication platforms" among criminal networks but that the market for encrypted devices is "volatile." Law-enforcement takedowns of the EncroChat encrypted platform in July 2020 and the Sky ECC communication service tool in March 2021 helped agencies steer criminals toward the FBI's own encrypted devices, Europol wrote: Both operations provided invaluable insights into an unprecedented amount of information exchanged between criminals. After the takedown of Sky ECC in March 2021, many organized crime networks sought a quick encrypted replacement for a communication platform that would allow them to evade law enforcement detection. This was a deliberate and strategic aspect of OTF [Operational Task Force] Greenlight/Operation Trojan Shield resulting in the migration of some of the criminal Sky ECC customer base to the FBI-managed platform ANOM. Vice published an in-depth story on Trojan Shield that draws from an unsealed court document containing an FBI affidavit and application for a search warrant. The 2018 arrest of Phantom Secure CEO Vincent Ramos, who sold encrypted phones to criminals, helped lead to the FBI operation. " In the wake of that arrest, a confidential human source (CHS) who previously sold phones on behalf of Phantom and another firm called Sky Global, was developing their own encrypted communications product," Vice wrote. As the court document states, the "CHS offered this next generation device, named 'Anom,' to the FBI to use in ongoing and new investigations. " The document also says that a master key was added to the encryption system used on each message: Before the device could be put to use, however, the FBI, AFP [Australian Federal Police], and the CHS built a master key into the existing encryption system which surreptitiously attaches to each message and enables law enforcement to decrypt and store the message as it is transmitted. A user of Anom is unaware of this capability. By design, as part of the Trojan Shield investigation, for devices located outside of the United States, an encrypted "BCC" of the message is routed to an "iBot" server located outside of the United States, where it is decrypted from the CHS's encryption code and then immediately re-encrypted with FBI encryption code. The newly encrypted message then passes to a second FBI-owned iBot server, where it is decrypted and its content available for viewing in the first instance. The FBI paid the confidential source $120,000 for services and $59,508 for living and travel expenses, the document said. The FBI has complained about encryption in consumer products for years, with one FBI official in 2018 reportedly calling Apple "jerks."   Today's announcement demonstrates again that law enforcement has the ability to target criminals' use of encrypted communications without making mass-market devices less secure. "Encrypted criminal communications platforms have traditionally been a tool to evade law enforcement and facilitate transnational organized crime," FBI Criminal Investigative Division Assistant Director Calvin Shivers said in the Europol announcement. "The FBI and our international partners continue to push the envelope and develop innovative ways to overcome these challenges and bring criminals to justice."