https://community.isc2.org/t5/Tech-Talk/The-Evolution-of-Technical-Eavesdropping/m-p/31842#M2152 <P>You are a world traveler. You are tech savoy. Your IT and CI people are sharp. They provide you with a "burner phone" to travel with.&nbsp;Passing through international customs is no big deal right? Think again. That is precisely where you get tagged for in-country surveillance.&nbsp;Are you safe? Who's listening?</P><P>&nbsp;</P><P>There are a number of possible methods that intelligence agencies or sophisticated corporate competitors can take to install spyware on burner phones for the purposes of eavesdropping:</P><P>&nbsp;</P><UL><LI>Malicious carrier updates</LI><LI>Radio frequency (RF) hacking</LI><LI>Physical installation by customs agents</LI><LI>Fake cell towers</LI><LI>Infections via hotel WiFi</LI><LI>Evil maid attacks</LI></UL><P>We need to rethink how we use phones in country in those meetings where we are making big deals. Here are a few <A href="https://www.helpnetsecurity.com/2020/01/07/burner-phones-eavesdropping-risk/" target="_blank" rel="noopener">tips</A>:</P><P>&nbsp;</P><UL><LI>Invest in an anti-surveillance case for the burner phone that masks the surrounding audio in the vicinity of the phone, preventing spies listening on the other end from gaining any meaningful information.</LI><LI>Purchase a burner phone that features a hardware kill switch for shutting off the microphones when not needed.</LI><LI>If telephone calls aren’t necessary, physically disconnect the microphones within the burner phone</LI></UL><P>The theft of files and emails at the hands of foreign agents gets all the attention, but face-to-face conversations in the presence of a compromised smartphone can reveal information that’s just as valuable. It’s important for security teams to recognize this emerging threat and take the proper precautions.</P> Mon, 09 Oct 2023 09:24:56 GMT AppDefects 2023-10-09T09:24:56Z https://community.isc2.org/t5/Tech-Talk/The-Evolution-of-Technical-Eavesdropping/m-p/31842#M2152 <P>You are a world traveler. You are tech savoy. Your IT and CI people are sharp. They provide you with a "burner phone" to travel with.&nbsp;Passing through international customs is no big deal right? Think again. That is precisely where you get tagged for in-country surveillance.&nbsp;Are you safe? Who's listening?</P><P>&nbsp;</P><P>There are a number of possible methods that intelligence agencies or sophisticated corporate competitors can take to install spyware on burner phones for the purposes of eavesdropping:</P><P>&nbsp;</P><UL><LI>Malicious carrier updates</LI><LI>Radio frequency (RF) hacking</LI><LI>Physical installation by customs agents</LI><LI>Fake cell towers</LI><LI>Infections via hotel WiFi</LI><LI>Evil maid attacks</LI></UL><P>We need to rethink how we use phones in country in those meetings where we are making big deals. Here are a few <A href="https://www.helpnetsecurity.com/2020/01/07/burner-phones-eavesdropping-risk/" target="_blank" rel="noopener">tips</A>:</P><P>&nbsp;</P><UL><LI>Invest in an anti-surveillance case for the burner phone that masks the surrounding audio in the vicinity of the phone, preventing spies listening on the other end from gaining any meaningful information.</LI><LI>Purchase a burner phone that features a hardware kill switch for shutting off the microphones when not needed.</LI><LI>If telephone calls aren’t necessary, physically disconnect the microphones within the burner phone</LI></UL><P>The theft of files and emails at the hands of foreign agents gets all the attention, but face-to-face conversations in the presence of a compromised smartphone can reveal information that’s just as valuable. It’s important for security teams to recognize this emerging threat and take the proper precautions.</P> Mon, 09 Oct 2023 09:24:56 GMT https://community.isc2.org/t5/Tech-Talk/The-Evolution-of-Technical-Eavesdropping/m-p/31842#M2152 AppDefects 2023-10-09T09:24:56Z https://community.isc2.org/t5/Tech-Talk/The-Evolution-of-Technical-Eavesdropping/m-p/31918#M2161 <P><a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/887781263">@AppDefects</a>I have to fully endorse what you have stated, even in Western Samoa, they have an economy based on mobile phones and transferring money - and yes fake mobile cell towers have been set up for example and also in other Pacific Islands in the region.&nbsp; A mobile phone is such a utilitarian device these days, everyone forgets it also a carrier of malware, a tracking device and full of embedded electronics - which as you stated can be turned into a passive listening device, where ever you are.</P><P>&nbsp;</P><P>Then add the convenient apps people download as well like WhatsApp and they expect some privacy and security - hmmm I don't think so.&nbsp; I particularly like the statement on the web site, Security is in our DNA - but who owns it?&nbsp; Yes, you all know.&nbsp; There are far better applications for this like "Signal", but even these are not NATO rated.</P><P>&nbsp;</P><P>Other devices to watch out for the Smartwatches and any other convenient nice looking smart ware that adorns a lot of peoples bodies.&nbsp;&nbsp;</P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_cautim</P><P>&nbsp;</P><P>&nbsp;</P> Wed, 22 Jan 2020 19:00:40 GMT https://community.isc2.org/t5/Tech-Talk/The-Evolution-of-Technical-Eavesdropping/m-p/31918#M2161 Caute_cautim 2020-01-22T19:00:40Z