Edward Snowden: US, British spies hacked cell phone SIM …

The US National Security Agency (NSA) and Great Britains Government Communications Headquarters (GCHQ) hacked into the world's largest SIM card manufacturer, stealing encryption information, according to documents released by whistle-blower Edward Snowden and reported by The Intercept Thursday.

This gave the agencies the ability to secretly monitor a large portion of the worlds cellular communications, including both voice and data, according to The Intercept report, The Great SIM heist.

With these stolen encryption keys, intelligence agencies can monitor mobile communications without seeking or receiving approval from telecom companies and foreign governments, the report asserts. Possessing the keys also sidesteps the need to get a warrant or a wiretap, while leaving no trace on the wireless providers network that the communications were intercepted. Bulk key theft additionally enables the intelligence agencies to unlock any previously encrypted communications they had already intercepted, but did not yet have the ability to decrypt.

Gemalto, the Netherlands-based company allegedly targeted, produces some 2 billion SIM (subscriber identity modules) cards a year used in mobile phones and next-generation credit cards.

Among its clients are AT&T, T-Mobile, Verizon, Sprint, and some 450 wireless network providers around the world. The company operates in 85 countries and has more than 40 manufacturing facilities. One of its three global headquarters is in Austin, Texas, and it has a large factory in Pennsylvania, according to The Intercept report.

As part of the covert operations against Gemalto, spies from GCHQ with support from the NSA mined the private communications of unwitting engineers and other company employees in multiple countries, the report states.

The full impact of this latest revelation about the NSA may never be known. But if Snowdens latest claim as reported by The Intercept is true, it raises questions about the security of cell phone voice and data communications around the world.

The breach is disastrous for mobile security, which has historically already been on shaky ground, writes T.C. Sottek, senior news editor at The Verge, a technology newsand media network.

Once you have the keys, decrypting traffic is trivial, Christopher Soghoian, principal technologist for the American Civil Liberties Union, told The Intercept. The news of this key theft will send a shock wave through the security community.

Officials at Gemalto say they knew nothing about the security breachuntil the company wascontacted by The Intercept. After ordering its security team to look for signs of a breach on Wednesday, it found none, company officials told thenextweb.com.

See more here:
Edward Snowden: US, British spies hacked cell phone SIM ...