Pipe 3BB "Remote Control Systems" used by law enforcement to root your phone

"Remote Control Systems" used by law enforcement to root your phone

by
in security on (#3BB)
This just in from the Reg, and it's not good: a massive botnet of 320 Command & Control servers placed in 40 countries, and being sold to law enforcement agencies to infiltrate and root cell phone systems.
The Milan-based firm that developed RCS boasts on its website that its malware can crack any mobile operating system and remain undetected while doing so. Based on documents leaked to Citizen Lab, the firm may be correct in its claims. ... Once a target is identified by cops or g-men the malware is sent out and installed, either by tricking the user with a spearphishing attack or by exploiting vulnerabilities in the target's operating system. ... Once on a target's mobile, the RCS software can intercept and record all phone calls, SMS messages, chat conversations from apps such as Viber, WhatsApp and Skype, grab any files or pictures on the handset, spy on the calendar, look up the user's location, and take screenshots whenever the operator specifies, as well as harvesting data from third-party applications like Facebook.
Looks like Android is more at risk here, but iOS can also be hacked, especially if it's been jailbroken. 'Scuze me while I go reinstall a landline and move into the basement with a tinfoil hat and a weapons cache :(

History

2014-06-27 12:39
"Remote Control Systems" used by law enforcement to root your phone
zafiro17@pipedot.org
This just in from the Reg, and it's not good: a massive botnet of 320 Command & Control servers placed in 40 countries, and being sold to law enforcement agencies to infiltrate and root cell phone systems.
The Milan-based firm that developed RCS boasts on its website that its malware can crack any mobile operating system and remain undetected while doing so. Based on documents leaked to Citizen Lab, the firm may be correct in its claims. ... Once a target is identified by cops or g-men the malware is sent out and installed, either by tricking the user with a spearphishing attack or by exploiting vulnerabilities in the target's operating system. ... Once on a target's mobile, the RCS software can intercept and record all phone calls, SMS messages, chat conversations from apps such as Viber, WhatsApp and Skype, grab any files or pictures on the handset, spy on the calendar, look up the user's location, and take screenshots whenever the operator specifies, as well as harvesting data from third-party applications like Facebook.
Looks like Android is more at risk here, but iOS can also be hacked, especially if it's been jailbroken. 'Scuze me while I go reinstall a landline and move into the basement with a tinfoil hat and a weapons cache :(
Reply 0 comments