Australian police infiltrate encrypted messaging app Ghost and arrest dozens | AP News (apnews.com)
from fne8w2ah@lemmy.world to technology@lemmy.world on 18 Sep 2024 17:51
https://lemmy.world/post/19918521

#technology

threaded - newest

cygnus@lemmy.ca on 18 Sep 2024 18:03 next collapse

Col. Florian Manet, who heads France’s Home Affairs Ministry National Cyber Command Technical Department, said in a statement issued by Australian police that his officers provided technical resources to the task force over several years that helped decrypt the communications.

McCartney said the French had “provided a foot in the door” for Australian police to decrypt Ghost communications.

Australian police technicians were able to modify software updates regularly pushed out by the administrator, McCartney said.

“In effect, we infected the devices, enabling us to access the content on Australian devices,” McCartney said, adding that the alleged administrator lived in his parents’ Sydney home and had no police record.

It’s hard to parse what happened here. Sounds like a MITM attack where they gained access to the device OS which allowed them to view messages once decrypted by the device?

jbloggs777@discuss.tchncs.de on 18 Sep 2024 18:21 next collapse

A supply chain attack of some kind. Perhaps the app was distributed via a private store app where the french authorities had some leverage. I wonder if we’ll find out.

Badeendje@lemmy.world on 18 Sep 2024 18:23 next collapse

Or the French shared how to infiltratie the server itself.

CaptainSpaceman@lemmy.world on 18 Sep 2024 19:04 collapse

Concerning that theyre spying on citizens BEFORE knowing what they are talking about.

5 Eyes continues its horrendous nature,why am I surprised.

cygnus@lemmy.ca on 18 Sep 2024 19:57 collapse

France isn’t part of Five Eyes.

[deleted] on 18 Sep 2024 20:10 next collapse

.

Maeve@kbin.earth on 18 Sep 2024 20:51 next collapse

Australia is, and France is their ally.

fraksken@infosec.pub on 18 Sep 2024 21:33 collapse

They are part of nine eyes

sunzu2@thebrainbin.org on 18 Sep 2024 18:40 collapse

Sounds like they were able to I ject bad code via updates?

Again opsec fail... Encryption didn't