China appears to have used mobile phone networks in the Caribbean to surveil US mobile phone subscribers as part of its espionage campaign against Americans, according to a mobile network security expert who has analyzed sensitive signals data.
The findings paint an alarming picture of how China has allegedly exploited decades-old vulnerabilities in the global telecommunications network to route “active” surveillance attacks through telecoms operators.
The alleged attacks appear to be enabling China to target, track and intercept telephone communications of US phone subscribers, according to research and analysis by Gary Miller, a Washington state-based former mobile network security executive.
In some cases China appeared to have used networks in the Caribbean to conduct its surveillance, Miller said.
At the heart of the allegations are claims that China, using a state-controlled mobile phone operator, is directing signaling messages to US subscribers, usually while they are traveling abroad.
Signaling messages are commands that are sent by a telecoms operators across the global network, unbeknownst to a mobile phone user. They allow operators to locate mobile phones, connect mobile phone users to one another and assess roaming charges.
However, some signaling messages can be used for illegitimate purposes, such as tracking, monitoring, or intercepting communications.
US mobile phone operators can block many such attempts, but Miller believes that the US has not gone far enough to protect mobile phone users, who he believes are not aware of how insecure their communications are.
Miller focused his research on messages that he said did not appear legitimate, either because they were “unauthorized” by the GSMA, an international standard-setting body for the telecommunications industry, or because the messages were sent from a location that did not match where a user was traveling.
“Government agencies and [the US] Congress have been aware of public mobile network vulnerabilities for years,” he said. “Security recommendations made by our government have not been followed and are not sufficient to stop attackers.”
“No one in the industry wants the public to know the severity of ongoing surveillance attacks. I want the public to know about it,” he added.
Miller said that he found that in 2018 China had conducted the highest number of apparent surveillance attacks against US mobile phone subscribers over 3G and 4G networks.
He said the vast majority of these apparent attacks were routed through a state-owned telecoms operator, China Unicom Ltd (中國聯通), which he said pointed in very high likelihood to a state-sponsored espionage campaign.
Overall, Miller said he believed tens of thousands of US mobile users were affected by the alleged attacks emanating from China from 2018 to this year.
“Once you get into the tens of thousands, the attacks qualify as mass surveillance, which is primarily for intelligence collection and not necessarily targeting high-profile targets. It might be that there are locations of interest, and these occur primarily while people are abroad,” Miller said.
Miller said he believed the messages were indicative of surveillance of mass movement patterns and communication of US travelers.
Miller also found what he called unique cases in which the same mobile phone users who appear to have been targeted via China Unicom also appear to have been targeted simultaneously through two Caribbean operators: Cable & Wireless Communications (Flow) in Barbados and Bahamas Telecommunications Co.
The incidences, which occurred dozens of times over a four to eight-week period, were so unusual that Miller said they were a “strong and clear” indicator that these were coordinated attacks.
Miller said that last year most apparent attacks against US subscribers over the 3G network emanated from Barbados, while China significantly reduced the volume of messages to US subscribers.
“China reduced attack volumes in 2019, favoring more targeted espionage and likely using proxy networks in the Caribbean to conduct its attacks, having close ties in both trade and technology investment,” Miller said.
China Unicom said in a statement that it “strongly refutes the allegations that China Unicom has engaged in active surveillance attacks against US mobile phone subscribers using access to international telecommunications networks.”
The Taipei MRT is open all night tonight following New Year’s Eve festivities, and is offering free rides from nearby Green Line stations. Taipei’s 2025 New Year’s Eve celebrations kick off at Taipei City Hall Square tonight, with performances from the boy band Energy, the South Korean girl group Apink, and singers Gigi Leung (梁詠琪) and Faith Yang (楊乃文). Taipei 101’s annual New Year’s firework display follows at midnight, themed around Taiwan’s Premier12 baseball championship. Estimates say there will be about 200,000 people in attendance, which is more than usual as this year’s celebrations overlap with A-mei’s (張惠妹) concert at Taipei Dome. There are
LOOKING FOR WHEELS: The military is seeking 8x8 single-chassis vehicles to test the new missile and potentially replace the nation’s existing launch vehicles, the source said Taiwan is developing a hypersonic missile based on the Ching Tien (擎天) supersonic cruise missile, and a Czech-made truck has been tentatively selected as its launch vehicle, a source said yesterday. The Ching Tien, formerly known as Yun Feng (雲峰, “Cloud Peak”), is a domestically developed missile with a range of 1,200km to 2,000km being deployed in casemate-type positions as of last month, an official said, speaking on the condition of anonymity. The hypersonic missile to be derived from the Ching Tien would feature improved range and a mobile launch platform, while the latter would most likely be a 12x12 single chassis
UP AND DOWN: The route would include a 16.4km underground section from Zuoying to Fongshan and a 9.5km elevated part from Fongshan to Pingtung Premier Cho Jung-tai (卓榮泰) yesterday confirmed a project to extend the high-speed rail (HSR) to Pingtung County through Kaohsiung. Cho made the announcement at a ceremony commemorating the completion of a dome at Kaohsiung Main Station. The Ministry of Transportation and Communications approved the HSR expansion in 2019 using a route that branches off a line from Zuoying Station in Kaohsiung’s Zuoying District (左營). The project was ultimately delayed due to a lack of support for the route. The Zuoying route would have trains stop at the Zuoying Station and return to a junction before traveling southward to Pingtung County’s Lioukuaicuo Township (六塊厝).
The Mainland Affairs Council (MAC) yesterday vowed to investigate claims made in a YouTube video about China’s efforts to politically influence young Taiwanese and encourage them to apply for Chinese ID cards. The council’s comments follow Saturday’s release of a video by Taiwanese rapper Chen Po-yuan (陳柏源) and YouTuber “Pa Chiung (八炯)” on China’s “united front” tactics. It is the second video on the subject the pair have released this month. In the video, Chen visits the Taiwan Youth Entrepreneurship Park in Quanzhou in China’s Fujian Province and the Strait Herald news platform in Xiamen, China. The Strait Herald — owned by newspaper
RSS