China appears to have used mobile phone networks in the Caribbean to surveil US mobile phone subscribers as part of its espionage campaign against Americans, according to a mobile network security expert who has analyzed sensitive signals data.
The findings paint an alarming picture of how China has allegedly exploited decades-old vulnerabilities in the global telecommunications network to route “active” surveillance attacks through telecoms operators.
The alleged attacks appear to be enabling China to target, track and intercept telephone communications of US phone subscribers, according to research and analysis by Gary Miller, a Washington state-based former mobile network security executive.
In some cases China appeared to have used networks in the Caribbean to conduct its surveillance, Miller said.
At the heart of the allegations are claims that China, using a state-controlled mobile phone operator, is directing signaling messages to US subscribers, usually while they are traveling abroad.
Signaling messages are commands that are sent by a telecoms operators across the global network, unbeknownst to a mobile phone user. They allow operators to locate mobile phones, connect mobile phone users to one another and assess roaming charges.
However, some signaling messages can be used for illegitimate purposes, such as tracking, monitoring, or intercepting communications.
US mobile phone operators can block many such attempts, but Miller believes that the US has not gone far enough to protect mobile phone users, who he believes are not aware of how insecure their communications are.
Miller focused his research on messages that he said did not appear legitimate, either because they were “unauthorized” by the GSMA, an international standard-setting body for the telecommunications industry, or because the messages were sent from a location that did not match where a user was traveling.
“Government agencies and [the US] Congress have been aware of public mobile network vulnerabilities for years,” he said. “Security recommendations made by our government have not been followed and are not sufficient to stop attackers.”
“No one in the industry wants the public to know the severity of ongoing surveillance attacks. I want the public to know about it,” he added.
Miller said that he found that in 2018 China had conducted the highest number of apparent surveillance attacks against US mobile phone subscribers over 3G and 4G networks.
He said the vast majority of these apparent attacks were routed through a state-owned telecoms operator, China Unicom Ltd (中國聯通), which he said pointed in very high likelihood to a state-sponsored espionage campaign.
Overall, Miller said he believed tens of thousands of US mobile users were affected by the alleged attacks emanating from China from 2018 to this year.
“Once you get into the tens of thousands, the attacks qualify as mass surveillance, which is primarily for intelligence collection and not necessarily targeting high-profile targets. It might be that there are locations of interest, and these occur primarily while people are abroad,” Miller said.
Miller said he believed the messages were indicative of surveillance of mass movement patterns and communication of US travelers.
Miller also found what he called unique cases in which the same mobile phone users who appear to have been targeted via China Unicom also appear to have been targeted simultaneously through two Caribbean operators: Cable & Wireless Communications (Flow) in Barbados and Bahamas Telecommunications Co.
The incidences, which occurred dozens of times over a four to eight-week period, were so unusual that Miller said they were a “strong and clear” indicator that these were coordinated attacks.
Miller said that last year most apparent attacks against US subscribers over the 3G network emanated from Barbados, while China significantly reduced the volume of messages to US subscribers.
“China reduced attack volumes in 2019, favoring more targeted espionage and likely using proxy networks in the Caribbean to conduct its attacks, having close ties in both trade and technology investment,” Miller said.
China Unicom said in a statement that it “strongly refutes the allegations that China Unicom has engaged in active surveillance attacks against US mobile phone subscribers using access to international telecommunications networks.”
AIR SUPPORT: The Ministry of National Defense thanked the US for the delivery, adding that it was an indicator of the White House’s commitment to the Taiwan Relations Act Deputy Minister of National Defense Po Horng-huei (柏鴻輝) and Representative to the US Alexander Yui on Friday attended a delivery ceremony for the first of Taiwan’s long-awaited 66 F-16C/D Block 70 jets at a Lockheed Martin Corp factory in Greenville, South Carolina. “We are so proud to be the global home of the F-16 and to support Taiwan’s air defense capabilities,” US Representative William Timmons wrote on X, alongside a photograph of Taiwanese and US officials at the event. The F-16C/D Block 70 jets Taiwan ordered have the same capabilities as aircraft that had been upgraded to F-16Vs. The batch of Lockheed Martin
GRIDLOCK: The National Fire Agency’s Special Search and Rescue team is on standby to travel to the countries to help out with the rescue effort A powerful earthquake rocked Myanmar and neighboring Thailand yesterday, killing at least three people in Bangkok and burying dozens when a high-rise building under construction collapsed. Footage shared on social media from Myanmar’s second-largest city showed widespread destruction, raising fears that many were trapped under the rubble or killed. The magnitude 7.7 earthquake, with an epicenter near Mandalay in Myanmar, struck at midday and was followed by a strong magnitude 6.4 aftershock. The extent of death, injury and destruction — especially in Myanmar, which is embroiled in a civil war and where information is tightly controlled at the best of times —
Taiwan was ranked the fourth-safest country in the world with a score of 82.9, trailing only Andorra, the United Arab Emirates and Qatar in Numbeo’s Safety Index by Country report. Taiwan’s score improved by 0.1 points compared with last year’s mid-year report, which had Taiwan fourth with a score of 82.8. However, both scores were lower than in last year’s first review, when Taiwan scored 83.3, and are a long way from when Taiwan was named the second-safest country in the world in 2021, scoring 84.8. Taiwan ranked higher than Singapore in ninth with a score of 77.4 and Japan in 10th with
SECURITY RISK: If there is a conflict between China and Taiwan, ‘there would likely be significant consequences to global economic and security interests,’ it said China remains the top military and cyber threat to the US and continues to make progress on capabilities to seize Taiwan, a report by US intelligence agencies said on Tuesday. The report provides an overview of the “collective insights” of top US intelligence agencies about the security threats to the US posed by foreign nations and criminal organizations. In its Annual Threat Assessment, the agencies divided threats facing the US into two broad categories, “nonstate transnational criminals and terrorists” and “major state actors,” with China, Russia, Iran and North Korea named. Of those countries, “China presents the most comprehensive and robust military threat