惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
C
CERT Recently Published Vulnerability Notes
C
Cybersecurity and Infrastructure Security Agency CISA
P
Proofpoint News Feed
Security Latest
Security Latest
P
Privacy International News Feed
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
AI
AI
Cisco Talos Blog
Cisco Talos Blog
K
Kaspersky official blog
S
Secure Thoughts
PCI Perspectives
PCI Perspectives
Simon Willison's Weblog
Simon Willison's Weblog
D
DataBreaches.Net
GbyAI
GbyAI
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
大猫的无限游戏
大猫的无限游戏
T
Tailwind CSS Blog
The Cloudflare Blog
阮一峰的网络日志
阮一峰的网络日志
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
罗磊的独立博客
V
Visual Studio Blog
aimingoo的专栏
aimingoo的专栏
H
Hackread – Cybersecurity News, Data Breaches, AI and More
IT之家
IT之家
V
V2EX
Last Week in AI
Last Week in AI
有赞技术团队
有赞技术团队
月光博客
月光博客
酷 壳 – CoolShell
酷 壳 – CoolShell
T
Tenable Blog
T
Threat Research - Cisco Blogs
T
Troy Hunt's Blog
V2EX - 技术
V2EX - 技术
S
Security @ Cisco Blogs
Security Archives - TechRepublic
Security Archives - TechRepublic
Project Zero
Project Zero
The GitHub Blog
The GitHub Blog
Recent Commits to openclaw:main
Recent Commits to openclaw:main
L
Lohrmann on Cybersecurity
F
Full Disclosure
H
Help Net Security
博客园 - Franky
Stack Overflow Blog
Stack Overflow Blog
N
Netflix TechBlog - Medium
Engineering at Meta
Engineering at Meta
A
Arctic Wolf
O
OpenAI News
S
Securelist

hacker Archives - VICE

Cartel Hacker Used Security Cameras, FBI Official’s Phone to Hunt Informants Teen Hacker Stole 60 Million Kids’ Data and Tried to Ransom It for Bitcoin ‘Windows for Gamers’ Rolls Dice With Your Security Hacker Used Internal U-Haul Tool to Look Up Customer Information Microsoft Employees Exposed Own Company’s Internal Logins ‘Imma Make U Dig Ur Own Grave’: He Doxes Ransomware Hackers and Gets Death Threats in Return LAPSUS$: How a Sloppy Extortion Gang Became One of the Most Prolific Hacking Groups Microsoft Investigating Claim of Breach by Extortion Gang Hackers Breach Russian Space Research Institute Website
Encrochat Lawyers Say Clients Haven’t Had Fair Trials
Joseph Cox · 2022-02-18 · via hacker Archives - VICE

An international group of lawyers have published an open letter to members of the European Parliament saying that because of the continued secrecy around the law enforcement hack of encrypted phone network Encrochat, their clients have not been able to have fair trials.

The lawyers also ask the European Commission and European Parliament to stop new prosecutions of Encrochat suspects until more evidence about the hacking is disclosed.

Videos by VICE

The news shows how around a year and a half after French military police pushed malware to thousands of Encrochat devices, defense lawyers say they are still facing issues getting all the details around what exactly happened in the massive hacking operation.

“The manner of the infiltration has been suppressed under the shroud of a claim of national defense secrecy by the French authorities. This has made it impossible for those accused of crimes, to check the accuracy, authenticity, reliability and even the legality of the evidence used against them,” the letter reads. The lawyers add that they believe this is unprecedented in their collective experience, and that it breaches European Court of Human Rights case law.

“An emerging picture of inconsistent, even completely contradicting information has been provided by various law enforcement agencies across Europe, accompanied by an overall refusal by law enforcement agencies to liaise with each other in the ongoing disclosure process in current prosecutions. This raises serious concerns about the integrity and reliability of the evidence on which prosecutions across Europe are based,” the letter adds.

Do you know anything else about Encrochat? Were you a user or seller? We’d love to hear from you. Using a non-work phone or computer, you can contact Joseph Cox securely on Signal on +44 20 8133 5190, Wickr on josephcox, or email joseph.cox@vice.com.

Beyond asking for a freeze on new prosecutions, the lawyers also ask for the requirement for Europol to explain its role in processing and analyzing the Encrochat data, as well as sharing it; demand that the European Parliament create a formal inquiry committee to look into breaches of EU law by the Encrochat investigation; and for lawmakers to adopt safeguards that mean that data cannot be subject to a blanket assertion of national defense secrecy, as the French authorities did here.

The letter is signed by a group of lawyers from Belgium, France, Germany, the Netherlands, Norway, Sweden, and the United Kingdom. Criminal justice watchdog organization Fair Trials also signed the letter.

Christian Lödden, one of the lawyers, told Motherboard that Fair Trials will send the letter to European Parliament committees and delegates.

Encrochat was a part of the encrypted phone industry, where various companies offer devices that typically come pre-loaded with a particular end-to-end encrypted messaging app and sometimes their own operating system. Encrochat specifically offered a remote wipe feature to remove data if the phone fell into the hands of someone else other than the owner, and a dual-boot operating system, where users could pull up an innocuous looking side of the phone if they were under durres while hiding their sensitive communications stored elsewhere.

The phones were popular among serious organized criminals, including hitmen in the United Kingdom and drug traffickers across Europe. A slice of the user base was non-criminal, however, with French prosecutors estimating that chunk made up about 10 percent of Encrochat’s customers.

In 2020 French authorities managed to push a piece of malware to Encrochat devices by leveraging the company’s update server. From here, investigators exfiltrated messages from the Encrochat phones themselves, eventually amassing around hundred million communications. The malware could harvest the phones’ GPS coordinates, users’ messages, passwords, and more data, according to a document previously obtained by Motherboard. The hack was unprecedented in its scope, being the largest law enforcement hacking operation to date.

When Encrochat’s owners became aware of suspicious activity on their customers’ phones, they sent a message to users advising them to dispose of their devices. In a statement at the time, someone in control of an Encrochat email address positioned the company as a legitimate firm.

“We are [a] commercial company offering services to secure communication over mobile devices,” the statement provided to Motherboard read. “We set out to find the best technology on the market to provide a reliable and secure service for any organization or individual that want to secure their information.” Encrochat shut itself down after the hack.

The owners operated Encrochat through a network of overseas companies and bank accounts, Motherboard previously reported.

“In the EU legal framework, it is recognised that the fundamental rights of all people, including suspects and accused persons, must be upheld and protected. We are very concerned that the current handling of the EncroChat issue threatens the Rule of Law and fundamental rights protected by EU law that, if it is allowed to pass unchecked, this sets a worrying precedent,” the letter concludes.

Subscribe to our cybersecurity podcast, CYBER. Subscribe to our new Twitch channel.