Skype can be intercepted by intelligence agencies: report

Powered by SC Magazine
 

Spooks listening in?

Unverified reports in Russian media claim that conversations over Skype can be eavesdropped by intelligence agencies which can also determine the location of users.

First reported in the Russian-language Vedomosti newspaper last week, the Federal Security Service (FSB) has had the ability to intercept Skype calls for "a couple of years" and often do so without a court warrant.

As a result, some Russian companies are banning staff from using Skype out of concern that their communications are secretly listened to.

Since Skype voice and video calls as well as instant messages are routed directly between users in a peer-to-peer fashion without a central server, and encoded locally according to the 256-bit Advanced Encryption Standard developed by the United States government, it's been assumed that eavesdropping on communications would be impossible in practice.

However, Vedomosti quotes the executive director of payments provider Peak Systems, Maxim Emm, saying that after Microsoft's purchase of Skype, it is now possible to eavesdrop on users easiliy.

According to Emm, call set ups between any user accounts can now be directed to go through a central server that generates the encryption keys that were previously created on users' devices. This allows calls and other communications to be decrypted and intercepted, Emm said.

Emm claims that Microsoft has provided this interception ability to other security services around to the world, to be used for legitimate wiretapping of communications.

Earlier this month, a US computer science graduate student, Jeffrey Knockel, worked out how Skype censors messages between users of its software in China.

Skype has been intercepting and blocking thousands of terms the Chinese regime considers politically sensitive such as Tiananmen, Amnesty International and Ferrari.

Speaking to Bloomberg, Knockel said that as part of a study project he discovered that each time users of Skype's Chinese software go online, an updated blacklist of terms is downloaded.

When an offending term is matched, Knockel said a copy of the message is sent to server operated by Skype's partner TOM in China, along with the account user name and date and time stamps, plus receipt notifications.

However, Knockel said he doesn't know if the information is shared with the Chinese government.

iTnews contacted Skype for comment on the matter, and will update the story if any is received. A Microsoft spokesperson had no comment.

Copyright © iTnews.com.au . All rights reserved.


Skype can be intercepted by intelligence agencies: report
 
 
 
Top Stories
Beyond ACORN: Cracking the infosec skills nut
[Blog post] Could the Government's cybercrime focus be a catalyst for change?
 
The iTnews Benchmark Awards
Meet the best of the best.
 
Telstra hands over copper, HFC in new $11bn NBN deal
Value of 2011 deal remains intact.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  39%
 
Your insurance company
  3%
 
A technology company (Google, Facebook et al)
  8%
 
Your telco, ISP or utility
  7%
 
A retailer (Coles, Woolworths et al)
  2%
 
A Federal Government agency (ATO, Centrelink etc)
  20%
 
An Australian law enforcement agency (AFP, ASIO et al)
  14%
 
A State Government agency (Health dept, etc)
  6%
TOTAL VOTES: 1783

Vote
Do you support the abolition of the Office of the Information Commissioner?