Garda Ombudsman offices bugged

Phoebas wrote: »

I don't doubt that something was going on, but you must admit that its starting to look more like the common kind of attacks that organisations are subjected to every day of the week than the 'government level' attack that some people were convinced of just yesterday.

Not at all, note Alan Shatter's comments

The third issue related to the security firm reporting the detection of an unexpected UK 3G network in the area in the locality of the GSOC offices which suggested that UK phones registered to that network making calls would be vulnerable to interception.

A fake 3G cell phone network is not indicative of "the common kind of attacks that organisations are subjected to every day of the week" as you say, instead it would suggest "government level technology" which in fairness to John Mooney/Sunday Times he has repeated. As an example, when MI5 and GCHQ were listening in on the Ecuadorian embassy in London (where Julian Assange was/is hiding), they set-up a fake 3G network (called "cell-tower spoofing") to glean data and listen in on all of the mobile phones used in that area. They made the mistake of routing the 3G network through Uganda, and such it was discovered. That kind of equipment costs hundreds of thousands of dollars.

dxhound2005 wrote: »

Bit of overkill there since nobody in the GSOC has a UK registered phone.

The third issue related to the detection of an unexpected UK 3G network near the GSOC offices.

“I am advised that neither the Chairman nor any other member of GSOC or its employees use UK-registered mobile phones, so that the presence of any such device in the locality would not seem to have posed a threat to the integrity of GSOC’s communications systems,” he said.


This just lends more weight to my theory that they were "spooked" into doing the security scan and one of the misleading bits of information they were fed is that someone in GSOC was on a UK network.

Whether or not anybody had a phone from a UK network provider *could* be totally irrelevant, as cell phones connect to their nearest GSM tower, whether in Ireland or in Iceland. The fact that a 3G network was established in the vicinity of Abbey St. and was routed to the UK should be thoroughly investigated. If it's TRUE, it would be quite a serious level of equipment we are talking about here. Could be set up on a rooftop or in a van, and probably cost €500K or so. State level equipment used by military, police and intelligence services.

Alan Shatter doesn't have a very good grasp on technology, because his statement doesn't make much sense on this issue.

What does locality mean? 1 mile? 5 miles? 5 meters?

Did they identify the source of the network?

Did they attempt to determine whether it was legitimate e.g. test equipment used by a local company?

Arthur Beesley wrote: »

What does locality mean? 1 mile? 5 miles? 5 meters?

Did they identify the source of the network?

Did they attempt to determine whether it was legitimate e.g. test equipment used by a local company?

The limit (as in how far away you can be) for this type of tech. is about 8 miles I think, but that would be using very expensive equipment.
Normally it would be located within about a 1km.

Here's one the NSA uses for short-range targets (costs $40k) http://www.spiegel.de/static/happ/netzwelt/2014/na/v1/pub/img/Mobilfunk/S3224_CANDYGRAM.jpg

Arthur Beesley wrote: »

It is a city centre location, for all we know it could have been a test system used by a mobile phone company or a developer of mobile phone system software or similar.

There is nothing to say it was in any way targeted at GSOC.

this should be easily available information...if its the case

Phoebas wrote: »

Its hardly a smoking gun - some equipment that might have been pretty much anywhere in the city.

True, but I'd bet next years wages that *if* this was carried out (which even Mr. Shatter referred to), then it's range would not be beyond a mile.

tomwaterford wrote: »

this should be easily available information...if its the case

And what efforts were made to trace and identify this false network? Presumably this info was also easily available.

Was it located? Is it definitively proven to have been fake? Who says so?

How long was it online? When did it go offline?

Phoebas wrote: »

Even a mile around Abbey Street is a big swathe of the city centre. I'd really be needing a lot more to be associating this to an attack on GSOC.

The fact it was coordinated, occurred at the exact same time when their wifi security was compromised, and that their conference phone was being interfered with. I don't believe in coincidences.

Phoebas wrote: »

Even a mile around Abbey Street is a big swathe of the city centre. I'd really be needing a lot more to be associating this to an attack on GSOC.

Exactly. For all we know the Central Bank was the target, or a business in the IFSC. Assuming there even was a 'target'.

dxhound2005 wrote: »

How was their wifi security compromised? By compromised do you mean that information was gathered by some unauthorised party?

Their wifi security was undoubtedly comprised, however the minister claims they didn't use the wifi that was hacked (it was in a conference room), because no one knew the password (typical civil service wastage). Who knows whether or not the wifi was ever actually used by those in the GSOC office. I expect to learn more tomorrow at the Oireachtas hearing and more published this weekend in the Sunday Times.

Phoebas wrote: »

That's not a fact at all!
How can you say it was coordinated when it could have been anywhere in the city centre and GSOC say it wasn't a threat to them in any case?

Their wifi security being breached and phone line being monitored is a fact, and could only have targeted the GSOC, as that occurred in their building. I agree with you that the GSM cell tower doesn't scream GSOC, but what else of vital infrastructure is within 1km of the GSOC offices?