From: Michael Puchol Date: Thu Apr 10, 2003 1:26pm Subject: Re: Re: Cell Phone Bug Also, bear in mind that a lot of the new generation phones have voice recording capabilities, some to a limited internal memory, and others to insertable memory card. One notable example (with which one of my clients had an incident) is the Nokia 9210 which features an MMC card slot, which can host cards of up 128MB, allowing a very long recording time. Since the "computer" side of the phone always works if a battery is inserted, even if the phone is switched off (and thus the front LCD will be blank), you can silently start the recorder, close the lid, and have it record everything going on around a conference table. So, it may not be as simple as asking people to turn off the phones, or installing detectors. Phones stay outside, period. Cheers, Mike ----- Original Message ----- From: "Steve Uhrig" To: Sent: Thursday, April 10, 2003 6:46 AM Subject: [TSCM-L] Re: Cell Phone Bug > On 9 Apr 2003 at 21:18, Hawkspirit wrote: > > > This one looks like big trouble > > > http://www.cctv-city.com/erol.html#1317x0 > > Their site seems to have errors and the above link won't open for me. > Errors on page. Just get an endless message 'Please Wait. Store > Loading.' May be my antique browser. > > Don't overlook the fact that spy shops almost always exaggerate. Spy > shops define the word 'hyperbole'. > > > A bugging device that you can dial into from anywhere in the world... > > All Motorola cell phones I've owned from the first flip phone to the > current V70 has this ability. Activate auto answer and disable ring. > You can call it from anywhere, it will answer silently and you can > listen. > > Nothing new. Most of us have been preaching this to our clients for > years. > > > Have the ability to listen to conversations from anywhere in the > > world. Looks Exactly The Same As Normal Siemens Phones. > > It is a normal phone. That's why it looks and works like a normal > phone. > > However, since the company is in the U.K. the phone almost certainly > is GSM which will not work here in the U.S. but may be a problem in > countries where GSM mobile telephone is deployed. > > > Since the first release of the Mobile Phone Bug back in August 2001 > > this amazing technology has now be advanced with our Brand New > > Releases that now come in the form of standard Seimens Mobile phones > > as pictured here. You then have the ability to dial into the phone > > from anywhere in the world and listen to what is happening and being > > said around that phone. And not only that but you can also use this > > Mobile Phone Bug as an ordinary phone. > > All they are selling is a stock unmodified cell phone. > > Yes, it is a problem, which is another reason to try to keep cell > phones from being carried into critical meetings. Especially be > cautious if someone exits the room but leaves their cell phone on the > table. They may be calling it from the pay phone in the lobby or > another cell phone to hear what is being said in their absence. > > Steve > > > ******************************************************************* > Steve Uhrig, SWS Security, Maryland (USA) > Mfrs of electronic surveillance equip > mailto:Steve@s... website http://www.swssec.com > tel +1+410-879-4035, fax +1+410-836-1190 > "In God we trust, all others we monitor" > ******************************************************************* > > > > ======================================================== > TSCM-L Technical Security Mailing List > "In a multitude of counselors there is strength" > > To subscribe to the TSCM-L mailing list visit: > http://www.yahoogroups.com/community/TSCM-L > > It is by caffeine alone I set my mind in motion. > It is by the juice of Star Bucks that thoughts acquire speed, > the hands acquire shaking, the shaking is a warning. > It is by caffeine alone I set my mind in motion. > =================================================== TSKS > > Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/ > > 7204 From: 4phun 2oo3 Date: Thu Apr 10, 2003 5:46am Subject: Just about any cell phone can be a bug was RE: Cell Phone Bug I described in the private 4phun mailing list several times over the last two years how to do turn just about any cell phone into a more or less covert bug using the advanced features found in the setup menus. You don't need a Seimens phone to accomplish a remote bugging feat! You turn off the ringer, set it to auto answer, set the mike sensitivity high, turn down the display contrast so nothing appears to the eye when in use, turn off beeps, rings and other user feed back sounds, set it to auto answer, set it not to display light on incoming call etc. It hangs up when you break the connection. Just drop the phone where it will do the most good, even under a couch or a car seat if necessary and go to town. I know for a fact you can do it with the Qualcomm phones sold by Sprint and Verizon. Take one like the Kyocera 6035 which has an extremely long talk time on that big battery and you are good for hours if not days of potential monitoring, especially if you call in and use it only when you expect to your target to be saying something useful. The Kyocera 6035 has one flaw for this use in that the big led indicates it is in use by not pulsing during a connected call. That could be remedied by painting or taping over it, or clipping it internally. The point is that just about any decent cell phone probably could be programmed to act like a bugging device if it allows for a rich set of set up features. It just takes an active mind to realize how to set it up as a bug. The reason most people don't try it is that many probably don't even comprehend all the features built into their phone nor do they take the time to figure out how they may be useful if applied in an unexpected way. You could also carry such a phone into a meeting in your jacket pocket or purse and have an associate call and record the conversation it picks up on a standard answering machine at their end. Truly a no brainer for simplicity. Have 'phun' playing with this idea today if you haven't before. I am sure some phones and some cellular services (coverage of target area) may be better suited for covert monitoring than others, you need to experiment. The only counter protection I am aware of is to ban cell phones at your location, jam them, or scan for their use. Vic Healey ki4je ---------------------------------------------------------------------------- ---- I've stopped 133 spam messages. You can too! Get your free, safe spam protection at www.cloudmark.com -----Original Message----- From: Hawkspirit [mailto:hawkspirit@e...] Sent: Thursday, April 10, 2003 12:18 AM To: TSCM Subject: [TSCM-L] Cell Phone Bug This one looks like big trouble http://www.cctv-city.com/erol.html#1317x0 A bugging device that you can dial into from anywhere in the world... Have the ability to listen to conversations from anywhere in the world. Looks Exactly The Same As Normal Siemens Phones. Versatile for Covert Solutions Professional Equipment Can Also Be Used As A Normal Mobile Phone. Completely Undetectable That Someone May be Listening Since the first release of the Mobile Phone Bug back in August 2001 this amazing technology has now be advanced with our Brand New Releases that now come in the form of standard Seimens Mobile phones as pictured here. You then have the ability to dial into the phone from anywhere in the world and listen to what is happening and being said around that phone. And not only that but you can also use this Mobile Phone Bug as an ordinary phone. [Non-text portions of this message have been removed] 7205 From: 4phun ²ºº³ Date: Fri Apr 11, 2003 1:38pm Subject: PDA's make good covert recorders also RE: Re: Cell Phone Bug Mike You hit on another item in your post when you referred to the computer function of some new cell phones. Computers and MP3 recorders, especially the tiny Pocket PC make for good covert recording devices for simple people like me. I ran across a large group of young male Islamics last week, all under the age of 30, who are running two new fast food businesses near my location in Atlanta GA. There were many warning signs that this may be another group up to no good on my first visit. As a customer, I turned on my Toshiba E335 PPC's recording function and spoke to them getting the names of three of them. I have programmed the Toshiba to store digital voice files to the SD plug in card. I later played that file which I transferred to my PC for a agent from the Joint Terrorism Task force while passing him a heads up. It makes it easier to remember their assumed alias then trying to remember all those Arabic names. Each one was from a different Islamic country and all admitted they were trying to pass for Italians. I told them I understood their anxiety as I am sure that if any locals recognized their true origin there may be business problems. I always ask any foreigners about themselves as I genuinely have a great interest them and their background. I always eventually ask them why they choose to move to the USA and what life was like where they are from. Unfortunately since I spoke to that agent there has been even more warning signs like that fact they all have relocated from the NY /NJ area in the last few months, they appear to all live together as roommates, they clearly have radical Islamic views, they have left wives behind to come here, large sums of cash on hand even though they do almost virtually no business at all, the unfamiliarity with their own menu of products they claim to sell, and a perceived undercurrent of intense anger on my last visit Thursday. Did the quick fall of Saddam's government Tuesday have a bearing on their new attitude? I also own another device called an Archos Jukebox recorder which fits in your shirt pocket. It records up to 900 hours of audio in MP3 format on a 20 G hard drive. While in the shirt pocket you are limited to about 9 or 10 hours based on the limit of the internal rechargeable batteries. Add an external power supply of some sort and you are good to go for much longer. I use a tiny 12 volt rechargeable battery ($30 retail) and a power cord converting that to 9 volts DC to provide a continuous power boost to the Archos while recording at a convention. I just turn it on and forget it until everything is over with. The Archos has one defect when using its internal mike, it picks up the memory dump to hard disk every couple of minutes as a sound like a bilge pump kicking on. One solution is to use one of the line in inputs and a suitable dynamic mike. At conventions I see if I can plug into the sound system and use that high level input. No one seems to mind as the Archos is the size of a pack of cigarettes and has its own internal power. Apple makes an IPod and Creative Labs makes a Nomad which more or less do the same thing. Vic ki4je I've stopped 151 spam messages. You can too! Get your free, safe spam protection at http://www.cloudmark.com/spamnetsig/ -- -----Original Message----- From: Michael Puchol [mailto:mpuchol@s...] Sent: Thursday, April 10, 2003 2:27 PM To: TSCM-L@yahoogroups.com Subject: Re: [TSCM-L] Re: Cell Phone Bug Also, bear in mind that a lot of the new generation phones have voice recording capabilities, some to a limited internal memory, and others to insertable memory card. One notable example (with which one of my clients had an incident) is the Nokia 9210 which features an MMC card slot, which can host cards of up 128MB, allowing a very long recording time. Since the "computer" side of the phone always works if a battery is inserted, even if the phone is switched off (and thus the front LCD will be blank), you can silently start the recorder, close the lid, and have it record everything going on around a conference table. So, it may not be as simple as asking people to turn off the phones, or installing detectors. Phones stay outside, period. Cheers, Mike 7206 From: Times Enemy Date: Fri Apr 11, 2003 8:37pm Subject: Re: PDA's make good covert recorders also RE: Re: Cell Phone Bug Greets. This is a reason i have an interest in security ... not because of the alleged Islamic radicals, but because of their unknown antagonist. ciao .times enemy > Mike > You hit on another item in your post when you referred to the computer > function of some new cell phones. > Computers and MP3 recorders, especially the tiny Pocket PC make for good > covert recording devices for simple people like me. > > I ran across a large group of young male Islamics last week, all under > the age of 30, who are running two new fast food businesses near my > location in Atlanta GA. > > There were many warning signs that this may be another group up to no > good on my first visit. > As a customer, I turned on my Toshiba E335 PPC's recording function and > spoke to them getting the names of three of them. I have programmed the > Toshiba to store digital voice files to the SD plug in card. > > I later played that file which I transferred to my PC for a agent from > the Joint Terrorism Task force while passing him a heads up. It makes it > easier to remember their assumed alias then trying to remember all those > Arabic names. Each one was from a different Islamic country and all > admitted they were trying to pass for Italians. I told them I understood > their anxiety as I am sure that if any locals recognized their true > origin there may be business problems. I always ask any foreigners > about themselves as I genuinely have a great interest them and their > background. I always eventually ask them why they choose to move to the > USA and what life was like where they are from. > > Unfortunately since I spoke to that agent there has been even more > warning signs like that fact they all have relocated from the NY /NJ > area in the last few months, they appear to all live together as > roommates, they clearly have radical Islamic views, they have left wives > behind to come here, large sums of cash on hand even though they do > almost virtually no business at all, the unfamiliarity with their own > menu of products they claim to sell, and a perceived undercurrent of > intense anger on my last visit Thursday. Did the quick fall of Saddam's > government Tuesday have a bearing on their new attitude? > > > I also own another device called an Archos Jukebox recorder which fits > in your shirt pocket. It records up to 900 hours of audio in MP3 format > on a 20 G hard drive. While in the shirt pocket you are limited to about > 9 or 10 hours based on the limit of the internal rechargeable batteries. > Add an external power supply of some sort and you are good to go for > much longer. I use a tiny 12 volt rechargeable battery ($30 retail) and > a power cord converting that to 9 volts DC to provide a continuous power > boost to the Archos while recording at a convention. I just turn it on > and forget it until everything is over with. The Archos has one defect > when using its internal mike, it picks up the memory dump to hard disk > every couple of minutes as a sound like a bilge pump kicking on. One > solution is to use one of the line in inputs and a suitable dynamic > mike. At conventions I see if I can plug into the sound system and use > that high level input. No one seems to mind as the Archos is the size of > a pack of cigarettes and has its own internal power. > > Apple makes an IPod and Creative Labs makes a Nomad which more or less > do the same thing. > > Vic > ki4je > > > I've stopped 151 spam messages. You can too! > Get your free, safe spam protection at > http://www.cloudmark.com/spamnetsig/ > > -- > > -----Original Message----- > From: Michael Puchol [mailto:mpuchol@s...] > Sent: Thursday, April 10, 2003 2:27 PM > To: TSCM-L@yahoogroups.com > Subject: Re: [TSCM-L] Re: Cell Phone Bug > > > Also, bear in mind that a lot of the new generation phones have voice > recording capabilities, some to a limited internal memory, and others to > insertable memory card. One notable example (with which one of my > clients had an incident) is the Nokia 9210 which features an MMC card > slot, which can host cards of up 128MB, allowing a very long recording > time. > > Since the "computer" side of the phone always works if a battery is > inserted, even if the phone is switched off (and thus the front LCD will > be blank), you can silently start the recorder, close the lid, and have > it record everything going on around a conference table. > > So, it may not be as simple as asking people to turn off the phones, or > installing detectors. Phones stay outside, period. > > Cheers, > > Mike 7207 From: Steve Uhrig Date: Sat Apr 12, 2003 2:30pm Subject: Computer security stuff FOR YOU From something I wrote for the MD PI list where I am the resident web weenie. Probably most people here will know more than I do about this sort of thing, but at least the links may be worth something. ..... Steve =========== Firewalls are programs which prevent persons you do not invite from accessing your computer. They are mandatory if you have a full time internet connection, and highly advisable for anyone. My firewall stops perhaps a few hundred attempts for hackers to get into my computer each day. Without a firewall, they would. I use Zone Alarm. They have a free version which works fine *unless* you are running a network. If you are running a network, you need the paid Zone Alarm Pro. Zone Alarm Pro is not a bad idea even if you do not run a network, as it is a lot more flexible. If you do run a network, your network guy should have some sort of firewall implemented. http://www.zonelabs.com/store/content/home.jsp There is an update out to the Zone Alarm Pro firewall which is *much* more flexible with cookie blocking. Also has some bug fixes and a simpler user interface. You need to allow session and persistent cookies for places like ebay, Fedex, yahoo, etc. Some people seem to think all cookies are evil. They're appropriate in certain circumstances, and very convenient, and NOT a security threat if you manage things properly Before, you had to allow or deny cookies globally. If you visit the online wire services, for example, you'll add a persistent cookie for each news item you read. Every day or two, I'd have to manually clean out dozens of cookies. Don't clean cookies for a month or two and tons of spam and things would bog down when you visit certain sites. Was ready to write a macro to automate removing annoying cookies. Now with the new ZA Pro, you can make exceptions + or - on a site by site basis. I've been running it for a few days now, and have not had a *single* cookie written where before I would have had maybe a hundred. If you're a registered ZA Pro user, it's a free painless upgrade. Click on 'upgrade' in the control panel and go from there. Also, Spybot is a utility for finding and removing malicious code in your machine which sends info you don't want sent, like your personal info, sites you visit, stuff you download, etc. It was rated #1 last month by PC Magazine, and is FREE. You donate if you think the thing helps you, like Mailwasher. The info collected is sold and resold and resold to spammers. Since they then know who you are and what you do, what your interests are, etc., they can send targeted spam to you. http://security.kolla.de/ There are three built in things in Windows which report your configuration, identity and activity with certain applications to Microsoft and somewhere else. They're there just by virtue of your having the operating system. All my machines had the same three hidden 'spy' routines to built-in Windows applications, on both W98 and Windows 2000 operating systems. Spybot found them and pulled them out. I have inspected a number of machines for others with Spybot and found usually between a dozen and three dozen malicious applications. One guy had over 100, because he lets his kids play with his computer unsupervised. It's nearly impossible to be active on the web without having some of these things infect you unless you happen to be extremely anal and paranoid and run all sorts of security. If you let kids use your machine or you use it as a toy, it's not wise to use it for business. Computers can be a tool or a toy, and if you try to mix the two, you're almost guaranteed problems. Be sure to read and understand the instructions. Removing the malicious code attached to some free sites and programs, like Kazaa, will disable them. If some site or program seems to give you a lot of stuff for free, look closely. It's not free. They're gathering info on you and your web activities, and selling it to spammers. Use a utility like Spybot to deny them that info, and they'll refuse to run unless you reinstall them. If you run into that, that should tell you something. Spybot is very easy to use in beginner mode, and you don't have to understand anything. It will hold your hand and walk you through things and explain what is and is not a problem and suggest what action to take and any potential consequences of that action. And anything you do is reversible. Be sure to donate something to the author if you use the thing. There are ways around all these problems in the first place, but they take some effort and skill to implement. Absent that, you can fix the problems after they occur. The utilities mentioned above will help you both prevent and repair problems. Steve ******************************************************************* Steve Uhrig, SWS Security, Maryland (USA) Mfrs of electronic surveillance equip mailto:Steve@s... website http://www.swssec.com tel +1+410-879-4035, fax +1+410-836-1190 "In God we trust, all others we monitor" ******************************************************************* 7208 From: Matt Paulsen Date: Sat Apr 12, 2003 8:57pm Subject: Cold War Espionage page http://www.cnn.com/SPECIALS/cold.war/experience/spies/ 7209 From: Date: Sun Apr 13, 2003 4:25am Subject: File - Gold List The current version of this list may be found at: http://www.tscm.com/goldlist.html ------------------------------------------------------------------------ Recommended U.S. TSCM Firms The following is a list of private TSCM firms who specialize in "bug sweeps" and wiretap detection and all of whom have legitimate TSCM training, credentials, and equipment (all are very well respected within the industry). While most TSCM specialists are available for travel outside of a specific geographic area they tend to avoid such engagements, or will limited the services to vulnerability analysis, pre-construction assistance, non-instrumented inspections, simple RF checks, in-place monitoring, or limited TSCM services involving only a briefcase sized in-place monitoring system (such as a single spectrum analyzer, MSS, Eagle, ScanLock, OSCOR, SPECTRE, ROSE, or similar system). These private TSCM firms tend to operate in a specific geographic area limited to a few hundred miles (usually within a four to six hour automobile drive). However, all of the TSCM firms listed here are available for travel anywhere in the United States or the World on short notice, but only provide limited services when operating outside of their normal coverage area. This limited coverage area is due to the logistics involved in transporting hundreds and often thousands of pounds of sophisticated, highly sensitive electronic instruments, equipment and tools. Bug sweeps and wiretap detection involves the use of ladders, pole climbing equipment, LAN analyzers, X-ray systems, large antennas and other equipment which is not easily transported by airplane. TSCM firms also tend to restrict their operations to a specific geographic area to facilitate an expert level of knowledge regarding the RF environment, construction methods used, community zoning, population demographics, civil engineering, aeronautic or maritime facilities, local military bases, and related areas. Knowledge of such regional information is critical for a successful TSCM project. The TSCM specialist must also have an intimate knowledge of the telephone systems, engineering methods, fiber optics, major cable locations, central office switches, test numbers, and related communications infrastructure present or being used in an area (which tends to be very regional). An understanding of what types of eavesdropping devices, methods, and frequencies are being used in an area is also important, as is a knowledge of what type of surveillance equipment is being sold within that region (and other areas). The TSCM Procedural and Protocols Guides used by a specialist also tend to be based on specific issues and variables present in that specific geographic area. On a more interesting note, many of these firms are located in, or near major maritime port cities. The heaviest concentrations are around major cities on the East and West coasts with a very limited presence in the Mid-West, Great Plains, and Rockies. If you are in the Mid-West, Great Plains, or Rockies area you would need to engage a TSCM firm from one of the major port cities. For example customers in Chicago, St. Louis, Memphis, Denver, Salt Lake City, Minneapolis, Billings, etc. would need to fly a TSCM specialist in from Boston, New York, Washington DC, Los Angles, Lexington, or Seattle. ------------------------------------------------------------------------ Please be patient when contacting these firms, as if they are out serving a client they may not be able to return your call for several hours. Rates generally are non-negotiable and reflect the cost of the sweep practitioner's time, investment in equipment acquisition and maintenance, several weeks of in-service training a year, travel, administrative and communications time and expense to coordinate the sweep and written report, and a fair profit for their services. It is very unwise to shop for sweeps by using price as a criteria as it only invites getting ripped off. Legitimate TSCM professionals are not interested in, nor will then engage in negotiating for a lower price. When you contact persons on this list, you are talking with someone in the same league as an attorney or surgeon, not a salesman. In fact most of the people listed on this page have more time in their specialized training than do most attorneys or medical professionals. Anything beyond an initial phone call usually will be billable time. Attorneys and doctors don't consult for free, and neither do legitimate TSCM specialists. If a potential client calls with a long list of questions not pertaining directly to hiring the practitioner, or wants to know how to do his own sweep, or wants to know how to use the sweep kit he purchased on his own, expect to pay an hourly rate in advance for consulting services. If you are considering engaging (or have already engaged) a TSCM firm and they are not listed in the following directory you would do well to immediately ask some awkward questions. It is also important you understand that legitimate services by a competent TSCM firm rarely start at less then several thousand dollars for even a basic sweep. Keep in mind that there only a small number of legitimate and competent TSCM counterintelligence specialists or "Bug Sweepers" in the U.S. private sector. Legitimate TSCM firms are in very high demand, hard to find, and expensive; so be patient when trying to find one to help you. Also, the firms listed on this page are not attorneys and cannot tell you whether it is legal or illegal for you to monitor your own phones. Always call a competent licensed attorney for legal advice. Without exception, no one listed here performs eavesdropping services or sells surveillance equipment to any other than government agencies AND WILL NOT REFER YOU TO ANYONE WHO DOES. When you contact any of the following firms please mention that you saw them listed on this web site. ------------------------------------------------------------------------ All of New England, Upstate New York, and the Boston Metropolitan Area (MA, RI, CT, VT, NH, ME, New York State including Long Island, and some of New Jersey) Available on a limited basis to cover any location within 1000 miles of Boston. James M. Atkinson Granite Island Group 127 Eastern Avenue #291 Gloucester, MA 01931-8008 (978) 546-3803 Telephone URL: http://www.tscm.com/ E-mail: jmatk@t... ------------------------------------------------------------------------ Stamford, Connecticut Metropolitan Area (also, Manhattan, Long Island, and New Jersey) Sam Daskam Information Security Associates, Inc. 38 Settlers Trail Stamford, CT 06903 (203) 329-8387 Telephone URL: http://www.isa-tscm.com/ E-mail:sales@i... ------------------------------------------------------------------------ Norwalk, and Lower Fairfield Country Area (also, Manhattan, Long Island, Philadelphia, and New Jersey) Rob Muessel TSCM Technical Services 11 Bayberry Lane Norwalk, CT 06851 (203) 354-9040 Telephone URL: http://www.tscmtech.com/ E-mail:rmuessel@t... ------------------------------------------------------------------------ Greater Philadelphia and Harrisburg Metropolitan Area (also, serving South-Eastern and Central Pennsylvania) Bob Motzer RCM and Associates 609 Sandra Lane Phoenixville, PA 19460 (888) 990-6265 Telephone E-mail: 1RCM@M... ------------------------------------------------------------------------ Washington DC and Baltimore Metropolitan Area (also, Virginia, Delaware, and Pennsylvania) Steve Uhrig SWS Security 1300 Boyd Road Street, MD 21154-1836 (410) 879-4035 Telephone URL: http://www.swssec.com/ E-mail: steve@s... ------------------------------------------------------------------------ Houston, Dallas, Austin, and Galveston (also, Gulf Coast of Texas and Louisiana) Rick Udovich Communication Security, Inc. 2 Shadow Lane Bay City, TX 77414 (979) 244-4920 Telephone URL: http://www.bugsweep.com/ E-mail: rjudo@s... ------------------------------------------------------------------------ Atlanta Metropolitan Area, Southeastern US (also, AL, FL, GA, NC, SC, TN) Buzz Benson Executive World Services, Inc. P.O. Box 33 Braselton, Georgia 30517-0033 (678) 316-7002 Telephone URL: http://www.executiveworldservices.com/ E-mail: sales@e... ------------------------------------------------------------------------ Lexington KY Metropolitan Area (also, Louisville, Cincinnati, and Central Midwest) Bill G. Rhoads Intelcom, Inc. 121 Prosperous Place, Suite 4B Lexington, KY 40509 (859) 263-9425 Telephone E-mail: bgr101@a... ------------------------------------------------------------------------ Michigan and Surrounding Area (also, Indiana, Ohio, and Northern Midwest Region) Chad Margita Off Duty Security 18301 Eight Mile Rd, Suite 214 Eastpointe, MI 48021 (586) 774-1675 Telephone E-mail: offdutysecurity@c... ------------------------------------------------------------------------ Washington State and Seattle WA Metropolitan Area (also, Oregon, and the Pacific North West) Gordon Mitchell Future Focus, Inc. P.O. Box 2547 Woodinville, WA 98072 (888) BUG-KILR Telephone URL: http://www.bug-killer.com/ E-mail: enquiries@b... ------------------------------------------------------------------------ San Francisco and all of Northern California (also, Silicon Valley Area) William Bennett Walsingham Associates, Inc. P.O. Box 4264 San Rafael, CA 94913 (415) 492-1594 Telephone E-mail: walsingham@c... ------------------------------------------------------------------------ 7210 From: Date: Sun Apr 13, 2003 4:25am Subject: File - mission.txt TSCM-L Technical Security Mailing List Dedicated to TSCM specialists engaging in expert technical and analytical research for the detection, nullification, and isolation of eavesdropping devices, wiretaps, bugging devices, technical surveillance penetrations, technical surveillance hazards, and physical security weaknesses. This also includes bug detection, bug sweep, and wiretap detection services. Special emphasis is given to detecting and countering espionage and other threats and activities directed by foreign intelligence services against the United States Government, United States corporations, establishments, and citizens. The list includes technical discussion regarding the design and construction of SCIF facilities, Black Chambers, and Screen Rooms. This list is also for discussing DIAM 50-3, NSA-65, and DCID 1/21, 1/22 compliance. The primary goal and mission of this list is to "raise the bar" and increase the level of professionalism present within the TSCM business. The secondary goal of this list is to increase the quality and effectiveness of our efforts so that we give spies and eavesdroppers no quarter, and to neutralize all of their espionage efforts. This mailing list is moderated by James M. Atkinson and sponsored by Granite Island Group as a public service to the TSCM, Counter Intelligence, and technical security community. 7211 From: Mitch D Date: Tue Apr 15, 2003 11:50am Subject: Intl. Spy Museum, Washington, D.C. mini report To all who were curious; I just completed the tour of the International Spy Museum in Washington DC. There are 3 areas,the museum,the store,and the cafe. For entry to the museum,I suggest purchasing tickets before hand as one may have to wait in line for over an hour to enter. No photography allowed,"PTZ Domes" patrol the interior. You enter the museum,and watch small interviews of former intelligence officers who describe the motives,and challenges of spying then proceed to an elevator,which will take you up to an area where you will learn about covers and obtain a cover identity,and begin the tour. A small theatre is setup where you watch a small,brief narrative about the reasons for spying. Various tools and gadgets are on display,as well as interactive touch screen terminals to learn about surveillance,analysis,and observation. Many of the gadgets are older devices,which include transmitters,receivers,encyption/decryption devices,an enigma,hollow coins,a replica of the "Thing" that was placed in the US embassy in Moscow,a US mailbox that was well scraped and marked, that was used for signalling "drops",some delco mini transmitters from the cold war,hidden video devices,an explanation of micro dots,tool kits that could be hidden in body cavities,old night vision gear,lockpicking tools,etc... No where on display did I see a TDR or Spec A, A lot of emphasis was given throughout the museum on how,and why spies had to supply their goverments with accurate information that of course would influence decisions that were going to be made that would alter history. Included was a display of the tunnel that was built between east and west germany,the history of its construction,how it was disovered before it was finished,and its final demise. Aircraft used for intelligence,manned and un manned were shown along with capabilities,and periods of operation,and purpose,as well as incidents involving such aircraft.An area was dedicated to the use of pidgeons that carried cameras for forward observation use,and displayed photos of and from the birds while working. There were terminals that allowed visitors to test their codebreaking skills,in addition to displays that told stories of spies both male and female from the days of Moses,all the way to Aldrich Ames and Robert Hanssen, their motives and their defeats. One thing I found particularly interesting,was a briefcase on display that contained "rf detection equipment" that I believe was used by Ames. Two Silver boxes,each with analog meters scaled from 1 to 10,several toggle switches,along with a speaker covered with silver mesh, were mounted side by side in a briefcase,along with a wand.A CCS Decal (Communications Control Systems)or (Control Communication Systems) was affixed to the gear,white letters with a black background. The museum was worth the admittance fee (12 bucks) and took a couple of hours to go through.Not recommended for kids under 12,as it seemed like they were more interested in the toys in the gift shop. Cheers MitchD __________________________________________________ Do you Yahoo!? The New Yahoo! Search - Faster. Easier. Bingo http://search.yahoo.com 7212 From: Date: Tue Apr 15, 2003 7:54am Subject: Re: Intl. Spy Museum, Washington, D.C. mini report In a message dated 4/15/2003 9:52:11 AM Pacific Standard Time, rockdriver@y... writes: > A CCS Decal (Communications Control Systems)or (Control > Communication Systems) was affixed to the gear,white letters > with a black background. > Wow, very impressive. [Non-text portions of this message have been removed] 7213 From: Steve Uhrig Date: Tue Apr 15, 2003 0:07pm Subject: Re: Spy Museum > rockdriver@y... writes: > > A CCS Decal (Communications Control Systems)or (Control > > Communication Systems) was affixed to the gear,white letters > > with a black background. On 15 Apr 2003 at 12:54, MACCFound@a... wrote: > Wow, very impressive. He got caught! Now we know why. 7214 From: Mitch D Date: Tue Apr 15, 2003 6:12pm Subject: Museum The Enigma could have been a "Hollywood model",as its authenticity was never declared,It just sat there in a glass case. After almost getting tossed out of Graceland several years ago for taking photos,I took heed to the IS Museum warning. The CCS device gave me the same impression that Steve U had.As mentioned earlier, there was little in the form of countermeasures equipment,except for the "Ames blinky box",and a Vietnam era rf jammer that self destructed as the batteries weakened..... Most of the non-military issue devices had little indication as to their respective manufacturers,although supercircuits and a few others came to mind in the covert video display.There were a few ancient devices that probably worked well considering the technology at hand during their era. The museum was worth the trip anyhow........ __________________________________________________ Do you Yahoo!? The New Yahoo! Search - Faster. Easier. Bingo http://search.yahoo.com 7215 From: Date: Sat Apr 12, 2003 10:19pm Subject: Supplier Advice Please Hi all Can anybody in the group recommend a Far Eastern supplier perhaps Hong Kong or Taiwan of Video Transmitter/Receiver modules on the 1.2 or 2.4Ghz range Thanks Regards To All Dave TSCM [Technical Surveillance and Countermeasures] David McGauley Demtec Electronic Surveillance and Counter Measures Specialist Electrical/Electronics Engineer ex Police Demtec House Ormskirk Lancs L39 0HF UK 01695 558544 07866206112 demtec@a... www.demtec.co.uk [under construction] The manufacture and installation of custom made covert electronic audio and video devices Professional physical and electronic counter measures [sweep] services. Note: any fellow UKPIN members welcome to call in to discuss applications. Workshop located alongside the M58 junc 3 [Non-text portions of this message have been removed] 7216 From: Ocean Group - MU TSD Date: Tue Apr 15, 2003 2:50pm Subject: Re: Spy trip Yeah but hang on a second....did his KGB handlers give him the stuff? Or did he go off and buy the stuff himself. I really really doubt the KGB recommend this kind of gear....they have/had their own state tech companies. Or worse yet, maybe they gave Ames some disocunt coupons they had left over to buy some gear from CCS....! Is it a wonder that the US is so spy free!! They may as well offer butter vouchers. Message: 3 Date: Tue, 15 Apr 2003 13:07:08 -0400 From: "Steve Uhrig" Subject: Re: Spy Museum > rockdriver@y... writes: > > A CCS Decal (Communications Control Systems)or (Control > > Communication Systems) was affixed to the gear,white letters > > with a black background. On 15 Apr 2003 at 12:54, MACCFound@a... wrote: > Wow, very impressive. He got caught! Now we know why. 7217 From: Charles P. Date: Tue Apr 15, 2003 11:30pm Subject: Re: Museum I really got a kick out of the remote trigger drain pipe microphone, and the remote self-drilling self-inserting wall mic! If I recall correctly, the drain pipe mic was installed during building construction, mic had audio pickup through the room wall. When it was time to start monitoring, they remotely triggered something that popped out into the drain pipe. It resembled an upside down umbrella, attached to a reel of very fine, very strong wires. Rain coming through the drain would catch the umbrella and wash it out into the sewer. There it would be retrieved and connected to the listening post. That's pretty clever. Charles ----- Original Message ----- From: "Mitch D" To: Sent: Tuesday, April 15, 2003 7:12 PM Subject: [TSCM-L] Museum > The Enigma could have been a "Hollywood model",as its > authenticity was never declared,It just sat there in a glass > case. > After almost getting tossed out of Graceland several years ago > for taking photos,I took heed to the IS Museum warning. > > The CCS device gave me the same impression that Steve U had.As > mentioned earlier, there was little in the form of > countermeasures equipment,except for the "Ames blinky box",and a > Vietnam era rf jammer that self destructed as the batteries > weakened..... > > Most of the non-military issue devices had little indication as > to their respective manufacturers,although supercircuits and a > few others came to mind in the covert video display.There were a > few ancient devices that probably worked well considering the > technology at hand during their era. > > The museum was worth the trip anyhow........ > > > > __________________________________________________ > Do you Yahoo!? > The New Yahoo! Search - Faster. Easier. Bingo > http://search.yahoo.com > > Yahoo! Groups Sponsor > ADVERTISEMENT > > > > > ======================================================== > TSCM-L Technical Security Mailing List > "In a multitude of counselors there is strength" > > To subscribe to the TSCM-L mailing list visit: > http://www.yahoogroups.com/community/TSCM-L > > It is by caffeine alone I set my mind in motion. > It is by the juice of Star Bucks that thoughts acquire speed, > the hands acquire shaking, the shaking is a warning. > It is by caffeine alone I set my mind in motion. > =================================================== TSKS > > Your use of Yahoo! Groups is subject to the Yahoo! Terms of Service. > > 7218 From: Andre Holmes <1ach@g...> Date: Wed Apr 16, 2003 2:13am Subject: Re: Re: Spy trip Hello group Don't think that the USA is SPY free. There was a encounter with a guy in Deer country that hosted a major car company and the guy had a foreign voice that asked for cables,which raised my eye browes when I heard his voice. First thing that came to mind was Spy. He was driving a van older guy busness appearel but stuck out in deer country with accsent.I would bet any day that he was Russien. Andre Holmes Neptune Enterprise Security USA ----- Original Message ----- From: "Ocean Group - MU TSD" To: "TSCM Yahoogroup" Sent: 15 April, 2003 03:50 PM Subject: [TSCM-L] Re: Spy trip > Yeah but hang on a second....did his KGB handlers give him the stuff? Or did > he go off and buy the stuff himself. > > I really really doubt the KGB recommend this kind of gear....they have/had > their own state tech companies. > > Or worse yet, maybe they gave Ames some disocunt coupons they had left over > to buy some gear from CCS....! > > Is it a wonder that the US is so spy free!! > > They may as well offer butter vouchers. > > > > > Message: 3 > Date: Tue, 15 Apr 2003 13:07:08 -0400 > From: "Steve Uhrig" > Subject: Re: Spy Museum > > > rockdriver@y... writes: > > > > A CCS Decal (Communications Control Systems)or (Control > > > Communication Systems) was affixed to the gear,white letters > > > with a black background. > > On 15 Apr 2003 at 12:54, MACCFound@a... wrote: > > > Wow, very impressive. > > He got caught! > > Now we know why. > > > > > ======================================================== > TSCM-L Technical Security Mailing List > "In a multitude of counselors there is strength" > > To subscribe to the TSCM-L mailing list visit: > http://www.yahoogroups.com/community/TSCM-L > > It is by caffeine alone I set my mind in motion. > It is by the juice of Star Bucks that thoughts acquire speed, > the hands acquire shaking, the shaking is a warning. > It is by caffeine alone I set my mind in motion. > =================================================== TSKS > > Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/ > > 7219 From: Date: Wed Apr 16, 2003 10:30am Subject: Old Scam Resurging Voicemail Hacking Leaves Ears Ringing Customers and their long-distance providers are at odds over who is liable for charges rung up by scammers. By Kathy M. Kristof L.A. Times Staff Writer April 16, 2003 Voicemail can cost you. Just ask K.C. Hatcher, a San Francisco-based graphic artist. AT&T wants her to pay $12,000 in long-distance charges rung up by a hacker who apparently changed Hatcher's voicemail message to accept third-party billed calls to Saudi Arabia and the Philippines. "I am totally obsessing about this," said Hatcher, whose normal long-distance bill runs $35 a month. "I'm getting married in June. I want to buy a house, and I'm worried that this fraud is going to ruin my credit." Such voicemail hacking is on the rise -- and phone customers are wrongly being held liable for it, according to San Francisco-based Consumer Action. AT&T acknowledges that the scamming has become all too common and that people rarely know they have been had until company fraud investigators alert them to unusual activity on their phones. But AT&T, like some other long-distance providers, insists that consumers foot most of the bill. "It is the responsibility of the customer to secure their voicemail system," said Gordon Diamond, a spokesman for AT&T in San Francisco. Maureen Claridge, a San Francisco travel agent, doesn't see it that way but has been unable to persuade AT&T to let her off the hook. The company has sent her $8,000 long-distance bill -- generated by a voicemail hacker -- to a collection agent, Claridge said. Linda Sherry of Consumer Action maintains that telephone companies are largely to blame. Hackers take advantage of the voicemail offered by local phone companies -- including SBC Communications Inc., which provides the system Hatcher and Claridge use -- and long-distance companies' voice-activated operator services. What a hacker does is break into a person's voicemail and record a message so that it will respond affirmatively to an automated operator that calls the person's home phone seeking approval for third-party billing of a long-distance call. Sherry noted that at AT&T, the automated system always asks the same questions and waits a set interval for a response, making it fairly easy for a hacker to synchronize his fraudulent voicemail message. "That AT&T would permit third-party phone charges based only on the authority of a recorded message is beyond belief," Sherry said. "Third-party billing should be allowed only when a real person answers the phone and is able to verify that they approve the charges." AT&T's Diamond countered that the company's automated system is "fairly sophisticated," adding: "If it was a live operator, I don't know that it would turn out any differently." AT&T suggests that consumers change their pass codes regularly; avoid pass codes that are intuitive, such as birth dates and addresses; and check their announcements to make sure they haven't been changed. Diamond said AT&T works on a case-by-case basis with customers who believe they have been defrauded but doesn't necessarily write off fraudulent charges. MCI Communications also offers automated operator assistance and has a similar policy, spokeswoman Audrey Waters said. Sprint Corp. handles calls billed to a third party manually, which Sprint says has stymied this particular fraud. Meanwhile, SBC said it recently changed its voicemail system so that default pass codes aren't so easy to guess. The company says it has a policy of reversing charges when a consumer is willing to file a police report claiming fraud. Copyright 2003 Los Angeles Times [Non-text portions of this message have been removed] 7220 From: Ocean Group - MU TSD Date: Wed Apr 16, 2003 7:51am Subject: Funny War... Sure enough, the only guy you could rely on in the Iraqi war.... http://www.welovetheiraqiinformationminister.com/ 7221 From: David Alexander Date: Thu Apr 17, 2003 2:27am Subject: RE: Funny War... There was an item about him on BBC radio this morning, saying that there were reports that he hung himself as the Americans entered Baghdad. -----Original Message----- From: Ocean Group - MU TSD [mailto:inertia@o...] Sent:16 April 2003 13:51 To:TSCM Yahoogroup Subject:[TSCM-L] Funny War... Sure enough, the only guy you could rely on in the Iraqi war.... http://www.welovetheiraqiinformationminister.com/ ======================================================== TSCM-L Technical Security Mailing List "In a multitude of counselors there is strength" To subscribe to the TSCM-L mailing list visit: http://www.yahoogroups.com/community/TSCM-L It is by caffeine alone I set my mind in motion. It is by the juice of Star Bucks that thoughts acquire speed, the hands acquire shaking, the shaking is a warning. It is by caffeine alone I set my mind in motion. =================================================== TSKS Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/ 7222 From: James M. Atkinson Date: Thu Apr 17, 2003 11:15am Subject: U.S.: Leung may have tipped Chinese to spy investigation http://www.cnn.com/2003/LAW/04/16/crime.spy/index.html U.S.: Leung may have tipped Chinese to spy investigation From Kelli Arena CNN Justice Correspondent WASHINGTON (CNN) --An FBI informer in Los Angeles, accused of being a Chinese double agent, may have compromised a nuclear espionage investigation by revealing the identities of two FBI agents working on the case, according to U.S. government officials. Officials said Katrina Leung also might have tipped off the Chinese government about the United States' bugging of China's version of Air Force One. The continuing damage assessment in the Leung case includes an FBI internal review and the investigation of a second agent for possible misconduct. Leung, recruited by the FBI in 1982 as an informer, has been charged with espionage. Her FBI handler, retired agent James Smith, has been charged with gross negligence. Officials allege Leung also had an affair with another agent, now retired. That agent, William Cleveland, has not been charged. Leung was denied bail Tuesday after prosecutors argued she was a flight risk. The 49-year-old Leung is a well-known Republican activist in Los Angeles who raised thousands of dollars in political campaigns and arranged numerous California events -- including a 1997 state banquet for former Chinese President Jiang Zemin. In a criminal complaint, prosecutors said they believe that in one case during their alleged affair, Smith came to Leung's home with classified documents, and then left his briefcase open where she surreptitiously photocopied them without his consent, intending to share them with Chinese officials. One of the documents forming the basis of the felony charge is a June 12, 1997 memorandum about Chinese fugitives and the discussion of national defense information by a confidential FBI source. Leung admitted to investigators she obtained information from Smith without his consent at times and turned them over to the Ministry of State Security, a Chinese intelligence service. Smith, a 30-year FBI veteran who retired in 2000, remains free on $250,000 bond. He faces 10 years in prison if convicted. Lawyers for Leung argued FBI agents fed information to her for nearly two decades and encouraged her to give it to the Chinese government in order to obtain the trust of the Chinese in return. Prosecutors contend Leung established at least 2,100 Chinese government contacts, including top-level officials, during her 71 visits to the People's Republic of China. In his ruling Tuesday, U.S. Magistrate Victor Kenton said he had "substantial and serious questions" about Leung's foreign assets after she acknowledged receiving $1.2 million dollars as a consultant to a Hong Kong business but admitted committing tax fraud by allegedly hiding the money in overseas accounts. In denying bail, Kenton also said he cannot conclude Leung "does not still have classified information" that may be vital to U.S. national security and expressed concerns Leung may seek asylum. Leung who is being held at the Metropolitan Detention Center in downtown Los Angeles faces 10 years in prison if convicted. -- CNN Producer Stan Wilson and CNN Correspondent Charles Feldman contributed to this report. -- -------------------------------------------------------------------------------------------------- The First, The Largest, The Most Popular, and The Most Complete TSCM, Bug Sweep, Spy Hunting, and Counterintelligence Site on the Internet. -------------------------------------------------------------------------------------------------- James M. Atkinson Ph: (978) 546-3803 Granite Island GroupFax: (978) 546-9467 127 Eastern Avenue #291http://www.tscm.com/ Gloucester, MA 01931-8008mailto:jmatk@t... -------------------------------------------------------------------------------------------------- Vocatus atque non vocatus deus aderit -------------------------------------------------------------------------------------------------- 7223 From: kondrak Date: Thu Apr 17, 2003 7:31pm Subject: RE: Funny War... You are correct, Comical Ali assumed room temperature! He was a funny guy..... At 08:27 4/17/2003 +0100, you wrote: >There was an item about him on BBC radio this morning, saying that there >were reports that he hung himself as the Americans entered Baghdad. > > -----Original Message----- >From: Ocean Group - MU TSD [mailto:inertia@o...] >Sent: 16 April 2003 13:51 >To: TSCM Yahoogroup >Subject: [TSCM-L] Funny War... > > >Sure enough, the only guy you could rely on in the Iraqi war.... > > >http://www.welovetheiraqiinformationminister.com/ > > > >======================================================== > TSCM-L Technical Security Mailing List > "In a multitude of counselors there is strength" > > To subscribe to the TSCM-L mailing list visit: > http://www.yahoogroups.com/community/TSCM-L > > It is by caffeine alone I set my mind in motion. > It is by the juice of Star Bucks that thoughts acquire speed, > the hands acquire shaking, the shaking is a warning. > It is by caffeine alone I set my mind in motion. >=================================================== TSKS > >Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/ > > > > > >======================================================== > TSCM-L Technical Security Mailing List > "In a multitude of counselors there is strength" > > To subscribe to the TSCM-L mailing list visit: > http://www.yahoogroups.com/community/TSCM-L > > It is by caffeine alone I set my mind in motion. > It is by the juice of Star Bucks that thoughts acquire speed, > the hands acquire shaking, the shaking is a warning. > It is by caffeine alone I set my mind in motion. >=================================================== TSKS > >Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/ 7224 From: Marcel Date: Thu Apr 17, 2003 5:08am Subject: [WFHSG] Russian KGB surveillance short wave belt mounted portable receiver 'SOYKA'] -------- Original Message -------- From: Marcelrf@B... Subject: [WFHSG] Russian KGB surveillance short wave belt mounted portable receiver 'SOYKA' To: WFHSG Russian KGB surveillance short wave belt mounted portable receiver 'SOYKA' "WIRELESS FORUM HOMELAND SECURITY GROUP" Subscribe to WFHSG: http://www.groups.yahoo.com/subscribe/WFHSG or Via E-Mail WFHSG-subscribe@yahoogroups.com [Non-text portions of this message have been removed] 7225 From: human being Date: Thu Apr 17, 2003 2:49pm Subject: Saddam's spywares [Saddam's spywares, via gizmodo.net] Bond-style cache reveals regime's deadly gadgetry By Raymond Whitaker 7226 From: A Grudko Date: Sat Apr 19, 2003 4:14am Subject: Re: Funny War... - Original Message - From: David Alexander > There was an item about him on BBC radio this morning, saying that there > were reports that he hung himself as the Americans entered Baghdad. It was probably the thought of having to eat McDonnalds and KFC and having Jerry Springer and the WWE on Iraqi TV that drove him to it. > -----Original Message----- > From: Ocean Group - MU TSD [mailto:inertia@o...] > Sure enough, the only guy you could rely on in the Iraqi war.... Yeah, he was a hoot - nearly as funny as Co-line Powell and his drawings of trucks that were mobile chemical weapon plants; and those satellite photos of oversize missile launch ramps that they can't find now. And my favourite one was the Arabs' phone tap - that - was hilarious, real 'Saturday Night Live from the Pentagon' stuff - fade to Jimmy Fallon..... Err, studio, please add some scratchy sixties tape noises on the back of the CIA secret wav file, take 5. OK, Ahmed and Ali, try again - action: "Get rid of the secret chemical weapons" "What?" "Get-rid-of-the-secret-chemical-weapons" "You mean, get rid of the secret chemical weapons" "Yes, the order is get rid of the secret chemical weapons" "Oh, OK, the SECRET chemical weapons" "Yes - and remember - it's a SECRET" Cut! Can't we get Jim Carey to do an A-rab accent?.......... Happy Easter Peaceful Pasach 'Toe the line' Syria Andy Grudko (British), Grad I.S, South Africa Registered as a security service provider by the Private Security Industry Regulatory Authority, registration number 8642 www.grudko.com , andy@g... . Est. 1981. International investigations (+27 12) 244 0255 - 244 0256 (Fax). IPA, SACI, WAD, CALI, UKPIN, IWWA. When you need it done right - first time . , 7227 From: Steve Uhrig Date: Sat Apr 19, 2003 7:06pm Subject: Stalin's spy service - SMERSH http://news.bbc.co.uk/2/hi/europe/2960709.stm Happy and blessed Easter everyone. Steve ******************************************************************* Steve Uhrig, SWS Security, Maryland (USA) Mfrs of electronic surveillance equip mailto:Steve@s... website http://www.swssec.com tel +1+410-879-4035, fax +1+410-836-1190 "In God we trust, all others we monitor" ******************************************************************* 7228 From: Steve Uhrig Date: Sun Apr 20, 2003 9:31pm Subject: Telephone sweeping - excellent book Time to make another mention of an excellent resource for any new members of this list. Ted Swift in Maryland wrote an excellent book on telephone TSCM a while back. The book is about halfway between total novice and serious fledgling sweeper. Practically anyone from raw beginner to experienced pro will learn something from the book. It's high on the list of my recommendations to persons interested in the profession. Anyone considering getting into TSCM at any level would do well to start with this book. Definitely read it before you buy equipment. RF (radiated) threats get the majority of the attention because it's glamourous. Everybody likes the idea of hidden transmitters. The plethora of $15 and $15,000 RF sweep devices bear this out. However, the majority of threats are to telephones (conducted). These are ignored for the most part because there's far less profit in selling the relatively inexpensive equipment needed for telephone TSCM. However, far more important than equipment is knowledge. That's what Ted's book will give you, for a price so low it's barely a factor. http://www.angelfire.com/biz/investigator/index.html I did a review on this book some time back, and it's on Ted's webpage above. I keep my copy convenient on the bookshelf. I don't have any financial or other interest in Ted's book and he doesn't know I'm doing this post which I do about twice a year for the benefit of new members to this list. ====== WIRETAP DETECTION TECHNIQUES A Guide to Checking Telephone Lines Testing Procedures for Eavesdropping Countermeasures Surveys ====== Check it out. Steve ******************************************************************* Steve Uhrig, SWS Security, Maryland (USA) Mfrs of electronic surveillance equip mailto:Steve@s... website http://www.swssec.com tel +1+410-879-4035, fax +1+410-836-1190 "In God we trust, all others we monitor" ******************************************************************* 7229 From: L A Date: Sat Apr 19, 2003 1:54pm Subject: Police and Security Expo The 17th Annual Police and Security Expo is scheduled for June 24th - 25th in Atlantic City NJ. You can register at: http://www.police-security.com/home.htm . This is a god place to see the latest in LE and Security equipment and they have a few seminars that might be of interest. If you are going to be there, please let me know as it would be good to meet some of my fellow List members! ===== L. Altman Caliber Investigation Agency (NYC) http://www.cia1.bravepages.com cia@i... Ph# 1-718-318-2214 Fax 1-718-318-2866 Newsletters: http://cia1.bravepages.com/nwsltr/Archives.html __________________________________________________ Do you Yahoo!? The New Yahoo! Search - Faster. Easier. Bingo http://search.yahoo.com 7230 From: Julie Burger Date: Sun Apr 20, 2003 5:11pm Subject: Stalin's spy service - SMERSH Laughing, my maiden name is Smersh. My great grandfather came from Prague (the Czech spelling is Smrz) where Smersh/Smrz is actually just a mushroom with toxic qualities in high doses (this is where Smersh gets its connection with the meaning "death") and has medicinal qualities at lower doses (no, real medicinal qualities - not "happy mushrooms"). For generations, my ancestors ran an apothocary of sorts in Prague with a sign that used this mushroom (for the many people who couldn't read at the time) to designate that it was a place of remedies and herbs. Throughout many European countries, Smersh (and derivations of the word Smersh) have come to mean death and pain, but the original meaning going back much further is that of a simple mushroom that can used to heal as well as to hurt/kill. Like the old saying... the difference between pharmacology and toxicology is usually just dosage. Best wishes, Julie Topics in this digest: 1. Stalin's spy service - SMERSH From: "Steve Uhrig" ________________________________________________________________________ ________________________________________________________________________ Message: 1 Date: Sat, 19 Apr 2003 20:06:50 -0400 From: "Steve Uhrig" Subject: Stalin's spy service - SMERSH http://news.bbc.co.uk/2/hi/europe/2960709.stm Happy and blessed Easter everyone. Steve ******************************************************************* Steve Uhrig, SWS Security, Maryland (USA) Mfrs of electronic surveillance equip mailto:Steve@s... website http://www.swssec.com tel +1+410-879-4035, fax +1+410-836-1190 "In God we trust, all others we monitor" ******************************************************************* ________________________________________________________________________ ________________________________________________________________________ Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/ _________________________________________________________________ MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*. http://join.msn.com/?page=features/virus 7231 From: kondrak Date: Tue Apr 22, 2003 3:45am Subject: Fwd: [ISN] New spy tools--for good or evil? > > >http://zdnet.com.com/2100-1107-997590.html > >By Declan McCullagh >CNET News.com >April 21, 2003 > >COMMENTARY -- Cisco Systems has created a more efficient and targeted >way for police and intelligence agencies to eavesdrop on people whose >Internet service provider uses their company's routers. > >The company recently published a proposal that describes how it plans >to embed "lawful interception" capability into its products. Among the >highlights: Eavesdropping "must be undetectable," and multiple police >agencies conducting simultaneous wiretaps must not learn of one >another. If an Internet provider uses encryption to preserve its >customers' privacy and has access to the encryption keys, it must turn >over the intercepted communications to police in a descrambled form. > >Cisco's decision to begin offering "lawful interception" capability as >an option to its customers could turn out to be either good or bad >news for privacy. > >Because Cisco's routers currently aren't designed to target an >individual, it's easy for an Internet service provider (ISP) to comply >with a police request today by turning over all the traffic that flows >through a router or switch. Cisco's "lawful interception" capability >thus might help limit the amount of data that gets scooped up in the >process. > >On the other hand, the argument that it hinders privacy goes like >this: By making wiretapping more efficient, Cisco will permit >governments in other countries--where court oversight of police >eavesdropping is even more limited than in the United States--snoop on >far more communications than they could have otherwise. > >Marc Rotenberg, head of the Electronic Privacy Information Center, >says: "I don't see why the technical community should hardwire >surveillance standards and not also hardwire accountability standards >like audit logs and public reporting. The laws that permit 'lawful >interception' typically incorporate both components--the >(interception) authority and the means of oversight--but the (Cisco) >implementation seems to have only the surveillance component. That is >no guarantee that the authority will be used in a 'lawful' manner." > >U.S. history provides many examples of government and police agencies >conducting illegal wiretaps. The FBI unlawfully spied on Eleanor >Roosevelt, Martin Luther King Jr., feminists, gay rights leaders and >Catholic priests. During its dark days, the bureau used secret files >and hidden microphones to blackmail the Kennedy brothers, sway the >Supreme Court and influence presidential elections. Cisco's Internet >draft may be titled "lawful interception," but there's no guarantee >that the capability will always be used legally. > >Still, if you don't like Cisco's decision, remember that they're not >the ones doing the snooping. Cisco is responding to its customers' >requests, and if they don't, other hardware vendors will. If you're >looking for someone to blame, consider Attorney General John Ashcroft, >who asked for and received sweeping surveillance powers in the USA >Patriot Act, along with your elected representatives in Congress, who >gave those powers to him with virtually no debate. > >I talked with Fred Baker, a Cisco fellow and former chairman of the >Internet Engineering Task Force (IETF), about his work on the "lawful >interception" draft. > > >Q: Why did Cisco decide to build "lawful interception" into its >products? What prompted this? > >A: Cisco's customers, not just in United States but in many countries, >are finding themselves served with subpoenas to mandate lawful >intercept functionality. Cisco received requests from its customers >for this capability. > >When I found out about the project, I asked to be involved because I >wanted to ensure that it was done in a manner that was as close to >balanced as I could get. From an engineering perspective, the easiest >thing is to give everything to law enforcement and let them sort it >out. But I wanted to do better than that. > > >When was that? > >The actual development of this document started probably seven to >eight months ago. > > >What was the reaction of the Internet community and the IETF after you >released the draft? > >I've seen very little reaction so far. We have been contacted by >Verisign, with which we had an NDA relationship. They said, "We'd like >to work with you on this." That's about all we've had. John Gilmore >(of the Electronic Privacy Information Center) posted comments to an >IETF mailing list. He wanted to ensure that the capability would be as >difficult to use as possible. > > >When will Cisco's customers be able to buy "lawful interception" >products or an upgrade? > >We haven't yet announced anything. Any product that a service provider >is likely to purchase will have an option to provide lawful >interception. That's not for all of our products but for a fairly >broad subset. > >We're in the process of doing early field trials on that capability. >In most cases it's a software upgrade. What we're doing is putting the >capability in a separate image so you know what you're getting when >you get it. Under U.S. law, if you have that ability, you could be >required to use it. Our service provider customers have asked us not >to put it in the standard image, so that they can't be forced to use >it. > > >How much will it cost? > >We haven't announced that. There was some discussion at some point >about putting in a nuisance fee. > > >What percentage of your customers who have asked for "lawful >interception" capability are within the United States? > >We have service provider customers in a number of countries that have >asked us for it. Some have been more insistent than others. > > >Do you have any moral problems with helping to make surveillance >technology more efficient? > >I have some moral and ethical issues, but I think quite frankly that >the place to argue this is in Congress and in the courtroom, not a >service provider's machine room when he's staring down the barrel of a >subpoena. > >There are two sides. One is that Cisco as a company needs to let its >customers abide by the law. The other is the moral and ethical issues. >There are two very separate questions. > > >The current draft does not include an audit trail. Could you do that >by having your equipment digitally sign a file that says who's been >intercepted and for how long? That could be turned over to a judge. It >could indicate whether the cops were or weren't staying within the >bounds of the law. > >I'm not entirely sure that the machine we're looking at could make >that assurance... In fact, the way lawful interception works, a >warrant comes out saying, "We want to look at a person." That's the >way it works in Europe, the United States, Australia and in other >western countries. The quest then becomes figuring out which equipment >a person is reasonably likely to use, and it becomes law enforcement's >responsibility to discard any information that's irrelevant to the >warrant. That kind of a thing would probably be maintained on the >mediation device. > > >Who controls the mediation device? > >The Internet provider. The mediation device picks out the subset that >relates to a particular warrant. > > >A few years ago (in RFC 2804) the IETF rejected the idea of building >eavesdropping capability into Internet protocols. The FBI supported >the idea, but the IETF said, no way. You were chair of the IETF at the >time. How do you reconcile your proposal with the decision made then? > >I thought that what the IETF decided to do was actually the right >thing to decide. What it said is that the IETF would not modify >protocols that were designed for some other purpose in order to >support lawful interception. > > >Will you discuss this at the next IETF meeting in Austria in July? > >We're hoping for community review. If people see any problems with >what we're doing on a technical level, we're all ears. We want to >produce the best possible capability in terms of security and the >capability required. > > >Have you had requests for this capability, directly or indirectly, >from government agencies? > >Yes and no. We got the request from our customers. The laws relate to >the ISPs, which are our customers. Certainly, if we get a request from >our customers that we can't support, there are penalties that accrue. > >We've had direct contact with the FBI and other agencies. When I was >in Holland I (spoke at a conference with the head of the equivalent of >the country's Central Intelligence Agency). The fact that he came out >and said something made the 8 o'clock news. I had a meeting with him >and some of his people a few days later to figure out what he wanted >and what he intended to do with this. As an engineer I wanted to >understand a customer's problem. > >We've had discussions with government agencies, but (they're generally >not) asking us to build a product. They do that with ISPs, who then >come to us. > > >What other companies are going a similar route? > >We're a little bit more open than everyone else. It really wouldn't be >appropriate for me to talk about other companies. It's not like we're >coming out and saying, "Hey, this is the reason you should buy a Cisco >router." This is something we're doing because our customers want it. > > >What do you think of governments with scant respect for privacy rights >using "lawful interception" technology to become more efficient >eavesdroppers? Do you ever stay up late at night worrying about what >they might do with it? > >Of course I do. But that problem is the reason I got involved. We have >some capabilities in some of our equipment that will allow you to take >all the traffic that goes across an interface and send it to another >interface. Right now that is used in some cases as a lawful >interception technology. > >When we first started talking, some engineers said, "Let's turn this >on and use that." I said, "Heavens no, if we can narrow the range of >information, let's do it." Let's let our customers meet their >requirements in as privacy-protecting a way as possible. So yes, >there's a conflict, but the conflict is why I got involved. 7232 From: Fernando Martins Date: Tue Apr 22, 2003 1:19pm Subject: open/public consultation in europe about video surveillance http://europa.eu.int/yourvoice/consultations/index_en.htm Working Document on the Processing of Personal Data by means of Video Surveillance European Data Protection Commissioners seek public opinion's view on video-surveillance. For the sake of transparency and efficiency the Art. 29 Data Protection Working Party launches a public consultation. http://europa.eu.int/comm/internal_market/privacy/workingroup/consultations/ consultation_en.htm - online consultation and draft documents FM