SS7 Network Vulnerability Proves Hillary Compromised National Security

 

By Capt. Dave Bertrand, Ret.

 

 

Friends and Associates:

 

Most democrats on Hillary Clinton’s bandwagon of righteousness and credibility suggest her emails were not classified, even though the FBI has confirmed a good number of email conversations between Hillary, foreign leaders and Pentagon officials were in-fact confidential and in some cases top secret.

 

Even though the Hillary camp want us to believe her system could not be hacked and wasn’t hacked has proven to be a complete lie.

 

Now we are learning the dirty little secret of how anyone, in particular rogue governments, listened to phone conversations between Hillary and Obama, activated her Smart Phone camera, including Obama’s….and of course copied every single email they sent and ALL THOSE that were recipients of her emails. 

 

That little dirty secret was a created flaw in the SS7 Network that is necessary for every computer on WiFi and Smart Phone to communicate with each other around the world.

 

Representative Ted Lieu (D-Ca) allowed “60 Minutes” to use his Smart Phone to be hacked by a select few paid hackers to prove the vulnerability built-in to every Smart Phone…..now being called a “flaw” but the report/article below suggests otherwise. Representative Lieu says he will call for a Congressional Investigation, since the paid hackers were able to record a conversation between him and Obama. Every single credit card number and password(s) for Representative Lieu were hacked by the team.

 

If you watched “60 Minutes” it appeared the democrat was offering-up his Smart Phone to prove Hillary’s assertion (and others) that her private server was secure because of the ISP’s special software program called “BleachBit.”

 

The results, the Representative witnessed of what was hacked on his cellphone, obviously made him extremely concerned. In fact….I don’t think “60 Minutes” expected to find how easy and far wide the problem is.

 

SS7 was developed in 1975 and discovered in 2014…..

 

An anonymous NSA official said “the agency doesn’t want to close that hole.”

 

This revelation by “60 minutes” proves once again, our National Security interests were compromised by Hillary Clinton, a known criminal that wants full control of all nuclear weapons while playing dumb about her actions as Secretary of State.

 

READ FULL ARTICLE BELOW FROM SECURITY INTELLIGENCE   

 

From The Desk of  Capt. Dave Bertrand (Ret.)  Int’l Freight Captain with military and law enforcement background. Director of the Intelligence Support Agency Inc (I.S.A.) during the early 80′s, international aircraft repossession and government contractor. Following 9/11…trained DHS (counter-terrorism instructor), Border Security Specialist. Media Relations Director for MCDC, and Political Activist. 

 

After 9/11, it became apparent that American freedoms and liberties were under attack and those responsible are still dictating policies while undermining our constitution. My mission is to slice through the propaganda  and share important news among our network of patriots, military, law enforcement and selected news media sources. We are the pulse of America and we can win the battle against tyranny.

 

Opinions and discussion of today’s hard hitting topics. If you wish to be removed….reply within, or please forward. Email news will still be around after the U.N. censors news websites after October 1st.

 

https://securityintelligence.com/ss7-vulnerability-isnt-a-flaw-it-was-designed-that-way/

 

SS7 Vulnerability Isn’t a Flaw — It Was Designed That Way

 

A television news magazine recently ran a segment showing how German Chaos Computer Club (CCC) members could use the telephone network to access the voice data of a mobile phone, find its location and collect other information. All involved professed shock that such a thing could happen, and Democratic Rep. Ted Lieu of California even called for a congressional investigation about it.

 

But the Signaling System 7 (SS7) vulnerability is a reality. Not only that, it’s an intentional loophole that’s existed for years.

It’s a Feature, Not a Flaw

While it is interesting to see the reactions to this story, experts have known for the last 30 years that SS7, the switching protocol used by over 800 global telecoms, is insecure. It has been that way since its inception; in fact, the CCC gave almost the same demonstration in December 2014.

 

Since it was developed in 1975, a comprehensive threat model was never one of the design parameters for SS7. Whether that was an oversight or an intentional part of the protocol is irrelevant. SS7 exists, it is almost universally used and it does not guarantee user security.

 

SS7 controls telephone calls, both wired and wireless, through the use of a control signal that is separate from the actual voice circuit. It allows phone networks to exchange the information needed for passing calls and text messages between each other and to ensure correct billing. It also allows users on one network to roam on another, which is often needed in a foreign country, The Guardian explained.

 

SS7 can also be a revenue generator for the telco companies. Banks may want to know where a user’s phone is physically located before approving a charge, for example.

 

Users want the seamless experience it offers. If that weren’t the case, it would not have been adopted so widely. But the security of SS7 is only as good as its weakest link.

 

Should cybercriminals gain access, they can redirect the control channel used for a telephone number via spoofing (since redirects via spoofing are allowed in the protocols) and use it to gain call details. If a telco has a roaming agreement with the target network, it can access the phone. Users won’t know it is happening since that control channel is separated from the voice channel.

Dealing With the SS7 Vulnerability

Keeping a voice conversation private can be aided by both parties using end-to-end encryption apps. Someone may be able monitor the voice, but they won’t understand it.

 

A bigger problem is two-factor authentication. One factor is usually sent via SMS to a user. Someone listening can intercept that SMS message and use it for fraud. One possible solution is having that second factor sent to an encrypted messaging account.

 

Dealing with location monitoring is a bit trickier. Staying off the cell network and on Wi-Fi might help with fraudsters, but more competent adversaries could track the Wi-Fi’s IP address.

 

The most important takeaway is to understand that the telephone network that your phone connects to is not secure and probably never will be. There may be some improvements in the future with regard to telcos scanning for unauthorized users, but that won’t stop a determined player.

 

Telephone networks were not designed to be secure. Understanding that and adjusting habits may help when security is needed.