Tradecraft of a "mercenary hacker" who supplies 1%ers, crooks, and jealous spouses

Gawker has a profile of "Martin," a "mercenary hacker" who provides IT security consulting to millionaires, crooks, cheating spouses (or spouses who suspect their other halves of cheating) and so on. Martin's tradecraft -- rotating SIM cards using pill-sorters labelled for each day of the week and the like -- would be moderately effective against an unskilled attacker, but it seems to me that it wouldn't survive an advanced persistent threat like a government or a major spy agency. For example, he instructs his clients to use "dumb" candybar phones instead of smartphones, which, on the surface, has some logic to it (smartphones are more complex, so they have more attack-surface). But the crypto in wireless telephony is junk, so anyone with a little smarts and the capacity to follow a recipe they find on the Internet can build interception equipment that would allow them to listen in on the calls from such a phone. On the other hand, a smartphone allows users to overlay their own, industry-grade crypto for voice and SMS communications.

Likewise, Martin has his customers rotate SIMs every day, but reuses the SIMs every 14 days. This does require adversaries to acquire fourteen times more numbers and intercept them, but that, in and of itself, is not that challenging (if you can wiretap one number, you can wiretap 14, too). Especially as the phones maintain the same IMEI -- the hardcoded serial number that is sent along with the phone signalling information, which uniquely identifies a handset regardless of what number it's using. Again, this is where a smartphone would help, as a sufficiently rooted phone can be instructed to spoof its IMEI with each call, or on some other rotating basis.

Martin also provides "search-engine optimization" -- gaming FourSquare to boost the apparent popularity of a club, gaming YouTube falsely increment the view-counter, and he'll install a keylogger on a phone or computer for you, or sell you hidden wireless mics and cameras.

With Martin's system, each crewmember gets a cell phone that operates using a prepaid SIM card; they also get a two-week plastic pill organizer filled with 14 SIM cards where the pills should be. Each SIM card, loaded with $50 worth of airtime, is attached to a different phone number and stores all contacts, text messages and call histories associated with that number, like a removable hard drive. This makes a new SIM card effectively a new phone. Every morning, each crewmember swaps out his phone's card for the card in next day's compartment in the pill organizers. After all 14 cards are used, they start over at the first one.
Of course, it would be hugely annoying for a crewmember to have to remember the others' constantly changing numbers. But he doesn't have to, thanks to the pill organizers. Martin preprograms each day's SIM card with the phone numbers the other members have that day. As long they all swap out their cards every day, the contacts in the phones stay in sync. (They never call anyone but each other on the phones.) Crewmembers will remind each other to "take their medicine," Martin said.
Not only does Martin's system make wiretapping difficult, Martin claims it can protect the group if a phone gets compromised. If authorities snatch or tap a phone from Martin's system, they'll have access to only 1/14th of the entire network. The crew can just replace their SIM cards from that day in the pill organizer, assured that the other 13 of their SIM cards are still secure

The Mercenary Techie Who Troubleshoots for Drug Dealers and Jealous Lovers (via Kottke)

I write books. My latest is a YA science fiction novel called Homeland (it's the sequel to Little Brother). More books: Rapture of the Nerds (a novel, with Charlie Stross); With a Little Help (short stories); and The Great Big Beautiful Tomorrow (novella and nonfic). I speak all over the place and I tweet and tumble, too.

MORE: class war • crime • mobile • privacy • security • surveillance • web theory

More at Boing Boing

The technology that links taxonomy and Star Trek

Hackers prepare for first "national holiday" in their honor

Zero Sonico

The genius here is the amount he charges for the service.
LinkMan

Deja vu.
suburbanhick

Yo Cory! You know Rob posted this earlier today, right?
http://mikeoshea.net/ somnambulist

It seems like a mix of bullshit (you can’t get a story in a mainstream paper or website buried in Google search results like the author says he can) and him being a bit of a con artist relying on rich people’s ignorance of computers and the internet. He should look out for the drug dealers, his system doesn’t sound very good, and they’ll be mad when they’re caught. The only thing he has going in his favor is the technical incompetence of local police.
- LinkMan
  
  You’re not going to be able to bury a prominent profile of you in the New York Times, but there is plenty of bad press that can get buried–at least temporarily.
  
  Take the example of David H. Brooks (the former bullet proof vest mogul–no relation to columnist David Brooks). A few years ago he hired somebody to throw together a bunch of websites like davidhbrooks.com that extolled his philanthropy and made him sound like a saint–and buried some pretty unflattering chatter.
  
  Once his trial really got going, enough mainstream media sources picked up on it that the bad stuff percolated back up toward the top (Google his name and you’ll find fun stuff–the Colbert Alpha Dog of the Week segment is an excellent primer to the ridiculousness that is David H. Brooks, even though it just scratches the surface). But for a while his Google results were remarkably clean for such an unclean guy. And even today a couple of those dummy sites are still in the first page of results.
  
  The point is that egomaniacal and sociopathic bad guys tend to believe they can manipulate anyone and anything however they want. Brooks was denied bail after lying about sending tens of millions of dollars to nonextraditable African countries, then violated the terms of his house arrest more than once, then got caught trying to smuggle pills into jail. THAT’s the kind of guy who is not going to take no for an answer from some computer dork when he wants his Google results changed.
  
  Of course it’s also the kind of guy who’s going to continue being such an asshole that eventually the bad press is going to catch up with him anyway.
http://www.tumbleweed.net/ tyger11

He forgot to swap his SIM card, so he didn’t get the notice.
http://bradhicks.livejournal.com/ J. Brad Hicks

Seems to me that they’re going to a lot of expense and trouble to get out of just bribing the local cops, preachers, and aldermen. Guys, trying to get out of paying your bribes is more expensive than just paying the bribes. Smarten up.
phisrow

I have no idea what level of access Danny Doughnut, beat cop, has to telco records; but if I were a Sinister Government Employee(of the sort that we have very strong reason to believe has systematic access to telco records) one of the very first lookups I would be doing would be “IMEIs sorted by SIM changes/unit time”.

I suspect that running such a query and then tapping the top however-many-is-practical would bring up a simply fascinating treasure trove of dubious characters, drug runners, salacious personal dirt, and the occasional paranoiac…
- http://profiles.google.com/joshuabardwell Joshua Bardwell
  
  Great. Now I have to stop changing my SIM card every day, because you’ve created something NEW for me to be paranoid about.
  
  EDIT: Oh geez–that wasn’t the right version of that video. Sorry.
  - Blair Berkelmans
    
    You need to start spoofing your IMEI as well.
- cfuse
  
  But that’s the exact point for some – to hide in that mess of results.
bardfinn

The reasoning behind using “ancient” candy bar phones: the manufacturers didn’t bake back doors into the silicon.
You can likely still buy “counterfeit” phones in Taiwan or HongKong that still use first-gen US cell tech, using processors and radios that were copied ten years ago and are made on processes from when every micrometer counted.
lectroid

Lisbeth Salander would laugh at this guy. If she ever laughed. Which she doesn’t.
http://www.jjsaul.com Jim Saul

I’d have to assume that becoming the go-to tech support for criminals is the very best way to monitor them. Honey traps are pretty much the only effective way to deal with major crime, short of the ubiquitous panopticon we’re turning into.

That’s why all the “hit men” who advertise in the back of Soldier of Fortune end up being FBI informants. Sexual predators end up meeting with Dateline camera crews…

Every “terrorist plot” consists of a sting operation selling explosives to a wanna-be bomber…

Wikileaks informants keep getting caught despite all anonymity… Oh… wait a second…
cubby96

Glad to see some actual reporting from Gawker, rather than the race to the bottom crap they usually do.

I read about the new Gawker initiative yesterday on SuperPunch, maybe this will work out. If they’re doing it at Giz, I might actually go back.
CSBD

So he must be really really really sure no Assistant US Attorneys are going to tack him on to a RICO charge when they bring down an organized crime crew.

I would not want to be in prison and have all of my street cred based on my ability to set up a phone network. I seriously doubt that the Brain Eaters respect changing sim cards.
travtastic

He also wipes the memory in your fax machine daily and soundproofs your telegraph room.
Pedantic Douchebag

The true hack in this story is Adrian “I get most of my story ideas from reddit” Chen.