Feeds

Italian crooks use Skype to frustrate wiretaps

Bitter P2P pill

Next gen security for virtualised datacentres

Italian crooks are making greater use of internet telephony because of the widespread use of wiretaps in the country.

Customs and tax police in Milan are complaining that drug dealers and other organised criminals are using tools such as Skype in an effort to frustrate investigations, the BBC reports. Investigators cite the example of a suspect drug dealer advising his accomplice to contact him by Skype before forwarding details about a deal to buy 2kg of cocaine.

A recent survey from German think-tank the Max Planck Society found that Italy led the way in electronic surveillance with 76 intercepts per 100,000 head of population. Telecommunication interception is a preferred technique in anything from counter-terrorism and mafia investigation to political corruption probes, and even investigations into match fixing in football.

This may soon change - draft laws would restrict the use of wiretaps to serious crimes, partly because leaked wiretaps featuring politicians are finding their way into the hands of journalists.

In the meantime, Italian crooks are becoming more aware of the reliance of police on communications interception and are using Skype as a counter-surveillance technique.

Intelligence agencies and police across Europe have complained that VoIP technologies are making their life more difficult.

German police have sought legal permission to plant spyware on the PCs of terror suspect. In a parallel move, leaked documents that emerged last year detailed plans by German firm Digitask to develop technology capable of intercepting intercept Skype VoIP communications and SSL transmissions, alongside costing and licensing proposals.

At the Counter Terror Expo in London last week, an industry source told El Reg that the US's National Security Agency is prepared to pay "billions" for technology that can reliably eavesdrop on Skype IM and voice traffic.

P2P VoIP technologies pose a particular technical challenge because it's not possible to simply tap communications at a telephone exchange. In addition, Skype use a proprietary encryption scheme, which may (or may not) further complicate matters.

In the world of smoke and mirrors that is signal intelligence, it could be that police do have a way of tapping into VoIP calls and simply want crooks to use it in the mistaken belief that eavesdropping is impossible. The history of encryption teaches us that how encryption technologies are used is more important that how secure it might be in theory. ®

The essential guide to IT transformation

More from The Register

next story
Goog says patch⁵⁰ your Chrome
64-bit browser loads cat vids FIFTEEN PERCENT faster!
e-Borders fiasco: Brits stung for £224m after US IT giant sues UK govt
Defeat to Raytheon branded 'catastrophic result'
Chinese hackers spied on investigators of Flight MH370 - report
Classified data on flight's disappearance pinched
NIST to sysadmins: clean up your SSH mess
Too many keys, too badly managed
Attack flogged through shiny-clicky social media buttons
66,000 users popped by malicious Flash fudging add-on
Think crypto hides you from spooks on Facebook? THINK AGAIN
Traffic fingerprints reveal all, say boffins
prev story

Whitepapers

A new approach to endpoint data protection
What is the best way to ensure comprehensive visibility, management, and control of information on both company-owned and employee-owned devices?
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Maximize storage efficiency across the enterprise
The HP StoreOnce backup solution offers highly flexible, centrally managed, and highly efficient data protection for any enterprise.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Next gen security for virtualised datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.