mstdn.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A general-purpose Mastodon server with a 500 character limit. All languages are welcome.

Administered by:

Server stats:

13K
active users

#imsicatchers

0 posts0 participants0 posts today
Replied in thread

@micahflee lemme guess: @eff just took a multi-network eSIM and multi-network WWAN modules to scan for "#deauth" / "#EvilTwin" attacks?

Cuz I remember @heiseonline or @golem actually suggest this as a method to detect #IMSIcatchers without requiring an expensive #SDR:

  • By precisely looking when which WWAN stick (for #3G back then) got disconnected and warning if they all got disconnected & reconnected at the same time...

AFAIK #GSMK uses that same technique for their #Baseband-#Firewall to automatically detect #Interception attempts and deploy countermeasures!

"At EFF we spend a lot of time thinking about Street Level Surveillance technologies—the technologies used by police and other authorities to spy on you while you are going about your everyday life—such as automated license plate readers, facial recognition, surveillance camera networks, and cell-site simulators (CSS). Rayhunter is a new open source tool we’ve created that runs off an affordable mobile hotspot that we hope empowers everyone, regardless of technical skill, to help search out CSS around the world.

CSS (also known as Stingrays or IMSI catchers) are devices that masquerade as legitimate cell-phone towers, tricking phones within a certain radius into connecting to the device rather than a tower."

eff.org/deeplinks/2025/03/meet

Electronic Frontier Foundation · Meet Rayhunter: A New Open Source Tool from EFF to Detect Cellular SpyingRayhunter is a new open source tool we’ve created that runs off an affordable mobile hotspot that we hope empowers everyone, regardless of technical skill, to help search out cell-site simulators (CSS) around the world.

THIS is why certain things like #Govware #IMSIcatchers and other shite need to be flat-out #illegal for use by #LEAs, cuz a #judge signing a #warrant is just a #process and not something that is actually #enforceable against the #LEA in question!

  • Cuz they (obviously!) can and will circumvent #judges or any #oversight if they can get away with it, and sadly they do.

Personally, I think #GSM and all it's successor versions as well as existing competitors are unfixably broken and should not be trusted AT ALL and everyone who demands #PII like #PhoneNumbers or uses #SMS for #2FA is at least complicit in advertising the #lie that #MobilePhones and their communication Systems are safe and secure.