<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>eavesdropping &#8211; Noise</title>
	<atom:link href="https://noise.getoto.net/tag/eavesdropping/feed/" rel="self" type="application/rss+xml" />
	<link>https://noise.getoto.net</link>
	<description>The collective thoughts of the interwebz</description>
	<lastBuildDate>Thu, 16 Oct 2025 17:37:06 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.8.2</generator>
	<item>
		<title>A Surprising Amount of Satellite Traffic Is Unencrypted</title>
		<link>https://noise.getoto.net/2025/10/17/a-surprising-amount-of-satellite-traffic-is-unencrypted/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Fri, 17 Oct 2025 11:03:53 +0000</pubDate>
				<category><![CDATA[academic papers]]></category>
		<category><![CDATA[cell phones]]></category>
		<category><![CDATA[Data protection]]></category>
		<category><![CDATA[eavesdropping]]></category>
		<category><![CDATA[encryption]]></category>
		<category><![CDATA[infrastructure]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=71022</guid>

					<description><![CDATA[<p>Here’s the <a href="https://satcom.sysnet.ucsd.edu/">summary</a>:</p>
<blockquote><p>We pointed a commercial-off-the-shelf satellite dish at the sky and carried out the most comprehensive public study to date of geostationary satellite communication. A shockingly large amount of sensitive traffic is being broadcast unencrypted, including critical infrastructure, internal corporate and government communications, private citizens’ voice calls and SMS, and consumer Internet traffic from in-flight wifi and mobile networks. This data can be passively observed by anyone with a few hundred dollars of consumer-grade hardware. There are thousands of geostationary satellite transponders globally, and data from a single transponder may be visible from an area as large as 40% of the surface of the earth...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Eavesdropping on Phone Conversations Through Vibrations</title>
		<link>https://noise.getoto.net/2025/08/18/eavesdropping-on-phone-conversations-through-vibrations/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Mon, 18 Aug 2025 11:02:55 +0000</pubDate>
				<category><![CDATA[academic papers]]></category>
		<category><![CDATA[AI]]></category>
		<category><![CDATA[cell phones]]></category>
		<category><![CDATA[eavesdropping]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=70596</guid>

					<description><![CDATA[Researchers have managed to eavesdrop on cell phone voice conversations by using radar to detect vibrations. It&#8217;s more a proof of concept than anything else. The radar detector is only ten feet away, the setup is stylized, and accuracy is poor. B...]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Arguing Against CALEA</title>
		<link>https://noise.getoto.net/2025/04/08/arguing-against-calea/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Tue, 08 Apr 2025 11:08:13 +0000</pubDate>
				<category><![CDATA[CALEA]]></category>
		<category><![CDATA[cybersecurity]]></category>
		<category><![CDATA[eavesdropping]]></category>
		<category><![CDATA[national security policy]]></category>
		<category><![CDATA[Telecom]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=70097</guid>

					<description><![CDATA[<p>At a Congressional <a href="https://oversight.house.gov/hearing/salt-typhoon-securing-americas-telecommunications-from-state-sponsored-cyber-attacks/">hearing</a> earlier this week, Matt Blaze <a href="https://oversight.house.gov/wp-content/uploads/2025/04/Blaze-Written-Testimony.pdf">made the point</a> that CALEA, the 1994 law that forces telecoms to make phone calls wiretappable, is outdated in today’s threat environment and should be rethought:</p>
<blockquote><p>In other words, while the legally-mandated CALEA capability requirements have changed little over the last three decades, the infrastructure that must implement and protect it has changed radically. This has greatly expanded the “attack surface” that must be defended to prevent unauthorized wiretaps, especially at scale. The job of the illegal eavesdropper has gotten significantly easier, with many more options and opportunities for them to exploit. Compromising our telecommunications infrastructure is now little different from performing any other kind of computer intrusion or data breach, a well-known and endemic cybersecurity problem. To put it bluntly, something like Salt Typhoon was inevitable, and will likely happen again unless significant changes are made...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Backdoor in TETRA Police Radios</title>
		<link>https://noise.getoto.net/2023/07/26/backdoor-in-tetra-police-radios/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Wed, 26 Jul 2023 11:05:15 +0000</pubDate>
				<category><![CDATA[backdoors]]></category>
		<category><![CDATA[Cryptography]]></category>
		<category><![CDATA[eavesdropping]]></category>
		<category><![CDATA[encryption]]></category>
		<category><![CDATA[infrastructure]]></category>
		<category><![CDATA[law enforcement]]></category>
		<category><![CDATA[police]]></category>
		<category><![CDATA[radio]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=67596</guid>

					<description><![CDATA[<p>Seems that there is a <a href="https://www.vice.com/en/article/4a3n3j/backdoor-in-police-radios-tetra-burst">deliberate backdoor</a> in the twenty-year-old TErrestrial Trunked RAdio (TETRA) standard used by police forces around the world.</p>
<blockquote><p>The European Telecommunications Standards Institute (ETSI), an organization that standardizes technologies across the industry, first created TETRA in 1995. Since then, TETRA has been used in products, including radios, sold by Motorola, Airbus, and more. Crucially, TETRA is not open-source. Instead, it relies on what the researchers describe in their presentation slides as “secret, proprietary cryptography,” meaning it is typically difficult for outside experts to verify how secure the standard really is...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Recovering Smartphone Voice from the Accelerometer</title>
		<link>https://noise.getoto.net/2022/12/30/recovering-smartphone-voice-from-the-accelerometer/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Fri, 30 Dec 2022 12:18:42 +0000</pubDate>
				<category><![CDATA[academic papers]]></category>
		<category><![CDATA[eavesdropping]]></category>
		<category><![CDATA[side-channel attacks]]></category>
		<category><![CDATA[smartphones]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=66423</guid>

					<description><![CDATA[<p>Yet another smartphone side-channel attack: “<a href="https://arxiv.org/pdf/2212.12151.pdf">EarSpy: Spying Caller Speech and Identity through Tiny Vibrations of Smartphone Ear Speakers</a>“:</p>
<blockquote><p><strong>Abstract:</strong> Eavesdropping from the user’s smartphone is a well-known threat to the user’s safety and privacy. Existing studies show that loudspeaker reverberation can inject speech into motion sensor readings, leading to speech eavesdropping. While more devastating attacks on ear speakers, which produce much smaller scale vibrations, were believed impossible to eavesdrop with zero-permission motion sensors. In this work, we revisit this important line of reach. We explore recent trends in smartphone manufacturers that include extra/powerful speakers in place of small ear speakers, and demonstrate the feasibility of using motion sensors to capture such tiny speech vibrations. We investigate the impacts of these new ear speakers on built-in motion sensors and examine the potential to elicit private speech information from the minute vibrations. Our designed system ...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Ukraine Intercepting Russian Soldiers’ Cell Phone Calls</title>
		<link>https://noise.getoto.net/2022/12/21/ukraine-intercepting-russian-soldiers-cell-phone-calls/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Wed, 21 Dec 2022 12:09:29 +0000</pubDate>
				<category><![CDATA[cell phones]]></category>
		<category><![CDATA[eavesdropping]]></category>
		<category><![CDATA[iPhone]]></category>
		<category><![CDATA[russia]]></category>
		<category><![CDATA[smartphones]]></category>
		<category><![CDATA[Ukraine]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=66398</guid>

					<description><![CDATA[<p>They’re using commercial phones, which go through the <a href="https://www.theguardian.com/world/2022/dec/20/we-were-allowed-to-be-slaughtered-calls-by-russian-forces-intercepted">Ukrainian telecom network</a>:</p>
<blockquote><p>“You still have a lot of soldiers bringing cellphones to the frontline who want to talk to their families and they are either being intercepted as they go through a Ukrainian telecommunications provider or intercepted over the air,” said Alperovitch. “That doesn’t pose too much difficulty for the Ukrainian security services.”</p>
<p>[…]</p>
<p>“Security has always been a mess, both in the army and among defence officials,” the source said. “For example, in 2013 they tried to get all the staff at the ministry of defence to replace our iPhones with Russian-made Yoto smartphones...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Lightning Cable with Embedded Eavesdropping</title>
		<link>https://noise.getoto.net/2021/09/07/lightning-cable-with-embedded-eavesdropping/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Tue, 07 Sep 2021 11:14:08 +0000</pubDate>
				<category><![CDATA[Apple]]></category>
		<category><![CDATA[eavesdropping]]></category>
		<category><![CDATA[hacking]]></category>
		<category><![CDATA[key logging]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[wi-fi]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=63646</guid>

					<description><![CDATA[Normal-looking cables (USB-C, Lightning, and so on) that exfiltrate data over a wireless network.
I blogged about a previous prototype here.
]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Eavesdropping on Phone Taps from Voice Assistants</title>
		<link>https://noise.getoto.net/2020/12/22/eavesdropping-on-phone-taps-from-voice-assistants/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Tue, 22 Dec 2020 16:21:56 +0000</pubDate>
				<category><![CDATA[academic papers]]></category>
		<category><![CDATA[eavesdropping]]></category>
		<category><![CDATA[Privacy]]></category>
		<category><![CDATA[side-channel attacks]]></category>
		<category><![CDATA[surveillance]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=60640</guid>

					<description><![CDATA[<p>The microphones on voice assistants are very sensitive, and can snoop on <a href="https://www.lightbluetouchpaper.org/2020/12/02/pushing-the-limits-acoustic-side-channels/">all sorts of data</a>:</p>
<blockquote><p>In <a href="https://arxiv.org/abs/2012.00687">Hey Alexa what did I just type?</a> we show that when sitting up to half a meter away, a voice assistant can still hear the taps you make on your phone, even in presence of noise. Modern voice assistants have two to seven microphones, so they can do directional localisation, just as human ears do, but with greater sensitivity. We assess the risk and show that a lot more work is needed to understand the privacy implications of the always-on microphones that are increasingly infesting our work spaces and our homes...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
	</channel>
</rss>

<!--
Performance optimized by W3 Total Cache. Learn more: https://www.boldgrid.com/w3-total-cache/

Object Caching 51/143 objects using Memcached
Page Caching using Disk: Enhanced 
Lazy Loading (feed)
Database Caching using Memcached

Served from: noise.getoto.net @ 2025-12-07 17:02:15 by W3 Total Cache
-->