British e-spy agency hacked network routers to access almost any internet user in Pakistan

Published: June 24, 2015
SHARES
Email
Not only did GCHQ have access to all internet users in Pakistan, they could also re-route selective traffic across international links toward GCHQ's passive collection systems. PHOTO: AFP

Not only did GCHQ have access to all internet users in Pakistan, they could also re-route selective traffic across international links toward GCHQ's passive collection systems. PHOTO: AFP

New documents from former National Security Agency contractor Edward Snowden reveal how the British intelligence agency GCHQ had received legal sanction to “reverse engineer” and hack into softwares commonly used to run web forums, and website administration tools, and even hardware that allowed them unprecedented access to almost every user in Pakistan at least before 2008.

According to The Intercept, the GCHQ had managed to receive warrants, a 2008 memo of which described how it could reverse engineer commercial software under a section of British intelligence law that does not explicitly authorise — and had apparently never been used to authorise — a kind of copyright infringement that the GCHQ believed was necessary to infiltrate systems without detection.

The electronic spy agency, according the newly published documents, targeted anti-virus programmes – which could potentially detect GCHQ’s attempts to exploit computer networks (CNE).

Read: Senate website restored after hacking attack

The other end of the GCHQ’s activity was hacking hardware components such as network routers in order to gain access to networks and or users on such networks, who the GCHQ was targeting.

A 2012 NSA document boasted how hacking routers, made by US technology company Cisco, was “good business for us [GCHQ] and our 5-eyes partners for some time now.”

Such was the GCHQ’s hacking capability against Cisco that its operations against “in-country communications switches (routers) have also benefited from SRE (software reverse engineering.” This enabled the agency to have access to “almost any user of the internet” inside the entire country of Pakistan – but aslo “to re-route selective traffic across international links toward GCHQ’s passive collection systems.”

Cisco did not comment specifically on the warrant document, saying in a written statement only that its products are securely developed and tested, that the company has a “robust” process for handling vulnerabilities, and that “Cisco does not work with any government, including the UK Government, to weaken or compromise our products.”

Rights group outraged over PIE hacking

A digital rights group has voiced serious concerns regarding the latest revelations from NSA documents.

Digital Rights Foundation said that the infiltration of Pakistan’s Internet Exchange (PIE) by the GCHQ seriously undermines the right to privacy of all users of the internet in Pakistan.

Read: Hackers and cyber security

“By targeting a key point in Pakistan’s communications infrastructure, GCHQ have put at risk the security and integrity of a significant portion of Pakistan’s communications infrastructure,” it said in a statement.

“We urge the government of Pakistan to take action to protect the right to privacy of Pakistani citizens, and to condemn the actions of GCHQ.”

While noting that it was unclear whether the Pakistan government knew of these intrusions in PIE, it noted that the government did have an obligation to protect right to privacy of its citizens and to plug vulnerabilities.

“It is of paramount importance that the government does all it can to account for this intrusion and to take meaningful steps to ensure the right to privacy in Pakistan and prevent it from being brazenly interfered with by foreign intelligence agencies.”

Facebook Conversations

Reader Comments (6)

  • Woz Ahmed
    Jun 24, 2015 - 12:49AM

    I find this hard to believe, otherwise terrorist attacks within Pakistan and emanating from dissident elements in our soceity would have been monitored and stopped.

    Many countries avoid Chinese networking equipment for precisely the reason stated above, Cisco need to be frank, or exit non western markets.Recommend

  • Shocked
    Jun 24, 2015 - 1:58AM

    This will take like 5 years for our politicians to understand what privacy is and another 5 years to actually respond to this.Recommend

  • rubbish
    Jun 24, 2015 - 2:55AM

    If this is “news” then you must not read BBC, CNN, Reuters, or any other major news outlet. The reality is that if you use the internet or any other electronic communications your being monitored …. you can thank Taliban, Al Qaeda, ISI and all the other Muslim fanatics for that.Recommend

  • hacked
    Jun 24, 2015 - 3:58AM

    ROFL “We urge the government of Pakistan to
    take action to protect the right to privacy
    of Pakistani citizens, and to condemn
    the actions of GCHQ.”Recommend

  • Prada
    Jun 24, 2015 - 5:30AM

    Not keeping an eye on Pakistan would be a big mistake. All the world’s agencies are parked here. With the Lakhvis, Hafiz.. Maulana Masood Azhar, Dawood Ibrahim and the who’s who of the rogue’s gallery settled here, it would be foolish not to.Recommend

  • Mrs Juicy Gossips
    Jun 24, 2015 - 9:56AM

    @rubbish: That’s why telepathy is the best form of communication, though, until how much longer, is anyone’s guess…Recommend

More in Pakistan