FICORA investigates impacts of Gemalto's suspected data break-in on Finns' communications
According to an article published by news website The Intercept on 19 March, American and British intelligence authorities hacked in 2010 into the systems of information security company Gemalto and its cooperation partners. The article states that encryption keys used for encrypting the communications between mobile terminal devices and base stations were stolen in conjunction with the hacking.
Stolen encryption keys enable the decryption of hijacked mobile calls to plain language. Thereby, mobile calls can be tapped. This requires, however, that the hijacker has access to the coverage area of the phone and base station in order to store the radio signal. Thus, the threat that is targeted against a single mobile phone user and that endangers confidential communications remains small. An encryption key is used to individualise a subscription's SIM card which means that a stolen key can also be used for forging SIM cards.
Gemalto manufacturers chips also for identity cards, payment cards, passports, and mobile certificates of SIM cards. However, the encryption methods used in these is different from the methods used in SIM cards where the encryption is based on a symmetrical, shared key. FICORA aims at investigating whether the recently reported, suspected data break-in has any impact on the information security of these products.
The suspected encryption key theft does not have direct impacts on the security of Finnish consumers' communications. There is no reason to change the SIM card, unless the telecommunications operator advises to do so.
Antti Kiuru, Head of Coordination Centre at the National Cyber Security Centre, tel. +358 295 390 559