/* */
PDA

View Full Version : Calling app ToTok used as 'spying tool' by UAE: Report

Home | What's New! | Support us | Login | Register

Caplets
12-23-2019, 05:02 PM
السلام عليكم

A chat and voice calling app is being used as a "spying tool" by the United Arab Emirates (UAE), a New York Times (NYT) investigation has revealed.


ToTok, an app released earlier this year, is tracking "every conversation, movement, relationship, appointment, sound and image of those who install it on their phones," NYT investigators and American officials familiar with classified intelligence claimed in the report on Sunday.

The app has been downloaded millions of times through Google and Apple app stores in the Middle East, Europe, North America, Asia and Africa, according to the NYT.

Breej Holdings, the company behind ToTok, is likely to be a front company for cyber intelligence and hacking firm Dark Matter, the Times claimed, and is currently under investigation for cybercrimes by the Federal Bureau of Investigation (FBI).

[...]

The app has been removed from Google store [Screenshot]
Both companies had removed the app from their stores last week after NYT reporters contacted their representatives about the app's link with the UAE state.

The report also linked ToTok to the artificial intelligence firm PAX AI, a data-mining firm based in Abu Dhabi, the UAE capital, with ties to Dark Matter.

A former National Security Agency (NSA) official, who performed a forensic analysis on the app for the Times, said ToTok appeared to be a duplicate of the Chinese app YeeCall.

The spokesmen for the Emirati government, PAX AI and Breej Holding all refused to respond to any of the NYT's queries.

US intelligence agents helped UAE build secret surveillance unit
The UAE has been under scrutiny for conducting surveillance operations on its critics, helped by cybersecurity companies and experts linked to Israel and the United States.

Reports this year revealed how a group of former NSA operatives and other elite US intelligence veterans helped the UAE spy on a wide range of targets through the previously undisclosed programme - from "terrorists" to human rights activists, journalists and dissidents.

https://www.aljazeera.com/news/2019/...054344039.html

Reply
Login/Register to hide ads. Scroll down for more posts
Singularity
12-23-2019, 10:47 PM
Excerpt:

https://www.nytimes.com/2019/12/22/u...k-app-uae.html

It Seemed Like a Popular Chat App. It’s Secretly a Spy Tool.
ToTok, an Emirati messaging app that has been downloaded to millions of phones, is the latest escalation of a digital arms race.


The Aldar Building in Abu Dhabi, United Arab Emirates, where the Emirates’ signals intelligence agency and Pax AI, a data mining firm linked to ToTok, have their offices.

Mark MazzettiNicole PerlrothRonen Bergman
By Mark Mazzetti, Nicole Perlroth and Ronen Bergman
Published Dec. 22, 2019
Updated Dec. 23, 2019, 11:02 a.m. ET
WASHINGTON — It is billed as an easy and secure way to chat by video or text message with friends and family, even in a country that has restricted popular messaging services like WhatsApp and Skype.

But the service, ToTok, is actually a spying tool, according to American officials familiar with a classified intelligence assessment and a New York Times investigation into the app and its developers. It is used by the government of the United Arab Emirates to try to track every conversation, movement, relationship, appointment, sound and image of those who install it on their phones.

ToTok, introduced only months ago, was downloaded millions of times from the Apple and Google app stores by users throughout the Middle East, Europe, Asia, Africa and North America. While the majority of its users are in the Emirates, ToTok surged to become one of the most downloaded social apps in the United States last week, according to app rankings and App Annie, a research firm.

ToTok amounts to the latest escalation in a digital arms race among wealthy authoritarian governments, interviews with current and former American foreign officials and a forensic investigation showed. The governments are pursuing more effective and convenient methods to spy on foreign adversaries, criminal and terrorist networks, journalists and critics — efforts that have ensnared people all over the world in their surveillance nets.
Persian Gulf nations like Saudi Arabia, the Emirates and Qatar previously turned to private firms — including Israeli and American contractors — to hack rivals and, increasingly, their own citizens. The development of ToTok, experts said, showed that the governments can cut out the intermediary to spy directly on their targets, who voluntarily, if unwittingly, hand over their information.

A technical analysis and interviews with computer security experts showed that the firm behind ToTok, Breej Holding, is most likely a front company affiliated with DarkMatter, an Abu Dhabi-based cyberintelligence and hacking firm where Emirati intelligence officials, former National Security Agency employees and former Israeli military intelligence operatives work. DarkMatter is under F.B.I. investigation, according to former employees and law enforcement officials, for possible cybercrimes. The American intelligence assessment and the technical analysis also linked ToTok to Pax AI, an Abu Dhabi-based data mining firm that appears to be tied to DarkMatter.

Pax AI’s headquarters operate from the same Abu Dhabi building as the Emirates’ signals intelligence agency, which until recently was where DarkMatter was based.

The U.A.E. is one of America’s closest allies in the Middle East, seen by the Trump administration as a bulwark against Iran and a close counterterrorism partner. Its ruling family promotes the country as an example of a modern, moderate Arab nation, but it has also been at the forefront of using surveillance technology to crack down on internal dissent — including hacking Western journalists, emptying the banking accounts of critics, and holding human rights activists in prolonged solitary confinement over Facebook posts.

The government blocks specific functions of apps like WhatsApp and Skype, a reality that has made ToTok particularly appealing in the country. Huawei, the Chinese telecom giant, recently promoted ToTok in advertisements.

Spokesmen for the C.I.A. and the Emirati government declined to comment. Calls to a phone number for Breej Holding rang unanswered, and Pax employees did not respond to emails and messages. An F.B.I. spokeswoman said that “while the F.B.I. does not comment on specific apps, we always want to make users aware of the potential risks and vulnerabilities that these mechanisms can pose.”

When The Times initially contacted Apple and Google representatives with questions about ToTok’s connection to the Emirati government, they said they would investigate. On Thursday, Google removed the app from its Play store after determining ToTok violated unspecified policies. Apple removed ToTok from its App Store on Friday and was still researching the app, a spokesman said. ToTok users who already downloaded the app will still be able to use it until they remove it from their phones.

It was unclear when American intelligence services first determined that ToTok was a tool of Emirati intelligence, but one person familiar with the assessment said that American officials have warned some allies about its dangers. It is not clear whether American officials have confronted their counterparts in the Emirati government about the app. One digital security expert in the Middle East, speaking on the condition of anonymity to discuss powerful hacking tools, said that senior Emirati officials told him that ToTok was indeed an app developed to track its users in the Emirates and beyond.

ToTok appears to have been relatively easy to develop, according to a forensic analysis performed for The Times by Patrick Wardle, a former National Security Agency hacker who works as a private security researcher. It appears to be a copy of a Chinese messaging app offering free video calls, YeeCall, slightly customized for English and Arabic audiences.

ToTok is a cleverly designed tool for mass surveillance, according to the technical analysis and interviews, in that it functions much like the myriad other Apple and Android apps that track users’ location and contacts.

On the surface, ToTok tracks users’ location by offering an accurate weather forecast. It hunts for new contacts any time a user opens the app, under the pretense that it is helping connect with their friends, much like how Instagram flags Facebook friends. It has access to users’ microphones, cameras, calendar and other phone data. Even its name is an apparent play on the popular Chinese app TikTok.
Reply
Hey there! Looks like you're enjoying the discussion, but you're not signed up for an account.

When you create an account, you can participate in the discussions and share your thoughts. You also get notifications, here and via email, whenever new posts are made. And you can like posts and make new friends.
Sign Up

Similar Threads

  1. Evolution, Satan's Tool?
    Replies: 30
    Last Post: 09-23-2007, 07:28 PM
  2. “Spying”; a tool of revenge among Canada's Muslims
    Replies: 6
    Last Post: 07-30-2006, 08:36 PM
  3. Qur'an Tool
    Replies: 0
    Last Post: 03-16-2006, 09:48 AM
  4. US Domestic Spying Led to Nothing: Report
    Replies: 0
    Last Post: 01-17-2006, 02:07 PM
  5. I’m the fool, society’s tool
    Replies: 1
    Last Post: 12-27-2005, 09:05 PM
British Wholesales - Certified Wholesale Linen & Towels | Holiday in the Maldives

IslamicBoard

Experience a richer experience on our mobile app!