As with most good stories, revelations of the NSA spy program will almost certainly keep getting worse before anything gets better.
Yesterday we reported on claims—based on leaked NSA documents—that the spy agency was rerouting laptops ordered online to install spyware and malicious hardware on the machines.
Laptops are just one device the agency is targeting, however.
Der Spiegel reported on the NSA’s access to smartphones and, in particular, the iPhone back in September. Today, these reports expand to the NSA’s apparent ability to access just about all your iPhone data through a program called DROPOUTJEEP, according to security researcher Jacob Applebaum.
During a speech at the 30th Chaos Communication Congress in Germany, Applebaum revealed some startling information about the program.
From the NSA document in question:
“DROPOUT JEEP is a software implant for the Apple iPhone that utilizes modular mission applications to provide specific SIGINT functionality. This functionality includes the ability to remotely push/pull files from the device. SMS retrieval, contact list retrieval, voicemail, geolocation, hot mic, camera capture, cell tower location, etc. Command, control and data exfiltration can occur over SMS messaging or a GPRS data connection. All communications with the implant will be covert and encrypted.”
The NSA apparently claims a 100% success rate in installing the malware on iPhones.