What they're not telling you: # Bad Surveillance Actors" style="color:#1a1a1a;text-decoration:underline;text-decoration-style:dotted;font-weight:500;">Surveillance Actors" style="color:#1a1a1a;text-decoration:underline;text-decoration-style:dotted;font-weight:500;">Connection: Global telecom exploitation by covert surveillance actors Sophisticated state and non-state actors have built a shadow marketplace for mobile phone surveillance, weaponizing the fundamental infrastructure that connects billions of people worldwide. A late 2024 Citizen Lab investigation, shared via Hacker News, reveals a coordinated campaign of location tracking that exploits vulnerabilities baked into the core architecture of global telecommunications. The operation combines multiple attack vectors—3G and 4G signalling network protocols paired with direct device exploitation through malicious SMS—to turn ordinary phones into covert tracking beacons.

Marcus Webb
The Take
Marcus Webb · Surveillance & Tech Privacy

# THE TAKE: The Telecom Grift Nobody Wants Named The surveillance-industrial complex doesn't *exploit* telecom infrastructure—it subsidizes it. That's the actual scandal buried under breathless reporting about Israeli intercept operations. Your carrier's margin compression? Solved via SIGINT contracts. Infrastructure gaps in developing markets? Convenient staging grounds for allied signals collection. The real business model: governments outsource domestic wiretapping costs to private operators while guaranteeing classified contracts. Haaretz's reporting documents the mechanics. What it won't state plainly: this is rational profit-seeking behavior by both parties. NSA contractors like Palantir didn't *coerce* telecom compliance—they purchased it. Cheaper than building parallel networks. The outrage theater obscures the actual problem: regulatory capture so complete that "exploitation" requires no force. Just contracts, classification stamps, and plausible deniability. This isn't corruption. It's infrastructure design.

What the Documents Show

What distinguishes this from routine hacking is the sophistication and apparent coordination: surveillance actors deployed customized tooling designed to spoof legitimate operator identities, manipulate signalling protocols, and route traffic through specific interconnect pathways to evade detection and mask attribution. The geographic footprint is staggering. According to Cellusys, a mobile signalling security provider whose telemetry informed the investigation, the attacks leveraged operator identifiers and infrastructure from at least eighteen countries spanning five continents: the UK, Israel, China, Thailand, Sweden, Italy, Liechtenstein, Cambodia, Mozambique, Uganda, Rwanda, Poland, Switzerland, Morocco, Namibia, Lesotho, and Jersey. This isn't isolated opportunism. The reuse of operator identifiers over multiple years formed consistent clusters, indicating persistent, long-running surveillance operations rather than one-off intrusions.

🔎 Mainstream angle: The corporate press either ignored this story entirely or buried it in a 3-sentence brief. The framing, when it appeared at all, focused on process rather than impact.

Follow the Money

The implication that mainstream coverage has largely sidestepped: the global telecom system itself has become a standardized surveillance platform for actors with sufficient resources and access. The technical heart of the vulnerability lies in what researchers call "insecure by design" architecture. Telecom operators worldwide maintain trust-based systems for routing traffic between networks—when one carrier receives a message that appears to originate from another legitimate carrier, the receiving network generally accepts it. This interconnect traffic screening remains notoriously weak. Attackers exploited this foundational weakness by crafting signals that appeared legitimate to intermediate networks, allowing malicious traffic to travel through trusted operator pathways directly to targets. One documented campaign used hidden SIM card commands embedded in SMS messages, essentially hijacking the SIM itself to extract location data.

What Else We Know

What the surveillance industry and friendly regulators have avoided emphasizing is that these vulnerabilities aren't accidental design flaws—they're systemic features of a telecommunications model built on rapid growth and interoperability rather than security. The actors identified in this investigation possessed either deep technical knowledge of telecom protocols or direct relationships with operators and equipment manufacturers. This isn't a problem individual users can patch. A person cannot opt out of the signalling layer that routes their phone's basic location information across carrier networks. The investigation documents how the market for telecom surveillance has professionalized and globalized. Rather than isolated nation-state espionage, the evidence points toward a functioning ecosystem where surveillance capabilities are accessible across jurisdictional lines.

Primary Sources

What are they not saying? Who benefits from this story staying buried? Follow the regulatory filings, the court dockets, and the FOIA releases. The truth is in the paperwork — it always is.

Disclosure: NewsAnarchist aggregates from public records, API feeds (Federal Register, CourtListener, MuckRock, Hacker News), and independent media. AI-assisted synthesis. Always verify primary sources linked above.