WhatsApp banned by MOD

Whilst my post was a sarcastic response to yours - If you're going to advocate the use of hotspots in the field be prepared for incoming. If working with the Ukrainians on the CEMA lessons from their fun and games has taught us anything it's our own vulnerabilities in that sphere - why add to them.
I think HOTSPOT is on the EP, or at least on its way.
 

Caecilius

LE
Kit Reviewer
Book Reviewer
Yes, a software update has been issued for this problem. In no way does that mean other yet to be discovered hackable issues aren’t awaiting the foolish, who choose to use a messaging system for stuff that they would be embarrassed about if made public
And this problem doesn't apply to MODNET because...?
 
I have no idea if it applies to MODNet but if you use WhatsApp for sensitive stuff and get caught, you are screwed. If you use MODNet and it is compromised, it’s the MOD’s problem as you have followed their rules.
Not really. The catch all is that you’ve been told not to send OS over the Internet, which is very easy to do.
 
Why do we need to use applications such as WhatsApp when we have such communications and IT systems such as ModNet and Jive? which are both in no way a massive bag of arrse of course!
 
Not really. The catch all is that you’ve been told not to send OS over the Internet, which is very easy to do.
And the MoD making OS into some mythical level of classification. OS is O, with a descriptor. Not a different level of classification, and certainly not equivalent to CONF (as it has crept to)...
 

A2_Matelot

LE
Book Reviewer
And this problem doesn't apply to MODNET because...?
Not so straightforward. With Gc/IUS integrating with MoDNET there is potential (i suspect) if the VoIP service on MoDNET, which is Skype, isn't patched for malformed session information which I think is the premise of the attack on WA, but it may well be just a vulnerability in the implementation that WA has developed and not generic (most likely).

I can't recall the architecture but you're not going through the EGS from the PSTN/mobile network but a new gateway and the connections are monitored. It may be something that's malformed would be binned.

All the poorly named MoDNET phones, aren't, and they're surrounded by an MDM with it's own secure wrappers.
 

A2_Matelot

LE
Book Reviewer
Or be sensible and disappear into the noise floor.
Doesn't work. If someone wants to find your device they can and will. Most of our peoples cyber (I hate that word) footprint is awful.

Some communities may have adopted that principle. They're doing that for speed and rarely repeat in the same place. Not so good for Maj Damage from MoD who works on Head Office and socialises in London.
 

A2_Matelot

LE
Book Reviewer
I think HOTSPOT is on the EP, or at least on its way.
For a number of reasons I'm very aware but it's not intended to allow Joe Crow to whip out his private phone in the midst of Estonia and jump onto FB. It's for more tactical applications and as I've alluded to, experience from Syria/Ukraine should make us very wary of this.
 
Doesn't work. If someone wants to find your device they can and will. Most of our peoples cyber (I hate that word) footprint is awful.

Some communities may have adopted that principle. They're doing that for speed and rarely repeat in the same place. Not so good for Maj Damage from MoD who works on Head Office and socialises in London.
The outright ban doesn’t work, disappearing into the noise floor doesn’t work, all the annual bollocks in MODNET doesn’t work, what does? Possibly only constant monitoring, but that is too intrusive.
 

A2_Matelot

LE
Book Reviewer
The outright ban doesn’t work.
it could on MoD devices, that's easy. The hard part is educating and persuading people how to be more safe online.

It's funny in a way, I noticed some really clever PayPal phishing emails and tried to make my kids watch out. Neither has used their email accounts for around 2 years and unconcerned.
 
it could on MoD devices, that's easy. The hard part is educating and persuading people how to be more safe online.

It's funny in a way, I noticed some really clever PayPal phishing emails and tried to make my kids watch out. Neither has used their email accounts for around 2 years and unconcerned.
Bluntly, its those in their late 40s and upwards who take pride in being digitally illiterate that I worry about for that kind of stuff...
 
it could on MoD devices, that's easy. The hard part is educating and persuading people how to be more safe online.

It's funny in a way, I noticed some really clever PayPal phishing emails and tried to make my kids watch out. Neither has used their email accounts for around 2 years and unconcerned.
That sounds good, but when you can trust a pilot with an aircraft and all it’s associated technology but can’t persuade to not look at porn on their work laptop you are on a hiding to nowhere.
 

Caecilius

LE
Kit Reviewer
Book Reviewer
Not so straightforward. With Gc/IUS integrating with MoDNET there is potential (i suspect) if the VoIP service on MoDNET, which is Skype, isn't patched for malformed session information which I think is the premise of the attack on WA, but it may well be just a vulnerability in the implementation that WA has developed and not generic (most likely).

I can't recall the architecture but you're not going through the EGS from the PSTN/mobile network but a new gateway and the connections are monitored. It may be something that's malformed would be binned.

All the poorly named MoDNET phones, aren't, and they're surrounded by an MDM with it's own secure wrappers.
I was thinking less about the specific hack, and more about the concept of zero day exploits in general.
 
it could on MoD devices, that's easy. The hard part is educating and persuading people how to be more safe online.
I suspect the MOD is trying to cut down on the number of whatapp screen shots of military buffoonery that keeps ending up on FYB.
 
Thread starter Similar threads Forum Replies Date
Faded Mobile Phones 2
greenbaggyskin Mobile Phones 13
fltpilot Mobile Phones 10

Similar threads


New Posts

Latest Threads

Top