The Guardian newspaper says the UK eavesdropping agency Government Communications Headquarters (GCHQ) repeatedly hacked into foreign diplomats’ phones and e-mails when Britain hosted international conferences, even going so far as to set up a bugged Internet cafe in an effort to get an edge in high-stakes negotiations.
The report — the latest in a series of revelations which have ignited a worldwide debate over the scope of Western intelligence gathering — came just hours before Britain was due to open the G8 summit yesterday, a meeting of world’s leading economies that include Russia, in Northern Ireland. The allegation that the UK has previously used its position as host to spy on its allies and other attendees could make for awkward conversation as the delegates arrive for talks.
“The diplomatic fallout from this could be considerable,” said British academic Richard Aldrich, whose book GCHQ charts the agency’s history.
Speaking at the G8 summit, British Prime Minister David Cameron declined to address the issue.
“We never comment on security or intelligence issues and I am not about to start now,” he said. “I don’t make comments on security or intelligence issues. That would be breaking something that no government has previously done.”
GCHQ also declined to comment on the report.
The Guardian cites more than half a dozen internal government documents provided by former US National Security Agency (NSA) contractor Edward Snowden as the basis for its reporting on GCHQ’s intelligence operations, which it says involved, among other things, hacking into the South African foreign ministry’s computer network and targeting the Turkish delegation at the 2009 G20 summit in London.
The source material — whose authenticity could not immediately be determined — appears to be a mixed bag. The Guardian describes one as “a PowerPoint slide,” another as “a briefing paper” and others simply as “documents.”
Some of the leaked material was posted to the Guardian’s Web site with heavy redactions. A spokesman for the newspaper said that the redactions were made at the newspaper’s initiative, but declined to elaborate.
It was not completely clear how Snowden would have had access to the British intelligence documents, although in one article the Guardian mentions that source material was drawn from a top-secret internal network shared by GCHQ and the NSA.
Aldrich said he would not be surprised if the GCHQ material came from a shared network accessed by Snowden, adding that the NSA and GCHQ collaborated so closely that in some areas the two agencies effectively operated as one.
One document cited by the Guardian — but not posted to its Web site — appeared to boast of GCHQ’s tapping into smartphones. The Guardian quoted the document as saying that “capabilities against BlackBerry provided advance copies of G20 briefings to ministers.”
“Diplomatic targets from all nations have an MO [habit] of using smartphones,” it said, adding that spies “exploited this use at the G20 meetings last year.”
Another document cited — but also not posted — concerned GCHQ’s use of a customized Internet cafe, which was “able to extract key logging info, providing creds for delegates, meaning we have sustained intelligence options against them even after conference has finished.”
No further details were given, but the reference to key logging suggested that computers at the cafe would have been pre-installed with malicious software designed to spy on key strokes, steal passwords and eavesdrop on e-mails.
Aldrich said that revelation stuck out as particularly ingenious.
“It’s a bit Mission Impossible,”’ he said.