Saint John drug network tricked by 'Trojan horse': cyber expert

Police used a classic Trojan horse scenario to crack an illegal drug network in Saint John, says David Shipley, a cybersecurity expert at the University of New Brunswick in Fredericton.

Group accepted Blackberry phones that had been hacked by police

Alleged crime group members accepted Blackberry phones from a police agent.

Police used a classic Trojan horse scenario to crack an illegal drug network in Saint John, says David Shipley, a cybersecurity expert at the University of New Brunswick in Fredericton.

In this case, the Trojan horse was actually a collection of encrypted Blackberry cellphones supplied by police to members of the alleged crime group.

Court documents released this week include a statement of facts agreed to by the Crown and by defence lawyer Rod MacDonald.

MacDonald represents Robert Patrick White, one of 28 people arrested in the fall of 2014 in an operation dubbed J-Tornado by police in New Brunswick, Nova Scotia and Quebec. 

Large quantities of heroin and cocaine were seized.

White initially pleaded not guilty, but later changed his plea and was sentenced this week to seven years in prison. 
David Shipley says the way police used technology as part of their sting operation was clever. (CBC)
They thought they were getting James Bond-like high-tech, spy secrecy.- David Shipley, cybersecurity expert

Among the agreed upon facts in the sentencing document are that a police agent gained the confidence of the alleged leader of the crime group, who is identified only by the initials S.W.

The document says the agent supplied S.W. with BlackBerry phones, which were in turn distributed to associates in the criminal organization.

The cellphones had been set up by police to send PGP-encrypted messages, which could be intercepted.

PGP stands for "pretty good privacy," says Shipley and it's actually an encryption software that, under normal circumstances, would be nearly impossible to break into without having the correct pass–phrases.

Shipley says the dealers likely thought the BlackBerry devices were extremely safe.

"They thought they were getting James Bond–like, high-tech spy secrecy," said Shipley.

"What they got was a hotline right into the police force.
Police seized large quantities of heroin and cocaine as part of the J-Tornado investigation (CBC)

"If you can have physical access to the device and can tamper with it in such a way, or you know the pre–stored pass keys and phrases, you can do what's known as a 'man in the middle' attack," said Shipley. 

Each of the 13 devices had email addresses set up with the server cryptlock.net and if police were operating the server, they had the so-called keys to the kingdom, he said.

Shipley says the cryptlock.net domain name is currently in the hands of a reseller and the information on that owner is protected by a company registered in Panama.

While the technology sounds complicated, the job was made easy by the police agent working inside the group.

"The technology isn't the clever part here, it's the way they applied the technology and used it as part of their policing techniques," said Shipley.

Six weeks have been set aside, starting on Monday, for the Saint John trial of three men alleged to be key figures in the J-Tornado investigation.

Comments

To encourage thoughtful and respectful conversations, first and last names will appear with each submission to CBC/Radio-Canada's online communities (except in children and youth-oriented communities). Pseudonyms will no longer be permitted.

By submitting a comment, you accept that CBC has the right to reproduce and publish that comment in whole or in part, in any manner CBC chooses. Please note that CBC does not endorse the opinions expressed in comments. Comments on this story are moderated according to our Submission Guidelines. Comments are welcome while open. We reserve the right to close comments at any time.