Shutdown of Sky Global

Last updated

Sky Global was a communications network and service provider founded in 2008 in Vancouver, Canada. It developed the world's largest encrypted messaging network called Sky ECC, [1] operating through three servers of the OVHcloud company in Roubaix, France. [2] A significant share of the system's users were international crime organizations involved in drug trafficking, and the company management was suspected of collusion.

Contents

In a series of police raids against criminal organizations in several countries in early 2021, a part of Sky's infrastructure in Western Europe was dismantled, and US Department of Justice issued an arrest warrant against the company's CEO Jean-François Eap. [3] [4] [5] [6] On March 19, 2021, the company apparently shut down the operations after BlackBerry cut it off from its services. Its website has been seized by the FBI. [7]

Background

Logo of Sky Global, which was active between 2008 and 2021 Sky Global logo.svg
Logo of Sky Global, which was active between 2008 and 2021

Sky Global was founded in 2008 by Jean-François Eap, in Vancouver, Canada.

The company provided Sky ECC, a subscription-based end-to-end encrypted messaging application. [8] Originally developed for the BlackBerry platform, it uses elliptic-curve cryptography (ECC) for encryption. One of its features was "self-destruction" of messages after a user-defined expiration period. [9] The company modified Nokia, Google, Apple and BlackBerry phones. [7] Phones supplied by the company had cameras, microphones and GPS disabled. [3] [4] If a phone was not contactable by the network, the message would be retained for up to 48 hours, then deleted. [10] The phones had a kill switch: if a user entered a "panic" password, the device would delete its contents. [3] The company website offered a US$4 million (€3.2 million) prize to anyone who could break the encryption within 90 days. [3] [4] [10] They support Android, BlackBerry and iPhone apps. [10]

Messages were stored using 512-bit elliptic-curve cryptography and network connections are protected by 2048 bit SSL. [10]

171,000 SKY ECC devices were registered, mainly in Europe, North America, several central and South American countries – mainly Colombia – and the Middle East. A quarter of active users were in Belgium (6,000) and the Netherlands (12,000), and half of those were said to be in use around the port of Antwerp. [11]

Raids

On 9 March 2021 around 16:00 Belgian police carried out about 200 raids, arrested 48 people and seized €1.2 million in cash along with 17 tonnes of cocaine. [12] Those arrested included lawyers and members of the Hells Angels, [3] serving police officers, an employee of the public prosecutor's office, civil servants, tax officials and hospital administrators suspected of providing information to the gangs, as well as people suspected of gang-related violence. [11]

Belgian federal prosecutor Frédéric Van Leeuw  [ nl ] said that "The operation was concentrated on taking down the Sky ECC infrastructure, dismantling the distribution network and seizing the criminal assets of the distributors" and "as many Sky ECC devices as possible" were seized from identified users. [12] The federal prosecutor said about the encryption that "We succeeded. We will send Sky ECC the account number of the federal police". [3]

Belgian and Dutch authorities were alleged to have been able to access the network from 15 February 2021 up to shortly before the raids. [3] [13] About a billion messages were intercepted, about half of which had been decrypted by April 2021—further avenues of inquiry were expected to open as decryption progressed. The Belgian police said the network they had broken into was so trusted by its criminal users that images of torture, execution orders, insider financial and operational information were freely sent. [11]

Raids in the Netherlands were part of Operation Argus, the follow-up to the Lermont operation used to take down EncroChat. [13]

Sky Global disputed claims that their servers and app had been compromised, claiming that they were aware of a fake "Sky ECC" app being available on unsecure phones. [14] [10]

Sky Global said they were "actively investigating and pursuing legal action against the offending individuals for impersonation, false lights, trademark infringement, injurious falsehood, defamation and fraud". [10]

Joris van der Aa, a crime reporter for Gazet van Antwerpen , noted the importance of Operation Sky, saying, "It is a big blow because, in Belgium and a great part of the criminal underworld in the Netherlands, they really trusted Sky as a system. They were so full of confidence, and the police now have so much information on how the underworld was structured, bank accounts, all the corrupt contacts are being arrested. It takes years to build these networks ... In South America they will be thinking, 'Let's not do business with these Dutch and Belgian guys any more'... Everyone is waiting for the storm and asking themselves what the police know." [11]

Indictment and shutdown

On March 12, 2021, the US Department of Justice in San Diego, California, issued an indictment against Sky Global's CEO, Jean-François Eap, and a former distributor, Thomas Herdman. [6] [8] They were charged with a "conspiracy to violate the federal Racketeer Influenced and Corrupt Organizations Act (RICO)", and arrest warrants were issued. The indictment states that the Sky Global's devices are "specifically designed to prevent law enforcement from actively monitoring the communications between members of transnational criminal organizations involved in drug trafficking and money laundering. As part of its services, Sky Global guarantees that messages stored on its devices can and will be remotely deleted by the company if the device is seized by law enforcement or otherwise compromised." [15]

In response, Eap has published a statement branding the allegations as false, saying that he and his company are being "targeted" because they "build tools to protect the fundamental right to privacy." "Sky Global's technology works for the good of all. It was not created to prevent the police from monitoring criminal organizations; it exists to prevent anyone from monitoring and spying on the global community. The indictment against me personally in the US is an example of the police and the government trying to vilify anyone who takes a stance against unwarranted surveillance." [8]

On March 19, 2021, the company apparently shut down the operations after BlackBerry cut it off from its Unified Endpoint Manager services. Its website has been seized by the FBI. [7]

Aftermath

See also

Related Research Articles

Secure communication is when two entities are communicating and do not want a third party to listen in. For this to be the case, the entities need to communicate in a way that is unsusceptible to eavesdropping or interception. Secure communication includes means by which people can share information with varying degrees of certainty that third parties cannot intercept what is said. Other than spoken face-to-face communication with no possible eavesdropper, it is probable that no communication is guaranteed to be secure in this sense, although practical obstacles such as legislation, resources, technical issues, and the sheer volume of communication serve to limit surveillance.

eBuddy Instant messaging software

eBuddy is a privately held Dutch software company that offers instant messaging services. As of 2011, eBuddy reported 100 million downloads. The company's flagship service is XMS, a proprietary cross-platform instant messaging service. After some changes of ownership, the company is now again owned by its original founders, Onno Bakker and Jan-Joost Rueb.

<span class="mw-page-title-main">BBM (software)</span> Instant messaging software

BBM, also known by its full name BlackBerry Messenger, was a consumer-oriented proprietary mobile instant messenger and videotelephony application service originally developed by BlackBerry Limited and later briefly by Indonesian company Emtek under licence. Initially it was included and offered on BlackBerry devices before it was expanded cross-platform. BBM was shut down on 31 May 2019; the company since continues to offer the paid enterprise edition, BBM Enterprise.

<span class="mw-page-title-main">WhatsApp</span> Messaging and VoIP service owned by Meta

WhatsApp is an instant messaging (IM) and voice-over-IP (VoIP) service owned by technology conglomerate Meta. It allows users to send text, voice messages and video messages, make voice and video calls, and share images, documents, user locations, and other content. WhatsApp's client application runs on mobile devices, and can be accessed from computers. The service requires a cellular mobile telephone number to sign up. In January 2018, WhatsApp released a standalone business app called WhatsApp Business which can communicate with the standard WhatsApp client.

<span class="mw-page-title-main">Nimbuzz</span> Proprietary cross-platform instant messaging

Nimbuzz is a proprietary cross-platform instant messaging and social media and mobile payment developed by Kuraakani Online Private Limited, with the origins of its technology dating back to the early 2000s. As of March 2013, Nimbuzz had 150 million users in 200 countries. By April 2014, Nimbuzz was growing by more than 210,000 new registrations per day. In October 2014, now with over 200 million users, New Call acquired 70% of Nimbuzz, valuing the app at $250 million. Under Nimbuzz Board & Management teams leadership, Nimbuzz suite of applications enables users to enjoy end-to-end encrypted free calls, instant messaging, games, file sharing, social networking, mobile payments & movies on their mobile device. Nimbuzz has more than 3 million lines of code. Initially, Nimbuzz offered discounted calling rates to most countries in the world. The platform processed more than a billion call minutes and in excess of 100 billion messages a month.

<span class="mw-page-title-main">Telegram (software)</span> Cross-platform instant messaging service

Telegram Messenger, commonly known as Telegram, is a cloud-based, cross-platform, social media and instant messaging (IM) service. It was originally launched for iOS on 14 August 2013 and Android on 20 October 2013. It allows users to exchange messages, share media and files, and hold private and group voice or video calls as well as public livestreams. It is available for Android, iOS, Windows, macOS, Linux, and web browsers. Telegram offers end-to-end encryption in voice and video calls, and in optional private chats, which Telegram calls Secret Chats.

<span class="mw-page-title-main">Threema</span> Instant messaging smartphone service

Threema is a paid cross-platform encrypted instant messaging app developed by Threema GmbH in Switzerland and launched in 2012. The service operates on a decentralized architecture and offers end-to-end encryption. Users can make voice and video calls, send photos, files, and voice notes, share locations, and make groups. Unlike many other popular secure messaging apps, Threema does not require phone numbers or email addresses for registration, only a one-time purchase that can be paid via an app store or anonymously with Bitcoin or cash.

Joint investigation teams (JIT) are law enforcement and judicial teams set up jointly by EU national investigative agencies to handle cross-border crime. Joint investigation teams coordinate the investigations and prosecutions conducted in parallel by several countries.

EncroChat was a Europe-based communications network and service provider that offered modified smartphones allowing encrypted communication among subscribers. It was used primarily by organized crime members to plan criminal activities. Police infiltrated the network between at least March and June 2020 during a Europe-wide investigation. An unidentified source associated with EncroChat announced on the night of 12–13 June 2020 that the company would cease operations because of the police operation.

John Kinsella was an English criminal from Everton, Liverpool. He was shot dead in May 2018 by killers using encrypted EncroChat handsets to co-ordinate the murder.

The Moroccan mafia is a collection of criminal organisations that are primarily made up of people of Moroccan descent. These organisations are specialized in trafficking large quantities of cocaine and synthetic drugs through Spain, Portugal, the Netherlands and Belgium, from where it is distributed to the rest of the European continent, thus being one of the most dominant participants in the European drug trade.

Phantom Secure was a Canadian company that provided modified secure mobile phones, which were equipped with a remotely operated kill switch. After its shutdown, criminal users fled to alternatives including ANOM, which turned out to be a honeypot run by the FBI.

Naoufal Fassih, is a Dutch criminal of Moroccan origins. He has been at the centre of a longrunning feud between two Dutch crime gangs.

<span class="mw-page-title-main">Operation Trojan Shield</span> International police sting operation, 2018 to 2021

Operation Trojan Shield, part of Operation Ironside, was a collaboration by law enforcement agencies from several countries, running between 2018 and 2021. It was a sting operation that intercepted millions of messages sent through the supposedly secure smartphone-based proprietary messaging app ANOM. The ANOM service was widely used by criminals, but instead of providing secure communication, it was actually a trojan horse covertly distributed by the United States Federal Bureau of Investigation (FBI) and the Australian Federal Police (AFP), enabling them to monitor all communications. Through collaboration with other law enforcement agencies worldwide, the operation resulted in the arrest of over 800 suspects allegedly involved in criminal activity, in 16 countries. Among the arrested people were alleged members of Australian-based Italian mafia, Albanian organised crime, outlaw motorcycle clubs, drug syndicates and other organised crime groups.

Joseph Hakan Ayik, also known as Hakan Reis is a Turkish-Australian drug trafficker. He has an estimated net worth of 1.2 billion dollars, and was described in June 2021 as "Australia's most wanted man".

Ennetcom was a Netherlands based communications network and service provider.

Events in the year 2023 in Belgium.

Exclu was an encrypted messaging app that was shut down after a series of international raids in February 2023.

The Huyton Firm, also known as the Cantril Farm Cartel, is an organized crime group based in the Huyton area of Liverpool, Merseyside, England. Founded in the 1990s, the group has been involved in large-scale drug trafficking, blackmail, and violent crime. The gang rose to prominence by filling a power vacuum left by other notorious Liverpool criminals, such as Curtis Warren and Colin "Smigger" Smith, after their arrests and deaths. Over three decades, the Huyton Firm became one of the most powerful and secretive crime organizations in the UK, with significant international connections.

Matrix was an instant messaging (IM) and communications network that was shut down by cooperation between Dutch and French police in December 2024. It was also known by the names Mactrix, Totalsec, X-Quantum and Q-Safe.

References

  1. Goodwin, Bill (10 March 2021). "Police Crack World's Largest Cryptophone Network as Criminals Swap EncroChat for Sky ECC". Computer Weekly.
  2. "Nederlandse politie nam vanuit Frankrijk Sky ECC-servers mee naar Driebergen" [Dutch police took Sky ECC servers from France to Driebergen] (in Dutch). Crimesite. 7 August 2022.
  3. 1 2 3 4 5 6 7 Lyons, Helen (10 March 2021). "When Sky ECC fell, so too did Belgian crime lords". The Brussels Times . Retrieved 10 March 2021.
  4. 1 2 3 Lyons, Helen (10 March 2021). "Lawyers among those arrested in crackdown organised crime". The Brussels Times. Retrieved 11 March 2021.
  5. Stroobants, Jean-Pierre. "En Belgique, le réseau de communication Sky ECC infiltré par la police". Le Monde (in French). Retrieved 11 March 2021.
  6. 1 2 Quan, Douglas (March 15, 2021). "Arrest warrant issued for Canadian CEO after authorities allege company's messaging app used by international crime groups". Toronto Star .
  7. 1 2 3 Spadafora, Anthony (19 March 2021). "Sky Global apparently shuts down following police arrests". TechRadar . Retrieved 22 March 2021.
  8. 1 2 3 Osborne, Charlie (March 15, 2021). "Sky Global CEO indicted over encrypted chat drug trafficking, calls allegations an 'outrage'". ZDNet.
  9. "Is SnapChat Actually Safer than SkyECC (And Why)?". Social News Daily. March 18, 2016.
  10. 1 2 3 4 5 6 Goodwin, Bill (10 March 2021). "Police crack world's largest cryptophone network as criminals swap EncroChat for Sky ECC". Computer Weekly . Translated by Killian, Edda. Retrieved 11 March 2021.
  11. 1 2 3 4 Boffey, Daniel (11 April 2021). "Colombia's cartels target Europe with cocaine, corruption and torture". The Observer. Retrieved 11 April 2021.
  12. 1 2 Chini, Maïthé (9 March 2021). "17 tonnes of cocaine and €1.2 million seized in major police operation in Belgium". The Brussels Times. Retrieved 10 March 2021.
  13. 1 2 "Dutch cops take out encrypted chat service SkyECC; Thirty arrests". NL Times. 9 March 2021. Retrieved 10 March 2021.
  14. "Encrypted chat service Sky ECC denies being hacked by Dutch cops". NL Times. 10 March 2021. Retrieved 10 March 2021.
  15. "Sky Global Executive and Associate Indicted for Providing Encrypted Communication Devices to Help International Drug Traffickers Avoid Law Enforcement" (Press release). Department of Justice, US Attorney's Office, Southern District of California. March 12, 2021.
  16. "Ukrainassa taistellut ja haavoittunut suomalaismies sai 13 vuotta vankeutta törkeistä huumerikoksista". Finnish public broadcasting company, Yle News. June 19, 2024.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.