The Snoop Snoop Song Its in his CHIS

By 21 December 2017REVISIONS IN PROGRESS
the-snoop-snoop-song-its-in-his-chis-joseph-de-saram-rhodium-linkedin

The Snoop Snoop Song - It's in his CHIS

Published on 21st December 2017
Joseph-S-R-de-Saram

Joseph S R de Saram (JSRDS)

Information Security Architect / Intelligence Analyst / Computer Scientist / Human Rights Activist / COMSEC / SIGINT / TSCM
371

Enter more text here

“Do they jam him, I wanna know. How can I tell if they’re following Joe?” – Cher

IMPORTANT MORAL OF THE STORY:-

* * “Never Send Sheep to Kill a Wolf” – Joseph S R de Saram * *

[THIS IS PART ONE OF A SERIES OF ARTICLES IN RELATION TO “STREET THEATRE” AND COMPLETELY BALLSED UP SURVEILLANCE :)]

I have referred to Covert Human Intelligence Sources (“CHIS”) previously, in this article:-

Covert Human Intelligence Sources - CHIS

Still writing this - check back please Covert Human Intelligence Sources ("CHIS") The utilisation of CHIS against me in 2015 onwards was a nothing ...

so I refer to this one as well:-

COVERT HUMAN INTELLIGENCE SOURCES

What is an agent? Covert Human Intelligence Sources (CHIS), or “agents”, are people who can provide intelligence that assists our investigations. Agents are not MI5 employees – we refer to our staff as “officers”...

Pure Forensics v Behaviour Analysis

I always prefer the Pure Forensic option, and this method tends to produce IRREFUTABLE FORENSIC EVIDENCE which is difficult to challenge.

However interaction and Behaviour Analysis is fun and I always confront the clowns and take them in a direction that they did no want to go in. Sri Lankans are quite timid actually and are a complaisant culture.

Targetting poorly trained CHIS is the easiest way to utterly destroy an intelligence and/or law enforcement operation. Their fancy equipment does not make up for their lack of fancy training 🙂

 

Foreign Connection

So if foreigners turn up offering visas and letters of recommendations then will do absolutely anything…

[insert evidence re bribes / extra-territorial jurisdiction]

The following video confirms AFP-related CHIS activity in Sydney Australia – ONLY A REALLY KEEN EYE CAN SPOT THE AGENT:-

and Singapore – (though the presenter incorrectly states Sao Paulo):-

[Actually people accuse me of money laundering all the time – just go to Mustafa and have fun investigating the people there :)]

The Relevance of Horseshit in the AFP Sydney video to ShitLankansTM

Sri Lankans have little understanding of anything covert because of the gossipy culture – that’s the first problem. The second problem is that they are directionless with no loyalty. And the third problem is that the vast majority of people are ignorant with low literacy rate.

Accordingly if ‘boobs on the ground’ are required, then expect such an operation to fail miserably, especially against me because I have far better experience and training. In fact if parties had asked Pamela Anderson turn up, they would have had more success against me using that method 🙂

City of London Police Data Exfiltration

Text

Also the AFP have historically trained Sri Lankans as I understand so that is how poor results were incorporated from the outset:-

Australian Police Involved in Destruction of Rhodium Cellular Interception Evidence

Text

ALSO I CAN MEMORISE EVERYTHING IN REAL-TIME - MEANING BIKES, CARS, ACTORS, CLOTHING, DRIVING STYLES, GAIT ETC ETC

20150923 The Mobitel Experience / Truman Show

The thing that was most noticeable about 23 September 2015 was that it was entirely staged AS A SHOW.

The map shows the junction of Hunupitiya Lake Rd and W A D Ramanayake Mawatha, and where my trishaw was located. Here I could only see one direction at any given time, which would allow parties to think they had far lower risk to annoy me in this location.

However at the same time I chose a location in which the road was one way, meaning that if vehicles went against the correct flow of traffic then they would either be government in nature, or parties on official business.

Either way, capturing vehicle registration plates from this location would be an excellent exercise, particularly if they circled me more than once or they went in the wrong direction down a one-way street 🙂

CLASSIC STREET THEATRE IN FACT

It was obvious to me that my actions were being videoed so I also exaggerated my responses to give them what they were expecting.

I wanted to get some fresh intel on the fools. So I asked Chamaree Silva to accompany me to the Mobitel Showroom to get some SIM cards. Cellular interception and SIM cards go hand in hand, so I knew I would get excellent coverage of the event 🙂

Additionally I also knew that whilst Chamaree was at Mobitel, I could not leave, so my location was guaranteed for whatever length of time was required for actors to make a nuisance of themselves.

 

THEY WOULD UNAVOIDABLY IMPLICATE THEMSELVES AS THE VEHICLES HAD TO TURN LEFT 🙂

Video Evidence – Marching Guy Red Zip

Please review the following video. I only had 10 seconds or so in a live operation to analyse the intel and it is much easier on video now. This is real time and note the quirky aspects:-

At the start of this video his arms are swinging to the horizontal until he corrects it – people in the military cannot help doing this, particular when they are starting to march or even walk:)

He appears to be in one of the forces – good-looking so I would say an officer – men in Sri Lanka are better looking than the women. His posture and physique are more military in nature than law enforcement. Excellent head position and flat abs

This is the version at 5% speed…

The straight-edge reminded me of Body-Worn IMSI catchers. However they do stick out a lot more :)At the start of the video he nods to acknowledge an instruction, and then does so again later. At the second nod he ‘turns on the march’ and goes in a different direction.He maintains a fixed gaze on the instructor at all times and he is concentrating on his mission.

One of the Zips on his rucksack suddenly flashed bright red and then goes off. This is an LED not a label and I was there and I saw this at the time – which piqued my interest no end:-

Now OFF

This is NOT the behaviour of a normal zip on a rucksack found in Sri Lanka and actually reminded me of equipment that my colleagues and I had used from a company called Gamma Group (in 2011/2012 from memory)

Gamma Group

Gamma Group is an international manufacturer of surveillance & monitoring systems with technical and sales offices in Europe, Asia, the Middle East and Africa. We provide advanced technical surveillance, monitoring solutions and advanced government training as well as international consultancy to National and State Intelligence Departments and Law Enforcement Agencies.

If I remember correctly, those zips light up if the target device (meaning my mobile) had an IMEI-lock from the IMSI catcher (which is in the bag itself). They provide a visual confirmation to investigators which of their personnel has IMSI-lock on the target and the LEDs need to be bright to facilitate proper visual identification even in daylight!

And then I remembered that Gamma Group also supplied Body-Worn IMSI catchers 🙂

And the dumpy woman at the end who was observing me and obviously not waiting for a bus or anything, had a bag that looked like a typical bad provided to admin staff in military service. I will expand upon her and other parties as context is relevant otherwise the intelligence analysis will appear incorrect.

And finally despite me being interested in the Marching Guy’s actions, the white vehicle that passed from right to left was one that I had seen before – so I switched to that to capture it on video 🙂

Bikey’s Red Zips

After I had arrived at the location, the activity started. Please review the following video, which is actually a series of clips joined together for convenience. I of course have the originals which can be analysed independently to evidentiary grade forensic 🙂

Key Points

Prior to the video above a Bikey turned up and was ‘specifically guided’ to park his bike in a no-parking location, though conveniently within

BLUETOOTH PHONE CONNECTION RANGE 🙂

I was expecting him to make a delivery (hence his reason for parking in a no-parking area) but it just did not occur.

And the other odd thing was that he just left (what obviously looked like a heavy device) unattended and wandered off. No-one leaves stuff unattended in Sri Lanka and it therefore confirmed that it was being monitored.

As can be seen the bike has been left with what appears to be an laptop placed. Even the number plate says BAG 9050 and the seat has been modified with a cover.

The existence of the white plastic bag was another symbol – it is on tonnes of other videos too 🙂

Something that I often noticed was that the plates were often coded in odd ways – either the numbers being the numbers of my birthday or vehicles which contained IMSI catchers had the last 4 digits being similar to the digits of the Cell ID / Location Area Code 🙂

Also the second and fourth digits had specific patterns. And many of the vehicles were fleet vehicles – belonging to a few organisations and having been purchased in one lot to save money.

Additionally I had found a number of Ministry of Justice vehicles which were also acting unlawfully – no surprise there with the corruption in SL but it did suggest the existence of an MLAT, and a official operation 🙂

BUT THE CLASSIC THING IS THAT THE ZIPS ARE GLOWING BRIGHT RED

5% speed

The purpose of this video is to demonstrate that the zips were illuminated, rather than they switched on and off. My concern here is that there was clearly cellular interception.

When the bike arrived I found that shortly afterwards my phone froze and rebooted – I was wondering about an OTA update which modified the firmware.

 

I THINK THIS ATTACK WAS OVER BLUETOOTH HOWEVER

This was the way that malware was introduced early on onto my internal local area networks. Every time we connected the phone to download photos there was the risk of infection.

BUT AT THE SAME TIME WAS IT THE BIKE OR A DEVICE IN THE IMMEDIATE VICINITY?

Was it a Red Herring or more relevantly a RED SNAPPER – HA HA!!

Blank Image

Actually it seemed to mess up the phone camera too, as when I zoomed in the colour on the right side of the image was affected (red zips and orange shock absorber) but not on the left side (red petrol tank). It is not red-eye correction because this reflects what I actually saw without looking through the camera lens.

And whilst we continually flashed firmware, when the operations took place (often in slow Colombo traffic) the firmware was being continually re-written by fake Base Transceiver Stations – so that was the other complication that we successfully overcame.

Anyway I have hundreds of these types of videos, now that they have been recovered – what a bummer for those parties who thought they had wiped everything beyond recovery…

AND OF COURSE IT IS EASY TO PROVIDE SUCH PHOTOGRAPHIC EVIDENCE TO VARIOUS ORGANISATIONS AND OBTAIN COURT ORDERS TO IDENTIFY THE PARTIES CONCERNED – PEOPLE OR NUMBER PLATES 🙂

More exciting evidence in Part 02:-

Dressed for Failure - Poor Choice of Attire Exposes Surveillance

Following on from my article about CHIS:- this is Part 2 of the series. 20150923 The Mobitel Experience / Truman Show I now present a few more videos...

and Part 03:-

Body-Worn Surveillance Equipment Doesn't Come in Childrens' Sizes

23 September 2015 - BODY-WORN IMSI CATCHER EXPOSED Similar to, if not Gamma Group Equipment Model 4062 Surveillance Image Following on from other
Joseph-S-R-de-Saram

Joseph S R de Saram (JSRDS)

Information Security Architect / Intelligence Analyst / Computer Scientist / Human Rights Activist / COMSEC / SIGINT / TSCM
RHODIUM GROUP