According to reports, the co-founder of a Twitter two-factor authentication text service was secretly selling access to its networks to governments, allowing them to track down people of interest – and, in some cases, gather their phone records.
Ilja Gorelik, Mitto’s co-founder, seems to have violated the company’s privacy law without the knowledge of others. According to reports, Mitto’s co-founder is conducting a surveillance program that follows people designed to help certain organizations and governments.
The mentioned privacy breach made use of known vulnerabilities in mobile telecom protocol signaling system 7 (SS7), which enables hackers or government agencies to listen to your calls, read your messages, and track people’s whereabouts.
As per Bloomberg, Twitter cut relations with the aforementioned company, and Mitto denied any involvement and indicated that they were investigating it. According to unconfirmed rumors, Gorelik has left the company.
This begs the issue of whether we can still trust tech companies to not use/sell our information to the government.