Items tagged with: leak
Four further pieces on Julian Assange's arrest and extradition, and what it means for journalism
London police were invited into the embassy at Ecuador's request — Assange finally pissed them off enough — and the cops subsequently hauled out Old Man WikiLeaks and threw him into a waiting police van.Pissing him off means that he didn't care to pay his own fees, not cleaning on his own, and not taking care of his cat but telling the employees inside the embassy to do that. He behaved as if he was on his vacations in a hotel, while he was a persecuted criminal hiding inside the embassy.
After his arrest, the U.S. Department of Justice unsealed charges against him, which amount to "conspiracy to commit computer intrusion for agreeing to break a password to a classified U.S. government computer" — stemming from his 2010 conversations with then-Army Pfc. Bradley Manning.
While many will hem and haw about press freedom and the 1st Amendment and all that jazz, journalists and publishers don't have legal protection when they encourage or assist a source in committing a crime. Of course, these are allegations so Assange could ultimately be found innocent of these charges, but he'll forever be guilty of sporting a terrible beard that would only be permissible in Amish country.
The charges Assange faces in the United States do not directly relate to his publishing activities. Instead, he faces one count of “conspiracy to commit computer intrusion,” alleging that Assange agreed to help Chelsea (then Bradley) Manning by trying to crack the password on a Defense Department computer in order to obtain classified government documents, which would then be leaked to WikiLeaks.As I am reading through the tweets that have been embedded in the article, I guess that it could become an example of threats against journalism in general in the US depending on what Assange will be charged for: Having hacked a DoD computer to leak verified documents, or for having published hacked material. This will be the point to watch within his trial.
(Yes, it's a source that was also mentioned in one of the tweets, I know, that's where I found it too. I just wanted to separately list it in this post for those who may have not read the Nieman Lab article, which mainly consisted of tweets.)
The first, theory is the one that Obama’s DOJ rejected, based on the recognition that it would expose NYT journalists to prosecution as well. I suspect the Drumpf Administration will have the same reservations with such a prosecution.
This is a closer call. There is a Supreme Court precedent protecting journalists who publish stolen newsworthy information. But it’s one already being challenged in civil suits in ways that have elicited a lot of debate. Prosecuting a journalist for trying to do maximal damage actually would criminalize a great deal of political journalism, starting with but not limited to Fox. Note that when the founders wrote the First Amendment, the norm was political journalism, not the so-called objective journalism we have now, so they certainly didn’t expect press protections to be limited to those trying to be fair to both sides.
I think it possible and journalistically safe to go after Assange for releasing stolen weapons to extort a criminal pardon. But most of the other theories of prosecuting Assange would also pose real risks for other journalists that those rooting for an Assange prosecution appreciate and rely on.
If the case plays out as expected, he’ll first get a platform in Britain to argue to a worldwide audience that it’s all a political setup. And if he loses that round, and the case does come back to the United States, he might well get the government to serve him up, by law, the kind of massive document haul he loves.
Prosecutors probably brought a standard-issue computer crime against Assange instead of espionage charges for two reasons. Because computer crimes are punished under the law in both the United States and the United Kingdom, extradition cases involving them are relatively straightforward. Bringing espionage charges, on the other hand, would have complicated extradition by allowing a defendant to directly invoke the “political offense exception,” arguing that the treaty signed by the U.S. and the U.K. stipulates that a person shall not be extradited to be prosecuted of an offense of political character.
#FreedomOfThePress #PressFreedom #Journalism #FirstAmendment #1stAmendment #FreePress #News #Politics #Assange #JulianAssange #US #USA #Britain #GreatBritain #England #Sweden #UK #Extradition #WikiLeaks #Osho #Dumbledore #BeardedDavidLetterman #Leak #Trump #DonaldTrump #HillaryClinton #Manning #ChelseaManning #LeakedInformation #Theft #GrandTheft #Hacking #DoD #DepartmentOfDefense #Ecuador #Moreno #LeninMoreno
“The hand of ‘democracy’ squeezes the throat of freedom”, or Russian Officials React to Julian Assange's Arrest
How Kremlin defends "the hero" ;)
Russian officials have spoken out on Britain’s arrest of Wikileaks founder Julian Assange on Thursday, expressing hopes that the whistleblower’s rights will be respected.MORE: https://www.themoscowtimes.com/2019/04/11/russian-officials-react-to-julian-assanges-arrest-2-a65194
Assange has been accused of collaborating with the Russian government, most notably to release emails that Russian hackers stole during the 2016 U.S. presidential election via the Wikileaks whistleblowing platform. Assange ran the platform from within the Ecuadorian Embassy in London for seven years to avoid Swedish rape charges.
How Russia and WikiLeaks Became Allies Against the West
“We certainly hope that all of his rights will be respected," Kremlin spokesman Dmitry Peskov was quoted as saying by the state-run RIA Novosti news outlet.
Alexei Chepa, deputy chairman of the State Duma International Affairs Committee, also advocated for protecting Assange’s rights.
"We need to use all international opportunities to protect the person who tried to expose the truth and bring information to the public that some entities carefully concealed,” RIA quoted Chepa as saying.
“All countries and political organizations that are interested in the development of democracy should take part in deciding this man’s fate,” he added.
Foreign Ministry spokeswoman Maria Zakharova condemned the arrest, writing “The hand of ‘democracy’ squeezes the throat of freedom” on her Facebook page.
#Assange #wikileaks #hacker #news #UK #GB #USA #Sweden #Ecuador #Lodon #privacy #leak #activist #activism #Russia #Kremlin
Julian oops! And welcome home!
Julian Assange arrested at Ecuadorian embassy in London
Thu 11 Apr 2019 11.12
Julian Assange has been arrested at the Ecuadorian embassy in London, where the WikiLeaks founder was granted refuge in 2012 while on bail in the UK over sexual assault allegations against him in Sweden.
Assange, 47, who has spent almost seven years at the embassy after seeking refuge there to avoid extradition to Sweden, was detained after the Ecuadorian government withdrew his asylum, Scotland Yard said. He was held on a warrant issued by Westminster magistrates court on 29 June 2012 when he failed to surrender to the court.
Scotland Yard said: “He has been taken into custody at a central London police station where he will remain, before being presented before Westminster magistrates court as soon as is possible.
“The MPS [Metropolitan Police Service] had a duty to execute the warrant, on behalf of Westminster magistrates court, and was invited into the embassy by the ambassador, following the Ecuadorian government’s withdrawal of asylum.”
Ecuador’s president, Lenín Moreno, said on Twitter: “In a sovereign decision, Ecuador withdrew the asylum status to Julian Assange after his repeated violations to international conventions and daily-life protocols.”
But WikiLeaks said Moreno had acted illegally in terminating Assange’s political asylum “in violation of international law”.
The home secretary, Sajid Javid, said: “Nearly seven years after entering the Ecuadorian embassy, I can confirm Julian Assange is now in police custody and rightly facing justice in the UK. I would like to thank Ecuador for its cooperation the Metropolitan police for its professionalism. No one is above the law.”
His arrest comes a day after Wikileaks accused the Ecuadorian government of an “extensive spying operation” against Assange.
WikiLeaks claims meetings with lawyers and a doctor inside the embassy over the past year were secretly filmed.
Assange had refused to leave the embassy, claiming he would be extradited to the United States for questioning over the activities of WikiLeaks if he did so.
At the time, Assange claimed that if he was extradited to Sweden he might be arrested by the US and face charges relating to WikiLeaks’s publication of hundreds of thousands of US diplomatic cables.
President Moreno: “Mr. Assange has violated the agreement we reached with him and his legal counsel too many times,” “It is not that he cannot speak and express himself freely, but he cannot lie, nor much less hack private accounts or phones.”
#Assange #wikileaks #hacker #news #UK #GB #USA #Sweden #Ecuador #Lodon #privacy #leak #activist #activism
Photo: video screenshots
– dataset includes comments, likes, reactions, account names, Facebook IDs, and more
– origin of the leak is the Mexico-based media company Cultura Colectiva that develops third-party apps
– a second dataset contains 22,000 cleartext passwords from 2014
#facebook #leak #culturacolectiva #privacy #infosec #cybersecurity #security
President Moreno: “Mr. Assange has violated the agreement we reached with him and his legal counsel too many times,” “It is not that he cannot speak and express himself freely, but he cannot lie, nor much less hack private accounts or phones.”
April 2, 2019MORE: Ecuador's president says Assange breached terms of London embassy asylum
QUITO (Reuters) - President Lenin Moreno of Ecuador told radio stations on Tuesday that WikiLeaks founder Julian Assange has “repeatedly violated” the terms of his asylum in the Andean nation’s London embassy, where he has lived for nearly seven years.
MORE: Stinkyleaks: Ecuadorian embassy staff complains about Julian Assange’s poor hygiene
#Assange #wikileaks #hacker #news #UK #GB #USA #Sweden #Ecuador #Lodon #privacy #leak
Gain access to global coverage from local journalists on the ground in 50+ countries working around the clock to break news, analyze, spot risks and opportunities.Join over 300,000 Finance…
Article word count: 55
HN Discussion: https://news.ycombinator.com/item?id=19182776
Posted by metaphysics (karma: 99)
Post stats: Points: 129 - Comments: 56 - 2019-02-17T05:12:13Z
#HackerNews #26m #almost #china #data #leak #people #reveals #tracking #xinjiang
Gain access to global coverage from local journalists on the ground in 50+ countries working around the clock to break news, analyze, spot risks and opportunities.
Join over 300,000 Finance professionals who already subscribe to the FT.
Choose the subscription that is right for you
Learn more and compare subscriptions
^* Subscription Terms and Conditions apply.
HackerNewsBot debug: Calculated post rank: 104 - Loop: 275 - Rank min: 100 - Author rank: 43
#extra3 #extra3 #ExtraDrei #DerIrrsinnderWoche #ChristianEhring #Ehring #Satire #Satiresendung #Realsatire #RealerIrrsinn #CDU #CSU #SPD #Grüne #DieGrünen #DieLinke #Linke #AfD #Satire-Sendung #Champions-Leak #Megafrachter #MSCZoe #Abgehakt #Seehofer #Hack #Hacker #Leak #Daten #IT #Knast #Abschiebung #Gefängnis #Flughafen #München #Container #Fracht #Frachtschiff #2019 #Jahresvorausblick #MadameMirage #MaraileWoehe #Brexit #May #England
#extra3 #extra3 #ExtraDrei #Extradry #DerIrrsinnderWoche #ChristianEhring #Ehring #Stand-up #Satire #Satiresendung #Champions-Leak #Seehofer #Hack #Hacker #Leak #Daten #IT #HorstSeehofer #StandupComedy
#extra3 #extra3 #ExtraDrei #Extradry #DerIrrsinnderWoche #Satire #Satiresendung #Seeon #CSU #Söder #Leak #HorstSeehofer #Hackerangriff #TönendeWochenschau #Wochenschau #Innenminister #IT #Daten #Innenministerium #Abschiebung #Sicherheit #Minister #Heimat #Heimatminister
Male impotence, substance abuse, right-wing politics, left-wing politics, sexually transmitted diseases, cancer, mental health. Those are just a few of the advertising labels that Google’s adtech…
Article word count: 1527
HN Discussion: https://news.ycombinator.com/item?id=19016049
Posted by imbiased (karma: 80)
Post stats: Points: 125 - Comments: 56 - 2019-01-28T08:51:09Z
\#HackerNews #and #category #claims #complaint #data #gdpr #google #iab #intimate #leak #lists
Male impotence, substance abuse, right-wing politics, left-wing politics, sexually transmitted diseases, cancer, mental health.
Those are just a few of the advertising labels that Google’s adtech infrastructure routinely sticks to Internet users as it watches and tracks what they do online in order to target them with behavioral ads.
Intimate and highly sensitive inferences such as these are then systematically broadcast and shared with what can be thousands of third party companies, via the real-time ad auction broadcast process which powers the modern programmatic online advertising system. So essentially you’re looking at the rear-end reality of how creepy ads work.
This practice is already the target of a legal complaint in Europe, filed under the bloc’s General Data Protection Regulation (GDPR).
The real-time bidding (RTB) complaint, which was lodged last fall by Dr Johnny Ryan of private browser Brave; Jim Killock, director of the Open Rights Group; and Michael Veale, a data and policy researcher at University College London, alleges “wide-scale and systemic breaches of the data protection regime by Google and others” in the behavioral advertising industry.
It argues the personalized ad industry has “spawned a mass data broadcast mechanism” which gathers “a wide range of information on individuals going well beyond the information required to provide the relevant adverts”; and also that it “provides that information to a host of third parties for a range of uses that go well beyond the purposes which a data subject can understand, or consent or object to”.
“There is no legal justification for such pervasive and invasive profiling and processing of personal data for profit,” the complaint asserts.
The individuals filing the complaints have now submitted additional evidence showing lists of ad categories used by Google and online ad industry association, the Internet Advertising Bureau (IAB), that they say show sensitive inferences are systematically made.
The documents, reviewed by TechCrunch, are supplementary evidence for the two original complaints filed with the UK’s ICO and the Irish DPC last year.
The complaint action has also now been joined by Polish anti-surveillance NGO, the Panoptykon Foundation — which has notified its local DPA of what it describes as “massive GDPR infringement”.
“Ad auction systems are obscure by design,” said Katarzyna Szymielewicz, president of the NGO in a statement. “Lack of transparency makes it impossible for users to exercise their rights under GDPR. There is no way to verify, correct or delete marketing categories that have been assigned to us, even though we are talking about our personal data. IAB and Google have to redesign their systems to fix this failure.”
Ravi Naik, partner at ITN Solicitors, who is working with the complainants, also added in a statement: “Panoptykon’s submissions add to the increasing focus on real time bidding. The complaint builds on our work before the UK ICO and Irish DPC. We foresee a cascade of complaints to follow across Europe, and fully expect an EU-wide regulatory response”.
The three content taxonomy documents that have been submitted as evidence include one used by Google and two compiled by the IAB to provide publishers with lists of ad categories.
The pair make the lists available online for publishers to download, though there’s no suggestion general Internet users are encouraged to take a look at how their online activity is sliced and diced into ad categories in order that their attention can be sold off to the highest bidder.
And while plenty of the ad categories look harmless enough — hatchback cars, pets, poetry, and so on — others, such as the ones we’ve flagged above, can be highly intimate and/or sensitive.
In Europe such sensitive data categories constitute what’s considered special category personal data — which refers to the most sensitive types of personal data, including medical information; political affiliation; religious or philosophical views; sexuality; and information revealing racial or ethnic origin.
Multiple types of this special category data appear to be included in the content taxonomy lists we’ve reviewed.
Under GDPR, processing special category data generally requires explicit consent from users — with only very narrow exceptions, such as for protecting the vital interests of the data subjects (and, well, trying to sell Viagra isn’t going to qualify).
The original complaints argue that Internet users are unlikely to be aware such labels are being routinely stuck on them, let alone how widely their personal data is being shared with third parties participating in programatic ad auctions that rely on scale as a core function.
The RTB process does not offer Internet users an opportunity to consent to each and every personal data transaction. If it did, web browsers would be swamped with creepy requests to process intimate information about them from scores of unfamiliar companies. And there’s no reason to think people would be okay with that.
“The speed at which RTB occurs means that such special category data may be disseminated without any consent or control over the dissemination of that data. Given that such data is likely to be disseminated to numerous organisations who would look to amalgamate such data with other data, extremely intricate profiles of individuals can be produced without the data subject’s knowledge, let alone consent,” the group write in their original complaint filing.
“The industry facilitates this practice and does not put adequate safeguards in place to ensure the integrity of that personal (and special category) data. Further, individuals are unlikely to know that their personal data has been so disseminated and broadcast unless they are somehow able to make effective subject access requests to a vast array of companies. It is not clear whether those organisations have a record of compliance with such requests. Without action by regulators, it is impossible to ensure industry-wide compliance with data protection regulations.”
They cite a New Economics Foundation’s estimate which suggests ad auction companies broadcast intimate profiles about an average UK internet user 164 times per day, adding: “Tracking IDs and other personally specific information are not actually necessary for ad targeting but allow you to be reidentified and profiled every day.”
Here’s a few more highly sensitive labels that are being attached to web users’ identities and shared with potentially thousands of bidding ad companies — in this case the labels are ones which the IAB uses: Special needs kids, endocrine and metabolic diseases, birth control, infertility, diabetes, Islam, Judaism, disabled sports, bankruptcy.
These categories come from v2 of the IAB’s content taxonomy.
The group has also submitted v1 of the IAB’s taxonomy as evidence, and this list includes other disturbingly intimate categories — including a category for ‘incest/abuse support’.
The IAB claims to have depreciated the v1 list but the complainants say it’s still being used in the IAB’s latest ad auctioning system.
We’ve reached out to the IAB Europe for comment.
Filing this new evidence, the complainants argue it underlines “the unreasonable degree of intimacy of the personal data broadcast in ad auctions”.
“The evidence we file today illustrates that the IAB and Google ad auction system can broadcast remarkably intimate details about what you watch, listen to, and read online. ‘Special category’ personal data like this enjoys special protections in the GDPR. I believe this raises the stakes of our complaint,” Brave’s Ryan told TechCrunch.
“Actors in this ecosystem are keen for the public to think they are dealing in anonymous, or at the very least non-sensitive data, but this simply isn’t the case. Hugely detailed and invasive profiles are routinely and casually built and traded as part of today’s real-time bidding system, and this practice is treated though it’s a simple fact of life online. It isn’t: and it both needs to and can stop,” added Veale in a statement.
The original IAB lists can be downloaded as a spreadsheet here (see tab 2 for the v1 list; and tab 1 for v2). While PDF versions of the IAB lists with special category and sensitive data highlighted by the complainants can be viewed here (v1) and here (v2).
Google’s original document can be downloaded here from developers.Google.com. (A marked up version highlighting the special category data is also available from Brave here.)
We’ve also reached out to Google for comment on the latest development in the complaint.
After being sent the category lists for review, an ICO spokesperson told us: “The ICO and our partner authorities on the European Data Protection Board are already engaged on various issues relating to Google and we are engaging with the industry more widely. We are considering the concerns that have been raised with us.”
The agency has made online behavioral advertising a key priority, noting in its Technology Strategy that it’s probing web and cross device tracking, citing examples such as device fingerprinting, browser fingerprinting and canvas fingerprinting.
“This is likely to continue as more devices connect to the internet (IoT, vehicles etc) and as individuals use more devices for their online activities,” it writes in the strategy document. “These new online tracking capabilities are becoming more common and pose much greater risks in terms of systematic monitoring and tracking of individuals, including online behavioural advertising. The intrusive nature of the technologies in combination drives the case for this to be a priority area.”
HackerNewsBot debug: Calculated post rank: 102 - Loop: 269 - Rank min: 100 - Author rank: 47
Schneier on Security (Friday Squid Blogging):
Warning / Happening: Tutanota is possibly compromised!
https://www.schneier.com/blog/archives/2018/11/friday_squid_bl_653.html#c6785651Martin Fruehauf • December 1, 2018 9:14 AM
An insider from the German Bundesnachrichtendienst (BND / Vopo) / Secret Service just has released a message stating that Tutanota was compromised.#Schneier #tutanota #protonmail #mail #e-mail #email #news #leak #warning #privacy #security #freedom #bnd #vopo #germany #password #recovery #surveillance #encryption #vulnerabilities
The message as reported by the BND insider just has been picked up by the British Guardian online edition (30th Nov. 2018, 7:30pm GMT).
Here the message:
Tutanota recently released a new recovery code feature that allows a user to recover their account if they forget their password. This recovery code adds a second method to decrypt your private key and thus your emails. This feature was never asked for by the user base, and they refuse to let users opt out of creating a recovery code. Each time you log in to Tutanota you will see a pop-up requesting that you create a recovery code.
Now I will explain why this is happening:
I work within the German government, and I know for a fact that Tutanota was served an order by the intelligence services to create a database that can be used to decrypt any user's email address upon request. Tutanota is currently under a gag order and cannot speak about this request publicly. This is basically Hushmail/Lavabit 2.0. The recovery code is essentially a government recovery code / backdoor used to read your email if requested by the government.
I'm posting via a public WiFi with a disposable device in a location with no CCTV cameras. This was very hard to do, and I won't be posting again so please do not delete this thread. Users please screencap or archive the thread. I felt I must warn people, especially journalists who rely on the security of Tutanota and may reside in countries with oppressive regimes or human rights abuses.
Comment: Tutanota, as well as all German e-mail providers must provide data as requested to the German Secret Service / (BND / Vopo). This also applies to all German encryption software; it is mandatory for them to incorporate a back door. This, however, is not new. It is a practice that informally has been in place since the mid-nineties.
That happening follows the recently leaked information indicating that ProtonMail also was compromised and that its servers, contrary to what the company stated, were located in former USSR territories.