Andrew “Weev” Auernheimer, in 2012. Photo: pinguino.
Notorious hacker and troll weev was released from prison this evening. A federal appeals court today overturned his conviction in a case of significance for all security researchers.
Weev exposed a security flaw in AT&T's website and obtained the personal data of more than 100,000 iPad users. He was charged with violating the Computer Fraud and Abuse Act (CFAA), and sentenced to three and a half years in prison. Today's ruling says prosecutors did not have the right to charge him in a state where none of the alleged crimes occurred.
Read the rest
Joshua Lifton is one of the founders of Crowd Supply, a company that crowdfunds around products. They take a very different approach to preparation, funding, and follow-up than Kickstarter. Kickstarter just announced that it had crossed $1bn in pledges in its five-year lifetime. Of that, it's disbursed nearly $850m. It's on track to facilitate perhaps half a billion in 2014 alone.
The name Kickstarter may be used interchangeably with the term crowdfunding, and it is the 800 lb. gorilla in the space. (Watch out for the shipping charges on that gorilla, especially internationally.) But in its wake, hundreds of millions of dollars are being raised from all sorts of other sites which fill in important aspects of ecosystem, and Crowd Supply is one of them.
The New Disruptors: RSS | iTunes | Download this episode | Listen on Stitcher
This episode is sponsored by:
Media Temple: Web hosting for artists, designers, and Web developers since 1998. World-class support available 24x7 through phone and chat—and even Twitter. Sign up with coupon code "tnd" to get 25% off your first month of hosting.
Mailchimp helps more than five million people and businesses around the world use MailChimp to send email newsletters. They sent 70 billion messages on their behalf in 2013! They also have hats for cats and small dogs. Read the rest
Stephen Jin-Woo Kim. Image: Stephen Kim Legal Defense Trust.
Former State Department official Stephen Kim announced today he will plead guilty to leaking classified information to Fox News journalist James Rosen and will serve 13 months in jail.
The case sparked controversy last year when it was revealed the Justice Department named Rosen a “co-conspirator” in court documents for essentially doing his job as a journalist. But a largely ignored ruling in Kim’s case may have far broader impact on how sources interact with journalists in the future. Read the rest
German Chancellor Merke in Berlin. A hacker organization based in Berlin named her and other world leaders in an anti-spying lawsuit filed today. Photo: Reuters
From the CCC
On Monday, the Chaos Computer Club (CCC) and the International League for Human Rights (ILMR), have filed a criminal complaint with the Federal Prosecutor General’s office. The complaint is directed against the German federal government, the presidents of the German secret services, namely Bundesnachrichtendienst, Militärischer Abschirmdienst, Bundesamt für Verfassungschutz, and others. We accuse US, British and German secret agents, their supervisors, the German Minister of the Interior as well as the German Chancelor of illegal and prohibited covert intelligence activities, of aiding and abetting of those activities, of violation of the right to privacy and obstruction of justice in office by bearing and cooperating with the electronic surveillance of German citizens by NSA and GCHQ.
[via Wired.com] Read the rest
Kevin Poulsen at Wired News
: "While investigating a hosting company known for sheltering child porn last year the FBI incidentally seized the entire e-mail database of a popular anonymous webmail service called TorMail. Now the FBI is tapping that vast trove of e-mail in unrelated investigations." [Threat Level] Read the rest
Daniel Ellsberg. Photo: Xeni Jardin.
Pentagon Papers whistleblower (and our co-founder) Daniel Ellsberg held an expansive, seven-hour long Reddit “Ask Me Anything” session yesterday to explain why NSA whistleblower Edward Snowden will join our board of directors. He also discussed many other subjects—including NSA surveillance, President Obama’s flip-flop on whistleblowers, Nixon’s dirty tricks, and the dangers of excessive government secrecy.
Below are some of our favorite questions and answers. But make sure to read the last remarkable exchange, in which Mr. Ellsberg finds out—for the first time—that the Nixon administration had surveillance of him from before the Pentagon Papers were leaked. Read the rest
KQED created this video of the 2013 Science Hack Day San Francisco organized by BB pal Ariel Waldman! More than 200 people -- makers, scientists, artists, designers, etc. -- spent the night at the California Academy of Sciences and hacked on a fantastically diverse and compelling assortment of prototypes, demos, and experiments. Ariel says "Here's how you can organize a Science Hack Day in your own city!" Read the rest
Facebook and Microsoft have reached a agreements with the U.S. government "to release limited information about the number of surveillance requests they receive," which Reuters' Joe Menn and Gerry Shih report is a partial victory
for the companies struggling with "fallout from recent disclosures about the NSA's secret program. "
Facebook and Microsoft released some information about the scope of secret orders with which each company has complied.
Google said Friday it is "negotiating with the government and that the sticking point was whether it could only publish a combined figure for all requests," adding that this would be "a step back for users," because it "already breaks out criminal requests and National Security Letters, another type of intelligence inquiry." Read the rest
Edgertor says: "No list of hacker movies i've found includes this one from 1971, it might also be the earliest!"
A prank that starts with a group of college students creating a fictitious person so they can get a credit card develops into a plot that leaves three of them dead.
With Dean Stockwell and Stephanie Powers! I can't wait to watch it as soon as I'm finished with my hard day of posting links here at the Boing Boing headquarters. Read the rest
“The future of technology will be largely determined by citizens who will design, build, and hack their own”
It may be a little late for folks on the East Coast to round up the necessary parts before the blizzard really hits, but this would be a fun trapped-in-the-house project. It's not cheap, but it does give you the opportunity to see how subatomic particles interact with one another in the privacy of your own home. In a post at Scientific American George Musser explains how he put his experiment together
. A follow-up promises to show you how to use it, and what he found when he did. Read the rest
Designer and theorist Edward Tufte was a friend and mentor of Aaron Swartz's. At Saturday's memorial to Aaron at the Cooper Union in NYC, Tufte remembered both Aaron and his own hacking career, inventing "blue boxes" and using them to make illegal calls on AT&T's network, and wondered about what would have become of him had he run into the same prosecutorial zeal as Aaron faced. Here's a quote from Dan Nguyen's transcript of the Livestream video feed:
…[Bowen] then became president of the Mellon Foundation and he had retired from the Mellon foundation. But he was asked by he foundation to handle the problem of JSTOR and Aaron.
So I wrote Bill Bowen an email about it. And I said first that Aaron is a treasure. And then I told a personal story about how I had done some illegal hacking as a student and had been caught at it and what happened.
In 1962, my housemate and I invented the first blue box. That’s a device that allows for free, undetectable, unbillable long-distance telephone calls.
And we got this up. And played around with it and at the end of our research came when we completed was what we thought was the longest long distance phone call ever made, which was from Palo Alto to New York time of day, via Hawaii.
Edward Tufte’s defense of Aaron Swartz and the “marvelously different”
Read the rest
Dawn is breaking over last day of the annual Chaos Communication
Congress in Hamburg, Germany. CCC is the meeting of the Chaos Computer
Club (also CCC), a group of German hackers hanging out together
since 1981. Congress (as it is also known) is one of the great
gatherings of tribes in the hacker world -- which, in the time it has
existed, has gone from being a tiny, sometimes gothy and mathematically
inclined subculture to being a big, elitist community whose work,
values, and aesthetics touch the lives of billions of people. CCC has
grown and flowered with the community. Read the rest
Weev. Photo: Gawker
Adrian Chen at Gawker has a must-read profile on Weev: so-called "iPad hacker," founder of the anti-blogging Internet-trolling organization "Gay Nigger Association of America," and born-again Mormon troll. Snip:
For Auernheimer, the AT&T breach was one of his finest works as a troll. He personally didn't hack anything—the program used to collect the email addresses was written by Spitler—except the media. He was the hype man for Goatse, and he claims blew the breach up far beyond its actual significance. "The bug that I'm indicted over isn't a big deal," he says. "What made it big is the way I presented it." He boils down his success at promoting the AT&T job to three bullet points: "Rhetoric, persuasion, and meme reference."
But was collecting the email addresses actually a crime? "If somebody mistakenly puts information out there on the web and somebody mistakenly gets that information, that's not illegal," says Jennifer Granick, a lawyer and the director of the Center for Internet and Society at Stanford. This is why Auernheimer decided to fight his charges instead of take a plea deal, as Spitler did last year.
"I contend there is no crime in telling the truth or using AT&T's, or anybody's, publicly accessible data, to cite it to talk about how they made people's data public," he told CNET.
Auernhemier's jury disagreed.
Read: The Internet's Best Terrible Person Goes to Jail: Can a Reviled Master Troll Become a Geek Hero?. Read the rest
AdTrap is a planned $150 firewall box for consumers. Plugged in between your internet connection and router, it strips the web of advertising without requiring a moment's configuration. Unlike browser-based plugins, it covers the whole pipe rather than a single app: every device in the house managed from a single setup screen.
It's open-source and hackable, too, but the moral hazard with these concepts is always the same: the more successful they are in becoming a de facto middle-man between readers and publishers, the greater will be their incentive to research their way to concluding that you like some advertising after all. Read the rest
U.S. Securities and Exchange Commission employees did not encrypt some computers that contained "highly sensitive information from stock exchanges, leaving the data vulnerable to cyber attacks, according to people familiar with the matter." Reuters has the full story.
The SEC spent $200K to confirm that "no hacking or spying on the SEC's computers took place," however, and there is no evidence that any data was actually breached. Read the rest
Man, come on, who hacks cancer.gov? Well, they did. And then a few days later, the National Institutes of Health Website
was compromised. 5,000 user records were leaked. What's next, kittens.org? Cuddlybabies.tumblr.com? (via Chris Wysopal) Read the rest