As noted in previous Boing Boing posts, former Guatemalan dictator Efraín Rios Montt is on trial in Guatemala City this week, three decades after the army he presided over massacred Ixil Maya villages in the Central American country's highlands. Former G2 commander Jose Mauricio Rodriguez Sanchez is his co-defendant.
Under his regime, the country entered a new phase of bloodbath; the scope of which Guatemala had never before known. And at last, with this tribunal, a legacy of impunity and silence is challenged. Whether the outcome amounts to justice will be a matter of debate for generations to come. But one of the most notorious mass murderers in Guatemalan history is finally on trial.
Here's a must-read story from Tech Review about the thriving trade in "zero-day exploits" -- critical software bugs that are sold off to military contractors to be integrated into offensive malware, rather than reported to the manufacturer for repair. The stuff built with zero-days -- network appliances that can snoop on a whole country, even supposedly secure conversations; viruses that can hijack the camera and microphone on your phone or laptop; and more -- are the modern equivalent of landmines and cluster bombs: antipersonnel weapons that end up in the hands of criminals, thugs and dictators who use them to figure out whom to arrest, torture, and murder. The US government is encouraging this market by participating actively in it, even as it makes a lot of noise about "cyber-defense."
Exploits for mobile operating systems are particularly valued, says Soghoian, because unlike desktop computers, mobile systems are rarely updated. Apple sends updates to iPhone software a few times a year, meaning that a given flaw could be exploited for a long time. Sometimes the discoverer of a zero-day vulnerability receives a monthly payment as long as a flaw remains undiscovered. “As long as Apple or Microsoft has not fixed it you get paid,” says Soghioan.
No law directly regulates the sale of zero-days in the United States or elsewhere, so some traders pursue it quite openly. A Bangkok, Thailand-based security researcher who goes by the name “the Grugq” has spoken to the press about negotiating deals worth hundreds of thousands of dollars with government buyers from the United States and western Europe. In a discussion on Twitter last month, in which he was called an “arms dealer,” he tweeted that “exploits are not weapons,” and said that “an exploit is a component of a toolchain … the team that produces & maintains the toolchain is the weapon.”
The Grugq contacted MIT Technology Review to state that he has made no “public statement about exploit sales since the Forbes article.”
Some small companies are similarly up-front about their involvement in the trade. The French security company VUPEN states on its website that it “provides government-grade exploits specifically designed for the Intelligence community and national security agencies to help them achieve their offensive cyber security and lawful intercept missions.” Last year, employees of the company publicly demonstrated a zero-day flaw that compromised Google’s Chrome browser, but they turned down Google’s offer of a $60,000 reward if they would share how it worked. What happened to the exploit is unknown.
A coalition of journalists, privacy advocates, and Internet activists have published an open letter to Skype and Microsoft, calling on them to "publicly document Skype’s security and privacy practices" in a Transparency Report:
1. Quantitative data regarding the release of Skype user information to third parties, disaggregated by the country of origin of the request, including the number of requests made by governments, the type of data requested, the proportion of requests with which it complied — and the basis for rejecting those requests it does not comply with.
2. Specific details of all user data Microsoft and Skype currently collects, and retention policies.
3. Skype’s best understanding of what user data third-parties, including network providers or potential malicious attackers, may be able to intercept or retain.
4. Documentation regarding the current operational relationship between Skype with TOM Online in China and other third-party licensed users of Skype technology, including Skype’s understanding of the surveillance and censorship capabilities that users may be subject to as a result of using these alternatives.
5. Skype's interpretation of its responsibilities under the Communications Assistance for Law Enforcement Act (CALEA), its policies related to the disclosure of call metadata in response to subpoenas and National Security Letters (NSLs), and more generally, the policies and guidelines for employees followed when Skype receives and responds to requests for user data from law enforcement and intelligence agencies in the United States and elsewhere.
If you're in Southern California, here's a week-long event well worth checking out. Starting this weekend, The Santa Barbara Summit for Tibet (SBST) is hosting a "Tibetan Cultural Week of Celebration and Education to increase awareness in our city of the Tibetan culture’s philosophical and spiritual richness, as well as the challenges it faces."
A waterboarding scene from the film "Zero Dark Thirty."
Karen J. Greenberg, executive director of the New York University Center on Law and Security and author of The Least Worst Place: Guantanamo's First One Hundred Days, explains seven simple steps to making US torture and detention policies once again acceptable to the American public, as illustrated in "Zero Dark Thirty."
James Rodriguez, a brave and talented photojournalist in Guatemala, has a striking photo-essay up on his blog.
On this occasion I share a photo essay documenting events in the Guatemalan northern city of Huehuetenango during the much-awaited end of the Mayan Oxlajuj Baktun. These provide a clear reflection of the divisions and challenges faced by Mayan communities today. The media exploited erroneous apocalyptic rumors, the government and business sectors viewed it as an opportunity to gain economically through tourism, and progressive groups seized the opportunity “to strengthen ancestral wisdom and never-ending search for balance” while vindicating what seem never-ending struggles for justice, inclusion, and self-determination.
I'm proud to serve as a board member for the newly-launched Freedom of the Press Foundation, dedicated to helping promote and fund aggressive, public-interest journalism focused on exposing mismanagement, corruption, and law-breaking in government. The project accepts tax-deductible donations to an array of journalism organizations dedicated to government transparency and accountability. The board includes Pentagon Papers whistleblower Daniel Ellsberg, EFF co-founder John Perry Barlow, actor and activist John Cusack, and other journalists and activists with whom I'm honored to serve.
In a landmark ruling for human rights in the war on terror, the European court of human rights this week found that CIA agents tortured German citizen, Khaled el-Masri. The agents sodomized, shackled, and beat him, as Macedonian state police observed.
Investigative reports released under a court order to Bloomberg News show that caregivers at a Florida center for brain-injured and "non-neurotypical" adults physically and sexually abused patients, in a systematic and brutal manner. Caregivers "goaded them to fight each other and fondle female employees and in one instance laughed at complaints of mistreatment." At least five patients have died at the center in question, the Florida Institute for Neurologic Rehabilitation, from alleged abuse or neglect there since 1998. Two patients died in just the last two years. (Bloomberg) — Xeni
Jessica Chastain as CIA agent “Maya” in Zero Dark Thirty. Photo: Sony/Columbia Pictures
• Glenn Greenwald at the Guardian on the new Kathryn Bigelow film about the capture and assassination of Osama Bin Laden: "With its release imminent, [Zero Dark Thirty] is now garnering a pile of top awards and virtually uniform rave reviews. What makes this so remarkable is that, by most accounts, the film glorifies torture by claiming - falsely - that waterboarding and other forms of coercive interrogation tactics were crucial, even indispensable in finding bin Laden."
Omems sends us, "ProPublica's point-by-point discussion of why this year's NDAA might not allow for the indefinite detention of US citizens. As clear and concise a summary as I've seen, and provides a bit of hope that our rights aren't completely irrelevant to our representatives."
I don't know that I'd got that far. ProPublica concludes that some of the senators who voted for NDAA clearly believe (and intend) that it will be used to lock up American citizens and lawful residents forever, without a trial or any meaningful due process. And all of them expect that the NDAA will allow for indefinite detention without charge or trial for foreigners who are captured abroad, or who happen to visit the USA (tourists beware). As one of those foreigners who often visits the USA on a work-visa, I'm not exactly comforted by this news.
What about people detained in the U.S. who aren’t citizens or permanent residents?
They could still be indefinitely detained.
Human rights and civil libertarian groups criticized the amendment for falling short of the protections in the constitution under the Fifth Amendment, which says that any “person” in the U.S. be afforded due process.
In the floor debate, Feinstein said she agreed with critics that allowing anybody in the U.S. to be detained indefinitely without charges “violates fundamental American rights.” Feinstein said she didn’t think she had the necessary votes to pass a due-process guarantee for all.
This [photograph of a policeman behind a riot shield] was taken at about 6 pm last night, shortly after protesters were giving carnations to police officers stationed in front of Parliament. About four hours later police used a water cannon in Slovenia for the first time.
I’m sick as a dog and didn’t stay in the chill and drizzle for very long, so this is a rundown based mostly on local press accounts of what was, somewhat astonishingly, the second demonstration in a week here in Slovenia to turn violent.
Upwards of 10,000 people gathered in Ljubljana yesterday, one of seven Slovenian cities where hastily organized demonstrations took place to protest what’s perceived as widespread fraud and corruption, austerity measures, and the economic reform policies of the center-right government of Prime Minister Janez Jansa.
Why are women first to pay for every crisis? In every society, capitalist, socialist, or transition? It's because the bodies of women are expendable.
I always noticed how women over eighty in Turin looked incredibly well, beautiful and loved and taken care of: desirable, because old and valuable. I connected this to Italy's long-established and sophisticated health care system. Italian hospitals were famous for methods which preserved the dignity of the patients, in tumor cures, especially breast cancer: the "invisible mastectomy" was invented in Milan. Rather than simply intervening in crisis, they were good at illness prevention and attentive follow-ups.
The economic crisis and financial harassment of Italy has reached this safe haven of health and dignity. In Turin, one of the best clinics for cure and prevention of breast cancer is about to be closed. The patients are on the streets, their appointments cannot be scheduled, they are paying for their urgent operations because their doctors cannot help them. The doctors are on the streets too.
Last year, the porn company Golden Eye asked for 9,000 O2/Telefonica customer details in the UK, in order to send them letters demanding payments for alleged copyright downloads.
However, in March a judge decided that 6,000 names and addresses could not be given to Golden Eye. Golden Eye was not an normal copyright licensee of the works allegedly downloaded by these 8,000, but had instead acquired a licence from the actual copyright holders to pursue infringers on a revenue sharing basis.
The judge wasn't happy with this arrangement, saying:
"that would be tantamount to the court sanctioning the sale of the intended Defendants' privacy and data protection rights to the highest bidder. Accordingly, in my judgment, to make such an order would not proportionately and fairly balance the interests of the Other Claimants with the Intended Defendents' interests."
The judge's decision is now being contested by Golden Eye. If successful they would gain access to the details of just over 6,000 of around 9,000 subscribers.
We are therefore asking for donations, towards the costs of intervening, and for people to join ORG to support the legal project.
As TorrentFreak says, "Donating to ORG is like punching copyright trolls in the face."