MI5 warning: we're gathering more than we can analyse, and will miss terrorist attacks


In 2010, the UK spy agency MI5 drafted memos informing top UK officials that its dragnet surveillance programme was gathering more information than it could make sense of, and warning that its indiscriminate approach to surveillance could put Britons at risk when signals about dangerous terror attacks were swamped by the noise of meaningless blips from the general population. Read the rest

NSA dumps docs about its Snowden response, reveals that Snowden repeatedly raised alarms about spying


Since the earliest days of the Snowden revelations, apologists for the NSA's criminal spying program have said that Snowden should have gone "through channels" to report his concerns, rather than giving evidence to journalists and going public. Read the rest

Untangling the Web: the NSA's supremely weird, florid guide to the Internet


Michael from Muckrock found a reference to "Untangling the Web," an internal NSA guide to the Internet, on Google Books, so he requisitioned a copy from the NSA under the Freedom of Information Act. Read the rest

Study shows detailed, compromising inferences can be readily made with metadata


In Evaluating the privacy properties of telephone metadata, a paper by researchers from Stanford's departments of Law and Computer Science published in Proceedings of the National Academy of Sciences, the authors analyzed metadata from six months' worth of volunteers' phone logs to see what kind of compromising information they could extract from them. Read the rest

Edward Snowden performs radical surgery on a phone to make it "go black"

animation (1)

If you think that your phone may have been hacked so that your adversaries can watch you through the cameras and listen through the mics, one way to solve the problem is to remove the cameras and microphones, and only use the phone with a headset that you unplug when it's not in use. Read the rest

Tor Project is working on a web-wide random number generator


Random number generators are the foundation of cryptography -- that's why the NSA secretly sabotaged the RNG standard that the National Institute for Standards and Technology developed. Read the rest

What the NSA's assault on whistleblowers taught Snowden


Investigative journalist Mark Hertsgaard's new book Bravehearts: Whistle-Blowing in the Age of Snowden tells the story of modern intelligence community whistleblowing; in a fantastic longread excerpted from the book, he recounts how the US military's program of punishing whistleblowers, and the officials charged with protecting them, convinced Snowden that he should take a thumbdrive full of documents directly to the media.

Read the rest

The Intercept begins publishing Snowden docs


The Intercept has begun publishing a large tranche of NSA documents leaked by Edward Snowden. All 166 articles from SID Today, an NSA internal newsletter, are coming in the first portion of Snowden docs that The Intercept will release, with more to come. Read the rest

A software developer's version of the CIA's bureaucratic sabotage manual


The Simple Sabotage Field Manual was published in 1944 by the Office of Strategic Services, the agency that came to be the CIA: it outlined simple tactics for putting bureaucratic grit in the wheels of occupied countries, for example, by referring key decisions to committees and then obstructing the work of those committees. Read the rest

US Gov't survey: Half of Americans reluctant to shop online due to privacy & security fears

download (2)

A study by the Department of Commerce's National Telecommunications and Information Administration found that half of American Internet users are "deterred" from engaging in online transactions because of fears over privacy and security breaches. Read the rest

FBI has been harassing a Tor developer since 2015, won't tell her or her lawyer why


Since November 2015, FBI agents have been trying to get Tor developer Isis Agora Lovecruft to meet with them, but they won't tell her or her lawyer why. Read the rest

UK spy agencies store sensitive data on millions of innocent people, with no safeguards from abuse


Privacy International won a lawsuit forcing the UK government to publish thousands of pages of records on the use of "Bulk Personal Datasets" by the spy agencies GCHQ, MI5 and MI6. Read the rest

Panama Papers reveal offshore companies were bagmen for the world's spies


What do you do if you're a spy and you want to make untraceable transfers of dirty money without having your funding of your country's nominal enemies exposed to the voters whose money you're spending? You hire Mossack Fonseca to open a numbered account in an offshore tax-haven, naturally. Read the rest

The US Government's domestic spy-planes take weekends and holidays off


If you spend enough time looking at Flightradar24's data about fly-overs of American cities, you can figure out where and when the feds are flying domestic spy-aircraft, watching for the tell-tale circling patterns and mapping the planes' owners to companies that investigative journalists have revealed to be fake cut-outs for the FBI. Read the rest

A perfect storm of broken business and busted FLOSS backdoors everything, so who needs the NSA?


In 2014, Poul-Henning Kamp, a prolific and respected contributor to many core free/open projects gave the closing keynote at the Free and Open Source Developers' European Meeting (FOSDEM) in Belgium, and he did something incredibly clever: he presented a status report on a fictional NSA project (ORCHESTRA) whose mission was to make it cheaper to spy on the Internet without breaking any laws or getting any warrants. Read the rest

The UK government's voice-over-IP standard is designed to be backdoored


GCHQ, the UK's spy agency, designed a security protocol for voice-calling called MIKEY-SAKKE and announced that they'll only certify VoIP systems as secure if they use MIKEY-SAKKE, and it's being marketed as "government-grade security." Read the rest

Reddit's Warrant Canary just died


In early 2015, Reddit published a transparency report that contained heading for National Security Requests, noting, "As of January 29, 2015, reddit has never received a National Security Letter, an order under the Foreign Intelligence Surveillance Act, or any other classified request for user information." Read the rest

More posts