Juha sez, "If you're going to build a protest movement, it might be better to stay off Facebook and Twitter because the cops are fully tuned into social media these days.
The Open Source Intelligence Unit at London's Metropolitan Police Service has a staff of seventeen who work seven days a week - to track social media feed back and to monitor community tension.
Having a sense of humour and understanding of slang gives humans the edge over social media surveillance software, UK cops reckon.
The British cops are worried about 4G mobile broadband though because it'll generate much more data such as video."
The unit monitored some 32 million social media articles during the Olympics, with 10,300 tweets being posted every second during the opening ceremony.
“Companies will tell your that sentiment analysis from a piece of software is about 56 percent accurate … we would say it's lower, because it doesn’t pick up humour or slang,” Ertogral said.
In addition to looking at trends, he said the unit was also exploring association to establish influencers, particularly for protest movements.
“So we’re trying to build friend lists on Facebook, who’s connected to who, who are the influencers out there etc.”
This excerpt from neurologist-philosopher Daniel Dennett's new book Intuition Pumps And Other Tools for Thinking lays out a set of rhetorical habits that I immediately aspired to attain:
How to compose a successful critical commentary:
1. Attempt to re-express your target's position so clearly, vividly and fairly that your target says: "Thanks, I wish I'd thought of putting it that way."
2. List any points of agreement (especially if they are not matters of general or widespread agreement).
3. Mention anything you have learned from your target.
4. Only then are you permitted to say so much as a word of rebuttal or criticism.
And if that wasn't enough: "whenever you see a rhetorical question, try – silently, to yourself – to give it an unobvious answer. If you find a good one, surprise your interlocutor by answering the question." And then, "A good moral to draw from this observation is that when you want to criticise a field, a genre, a discipline, an art form …don't waste your time and ours hooting at the crap! Go after the good stuff or leave it alone."
Danah boyd has a great summary of the new Pew report on Teens, Social Media, and Privacy. The whole thing is worth a read -- especially her thoughts on race and social media use -- but the most interesting stuff was about "social steganography" -- smuggling meaning past grown-ups through the clever use of in-jokes and obscure references (this is also something that Chinese net-users do to get past their national censors):
My favorite finding of Pew’s is that 58% of teens cloak their messages either through inside jokes or other obscure references, with more older teens (62%) engaging in this practice than younger teens (46%). This is the practice that I’ve seen significantly rise since I first started doing work on teens’ engagement with social media. It’s the source of what Alice Marwick and I describe as “social steganography” in our paper on teen privacy practices.
While adults are often anxious about shared data that might be used by government agencies, advertisers, or evil older men, teens are much more attentive to those who hold immediate power over them – parents, teachers, college admissions officers, army recruiters, etc. To adults, services like Facebook that may seem “private” because you can use privacy tools, but they don’t feel that way to youth who feel like their privacy is invaded on a daily basis. (This, btw, is part of why teens feel like Twitter is more intimate than Facebook. And why you see data like Pew’s that show that teens on Facebook have, on average 300 friends while, on Twitter, they have 79 friends.) Most teens aren’t worried about strangers; their worried about getting into trouble.
Over the last few years, I’ve watched as teens have given up on controlling access to content. It’s too hard, too frustrating, and technology simply can’t fix the power issues. Instead, what they’ve been doing is focusing on controlling access to meaning. A comment might look like it means one thing, when in fact it means something quite different. By cloaking their accessible content, teens reclaim power over those who they know who are surveilling them. This practice is still only really emerging en masse, so I was delighted that Pew could put numbers to it. I should note that, as Instagram grows, I’m seeing more and more of this. A picture of a donut may not be about a donut. While adults worry about how teens’ demographic data might be used, teens are becoming much more savvy at finding ways to encode their content and achieve privacy in public.
My new Guardian column, "Privacy, public health and the moral hazard of surveillance," discusses the way that the governments' reliance on social networks for intelligence purposes means that they can't intervene to help their populations get better at trading their privacy for services.
That's a crisis. If online oversharing is a public health problem, then the state's decision to harness it for its own purposes means that huge, powerful forces within government will come to depend on oversharing. It will be vital to their jobs – their pay-packets will literally depend on your inability to gauge the appropriateness of your online disclosure.
They will be on the same side as the companies that profit from oversharing, because they will, effectively, be just another firm that benefits from oversharing.
It's as though Scotland Yard decreed that obesity was critical to its ability to catch slow-moving, easily winded suspects. It's as though the NHS announced it would cope with the expense of an aging population by encouraging chain-smoking. The dangers of oversharing are hard enough to manage when it's just the private sector that benefits from them.
Troy Maye was wanted for a string of identity thefts, but the IRS couldn't positively identify him. But after he passed a thumb-drive of stolen data to an IRS informant, investigators were able to pull his name off the drive's metadata. They used that to find his Instagram profile, and found a food-porn photo he'd taken at the Morton's steakhouse where he'd dined with the informant. Busted.
"IRS Agent Louis Babino then headed to Google and located Maye’s Instagram page, which contained a profile photo of Maye. When shown the profile photo, the CW confirmed that Maye (seen at right) was the man with whom he dined at Morton’s."
Well, sure, Agent Babino, but how can you be really sure this was your guy?
"A further review of Maye’s Instagram page, Babino noted, revealed “a photo of a steak and macaroni and cheese meal containing the caption ‘Morton’s.’” The image--uploaded on January 7 at 11:24 PM--“appears to coincide” with the CW’s meeting at Morton’s, added Babino."
Yup, this guy food-porned his way into being arrested. The Instagram photo is reportedly being entered into evidence in the case, so one hopes the juicy steak and the creamy mac and cheese was really, really worth all the trouble Maye is now in. Once again, if you're a criminal, online narcicism is probably something you'd be best to avoid.
Bruce Schneier's got smart things to say about surveillance in the age of the Internet of Things:
In the longer term, the Internet of Things means ubiquitous surveillance. If an object "knows" you have purchased it, and communicates via either Wi-Fi or the mobile network, then whoever or whatever it is communicating with will know where you are. Your car will know who is in it, who is driving, and what traffic laws that driver is following or ignoring. No need to show ID; your identity will already be known. Store clerks could know your name, address, and income level as soon as you walk through the door. Billboards will tailor ads to you, and record how you respond to them. Fast food restaurants will know what you usually order, and exactly how to entice you to order more. Lots of companies will know whom you spend your days --and night -- with. Facebook will know about any new relationship status before you bother to change it on your profile. And all of this information will all be saved, correlated, and studied. Even now, it feels a lot like science fiction.
Will you know any of this? Will your friends? It depends. Lots of these devices have, and will have, privacy settings. But these settings are remarkable not in how much privacy they afford, but in how much they deny. Access will likely be similar to your browsing habits, your files stored on Dropbox, your searches on Google, and your text messages from your phone. All of your data is saved by those companies -- and many others -- correlated, and then bought and sold without your knowledge or consent. You'd think that your privacy settings would keep random strangers from learning everything about you, but it only keeps random strangers who don't pay for the privilege -- or don't work for the government and have the ability to demand the data. Power is what matters here: you'll be able to keep the powerless from invading your privacy, but you'll have no ability to prevent the powerful from doing it again and again.
Do you remember the Associated Press's 2009 announcement that they had discovered a magic-beans technology that would let them stop people from quoting the news unless they paid for license fees (for quotes as short as 12 words, yet!)?
Didn't work.
Since the launch... we heard absolutely nothing about NewsRight. There was a launch, with its newspaper backers claiming it was some huge moment for newspapers, and then nothing.
Well, until now, when we find out that NewsRight quietly shut down. Apparently, among its many problems, many of the big name news organization that owned NewsRight wouldn't even include their own works as part of the "license" because they feared cannibalizing revenue from other sources. So, take legacy companies that are backwards looking, combine it with a licensing scheme based on no legal right, a lack of any actual added value and (finally) mix in players who are scared of cannibalizing some cash cow... and it adds up to an easy failure.
Amy’s Baking Company Bakery Boutique & Bistro is Scottsdale, AZ gained some small notoriety when it became the first restaurant that Gordon Ramsey gave up on in his show Kitchen Nightmares, in which the restaurateur helps failing businesses reform their ways. The Ramsey segments show the owners of the restaurant, Samy and Amy Bouzaglo, screaming obscenities at customers, taking servers' tips, and generally behaving very badly.
But that was just for warmup. After the episodes aired and showed up on YouTube, the Bouzaglos took to Facebook to condemn their critics on Reddit and Yelp with a mix of profanity, Bible-thumping, spurious legal threats, and, finally, a claim that it wasn't them at all, all the crazypants stuff had been the work of hackers who took over their Facebook account.
In a world with innumerable social media hissyfits and bun-fights, the Bouzaglos' meltdown stands out as a world-beater. Truly, this is an exceptional episode of bad behavior.
Dictionary of Numbers is a Chrome extension that watches your browsing activity for mentions of large numerical measurements and automatically inserts equivalences in real-world terms that are meant to clarify things. For example, a story about a 300,000 acre forest fire would be annotated to note that this is about the area of LA or Hong Kong; or that 315 million people is about the population of the USA.
I noticed that my friends who were good at math generally rely on "landmark quantities", quantities they know by heart because they relate to them in human terms. They know, for example, that there are about 315 million people in the United States and that the most damaging Atlantic hurricanes cost anywhere from $20 billion to $100 billion. When they explain things to me, they use these numbers to give me a better sense of context about the subject, turning abstract numbers into something more concrete.
When I realized they were doing this, I thought this process could be automated, that perhaps through contextual descriptions people could become more familiar with quantities and begin evaluating and reasoning about them. There are many ways of approaching this problem, but given that most of the words we read are probably inside web browsers,** It might be interesting to to develop a similar system for use in spoken lectures. I decided to build a Chrome extension that inserts human explanations of numbers into web pages.
Mother Jones's Josh Harkinson has an excellent piece on the history of KnightSec, an Anonymous offshoot that publicized the Steubenville and Halifax rape cases, galvanizing both the public and police responses to both. The piece includes an interview with Michelle McKee, who is credited with swaying a critical mass of Anons to participation in KnightSec. The whole story is pretty incredible, especially where it spills over into the real world:
The video went viral, and the next Occupy Steubenville rally drew 2,000 people to the courthouse steps. Because MC brought the sound system, he ended up serving as the de facto master of ceremonies (which is how he ended up with his Twitter handle). As he played excerpts of the Nodianos video over the loudspeakers, he told me, people in the crowd grew so angry that he started to worry that they would riot.
When the Steubenville sheriff showed up, MC invited him up and grilled him about the case. In the end, he diffused the tension by giving the cop a hug. "I'm going to take this negative energy and turn it into a positive thing," he remembers thinking. "You've got to let the crowd vent."
And vent they did. For four hours, there was a catharsis of personal pain and grief that nobody in the small town could have imagined. Women who had been raped stood in front of the crowd, clad in Guy Fawkes masks, to share their stories. Some of them unmasked at the end of their testimonies as they burst into tears. Rapes at parties, date rapes, rapes by friends and relatives—their pent-up secrets came pouring out. "It turned into this women's liberation movement, in a way," MC recalls. "And it just changed everything. There was nothing anybody could do against us at that point because it was so real and so true."
My latest Guardian column is "3D printed guns are going to create big legal precedents," and it looks at an underappreciated risk from 3D printed guns: that courts will be so freaked out by the idea of 3D printed guns that they'll issue reactionary decisions that are bad for the health of the Internet and its users:
More interesting is the destiny of the files describing 3D printed guns. These model-files have been temporarily removed from the internet at the behest of the US State Department, which is investigating the possibility that they violate the International Traffic in Arms Regulations. Wilson says that he's on safe ground here, because the regulations do not cover material in a library, and he says the internet is like a library. As this is taking place in the US, there's also the First Amendment to be considered, which limits government regulation of speech.
Here's where things get scary for me. Defense Distributed is headed for some important, possibly precedent-setting legal battles with the US government, and I'm worried that the fact that we're talking about guns here will cloud judges' minds. Bad cases made bad law, and it's hard to think of a more emotionally overheated subject area. So while I'd love to see a court evaluate whether the internet should be treated as a library in law, I'm worried that when it comes to guns, the judge may find himself framing the question in terms of whether a gun foundry should be treated as a library.
Here's the video of "It's not a fax machine connected to a waffle iron," the talk I gave at the Re:publica conference in Berlin this week: "Lawmakers treat the Internet like it's Telephone 2.0, the Second Coming of Video on Demand, or the World's Number One Porn Distribution Service, but it's really the nervous system of the 21st Century. Unless we stop the trend toward depraved indifference in Internet law, making – and freedom – will die."
In The remixing dilemma: The trade-off between generativity and originality [PDF], a paper just published in American Behavioral Scientist, Benjamin Mako Hill and Andrés Monroy-Hernández analyzed a data-set of projects from the Scratch website that had been made available for download and remixing. They were attempting to identify the formalattributes that made some projects more likely to attract remixers. As Mako describes in this summary, they found that the projects that were most remixed were neither overly complex (too intimidating) and finished, nor overly vague and undefined (too uninspiring). The Scratch dataset was a good one to study here, because it includes the number of times each project was viewed as well as the number of remixes it inspired, allowing the authors to calculate the probability that a project will inspire a remix while controlling for its overall popularity:
To test our theory that there is a trade-off between generativity and originality, we build a dataset that includes every Scratch remix and its antecedent. For each pair, we construct a measure of originality by comparing the remix to its antecedent and computing an “edit distance” (a concept we borrow from software engineering) to determine how much the projects differ.
We find strong evidence of a trade-off: (1) Projects of moderate complexity are remixed more lightly than more complicated projects. (2) Projects by more prominent creators tend to be remixed in less transformative ways. (3) Cumulative remixing tends to be associated with shallower and less transformative derivatives. That said, our support for (1) is qualified in that we do not find evidence of the increased originality for the simplest projects as our theory predicted.
We feel that our results raise difficult but important challenges, especially for the designers of social media systems. For example, many social media sites track and display user prominence with leaderboards or lists of aggregate views. This technique may lead to increased generativity by emphasizing and highlighting creator prominence. That said, it may also lead to a decrease in originality of the remixes elicited. Our results regarding the relationship of complexity to generativity and originality of remixes suggest that supporting increased complexity, at least for most projects, may have fewer drawbacks.
As I blogged earlier this week, the Syrian Electronic Army hacked The Onion's Twitter account and used it to post a bunch of dumb messages attacking Israel, the US, and the UN. Now, the Onion's IT administrators have posted a detailed account of how Syrian hackers used a series of staged and careful phishing attacks to escalate from a single naive user's email credentials to the password for the Onion's social media accounts.
Once the attackers had access to one Onion employee’s account, they used that account to send the same email to more Onion staff at about 2:30 AM on Monday, May 6. Coming from a trusted address, many staff members clicked the link, but most refrained from entering their login credentials. Two staff members did enter their credentials, one of whom had access to all of our social media accounts.
After discovering that at least one account had been compromised, we sent a company-wide email to change email passwords immediately. The attacker used their access to a different, undiscovered compromised account to send a duplicate email which included a link to the phishing page disguised as a password-reset link. This dupe email was not sent to any member of the tech or IT teams, so it went undetected. This third and final phishing attack compromised at least 2 more accounts. One of these accounts was used to continue owning our Twitter account.
At this point the editorial staff began publishing articles inspired by the attack. The second article, Syrian Electronic Army Has A Little Fun Before Inevitable Upcoming Deaths At Hands Of Rebels, angered the attacker who then began posting editorial emails on their Twitter account. Once we discovered this, we decided that we could not know for sure which accounts had been compromised and forced a password reset on every staff member’s Google Apps account.
I'm impressed by the cleverness of triggering a "password reset" message from the IT team, then sending out fake password-reset messages to users who aren't on the IT team to get them to click on yet another link. Most of the recommendations the IT team make are pretty bland ("educate your users"), but these two reccos are good:
The Onion got hacked by the Syrian Electronic Army, who proceeded to send out a bunch of tweets that could have been mistaken for actual Onion tweets making fun of the sort of thing that Syrian propagandists would tweet if they hacked the Onion's Twitter (see after the jump for the full list). But no, they actually did get hacked.
DAMASCUS, SYRIA—After hacking into The Onion’s Twitter account earlier today, members of the Syrian Electronic Army confirmed that the organization simply wanted to have a little fun before soon dying at the hands of rebel forces. “We figured that before they bust in here and execute every single one of us, we might as well have a good time and post some silly tweets about Israel from a major media outlet’s feed,” said a spokesperson from the pro-Assad group, adding that he and his cohorts “had a few good laughs” and are now fully prepared for their painful and undoubtedly horrific deaths in the coming days. “I mean, we definitely don’t have much time left, so we thought, hey, let’s just enjoy ourselves before getting blown away by rockets, decapitated, beaten to death, or hung during public executions. Why not, right?” At press time, violent screams and pleas for mercy were reportedly overheard as rebel troops broke into the Syrian Electronic Army’s hideout.
