11.12.13

New Evidence of Criminality in Spying Agencies, Going as Far as Exploiting FOSS Sites to Spread Malware

Posted in Action, Deception, Free/Libre Software at 6:53 am by Dr. Roy Schestowitz

John McLusky illustration
An illustration of James Bond by artist John McLusky for the Daily Express newspaper.

Summary: The job of spooks in the US and the UK is anything but sexy and professional, new leaks continue to reveal

Bombshells regarding the NSA and its British offshoot GCHQ just can’t help coming. There is so much dirty laundry and Snowden et al. bring it out by the bucketload (to be attributed to Snowden). Techrights might have an exclusive story of its own pretty soon. We are still trying to ascertain/verify the facts in a case involving Arizona’s corrupt authorities (we asked for court documents to support the claims and to potentially publish). If the claims are true, then not only the NSA and FBI inject malware into people’s computers (e.g. CIPAV) but local authorities too are trying to do this, completely against the law. They spy without warrants, crack computers, and also pass new laws as means of revenge against people whom they are desperate to prosecute (but can’t). It sounds like a movie plot, but it sure seems to be real.

The big story in the news this week is that Slashdot got used by GCHQ to inject malware. This is criminal. When one is hijacking, infecting and distributing malware it is a serious crime — well, typically a crime when done by entities not connected to the government. The NSA-subsidised operations base known as GCHQ sure is damaging the British software industry [1] and the British “information commissioner” sure misses the point [2]; the real issue here is the illegal spying, not those who expose the illegal spying (whistleblowing/reporting). The British press which covers this the most is promoting Darkmail right now [3] and the ‘British Snowden’ explains to us how serious a problem we are dealing with [4]. Over 80% of US citizens are not satisfied with NSA oversight [5]. The NSA basically collects everything quite indiscriminately [6] and even phones that are switched off (powered off) are believed to be tracked by the NSA [7]. Services that require one’s real identity to use are getting more aggressive [8], the surveillance is being used for an expanding number of purposes (drug enforcement, taxes, etc.) [9], and even NIST turns out to be somewhat of a fraud with fake (moles-based) peer review [10].

Finally, for those who don’t know, Microsoft allegedly puts Windows back doors for the NSA [11]. What we know for sure is that Microsoft does tell the NSA how to remotely crack Windows PCs. Microsoft and the NSA are in bed together, so anyone who values his/her privacy should avoid everything from Microsoft and Microsoft-owned companies like Facebook. Now is a good time to move to Free/libre software. It’s never too late.

Related/contextual items from the news:

  1. GCHQ data snooping has “destroyed trust in British tech”

    GCHQ’s online surveillance has destroyed trust in British technology companies and irrevocably damaged the nation’s information security industry, according to a cryptography expert.

  2. Information commissioner voices fears over scale of NSA surveillance

    Liberty’s director, Shami Chakrabarti, asked about the impact of the Snowden revelations on the security services’ attempts to tackle terrorism, said: “I’m sure it creates challenges and irritations [but] any challenges are probably overblown. The serious bad boys know all about the technological possibilities.”

    Chakrabarti said Snowden had revealed “not just blanket surveillance and intrusion of privacy [but] that we got taken for mugs.

    “There was a big debate in this country about a snooper’s charter. That bill was dropped and now we find out they were doing this stuff anyway. That is not just a breach of privacy it is a fundamental breach of the rule of law, contempt for people, parliament and contempt of the law.

  3. Darkmail opens: New email encryption standard aims to keep government agencies out

    Silent Circle and Lavabit hope to respond to Snowden leaks with service stopping ‘state snoopers’ accessing email metadata

  4. The spies are called to account

    As the Snowden-related dis­clos­ures con­tinue to flow, each new one refut­ing the last dis­sem­bling state­ments of the des­per­ate spies, dip­lo­mats around the world must be curs­ing the over­ween­ing ambi­tions of the NSA and it vassals.

    Amer­ican ambas­sad­ors are being summoned from their for­ti­fied embassies to account for US mal­feas­ance in coun­try after coun­try: Brazil, Spain, France and, of course, Germany.

    In this last coun­try there has been scan­dal after scan­dal: first the hoover­ing up of bil­lions of private com­mu­nic­a­tions; the rev­el­a­tion that the Ger­man intel­li­gence agency, the BND, had been an enthu­si­astic part­ner of the NSA in devel­op­ing the XKey­Score pro­gramme and more; then, des­pite this, humi­li­at­ingly to learn that Ger­many is only con­sidered a 3rd Party intel­li­gence part­ner by the Yanks — put­ting them on a par with coun­tries like Iran, China and Russia.

  5. Less Than 20% Of Americans Believe That There’s Adequate Oversight Of The NSA

    One of the key responses from the NSA and its defenders to all of these Snowden leaks is that there is “rigorous oversight” of the NSA by the courts and Congress. Of course, that talking point has been debunked thoroughly, but NSA defenders keep trotting it out. It appears that the public is not buying it. At all. A recent poll from YouGov found that only 17% of people believe that Congress provides “adequate oversight” on the spying of Americans. A marginally better 20% (though, within the 4.6% margin of error, so meaningless difference really) felt that Congress provides adequate oversight of the NSA when it comes to collecting data on foreigners. Basically, that part of the NSA story just isn’t particularly believable in light of everything that’s come out. Oh, and people are paying attention to the news. A full 87% had heard something about the spying on foreign countries — with only 14% thinking that such a program has helped US interests abroad.

  6. Dan Geer Explains the Government Surveillance Mentality
  7. Samsung, Nokia say they don’t know how to track a powered-down phone

    Privacy International still awaits answers from Apple, BlackBerry, and others.

  8. Your Face and Name Will Appear in Google Ads Starting Today
  9. NSA’s Vast Surveillance Powers Extend Far Beyond Counterterrorism, Despite Misleading Government Claims
  10. Post-NSA Revelations, NIST Opens Review of All Crypto Standards
  11. Chrome Clamps Down, Bitcoin Vulnerability & More…

    Back when the Eric Snowden brouhaha first began, we said that this was going to have serious repercussions on the tech sector here in the United States, especially after it became evident that Microsoft was actively working with the spooks by allegedly designing back doors into their operating system and keeping federal intelligence agents informed about unpatched security holes that could be used against foreign governments and “terrorist,” which now days seems to be everyone who doesn’t work for the NSA, FBI or CIA.

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

A Single Comment

  1. Needs Sunlight said,

    November 12, 2013 at 8:16 am

    Gravatar

    These injection MITM attacks only work on Web 2.0 sites. Secure sites, which work with javascript disabled, can’t do anything to a non-Windows machine if javascript is disabled. With all these revelations or confirmations, it almost looks like insecurity is a motivating factor in the spread of Web 2.0.

    SSL MITM is a related problem, but it is the javascript which is the real enabler to mischief.

What Else is New


  1. Microsoft 'Moles' Inside WINE Project? WINE Should Bring Windows Users to GNU/Linux, Not the Other Way Around.

    The press release above (link omitted, it was pinned in several sites) is a cause for concern; after Microsoft infiltrated OSI and the Linux Foundation (both are now GitHub boosters, in effect diverting projects to Microsoft’s proprietary monopoly) it’ll be important to watch this space



  2. Links 25/11/2020: Raspberry Pi 400 With Touchscreens, Animation Framework in GTK/GNOME

    Links for the day



  3. [Meme] Things Will Get Amusing When/If EPO Proceedings Are Cancelled Due to Patent Trolls Suing the Platforms Using Software Patents (Granted by the EPO)

    The management of the EPO is so proud to be granting illegal software patents in Europe; this clear abuse of authority can come back to bite it in the rear



  4. Dr. Bausch Questions the Merits and Claims of EPO Management Regarding ViCo ('Skynet' Virtual 'Courts')

    Few courageous attorneys are willing to speak out about (and against) what EPO management is doing right now, in effect exploiting a public health crisis to override the law, spy on lots of people, outsource legal proceedings to the United States and so on



  5. Links 24/11/2020: Linux 5.9.11, Istio 1.6.14 and LibreOffice 7.1 Beta Released

    Links for the day



  6. Lots of Good News Today

    A quick roundup of news and key developments; most of them are positive and they give us hope



  7. Massive Collective Action Begins at the European Patent Office Today, Demanding Change and Forewarning the Management (Litigation)

    The financial "hoax" at the EPO (taking away money from staff to feed a gambling addiction of managers) needs to stop; staff has begun mass-mailing the management, threatening legal action



  8. EPO Management is Still Distracting From the 'Elephant in the Room' by Corrupting Media and Academia

    Under the EPO's dictatorship the law is being routinely violated; in order for the public to not pay attention or receive mixed messages (resulting in confusion) the EPO is manufacturing so-called 'studies' (which patent offices aren't supposed to do; they should focus on patent-granting while complying with the law)



  9. EPO's Central Staff Committee on Latest Meeting With Office Dictator: “No Meaningful Discussion Could Take Place.”

    Whilst allegedly preparing legal action the staff representatives at the EPO report on the lack of progress after so-called 'dialogues' (merely a false impression of consultation)



  10. Growing Concerns That EPO Staff Has Been Placed Under de Facto House Arrest by an Entirely Unaccountable Office

    "House arrest" is excessive and disproportionate. So says the Central Staff Committee of Europe's second-largest institution (which surprisingly enough the media is failing to properly study and investigate) as it highlights yet more human rights violations.



  11. IRC Proceedings: Monday, November 23, 2020

    IRC logs for Monday, November 23, 2020



  12. Internal Error: Unified Patent Court and Unitary Patent Incompatible With the Constitution and Basic Laws

    The FFII has issued a statement for Members of the Bundestag, Members of the European Parliament, Members of the Council, German Presidency of the EU, Chancellor Merkel, Commissioner Von Der Leyen, Commissioner Reynders, and Battistelli's buddy Breton



  13. The EPO is Using Hype Wave and Buzzword to Promote Illegal Software Patents in a So-Called “Digital Conference”

    The "HEY HI" or "AI" hype is misused by the Office; not just in person but also in webstreams, which basically serve as a vehicle for illegal agenda



  14. Dutch Delegation and German Delegation at the Administrative Council of the EPO Upset at the Office for Secrecy, Working Behind the Scenes to Crush Productive Staff

    Less than halfway through his term at the Office, Battistelli's buddy already faces growing criticism and, according to the Central Staff Committee, he "was emotionally affected by the intervention such that he was not able to effectively reply to the questions of the delegates."



  15. Links 23/11/2020: GNU Guix 1.2.0, Evaluating Precursor’s Hardware Security, Kdenlive 20.08.3, Kodi 19.x Beta, Vulkan 1.2.162

    Links for the day



  16. Links 23/11/2020: Linux 5.10-rc5, GIMP Turns 25, 4MLinux 34.2, Escuelas Linux 6.11, MPV Player 0.33

    Links for the day



  17. How to Put on Airs of Professionalism Like a Boss

    "Boardroom suits are not meant to be flashy, but to conform. Simple lines and smart ties -- the opposite of what Richard Stallman would wear, show that you are either a well-machined cog or a serious adversary."



  18. IRC Proceedings: Sunday, November 22, 2020

    IRC logs for Sunday, November 22, 2020



  19. Legal Action at the European Patent Office (EPO) Leveraged Against Management... for Robbing EPO Staff and Robbing Europe, by Extension

    The EPO is being looted for its value; the staff is rightly concerned and there’s legal action on the way, filed reluctantly as there’s clearly no other option (a last resort/necessary recourse)



  20. Cory Doctorow at Privacy Week 2020 on DRM, Freedom/Software Freedom, Regulation, Etc.

    “We Used To Have Cake, Now We’ve Barely Got Icing” by Cory Doctorow.



  21. Links 22/11/2020: KaOS 2020.11, Calindori 1.3, KStars 3.5.0

    Links for the day



  22. New Position Paper on the Unified Patent Court (UPC) Says It's “Not the Best Solution for Europe” -- Clearly an Understatement

    UPC proponents (profiteers) aren't enjoying support anymore; not only has progress stalled (come to a complete stop) but the whole debate about the UPC (or anything conceptually like it) turned toxic and negative because facts come out, overriding lobbyists of litigation giants



  23. Mortality Rates Increase at the EPO and Christmases (or Holidays) During Corona Mean Fewer Days Off

    There's still no sign (other than hand-waving and empty gestures/smiles) that the EPO's management wishes to right the wrongs and undo the damage done over the past decade or so; in some ways, today's management is worse than ever before (grossly incompetent and eager to break the law at every turn)



  24. Newly Abnormal: A Crackdown on EPO Staff and Labour Rights in 'Survey' Clothing (Willis Towers Watson)

    In a very characteristic fashion, with zero consultation/input from staff (or staff representatives/union leaders) EPO President António Campinos proceeds to implementing illegal ‘reforms’, assuring any remaining non-sceptics that he’s just another Benoît Battistelli



  25. IRC Proceedings: Saturday, November 21, 2020

    IRC logs for Saturday, November 21, 2020



  26. [Meme] Good Advice From the FSF, So It's Time to #DeleteGitHub

    A good gift for the FSF would be git; not GitHub, but git



  27. Go Distributed, Go Encrypted, Go Secure, Transparency Still Possible

    Earlier today we enhanced access to our (sometimes anonymised) IRC logs by issuing text (ASCII) versions, which will from now onwards be a nightly/daily occurrence; we're also making everything we publish accessible from a large number of IPFS nodes (akin to P2P)



  28. IAM Celebrating and Glorifying Illegal Patents With Fake 'Awards' and Bogus 'Endorsements'

    IAM's fake 'awards' are nothing more than business and agenda-steering lies; it's time to call out again the real corruption that's driving IAM (which is itself supporting and advocating corruption)



  29. Been There, Done That: Team UPC's 'October' Becomes 'Early November' and Now Late November

    The self-serving litigation fanatics who mislead their customers are still at it; Bristows says that UPC has no issues other than “delay”



  30. The Only Real Dialogue the 'European' Patent Office is Having... is With Litigation Parasites, Even Foreign Ones

    The EPO's mask falls off again, revealing a ruthless herd immunity-like mentality that welcomes patent trolls, threatens/condemns actual scientists, harms Europe and basically does a disservice to everybody


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts