Bonum Certa Men Certa

Full Translation of Süddeutsche Zeitung Article About Blackhat Tactics (Keyloggers) in EPO (Updated)

See "Researchers link QWERTY keylogger code to NSA and Five Eye's Regin espionage malware"

NSA slide



Summary: The European Patent Office (EPO) finds itself at the centre of attention (unwanted attention) because of rogue activities

A FEW hours ago we wrote about the EPO's use of keyloggers, a practice so controversial (to say the least) that one can end up locked up in a cell for using it. Süddeutsche Zeitung, which wrote about the EPO before, is really putting some big pressure on the EPO right now (perhaps someone will resign soon). The German article has just been published by IP Kat in English. For our record we present it below:





The European Patent Office carried out secret surveillance on employees using keyloggers
€·         At the headquarters of the European Patent Office (EPO) two publicly accessible computers were fitted with cameras and surveillance technology during a period of several weeks.
€·         They were used in an internal procedure which involves a patent judge who is accused of having disseminated defamatory communications about the President of the EPO and other managers over a period of months.
€·         However, the action also affected many employees of the EPO, perhaps even members of the Administrative Council.


by Katja Riedel


The President of the European Patent Office (EPO) is set to travel to Brussels next week. There he will be received by the Legal Affairs Committee for "an exchange of views" according to the agenda. Benoît Battistelli is supposed to speak about the latest developments in patent law, the new patent courts and various other reforms.


There should be no lack of subjects for discussion in view of the ongoing state of crisis between Battistelli and many of the approximately 7,000 employees in Munich, Berlin, Vienna and The Hague. Since Battistelli initiated an extensive reform programme, which amongst other things has completely restructured the EPO’s career system, there have been vehement confrontations. Now a new and awkward subject has been added to the list: allegations of covert surveillance.

According to an internal document which the SZ has seen publicly accessible computers were placed under surveillance at the EPO towards the end of last year: by means of cameras and so-called keyloggers. This allows the recording of what the user types, which pages he accesses and how he communicates.

None of the users were aware that the devices had been installed

Some keyloggers are capable of taking snapshots of the screen. The camera records contemporaneously which person was operating the computer at the time in question. A particularly juicy detail here is that none of the users were aware that the devices had been installed - and the two computers which were equipped with these monitoring devices according to the confidential document of the internal investigation unit, were probably located on the first floor of the EPO headquarters at Erhardtstraße in Munich.

Namely, in a publicly accessible area, which was provided especially for the members of the Administrative Council - the highest authority in the European patent world - on which the representatives of the 38 member states sit. The visitors to the Patent Office who typically sojourn on the first floor also include patent attorneys. On Monday [8 June 2015] the EPO declined to comment on the internal document but did not contest its authenticity.

In the document drawn up by the Head of the EPO’s investigative unit and sent to the Data Protection Officer, the reason given for the surveillance measures was a defamation campaign against the President and other managers of the Office.

In fact, since the beginning of 2013, letters accusing Benoît Battistelli, and also his Croatian Vice President Zeljko Topic, of numerous misdeeds have been circulating. There were strong indications that these letters had been sent from the two computers in question to which not only every registered visitor but also every employee of the EPO could log in via a common password. Therefore, according to the internal communication, it was not possible to identify and monitor an individual user.

Covert surveillance of the terminals in question

Apparently the internal investigators had come across IP addresses that they could assign to both of the public computers. For this reason, according to their conclusion, there was no other option but to place the two machines in question under covert surveillance. If during the agreed six-week time window between 7th November and 18th December no further defamatory material was sent, neither the pictures nor the data would be analysed, it was stated. Until then, the information that was monitored would only be available to the members of the internal investigation unit and the IT technicians.

The matter is also particularly sensitive because during the period in which the surveillance was being carried out the 142th Meeting of the Administrative Council also took place in the building, namely on 10. and 11. December 2014.  In addition, the Budget and Finance Committee also met during the period in question.
The computers are apparently located near the room where the Council meets. Whether this body and the Office Administration, i.e. Battistelli, was involved in the procedure is unclear. This is not apparent from the document. This only includes handwritten notes of two of the signatories but the signatures are missing.

Even insiders expressed reservations

In fact not only was material sent, but also a suspected letter-writer was caught - hence the data were also analysed. A member of the Boards of Appeal of the Office, a patent judge, was apparently caught in the act and Battistelli immediately subjected him to a “house ban”. This was equal to a suspension and consequently a legally impermissible interference with the independence of that department [i.e. the Boards of Appeal], which was retroactively rubber-stamped by the Administrative Council.

However, the tide of indignation ran high. Off the record even insiders expressed their reservations about Battistelli’s actions. Politicians from individual member states and patent attorneys expressed their outrage in public and even spoke of violations of fundamental rights.

The EPO declined to comment on the sensitive document citing a pending procedure as its reason. The Administrative Council is due to decide on possible disciplinary action at one of its forthcoming meetings.



Merpel added: "This flagrant invasion of privacy comes in the wake of evidence that Mr. Battistelli has engaged a firm specialising in counter-surveillance and threat monitoring. Not because of any imminent terror threat, mind you: all this came about originally because it was suspected that an employee was circulating material alleged to be defamatory. One cannot help thinking in terms of the old cliche about using a sledgehammer to crack a mouse."

"Merpel, who has grown rather tired of appealing to the Administrative Council members to hold the EPO management to the same governance standards as would be required in their own national Patent Offices and civil services, wonders if this latest news will convince some of those on the fence that a more robust approach is required when they next attend an AC meeting at the EPO."

Our own remarks on it can be found in our prior article about it.

Update (15/6/2015): There are now more translations, including in additional languages, namely French and Dutch [PDF].

Recent Techrights' Posts

Writing and Coding Isn't Always Enough
Last year we had to assume a role we didn't have before: litigants
Autumn Has Come
Autumn should be exciting in all sorts of ways; it'll also mark our anniversary
 
Gemini Links 01/09/2025: News Corp. WSJ and A Month With NixOS
Links for the day
Slopfarms Already Peaked, They Will Die When Slop Companies Run Out of Money to Borrow
slopfarms will lack an actual "engine"
“Sideloading” Never Killed Anybody
There are many online discussions this week about the misnomer "sideloading"
Slopwatch: Google News as FUD Vector Against Linux and Plagiarism Enhancer, Serial Slopper (SS) Uses LLMs to Googlebomb "Linux"
Slop destroys the Web not just by screwing with search engines and helping plagiarists. It's also responsible for de facto DDoS attacks...
Links 01/09/2025: "Attacks on Science" and China's "Soft Power" Grows
Links for the day
Links 01/09/2025: Fresh Backlash Against Slop and "Norway’s Electricity Crisis is About to Hit Britain"
Links for the day
Links 01/09/2025: Catching Up (Mostly via Deutsche Welle), "Windows TCO" Effect in UK
Links for the day
Gemini Links 01/09/2025: Linguistic Barriers and "Web 1.0 Hosting"
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, August 31, 2025
IRC logs for Sunday, August 31, 2025
The UEFI 9/11 - Part IV - External Interference
They all seem to be playing a role in crushing Software Freedom and self-determination for users
Links 31/08/2025: Baggage Claim Scams, an Insurrectionist’s War on Culture, and a Sudden Robotics Hype
Links for the day
Gemini Links 31/08/2025: Reviewing Netsurf and Slightly Less Historic Ada Design
Links for the day
IBM Has Taken Control of GNOME
Don't expect a successor to be found any time soon
Links 31/08/2025: Google Gmail Data Breach and LF Puff Pieces for Pay
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, August 30, 2025
IRC logs for Saturday, August 30, 2025
This is What Google News Has Become
Moments ago
The Slopfarm WebProNews Has Turned Google News Into a Laughing Stock Full of Plagiarism by Slop
If Google News dies of neglect, that's one thing. It's starting to seem like active neglect by Google is a form of participation.
Do What is Moral, as What's Legal Isn't Always Moral
Do what's objectively moral, no matter the costs and the risks
Slopwatch: Google News Assisting Plagiarism and Anti-Linux FUD, Serial Slopper Rips Off Linux-Centric Journalists
This makes the Web a much worse place and lessens the incentive to do journalism
Links 30/08/2025: NVIDIA Fakes Results to Hide a Bubble Already in Implosion Phase, Data Breaches Galore, Important Win for Workers' Union in Canada
Links for the day
Representing and Speaking for Animals
If I ever choose to take this matter to tribunal with animals-centric NGOs on my side, it'll get some press coverage for sure
The UEFI 9/11 - Part II - Campaign of Censorship and Defamation Against Critics
In dictatorships, humour serves an important role. It's tragic.
In Kazakhstan, Yandex Estimated to be 20 Times Bigger Than Microsoft
Bing is measured as down this month
Shutterstock Not Enough? The Register MS Uses Slop Images in Articles (Seemingly More and More Over Time)
Cost-saving trajectory amid office shutdown?
Gemini Links 30/08/2025: Games, PostmarketOS, and Slop
Links for the day
Links 30/08/2025: Imgur Uproar and Many Ukraine Updates (Mediazona Reports Over 200,000 Russians Died for Putin)
Links for the day
How Not to Build Software
code forges that need a Web browser perhaps fill some 'niche' demand
GAFAM and "MATA"
The use of dark humour there hopefully helps illuminate what a lot of "modern" technology became like and how it interacts with human civilisation (to what ends and whose gain)
Birds Are Not "Pests and Vermin", Privacy is Not a Crime, and GNU/Linux is Not 'Hacking Platform'
I could not help but think of Free software analogies
The Sites Should Be Very Fast Again
That issue is now resolved
Flying in 2025
worse than ever before
Activists, Including Technical Activists, Need Not Pursue Affirmation
Techrights doesn't play or participate in a "popularity contest"
The UEFI 9/11 - Part III - Chaos is Scheduled to Happen Second Thursday of September (No Matter What the Microsofters Tell You)
The clock is ticking
Downplaying the Impact of "UEFI 9/11" is a Losing Strategy
we won't publish much whilst on holiday
Government Sites Should Run Free Software
Not proprietary bloatware with buzzwords
LLM Slopfarms Take No Breaks
When people run sites by bots they don't need to worry about "breaks"
GNOME Having a Meltdown Again
Thanks and farewell to Steven Deobald
Gemini Links 30/08/2025: Low Tech and Hunchbin 1.0.6
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, August 29, 2025
IRC logs for Friday, August 29, 2025