Bonum Certa Men Certa

Microsoft GitHub Exposé — Part X — Connections to the Mass Surveillance Industry (and the Surveillance State)

Series parts:

  1. Microsoft GitHub Exposé — Part I — Inside a Den of Corruption and Misogynists
  2. Microsoft GitHub Exposé — Part II — The Campaign Against GPL Compliance and War on Copyleft Enforcement
  3. Microsoft GitHub Exposé — Part III — A Story of Plagiarism and Likely Securities Fraud
  4. Microsoft GitHub Exposé — Part IV — Mr. MobileCoin: From Mono to Plagiarism... and to Unprecedented GPL Violations at GitHub (Microsoft)
  5. Microsoft GitHub Exposé — Part V — Why Nat Friedman is Leaving GitHub
  6. Microsoft GitHub Exposé — Part VI — The Media Has Mischaracterised Nat Friedman's Departure (Effective Now)
  7. Microsoft GitHub Exposé — Part VII — Nat Friedman, as GitHub CEO, Had a Plan of Defrauding Microsoft Shareholders
  8. Microsoft GitHub Exposé — Part VIII — Mr. Graveley's Long Career Serving Microsoft's Agenda (Before Hiring by Microsoft to Work on GitHub's GPL Violations Machine)
  9. Microsoft GitHub Exposé — Part IX — Microsoft's Chief Architect of GitHub Copilot Sought to be Arrested One Day After Techrights Article About Him
  10. YOU ARE HERE ☞ Connections to the Mass Surveillance Industry (and the Surveillance State)


GitHub: Where everything comes to die



Summary: Many people have long spoken about GitHub's ties to ICE; few have paid attention to intelligence ties, including the NSA and Nat Friedman's proximity to people from Palantir

"I saw your article expressing concerns about Nat Friedman's character on TechRights.org," a source has has told us. "I'm sure you're already aware of the various surveillance tech patents and his connections to Palantir."

"Over the past few years we've casually mentioned that -- putting programmes such as PRISM aside -- Microsoft hired from the NSA for leadership positions at GitHub."Those are software patents; some are connected to Novell. And there's also some interesting stuff in here. To quote: "During the course of a computer session, many actions may be performed on a computer. For several reasons, including increasing workforce productivity, it may be desirable to monitor these actions. Known applications enable monitoring of actions performed on the computer through logging of events, such as keystrokes, web sites visited, emails sent/received, windows viewed, and passwords entered. Known applications further enable capturing of screen shots at scheduled time intervals. Known event monitoring applications are typically run in stealth mode to make them undetectable to users of the monitored computer."

Spyware?

Well, purely moral objections aside, that one sounds like a software patent (which we oppose).

Over the past few years we've casually mentioned that -- putting programmes such as PRISM aside -- Microsoft hired from the NSA for leadership positions at GitHub. Moreover, GitHub introduced programmes wherein people's code will be silently 'fixed', without the developers' intervention. This exacerbated an already-worrying situation, as the NSA not only spies (through Microsoft) on everything in GitHub; it can control the supply chain and, in theory, can deliver specially-crafted downloads to people it wishes to spy on. Not an unprecedented strategy we might add...

As it turns out, there's more to it than we previously knew. We'll come to the 'meat' of it in just a moment.

"We remind readers that we wrote a great deal about Skype when Microsoft bought it, in effect taking a European company to the United States, then changing the network topology to make wiretapping easier."When you speak to people who have worked for a variety of companies and saw things from within you get to discover unwritten (mostly verbal) information. Our informants casually dropped some pointers. "Also want to say I have other tech abuses unrelated to these guys I've been exposed to that I wish were more reported on like ElasticSearch being a basically a public sector wing of the NSA..."

Well, the ElasticSearch story is also interesting, especially if we have documents related to this, because at my job we use ElasticSearch sometimes. I didn't know about connections to the NSA until those were shown to me. It's not imaginary; it's very real. "So I briefly worked with some former NSA people," a source told us, and "one of them said that people working at the NSA get tired of being restricted by federal law so they go into the private sector and turn surveillance into a product..."

We remind readers that we wrote a great deal about Skype when Microsoft bought it, in effect taking a European company to the United States, then changing the network topology to make wiretapping easier. About a year later, owing to Edward Snowden's NSA leaks, we saw that Microsoft had almost instantaneously added Skype to PRISM, a programmes in which Microsoft was the first (as if it was pioneered by Microsoft and the NSA).

"Another one [of the colleagues] said that ElasticSearch is significantly composed of ex-NSA."

"Well, almost nobody checks the binaries."So it's the same as Cloudera or Hortonworks (the company they bought; Red Hat's current CEO is coming from their board).

It's what some people call an "open secret"; a lot of companies in the US are connected to the military. A site called "Tech Inquiry" notes: "In the first of a two-part report, Easy as PAI (Publicly Available Information) dissects the subcontracting networks behind Project Maven, as well as its broader context in PAI aggregation within the Secure Unclassified Network (SUNet) and for US Special Operations Command (USSOCOM). We also map out the subcontracting networks involving US Department of Defense procurement of location-tracking technologies, including how they involve well-known think tanks."

"Elastic has Endgame now," our source noted, as "there's lots of stuff about them working with the NSA on their website; I don't know if there's any backdoors in their open source stuff but probably."

Well, almost nobody checks the binaries. It's just one among other issues and sadly a lot of people trust that anything they download from GitHub is 1) benign 2) received at the downloader's end with full integrity. In the age of 'Clown Computing' or 'SaaS' [sic] we're meant to just trust programs we have no control of and not even any real understanding of.

"In the age of 'Clown Computing' or 'SaaS' [sic] we're meant to just trust programs we have no control of and not even any real understanding of."On the subject of GitHub more specifically, "Nat Friedman has an executive assistant that worked at Palantir as Chief of Staff." Title is Chief of Staff to Global Head of Business Development at Palantir.

A close friend of Friedman has "also mentioned some friend of theirs that was an early employee at Palantir," according to the source, which "never got a name... told me he lives in Tarrytown and gave his wife a million dollars and she left him and he was selling his house..."

In the next part we'll continues to explore privacy/surveillance aspects. Also, there's a trial due one week from now.

If you know more, please get in touch with us. This is one of several parts about the "intelligence" ties of GitHub and other Microsoft tentacles.

Recent Techrights' Posts

Nobody is "Replaced by AI", It's Just a Smokescreen for Jobs Being Eliminated by Lack of Money (Too Much Debt) and Offshoring
It's also why many make the jokes about the "I" in "AI" being "India" or "Indians"
The US Government is Now in the Business (Literally!) of Saving Microsoft and Intel
This means that President TACO/Cheeto now has greater financial incentive to also prop up Microsoft and Windows
 
The UEFI Restricted Boot 'Time Bomb' is About to Go Off in a Few Weeks
Garrett was the first person to face sanctions (like muting) in our IRC channels because of his abuse; worse yet, he hijacked other people's names and then locked them out of their own accounts
Should Currys PCWorld Start Voiding Warranties of Users of Vista 11?
If a person's laptop has a mechanical issue, should this person replace GNU/Linux with Vista 11 for the repair shop? Only to damage the SSD?
Newer is Not Always Better, and It's Possible That 'Peak' is the Past
People creating their own platforms means progress, whereas centralisation (like moving from blogs to social control media) is the opposite of progress
LLM Hype is Sowing Destruction: It Contributes to DDoS Attacks and Makes the Web Less Accessible (JavaScript "R U Human?" Tests)
If it was googlebot, it would be possible to argue that you'd at least then get referral traffic from Google Search. With LLMs, all you get is plagiarised.
Links 24/08/2025: New York Times Talks About Hey Hi (AI) Bubble
Links for the day
Gemini Links 24/08/2025: Upgrading Debian and Mobile-indifferent Design
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, August 23, 2025
IRC logs for Saturday, August 23, 2025
Richard Stallman's Talk in Buenos Aires Scheduled for 16 November 2025 (a Month After FSF Turns 40)
they've just updated their site and Stallman is listed first
Men Who Abuse Women Should Never Spend Over 3 Years of the UK High Court's Time
This demonstrates that we need a reform in the UK
Slopwatch: Linux Journal, WebProNews, LinuxSecurity, and the Serial Slopper
The bubble needs to burst, but even then the Web will be left with residues of these slopfarms
Links 23/08/2025: Science, War, and Important Win for the British Media Against SLAPPers Who Abuse Women
Links for the day
Gemini Links 23/08/2025: BaseLibre Numerical System and Back to Oldschool
Links for the day
"Deserved Victory" for "Women That Suffered"
"GNM defended its reporting as being both true and in the public interest and in a judgment on Friday"
Links 23/08/2025: onmicrosoft.com as Spam Cannon, The Cheeto-Intel Deal Is Official
Links for the day
Wired Complained About LLM Slop Only Days Before It Got Caught Doing That Itself
Never throw stones in a glass house
IBM "Value" Down 14.16% in a Month, Red Hat Layoffs Allegedly Discussed 12 Days Ago
"IBM is a dinosaur. Dinosaurs get extinct when the don't keep up."
We're Seeing More Countries Where Windows Isn't Even in Second Place Anymore (Third or Worse)
In a way, Microsoft can barely even hold onto second place anymore
Microsoft Workers on Canonical's Payroll
If you want something that's sort of like Ubuntu but is not controlled by Canonical, then look into Linux Mint, Debian, or LMDE
GNU/Linux Climbs to 4% in Sierra Leone
Sierra Leone isn't a very rich country (to say the least), but it's better off than some of its neighbours
The SLAPPS Run Out of Oxygen Because They're Abuse of Process
At the end of the day we plan to publish over 1,000 articles explaining what happened
The Register MS Gets Paid by the Employer of the Previous Editor in Chief to Promote the "AI" Ponzi Scheme, Which Does Considerable Damage to the Web and to Online Journalists
The Register MS can 'badmouth' slop all it wants; it gets paid to inflate this bubble. It's actively participating in it.
Soon It'll be Autumn, Time to Repair Things
Where they don't charge an arm and a leg
Doing Our Best to Cover Software Patents When the Mainstream Media Does Not
Even the FSF has its limits
Gemini Links 23/08/2025: August Questions and Network Solutions
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, August 22, 2025
IRC logs for Friday, August 22, 2025
Microsoft Has Issues in Guyana
It's not just Guyana
About 25% of the "Linux" News/Results in Google News Today Are LLM Slop, Almost 20% From the Same Rogue Operators of Slopfarms
Google, which tries to market itself as an LLM giant, apparently fails to understand what's wrong with it
Harassing People on Holiday
There are "no-go areas"; but that assumes all laws firms have ethical standards
The Great, Undeniable Value of Paper Trail, Not Purely Digital Systems
Suppose you have nothing but bits on someone else's computer and "word of mouth"...
The Company Behind Ars Technica, Reddit and Wired Caught Publishing LLM Slop (It Also Admits It Now)
Condé Nast busted
Links 22/08/2025: Lagrange 1.18.8, Wired Magazine and Business Insider Caught Resorting to LLM Slop
Links for the day
This Saturday It's Gonna be 3.5 Years* Since Russia Invaded Ukraine. No Microsoft Protests Against Microsoft Having Provided Russia With Services.
Companies do not have consistent policies and enforcement of "corporate values" is somewhat of an egg salad
Slopwatch: Sites Gone Rogue, Google Promoting Lies, and DDoS Attacks by Plagiarism Giants
Charlatans and frauds engage in a war against artistic industries, mislabeling plagiarism as "AI"
Links 22/08/2025: Cisco Layoffs, LA Times Says "AI Hype is Fading Fast"
Links for the day
Gemini Links 22/08/2025: K for Kentucky and Caddy Versus LLM Slopbots
Links for the day
The "End Software Patents" Initiative of the FSF Explains "WHY [to] ABOLISH SOFTWARE PATENTS"
We hope to cover patent-related issues more and more as the big anniversary of the FSF approaches
Freenode Sniffing
The grown-ups left the building
The Only Thing Worse Than Misinformation is Misinformation Sold to Everyone as "Intelligence"
Misplaced trust is worse than none at all
The Register MS Now Openly Admits LLM Hype Does Damage, But It's Also Being Paid to Participate in the LLM Hype (With Paid 'Articles' and 'Webcasts' for Paying Advertisers)
The Register MS gets paid to do this
End of the Smartphone Era? No.
Maybe the media should focus on producing accurate, factual news
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, August 21, 2025
IRC logs for Thursday, August 21, 2025
Enshittification of Airports, Airlines, and Airplanes
If people are willing to tolerate standard declines and enshittification (nowadays sold as "pivot to AI" or "replaced by AI" or "AI layoffs") they will pay for it some other way
Latest Is Not Greatest: The Case of "Foldable" Tech
don't be shamed into abandoning old things just because the "fashion industry" of Apple and Samsung tells you to
Airlines and Their Tricks That Only Work in the 'Digital Age'
People sceptical of the direction technology has taken are not "Luddites"
Open Source Initiative (OSI), Which Became a Propaganda Front of Microsoft and "Hey Hi" (Hype, Misnomer), Wants You to Forget These Scandals
A lot of these issues won't be set aside until there's a resolution