Bonum Certa Men Certa

Microsoft GitHub Exposé — Part X — Connections to the Mass Surveillance Industry (and the Surveillance State)

Series parts:

  1. Microsoft GitHub Exposé — Part I — Inside a Den of Corruption and Misogynists
  2. Microsoft GitHub Exposé — Part II — The Campaign Against GPL Compliance and War on Copyleft Enforcement
  3. Microsoft GitHub Exposé — Part III — A Story of Plagiarism and Likely Securities Fraud
  4. Microsoft GitHub Exposé — Part IV — Mr. MobileCoin: From Mono to Plagiarism... and to Unprecedented GPL Violations at GitHub (Microsoft)
  5. Microsoft GitHub Exposé — Part V — Why Nat Friedman is Leaving GitHub
  6. Microsoft GitHub Exposé — Part VI — The Media Has Mischaracterised Nat Friedman's Departure (Effective Now)
  7. Microsoft GitHub Exposé — Part VII — Nat Friedman, as GitHub CEO, Had a Plan of Defrauding Microsoft Shareholders
  8. Microsoft GitHub Exposé — Part VIII — Mr. Graveley's Long Career Serving Microsoft's Agenda (Before Hiring by Microsoft to Work on GitHub's GPL Violations Machine)
  9. Microsoft GitHub Exposé — Part IX — Microsoft's Chief Architect of GitHub Copilot Sought to be Arrested One Day After Techrights Article About Him
  10. YOU ARE HERE ☞ Connections to the Mass Surveillance Industry (and the Surveillance State)


GitHub: Where everything comes to die



Summary: Many people have long spoken about GitHub's ties to ICE; few have paid attention to intelligence ties, including the NSA and Nat Friedman's proximity to people from Palantir

"I saw your article expressing concerns about Nat Friedman's character on TechRights.org," a source has has told us. "I'm sure you're already aware of the various surveillance tech patents and his connections to Palantir."

"Over the past few years we've casually mentioned that -- putting programmes such as PRISM aside -- Microsoft hired from the NSA for leadership positions at GitHub."Those are software patents; some are connected to Novell. And there's also some interesting stuff in here. To quote: "During the course of a computer session, many actions may be performed on a computer. For several reasons, including increasing workforce productivity, it may be desirable to monitor these actions. Known applications enable monitoring of actions performed on the computer through logging of events, such as keystrokes, web sites visited, emails sent/received, windows viewed, and passwords entered. Known applications further enable capturing of screen shots at scheduled time intervals. Known event monitoring applications are typically run in stealth mode to make them undetectable to users of the monitored computer."

Spyware?

Well, purely moral objections aside, that one sounds like a software patent (which we oppose).

Over the past few years we've casually mentioned that -- putting programmes such as PRISM aside -- Microsoft hired from the NSA for leadership positions at GitHub. Moreover, GitHub introduced programmes wherein people's code will be silently 'fixed', without the developers' intervention. This exacerbated an already-worrying situation, as the NSA not only spies (through Microsoft) on everything in GitHub; it can control the supply chain and, in theory, can deliver specially-crafted downloads to people it wishes to spy on. Not an unprecedented strategy we might add...

As it turns out, there's more to it than we previously knew. We'll come to the 'meat' of it in just a moment.

"We remind readers that we wrote a great deal about Skype when Microsoft bought it, in effect taking a European company to the United States, then changing the network topology to make wiretapping easier."When you speak to people who have worked for a variety of companies and saw things from within you get to discover unwritten (mostly verbal) information. Our informants casually dropped some pointers. "Also want to say I have other tech abuses unrelated to these guys I've been exposed to that I wish were more reported on like ElasticSearch being a basically a public sector wing of the NSA..."

Well, the ElasticSearch story is also interesting, especially if we have documents related to this, because at my job we use ElasticSearch sometimes. I didn't know about connections to the NSA until those were shown to me. It's not imaginary; it's very real. "So I briefly worked with some former NSA people," a source told us, and "one of them said that people working at the NSA get tired of being restricted by federal law so they go into the private sector and turn surveillance into a product..."

We remind readers that we wrote a great deal about Skype when Microsoft bought it, in effect taking a European company to the United States, then changing the network topology to make wiretapping easier. About a year later, owing to Edward Snowden's NSA leaks, we saw that Microsoft had almost instantaneously added Skype to PRISM, a programmes in which Microsoft was the first (as if it was pioneered by Microsoft and the NSA).

"Another one [of the colleagues] said that ElasticSearch is significantly composed of ex-NSA."

"Well, almost nobody checks the binaries."So it's the same as Cloudera or Hortonworks (the company they bought; Red Hat's current CEO is coming from their board).

It's what some people call an "open secret"; a lot of companies in the US are connected to the military. A site called "Tech Inquiry" notes: "In the first of a two-part report, Easy as PAI (Publicly Available Information) dissects the subcontracting networks behind Project Maven, as well as its broader context in PAI aggregation within the Secure Unclassified Network (SUNet) and for US Special Operations Command (USSOCOM). We also map out the subcontracting networks involving US Department of Defense procurement of location-tracking technologies, including how they involve well-known think tanks."

"Elastic has Endgame now," our source noted, as "there's lots of stuff about them working with the NSA on their website; I don't know if there's any backdoors in their open source stuff but probably."

Well, almost nobody checks the binaries. It's just one among other issues and sadly a lot of people trust that anything they download from GitHub is 1) benign 2) received at the downloader's end with full integrity. In the age of 'Clown Computing' or 'SaaS' [sic] we're meant to just trust programs we have no control of and not even any real understanding of.

"In the age of 'Clown Computing' or 'SaaS' [sic] we're meant to just trust programs we have no control of and not even any real understanding of."On the subject of GitHub more specifically, "Nat Friedman has an executive assistant that worked at Palantir as Chief of Staff." Title is Chief of Staff to Global Head of Business Development at Palantir.

A close friend of Friedman has "also mentioned some friend of theirs that was an early employee at Palantir," according to the source, which "never got a name... told me he lives in Tarrytown and gave his wife a million dollars and she left him and he was selling his house..."

In the next part we'll continues to explore privacy/surveillance aspects. Also, there's a trial due one week from now.

If you know more, please get in touch with us. This is one of several parts about the "intelligence" ties of GitHub and other Microsoft tentacles.

Recent Techrights' Posts

There's Nothing "Funny" About Attacking Free Speech and Software Freedom
persistent focus on the principal issues is very important
GNU/Linux Adoption in Africa, a Passageway Towards Freedom From Neo-Colonialism
Digi(tal)-Colonialism and/or Techolonialism are a thing. Can Africa flee the trap?
 
Links 05/12/2023: Microsoft's Chatbot as Health Hazard
Links for the day
Professor Eben Moglen Explained How Software Patent Threats Had Changed Around 2014 (Alice Case) and What Would Happen Till 2025
clip aged reasonably well
CNN Contributes to Demolition of the Open Web
Reprinted with permission from Ryan Farmer
Eben Moglen on Encryption and Anonymity
The alternate net we need, and how we can build it ourselves
Yet More Microsofters Inside the Board of Mozilla (Which Has Just Outsourced Firefox Development to Microsoft's Proprietary Prison)
Do you want a browser controlled (and spied on) by such a company?
IRC Proceedings: Monday, December 04, 2023
IRC logs for Monday, December 04, 2023
GNU/Linux Now Exceeds 3.6% Market Share on Desktops/Laptops, According to statCounter
things have changed for Windows in China
Over at Tux Machines...
GNU/Linux news
Links 05/12/2023: Debt Brake in Germany and Layoffs at Condé Nast (Reddit, Wired, Ars Technica and More)
Links for the day
[Meme] Social Control Media Giants Shaping Debates on BSDs and GNU/Linux
listening to random people in Social Control Media
Reddit (Condé Nast), Which Has Another Round of Layoffs This Month, Incited People Against GNU/Linux Users (Divide and Rule, It's 2003 All Over Again!)
Does somebody (perhaps a third party) fan the flames?
Who Will Hold the Open Source Initiative (OSI) Accountable for Taking Bribes From Microsoft and Selling Out to Enable/Endorse Massive Copyright Infringement?
it does Microsoft advocacy
Using Gemini to Moan About Linux and Spread .NET
Toxic, acidic post in Gemini
Web Monopolist, Google, 'Pulls a Microsoft' by Hijacking/Overriding the Name of Competitor and Alternative to the Web
Gulag 'hijacking' 'Gemini'
Links 04/12/2023: Mass Layoffs at Spotify (Debt, Losses, Bubble) Once Again
Links for the day
ChatGPT Hype/Vapourware (and 'Bing') Has Failed, Google Maintains Dominance in Search
a growing mountain of debt and crises
[Meme] Every Real Paralegal Knows This
how copyright law works
Forging IRC Logs and Impersonating Professors: the Lengths to Which Anti-Free Software Militants Would Go
Impersonating people in IRC, too
IRC Proceedings: Sunday, December 03, 2023
IRC logs for Sunday, December 03, 2023
GNU/Linux Popularity Surging, So Why Did MakeUseOf Quit Covering It About 10 Days Ago?
It's particularly sad because some of the best articles about GNU/Linux came from that site, both technical articles and advocacy-centric pieces
Links 04/12/2023: COVID-19 Data Misused Again, Anti-Consumerism Activism
Links for the day
GNOME Foundation is in Reliable Hands (Executive Director)
Growing some good in one's garden
Links 03/12/2023: New 'Hey Hi' (AI) Vapouware and Palantir/NHS Collusion to Spy on Patients Comes Under Legal Challenge
Links for the day
'Confidential Computing'? More Like a Giant Back Door.
CacheWarp AMD CPU Attack Grants Root Access in Linux VMs
IRC Proceedings: Saturday, December 02, 2023
IRC logs for Saturday, December 02, 2023
Links 03/12/2023: CRISPR as Patented Minefield, Lots of Greenwashing Abound
Links for the day