Obama threatens to veto greater intelligence oversight: Via Salon: Glenn Greenwald.

(updated below)

One of the principal weapons used by the Bush administration to engage in illegal surveillance activities -- from torture to warrantless eavesdropping -- was its refusal to brief the full Congressional Intelligence Committees about its activities.  Instead, at best, it would confine its briefings to the so-called "Gang of Eight" -- comprised of 8 top-ranking members of the House and Senate -- who were impeded by law and other constraints from taking any action even if they learned of blatantly criminal acts. 

This was a sham process:  it allowed the administration to claim that it "briefed" select Congressional leaders on illegal conduct, but did so in a way that ensured there could be no meaningful action or oversight, because those individuals were barred from taking notes or even consulting their staff and, worse, because the full Intelligence Committees were kept in the dark and thus could do nothing even in the face of clear abuses.  The process even allowed the members who were briefed to claim they were powerless to stop illegal programs.  That extremely restrictive process also ensures irresolvable disputes over what was actually said during those briefings, as illustrated by recent controversies over what Nancy Pelosi and other leading Democrats were told about Bush's torture and eavesdropping programs.  Here's how Richard Clarke explained it in July, 2009, on The Rachel Maddow Show: [ Read more ... ]

Investigators: Businesses buying your credit card number: Via NorthWest Cable News.

$10 here. $15 there. 

By putting little charges on your credit card  some companies are making tens of millions of dollars a year. These are businesses that you never gave your credit card number to.

Some consumer groups call it fraud, but it may be perfectly legal.

Christie Frison-Thornton, of Rainier, spotted a $19.95 charge just a few weeks ago.   A company called "Privacy Matters" billed her credit card.

"I thought what the heck is this? Cause I really did not have a clue," said Frison-Thornton. [ Read more ... ]

Advertising - Instant Ads Set the Pace on the Web: Via NYTimes.com .

Now, companies like Google, Yahoo and Microsoft let advertisers buy ads in the milliseconds between the time someone enters a site’s Web address and the moment the page appears. The technology, called real-time bidding, allows advertisers to examine site visitors one by one and bid to serve them ads almost instantly.

For example, say a man just searched for golf clubs on eBay (which has been testing a system from a company called AppNexus for more than a year). EBay can essentially follow that person’s activities in real time, deciding when and where to show him near-personalized ads for golf clubs throughout the Web.

If eBay finds out that he bought a driver at another site, it can update the ad immediately to start showing him tees, golf balls or a package vacation to St. Andrew’s, Scotland, often called the home of golf. If a woman was shopping, eBay could change the ad’s color or presentation. [ Read more ... ]

Mobile that allows bosses to snoop on staff developed: Via BBC News.

Researchers have produced a mobile phone that could be a boon for prying bosses wanting to keep tabs on the movements of their staff.

Japanese phone giant KDDI Corporation has developed technology that tracks even the tiniest movement of the user and beams the information back to HQ.

It works by analysing the movement of accelerometers, found in many handsets.

Activities such as walking, climbing stairs or even cleaning can be identified, the researchers say.

The company plans to sell the service to clients such as managers, foremen and employment agencies.

"Technically, I think this is an incredibly important innovation," says Philip Sugai, director of the mobile consumer lab at the International University of Japan. [ Read more ... ]

Worker ID Card at Center of Immigration Plan: Via Wall Street Journal.

Lawmakers working to craft a new comprehensive immigration bill have settled on a way to prevent employers from hiring illegal immigrants: a national biometric identification card all American workers would eventually be required to obtain.

Under the potentially controversial plan still taking shape in the Senate, all legal U.S. workers, including citizens and immigrants, would be issued an ID card with embedded information, such as fingerprints, to tie the card to the worker.

The ID card plan is one of several steps advocates of an immigration overhaul are taking to address concerns that have defeated similar bills in the past.

The uphill effort to pass a bill is being led by Sens. Chuck Schumer (D., N.Y.) and Lindsey Graham (R., S.C.), who plan to meet with President Barack Obama as soon as this week to update him on their work. An administration official said the White House had no position on the biometric card. [ Read more ... ]

"Your Papers, Please!" - Get Your Fingerprints Ready! Cross-Party Senate Alliance Pushing National ID Card: Via Lauren Weinstein's Blog.

Greetings. According to the Wall Street Journal, U.S. Senate immigration reform advocates Chuck Schumer and Lindsey Graham are proposing a mandatory biometric (e.g. fingerprint-based) National ID Card system, and are attempting to brush away privacy concerns as trivial and irrelevant.

Touted as "merely" a "right-to-work" card aimed at addressing illegal immigration concerns, there's simply no fast-talking around the fact that this plan will set in motion a massive national ID infrastructure that will ultimately penetrate every aspect of our lives. Anyone who suggests otherwise is -- sorry to say -- either a liar or a fool. [ Read more ... ]

The Weakest Link Redux: Via EFF.org Updates.

We often criticize DMCA takedown abuse here at EFF, but last week's Cryptome snafu highlights another facet of the problem: how a DMCA takedown for one item can result in the removal of lots of lawful material.

To recap, Cryptome posted Microsoft’s global criminal compliance manual. Microsoft sent a DMCA takedown notice to Cryptome’s domain name registrar and web hosting provider, Network Solutions, alleging that the post infringed copyright. Under the DMCA, a web hosting provider is protected from copyright infringement liability if, among other things, it “expeditiously” disables access to material properly identified in a DMCA takedown notice. Network Solutions asked Cryptome to remove the Microsoft compliance manual. Cryptome refused explaining that the document was posted in order to help the public better understand Microsoft's practices, and followed up with a DMCA counternotice. Network Solutions promptly shut down the entire Cryptome website. Thus, a complaint about a single document caused significant collateral damage to the perfectly legal material on Cryptome. [ Read more ... ]

Tracing attack source key to cybersecurity strategy, Chertoff says: Via Computerworld Security News.

Michael Chertoff, former head of the U.S. Department of Homeland Security, talked of the difficulties in creating a national cybersucurity plan during an interview with Computerworld.

The difficult task of identifying the true sources of cyber attacks remains one of the biggest challenges in the development of a national cybersecurity strategy, former Department of Homeland Security Secretary Michael Chertoff told Computerworld in an interview at the RSA Security conference here today.

Chertoff, who is participating in a panel discussion at the conference, said there is a growing need for the U.S to create a strong, formal strategy for responding to cyberattacks against American interests. [ Read more ... ]

U.S. Security Agencies Begging for a Cybersecurity "Cold War": Via Blog of Rights: Official Blog of the American Civil Liberties Union.

(Originally posted on Huffington Post.)

So the U.S. security establishment is salivating at the prospect of a new cybersecurity "Cold War." In an over-the-top op-ed in Tuesday's Washington Post, Mike McConnell issues a declaration that we are "fighting a cyber war today" and compares it to the nuclear showdown with the Soviets. McConnell exemplifies the security establishment as much as anyone — former director of the National Security Agency (NSA), former Director of National Intelligence, and currently executive vice president at Booz Allen Hamilton, a private-sector refuge for former U.S. intelligence officials (and a company that stands to make large sums from consulting on cybersecurity). [ Read more ... ]

Corporations Hide Flight Records From Public View: Via Center for Media and Democracy - Publishers of PR Watch.

A federal district court ruled that the public interest journalism group ProPublica can obtain a list of corporate-owned airplanes whose flight information was blocked from public view. ProPublica first sought the list in 2008 under the Freedom of Information Act, after the CEOs of General Motors, Ford and Chrysler flew to Washington, D.C. on corporate jets to ask Congress to bail out their companies. Those flights became known because the Federal Aviation Administration (FAA) provides real-time flight information that the public could see. But the bad publicity over the flights led General Motors to try and stop the public from tracking its planes in the future. [ Read more ... ]

Cyberwar Hype Intended to Destroy the Open Internet: Via Threat Level.

The biggest threat to the open internet is not Chinese government hackers or greedy anti-net neutrality ISPs, it’s Michael McConnell, the former director of national intelligence.

McConnell’s not dangerous because he knows anything about SQL injection hacks, but because he knows about social engineering:  McConnell is the nice-seeming guy who is willing and able to use fear-mongering to manipulate the federal bureaucracy for his own ends, while coming off like a straight shooter to those not in the know.

When he was head of the country’s national intelligence, he scared President Bush with visions of e-doom, prompting the president to sign a comprehensive secret order that unleashed tens of billions of dollars into the military’s black budget so they can start making firewalls and malware into military equipment. And now McConnell, back safely in civilian life as a vice president at the secretive defense contracting giant Booz Allen Hamilton, is out in front of Congress and the media, peddling the same Cybaremaggedon! gloom.

And now he says we need to re-engineer the internet. [ Read more ... ]

Cryptome's Publication of Microsoft's Compliance Manual is a Fair Use: Via EFF.org Updates.

Yesterday, Microsoft used a Digital Millennium Copyright Act (DMCA) takedown notice to demand that a copy of the "Microsoft® Online Services Global Criminal Compliance Handbook" (the Compliance Manual) be removed from Cryptome, a security website. As a result, Network Solutions felt obliged to takedown the entire Cryptome.org domain, a repository for thousands of important and controversial documents.

As is often the case, the ensuing uproar simply called more attention to the document in question. Yesterday evening, Microsoft wrote to Network Solutions and withdrew its takedown demand, while insisting that its copyright concern was nevertheless legitimate.

We appreciate that Microsoft acted quickly to correct its error, but are still disappointed that Microsoft nonetheless insists that, in the words of Evan Cox, outside counsel for Microsoft, "Microsoft has a good faith belief that the distribution of the file that was made available at that address infringes Microsoft's copyrights."

To the contrary, as we explain below, Cryptome's publication of the Compliance Manual is a clear fair use under the Copyright Act. [ Read more ... ]

Pentagon Discloses Hundreds of Reports of Possibly Illegal Intelligence Activities: Via EFF.org Updates.

The Department of Defense has released more than 800 heavily-redacted pages of intelligence oversight reports, detailing activities that its Inspector General has “reason to believe are unlawful.” The reports are the latest in an ongoing document release by more than a half-dozen intelligence agencies in response to a Freedom of Information Act (FOIA) lawsuit filed by EFF in July 2009.

The reports, submitted to the Intelligence Oversight Board (IOB) by various Department of Defense components, cover the period from 2001 through 2008. The IOB’s role within the Executive Office of the President is to ensure that each component of the intelligence community works within the Constitution and all applicable laws. As such, the Inspector General of each intelligence agency is required to submit periodic reports to the IOB, which in turn is required to forward to the Attorney General any report identifying an intelligence activity that violates the law. Intelligence oversight reporting is rarely disclosed to the public. [ Read more ... ]

Brief Facebook glitch sent private messages to wrong users: Via Law & Disorder Section - Ars Technica.

Last night, a number of Facebook users began getting hundreds of private messages and friend requests intended for other users, according to a Wall Street Journal report. While the problem was only temporary, it adds to the growing concern that Facebook doesn't do enough to ensure the privacy of its users' data. [ Read more ... ]

China Widens Net Censorship; Google Exile Looms: Via Threat Level.

The Chinese government is imposing new internet restrictions demanding personal-website operators to acquire central-government permission to operate their sites.

The latest censorship measure, which covers .cn domestic domains, comes as Google is trying to convince Chinese censors to ease up. Google said 43 days ago it would undertake a self-imposed exile from China if the government does not back off from requiring it to censor search results.

The government said the latest move — which also requires site owners to submit a photograph and to show identification — was targeted at tackling pornography. Critics, though said it was based on silencing political dissent. China did not say when the rules would be enforced. [ Read more ... ]

The Spy at Harriton High: Via Stryde Hax blog.

This investigation into the remote spying allegedly being conducted against students at Lower Merion represents an attempt to find proof of spying and a look into the toolchain used to accomplish spying. Taking a look at the LMSD Staff List, Mike Perbix is listed as a Network Tech at LMSD. Mr. Perbix has a large online web forum footprint as well as a personal blog, and a lot of his posts, attributed to his role at Lower Merion, provide insight into the tools, methods, and capabilities deployed against students at LMSD. Of the three network techs employed at LMSD, Mr. Perbix appears to have been the mastermind behind a massive, highly effective digital panopticon.
PanoMasterMind

The primary piece of evidence, already being reported on by a Fox affiliate, is this amazing promotional webcast for a remote monitoring product named LANRev. [ Read more ... ]

Leaked ACTA draft reveals plans for internet clampdown: Via Computerworld(NZ).

ISPs must snoop on subscribers or face being sued by content owners

The US, Europe and other countries including New Zealand are secretly drawing up rules designed to crack down on copyright abuse on the internet, in part by making ISPs liable for illegal content, according to a copy of part of the confidential draft agreement that was seen by the IDG News Service.

It is the latest in a series of leaks from the anticounterfeiting trade agreement (ACTA) talks that have been going on for the past two years. Other leaks over the past three months have consisted of confidential internal memos about the negotiations between European lawmakers.

The chapter on the internet from the draft treaty was shown to the IDG News Service by a source close to people directly involved in the talks, who asked to remain anonymous. Although it was drawn up last October, it is the most recent negotiating text available, according to the source.

It proposes making ISPs (internet service providers) liable under civil law for the content their subscribers upload or download using their networks. [ Read more ... ]

New York Police Databases Hold Identifying Clues: Via NYTimes.com .

The tattoo database is one of dozens kept by the Police Department in its technological information hub, the Real Time Crime Center, to jump-start criminal investigations by giving detectives more to go on than a person’s height and weight.

Aside from arrest data and the tattoo database, the center, which was created in 2005, breaks down information in all sorts of ways. There is a database for body marks, like birthmarks and scars. It keeps track of teeth, noting missing ones and gold ones. It keeps track of the way people walk: if there is a limp, it notes its severity. And it has a so-called blotchy database, of skin conditions.

The databases are fed, in part, by arrest reports; officers are instructed to take detailed notes and enter them into a computer program that moves the information to a large server.

Inspector Kenneth G. Mekeel, commanding officer of the crime center, said cadets were “taught in the academy to take down as much as they can.” [ Read more ... ]

Discussing Citizens United with Larry Lessig: Via Salon: Glenn Greenwald.

Just in case readers here forgot how angry they were with me for my partial defense of the Citizens United decision, permit me to risk once again provoking the hornets' nest by recommending this 20-minute discussion I had on Monday night with Harvard Law Professor Larry Lessig on The Young Turks.  At The Huffington Post, Lessig wrote this response to the arguments I made about the case, and we had what I thought was a very constructive and enlightening discussion of the relevant issues:

Read Original Article:(Via Salon: Glenn Greenwald.)

Philly authorities target Facebook, Twitter after snowball fight turns ugly: Via The Social - CNET News.

Two members of Philadelphia's city council are considering legal action against Facebook, Twitter, and MySpace in the wake of a "flash mob" earlier this week that turned violent, according to a letter sent to the city's mayor and obtained by CNET. They claim that social-media sites don't do enough to keep tabs on violence that could be organized through their communication channels.

No charges have been drawn up, in the letter the councilmembers ask the permission of Mayor Michael Nutter to "pursue the possibility" of a lawsuit. [ Read more ... ]

Google Books Fosters Intellectual, Legal Crossroads: Via Threat Level.

Nobody in their right mind opposes the intellectual soundness of digitizing the world’s books – even titles gathering dust in the stacks of university libraries — and making them available online.

Yet Google will encounter stiff resistance in a Manhattan federal court Thursday during a marathon hearing that could grant Google the keys to free the written word from a business and intellectual model as old as paper and ink.

“The benefits of approval are bounded only by the limits of human creativity and imagination,” Google told U.S. District Judge Denny Chin in a recent court filing ahead of Thursday’s hearing.

The final word on the so-named “Google Books” plan won’t rest with Judge Chin, and instead likely could fall on the U.S. Supreme Court. [ Read more ... ]

Cybersecurity is Not Your Gig, NSA!: Via Blog of Rights: Official Blog of the American Civil Liberties Union.

The news that the NSA and Google are working on a deal for the military agency to help protect the information giant's data networks comes at a time when the NSA is angling to get a major piece of cybersecurity action.

The only problem is, despite what the agency would have us believe, the NSA is mainly a spy agency, not a cybersecurity agency. The agency's website says:

The NSA/CSS core missions are to protect U.S. national security systems and to produce foreign signals intelligence information.

The Information Assurance mission confronts the formidable challenge of preventing foreign adversaries from gaining access to sensitive or classified national security information. The Signals Intelligence mission collects, processes, and disseminates intelligence information from foreign signals for intelligence and counterintelligence purposes and to support military operations. [ Read more ... ]

GPS Tracking: Turning Science Fiction Into Reality: Via Blog of Rights: Official Blog of the American Civil Liberties Union.

As a fan of the The Wire, I can find lots of plot twists and exciting scenes that illustrate the basic constitutional balance between the rights of individuals and the power of law enforcement. The Wire portrays police who follow the rules and those who don't as they wiretap, search, photograph and otherwise conduct their investigations into complex criminal cases.

In one episode, Detective Leander Snydor has followed a drug dealer to a house which might link him to other criminal relationships. Snydor skillfully walks past the dealer's car, fixes a GPS tracking system to the underside of the vehicle, and walks away with a whistle.

That might seem like smart cop work when aimed at an enormous, fictional drug ring in the mean streets of Baltimore. But GPS is no longer HBO fiction. In Madison, Wisconsin, where law enforcement agents used GPS to track someone suspected of violating a restraining order without first getting a warrant, it's very, very real. Unfortunately, according to the Wisconsin Court of Appeals, we should let go of the expectation that police need permission to track our movements. [ Read more ... ]

Our human rights vs. The Others: Via Salon: Glenn Greenwald.

(updated below - Update II)

Ten American Baptists were arrested two weeks ago in Haiti on charges that they exploited the chaos in that country by attempting to smuggle 33 young Haitian children across the border without permission -- either to bring them to a life of Christianity or (as some evidence suggests) to filter them into a child trafficking ring.  National Review's Kathryn Jean Lopez is deeply upset by the plight of at least one of the detained Americans, Jim Allen, whom she contends (based exclusively on his family's claims) is innocent.  Lopez demands that the State Department do more to "insist" upon Allen's release, and -- most amazingly of all -- complains about the conditions of his detention.   She has the audacity to cite a Human Rights Watch description of prison conditions in Haiti as "inhumane."  Lopez complains that Allen was waterboarded, stripped, frozen and beaten has "hypertension," was shipped thousands of miles away to a secret black site beyond the reach of the ICRC and then rendered to Jordan allowed to speak to his wife only once in the first ten days of his confinement, and was consigned to years in an island-prison cage with no charges denied his choice of counsel for a few days (though he is now duly represented in Haitian courts by a large team of American lawyers). [ Read more ... ]

Google Alters Buzz Service Over Privacy Concerns - NYTimes.com: Via NYTimes.com .

Google moved quickly over the weekend to try to contain mounting criticism of Buzz, its social network, apologizing to users for features that were widely seen as endangering privacy and announcing product changes to address those concerns.

Todd Jackson, product manager for Gmail and Google Buzz, wrote in a blog post on Saturday that Google had decided to alter one of the most-criticized features in Buzz: the ready-made circle of friends the service provided to new users based on their most frequent e-mail and chat contacts in Gmail. Instead of automatically connecting people, Buzz will in the future merely suggest to new users a group of people they may want to follow or be followed by, he said.

Mr. Jackson, who said that the auto-follow feature had been intended to make it easy for people to get started on Buzz, acknowledged the criticism that was heaped on Google in the last few days.

“We’re very sorry for the concern we’ve caused and have been working hard ever since to improve things based on your feedback,” Mr. Jackson wrote. “We’ll continue to do so.” [ Read more ... ]