EDRi on EU public consultations on Internet and Big Brother issues:
Public consultations are an opportunity to influence policy-making at an early stage, and to help to shape a brighter future for your digital rights.
Below you can find the public consultations which EDRi finds relevant in 2017. (…) We will update the list on an ongoing basis, adding our responses to the consultations and other information that can help you get engaged.
Want to see a politician clearly? Remove emotional words from their statements.
"If human rights laws get in the way, we will change them." https://t.co/Ci9yt7I9d6
— Edward Snowden (@Snowden) August 5, 2017
I’m clear: if human rights laws get in the way of tackling extremism and terrorism, we will change those laws to keep British people safe. pic.twitter.com/8EfUJYUDMK
— Theresa May (@theresa_may) 6 juni 2017
Today, August 3rd 2017 WikiLeaks publishes documents from the Dumbo project of the CIA. Dumbo is a capability to suspend processes utilizing webcams and corrupt any video recordings that could compromise a PAG deployment. The PAG (Physical Access Group) is a special branch within the CCI (Center for Cyber Intelligence); its task is to gain and exploit physical access to target computers in CIA field operations.
Dumbo can identify, control and manipulate monitoring and detection systems on a target computer running the Microsoft Windows operating sytem. It identifies installed devices like webcams and microphones, either locally or connected by wireless (Bluetooth, WiFi) or wired networks. All processes related to the detected devices (usually recording, monitoring or detection of video/audio/network streams) are also identified and can be stopped by the operator. By deleting or manipulating recordings the operator is aided in creating fake or destroying actual evidence of the intrusion operation.
Wikileaks: Dumbo »
The Chinese government’s crackdown on the internet continues with the news that Apple has removed all major VPN apps, which help internet users overcome the country’s censorship system, from the App Store in China.
Techcrunch: Apple removes VPN apps from the App Store in China »
Tense nervous headache? Perhaps your name is Tim Cook. For poor Tim has woken up this Sunday morning with a giant headache, and its name is China.
Techcrunch: Apple’s capitulation to China’s VPN crack-down will return to haunt it at home »
It’s going to be much harder to view the full web in Russia before the year is out. President Putin has signed a law that, as of November 1st, bans technology which lets you access banned websites, including virtual private networks and proxies. Internet providers will have to block websites hosting these tools. The measure is ostensibly meant to curb extremist content, but that’s just pretext — this is really about preventing Russians from seeing content that might be critical of Putin, not to mention communicating in secret.
• Engadget: Russian censorship law bans proxies and VPNs »
• TorrentFreak: Russia Bans ‘Uncensored’ VPNs, Proxies and TOR »
The recently approved dragnet surveillance powers will only increase the number of false accusations. “Data mining is probably an ineffective method for preventing terror attacks”, wrote the Dutch Scientific Council for Government Policy (WRR) in their 2016 report “Big data in a free and safe society” (“Big data in een vrije en veilige samenleving”). “Because each terror attack is unique, it is nearly impossible to create an accurate profile. Combined with the small number of attacks, this results in an unusably high error rate.”. If you don’t look Middle-Eastern, you might be able to convince yourself that it is better to be safe than sorry. However, a Norwegian philosopher Lars Svendsen demonstrated the short-sightedness of this argument already ten years ago in his book “A Philosophy of Fear”. According to Svendsen, Europe lives in a culture of fear: we believe that we are more and more often exposed to increasing danger, from epidemics to terrorism. In reality we are safer than ever, but precisely for this reason we can afford to be worried about dangers that will probably never materialise. Fear is a by-product of luxury.
EDRi ENDitorial: Draconian anti-terrorism measures instil terror »
The EU Court of Justice ruled this morning that the agreement on the transfer of passenger data (PNR) between the EU and Canada is incompatible with EU law. (…)
Sophie in ‘t Veld MEP, ALDE Group first vice-president, commented today:
“Two and a half years after the European Parliament raised serious concerns, the Court has made it crystal clear that the EU Canada agreement cannot be adopted in its current form. The agreement provides insufficient protection and safeguards for Europeans. The use of personal data is not rejected as such, but sensitive data relating to, for example, religious beliefs, cannot be collected without suspicion. Additionally, the data cannot be accessed without judicial authorisation and has to be deleted after the passenger has left Canadian territory.”
ALDE: EU Court rejects passenger data deal with Canada as it violates EU law »
The law cannot be upheld by breaking the law, said Joe McNamee, Executive Director of European Digital Rights. Reckless data retention and profiling have no place in a democratic, law-based society. Literally every independent body that has spoken out on the subject supports this analysis. The European Commission and EU Member States must now, at long last, take all necessary steps to abandon all illegal data retention laws and practices.
EDRi: EU Court rules that draft EU/Canada air passenger data deal is unacceptable »
On 5 April 2017, the Norwegian government proposed an amendment to the Norwegian code of criminal proceedings to allow the police to compel the use of biometric authentication. After two quick debates, the Norwegian Parliament passed the proposition into law on 21 June. (…)
The lack of specificity of an “electronic system” means this law has an extremely wide scope. We can, for example, envision that access to a personal device such as a mobile phone, which stores the access credentials to several cloud storage services, essentially gives away a more or less complete description of a person’s life. To entrust such decision to a single police officer with no due process means that an act with very far reaching consequences may be performed in a matter of seconds. (…)
There is also no reference to proportionality of the use of force. Although there is no reason to suspect this would be used in a disproportionate way, the lack of such a limitation means that we don’t know how far the use force might be taken.
In Xinjiang, China, citizens are being forced to install a targeted surveillance mobile app called Jingwang. Additionally, the government has set up random checkpoints on the streets to check whether the spyware is properly installed on your smartphone. On July 10th, mobile phone users in the region received a notification letting them know that they had 10 days to download and install the Jingwang spyware. Failure to install the app is punishable by up to 10 days imprisonment, according to the notice. According to the government, the spyware app has benign functions.
Privacy International is particularly concerned that suspicion of membership of the Gülen movement is based on the use of encryption, specifically a freely available messaging service called Bylock which the government claims is the communication tool of choice for Gülen supporters and was used to organise the coup. There is very little information about Bylock; it is not widely known among security experts or outside of Turkey, it is no longer available from any app store and its origins and developer are something of a mystery.
Privacy International @ Medium » Encryption At The Centre Of Mass Arrests: One Year On From Turkey’s Failed Coup »
