Updates from August, 2018 Toggle Comment Threads | Keyboard Shortcuts

  • Earthling 1:00 pm on August 2, 2018 Permalink | Reply
    Tags: committe on information policy, google docs data leak, google docs leak, leak, , Pavel Medvedev, personal data on internet, personal info on google docs, , salary, schedule, yandex leak data, yandex private data   

    Russian State Duma complains to Roskomnadzor about leaks from Google Docs 

    The Head of the Committee on Information Policy, Leonid Levin, believes that search engines are not to blame for the leaks, but rather employees of companies leaked the files, and he called for “the perpetrators to be punished.”

    Google Docs data once again got into the search results of the Russian search engine Yandex. In the advanced search, user documents now show up in the “schedule” and “salary” search results. The press service of Yandex said that the data in question “is not prohibited for indexing”: “on our side nothing has changed. The documents in question are linked to the internet.”

    This is not the first time documents have been leaked from Google Docs and found on Yandex. On the evening of July 4, web users noticed that in the search results of Yandex you can find confidential data from users’ documents on Google Docs, such as passwords, contact databases, and other personal information.

    After this case, the SEO specialist Pavel Medvedev found personal data of Russians in the search results — scans of passports, bank payments, tickets for planes and trains, etc. Yandex has repeatedly officially reported that unsecured documents and files are available in the search results, the owners of which are allowed to access them by hyperlink.

    The deputies of the Russian parliament have already responded to incidences of the leakage of data indexed under “schedule” and “salary.” At a press conference, the Head of the State Duma Committee on Information, Information Technology and Communications Leonid Levin said that Roskomnadzor should conduct a thorough investigation into the user data from Google Doc files in the search results of Yandex:

    “Here there is the fact that the legal persons who process the data of third parties failed to comply with the responsibility of protecting this data. And this is a direct issue for Roskomnadzor, which should, of course, conduct a thorough investigation and punish the perpetrators.”

    According to Levin, Yandex is a search engine, a robot that finds everything that is unencrypted and publicly available.

    “This is a direct disregard for the protection of personal data that the company takes upon itself when receiving data from citizens,” the parliamentarian said.

    Meanwhile, the Administrative Code provides for fines for those companies that did not ensure the safety of personal data of citizens who used their services.

    Translated from https://roskomsvoboda.org/40690/

     
  • Earthling 12:03 am on July 6, 2018 Permalink | Reply
    Tags: , chinese, chinese surveillance, communists, cyberwarfare, data protection, data security, Edmodo, EdSurge, , Net Dragon, Pep So, , personal information, William Carter   

    Chinese investments in education may have an effect on American data security 

    EdSurge released material on what will happen to the confidentiality of student data when Chinese companies purchase American educational startups.

    The face recognition technologies used in China raise many concerns among experts in the field of data protection. Now Chinese companies are investing more and more in American educational technology. For example, the Chinese game developer Net Dragon bought the school management system Edmodo for $137.5 million. Edmodo is used in many American schools and has about 90 million users.

    “Experts worry about what will happen to the personal data of the students. Data is a strategic resource,” says William Carter, Deputy Director of the Center for Strategic and International Studies. “If China gets access to a lot of US data, it will have a strategic impact on the United States.”

    Representatives of Net Dragon argue in reponse that their goal is to increase profits, and not spying. According to Pep So, Corporate Development Director at Net Dragon, the company will act in accordance with the US Federal Act on the Protection of the Personal Information of Children on the Internet. “Of course, we want to protect the data of our users, but we also want to get into the target audience, and it’s quite difficult to achieve a balance here. Right now we do not have a clear answer as to what can or shouldn’t be done. To be honest, I think this is something Facebook does not know,” commented So.

    Translated from Edutainme: http://www.edutainme.ru/post/data-china-usa/

     
  • Earthling 9:30 pm on June 25, 2018 Permalink | Reply  

    Russian Central Bank orders banks to check the devices of customers 

    The Central Bank of Russia has now introduced a measure to analyze the parameters of customer devices in financial transactions, which they say will help in combating money laundering and the financing of terrorism.

    According to the latest version of the Central Bank’s regulations, banks are now required to analyze the specific and unique settings and parameters of all devices through which customers transfer money, and assign IDs to these devices.

    If the identities of different clients coincide, the bank will have to consider them as clients with an increased level of risk, explains Natalya Pozdeeva, Managing Director for IT and Technologies of Absolut Bank.

    Meanwhile, the bank VTB noted that many banks are already using IT data to analyze customer actions: the Central Bank only officially formalized this practice.

    VTB also explained that it is unlikely that such innovations will somehow restrict the freedom of customers. On the contrary, banks will now be more careful about every transaction, especially in terms of their security.

    The Central Bank has previously ordered Russian banks to report on hacker attacks. Operators must report to the Bank of Russia how much money the attackers attempted to steal during the reporting period, and how much they managed to steal. One important statistic is the amount of stolen funds returned by the operator to their customers.

    Earlier, users on social networks published a screenshot which says that the three leading banks in Russia — Sberbank, VTB and Alfa Bank — are required to check the transfers of individuals. The screenshot also says that “the financial intelligence service is preparing for the FATF verification ». It is assumed that the analysis of past transactions will be carried out, especially daily activity.

    Translated from RosKomSvoboda: https://roskomsvoboda.org/39789/

     
  • Earthling 8:53 pm on June 24, 2018 Permalink | Reply
    Tags: ECHR, European Court of Human Rights, , , , , , , , Telegram in Russia   

    Telegram has filed a second complaint with the ECHR 

    telega-to-espch-1

    The messenger’s creators dispute its blocking by Russian authorities in response to Telegram’s failure to provide encryption keys.

    Representatives of the Telegram messenger filed a second complaint with the European Court of Human Rights concerning the messenger’s conflict with the Russian authorities. This time, the complaint concerns the decision of the Russian authorities to block the messenger, as was specified by Pavel Chikov, head of the Kazan-based human rights organization AGORA, in his Telegram channel.

    “As a result of restricting access to Telegram, the possibility of freely distributing and receiving information could be lost not only by the applicant, but also up to 15 million users, who may lose access to a secure internet communications service, as well as a huge archive of unique information that can not be obtained from other sources,” noted Pavel Chikov.

    He also said that in the near future a cassation appeal will be submitted to the presidium of the Moscow City Court, and if necessary, to the Supreme Court of Russia. “We will notify the Secretariat of the European Court of significant changes in the case, including the consideration of cassation complaints,” Chikov wrote.

    According to the lawyer, the messenger’s representative mention in their complaint that “besides the exchange of messages, Telegram provides the possibility of operating public Telegram channels, which are one of the few independent and free modes of information dissemination and exchange of views on socio-political issues.”

    Such a method, the lawyers note, allows the author or group of authors not only to share information with an unlimited number of persons with a minimum distance between the reader and content, but also to maintain anonymity.

    Lawyers also noted that in the course of blocking of Telegram, Roskomnadzor restricted access to hundreds of sites and services not connected with the messenger.

    Earlier, the ECHR registered another complaint by Telegram — a fine of 800,000 rubles for refusing to provide the FSB with the keys to decrypt user messages. At the same time, in the Strasbourg court, the representatives of the messenger were offered to separately appeal the decision to block.

    In early April, the Tagansky District Court granted Roskomnadzor’s lawsuit for the immediate blocking of Telegram. This happened after the messenger refused to provide the FSB with the keys to decrypt user messages. The messenger’s representatives abstained from attending court at the request of Telegram’s creator, Pavel Durov, in order “not to legitimize the frank farce by their presence.”

    Translated from RosKomSvoboda: https://roskomsvoboda.org/39720/

     
  • Earthling 12:57 am on June 22, 2018 Permalink | Reply
    Tags: Avoid creepy targeted ads, Avoid data mining, Creepy privacy invaders, E-reputation, How not to get hacked, How to avoid spyware, , Internet privacy, Maintaining online reputation, , Protecting your data   

    How to protect one’s identity and personal data? 

    dnieper_landscape_forest_house_ukraine-691410 (1).jpg

    Revolutionary for some, data mining, or the automated exploration of data, is a considerable technological breakthrough that benefits not only research but also civil society. For now, this process is not framed by any legal status. From a purchase on a site to your discussions on social networks, all your actions on the internet are monitored and collected. With the rise of corporate spyware and the internet of things, we are heading in the direction of our offline life being heavily monitored as well.

    Our data has become a resource that will soon be more important than oil.

    E-reputation

    Data mining comes to know your tastes, your political opinions, your religious beliefs, your love life, and even your desires! Indeed, companies use our tracks on the web to profile us for marketing purposes, or even to produce TV series specially designed to meet the expectations of the audience (as in the case of House of Cards, the series produced by Netflix). Some years ago, the Target affair caused a stir in the United States. This company was able to predict the pregnancies of its customers and offer them adapted products, before they were pregnant or before the pregnancy was officially announced. Scary, isn’t it?

    Here are some ways we can protect our data and avoid the creepiness of governments and targeted ads:

    1) Surf in private mode, which among other things prevents other users of the computer from accessing your search history. To surf fully anonymously you can use Tor.

    2) Most search engines collect information about their users (keywords, IP address). Use confidential search engines that do not collect your data:

    • DuckDuckGo
    • Ixquick
    • Qwant
    • YaCy

    3) It is possible to guard against profiling by using modules that block cookies:

    • AdBlock for Chrome and Adblock Plus for Firefox
    • FlashBlock for Chrome or Firefox
    • Disconnect for Chrome or Firefox

    4) While many websites support secure connections, which are critical for your security and privacy, a number of sites do not activate it by default. To enable this security wherever possible, you can use HTTPS Everywhere.

    5) When possible, provide disposable email addresses when you leave your email address on a site.

    6) Do not divulge too much personal information on the internet. It is up to everyone to be vigilant on this point. Make sure you control your e-reputation by making an inventory of your presence on the web. Enhance your image by becoming active: create an online CV, set the confidentiality of your social networks…

    Besides mass-surveillance, there are other risks to your data.

    7) Avoid all viruses, spyware, and hacker attacks. These could compromise all of your data.

    8) Don’t let nosy or malicious people access your electronic devices. Keep them password-protected and encrypted.

    9) Don’t use unsecured wi-fi networks. If you do, use a VPN.

    10) When traveling, back up your data and wipe your phone if you do not want government creeps looking at your data and possibly keeping a copy.

    11) Use Linux. Especially avoid Windows 10, which is notorious for spying on its users. Qubes and Tails Linux have been endorsed by Mr. Snowden.

    12) Keep your operating systems and software updated. Reinstall frequently if you are paranoid.

    13) For maximum privacy, stay away from electronics. Turn them off when possible. Go somewhere where there is no internet access and bond with your ancestors who lived in such privacy that we hardly know anything about them.

    Translated from http://bibliotheque-blogs.unice.fr/neurones/2014/06/10/david-contre-goliath-comment-proteger-son-identite-et-ses-donnees-numeriques/

    With some original additions.

     
  • Earthling 12:30 pm on June 14, 2018 Permalink | Reply
    Tags: centralized anti-piracy, centralized digital regulation, centralized surveillance, Cyber UN, Development of Parliamentarism, fake news, , media regulation, , Putin on fake news, round table in Moscow, troll factory, US election influence, Yevgeny Prigozhin   

    Russia: State Duma proposes to create a “Cyber UN” 

    According to the Head of the Committee of the State Duma on Information Policy Leonid Levin, it is necessary to develop international rules to regulate the cyberworld, including the fight against fake information which is distributed through messengers and social networks.

    Leonid Levin, Chairman of the State Duma Committee on Information Policy, Information Technologies and Communications, together with Marco Gombachchi, editor-in-chief of the European Post, held a round table on “Legislative support of the media: security and freedom of speech”. The round table was held within the framework of the international forum “Development of Parliamentarism” which was held in Moscow. In his speech, Levin said that today in Russia media activities are regulated by a detailed system of legal norms comparable with the laws of the main developed countries of the world, while the focus of legislative activity is currently aimed at “regulating activities on new media forms”:

    “But we must remember that the internet is a cross-border phenomenon. Every inhabitant of the planet should be able to communicate in a single network space. In the coming years, we should all work to develop common regulatory rules; for this work, it is advisable to create a kind of ‘Cyber UN’ — an international regulator for the information environment.”

    He recalled the prohibition on spreading in the territory of the Russian segment of the internet, “defamatory information that does not correspond to reality, as well as calls for unrest, and incitement of hatred on a social and religious basis”, and assured us, “the state Duma will do everything possible to protect Russians from the other evil on the world wide web — from fake news”.

    The Head of the Information Committee believes that “messengers and social networks have directed people’s attention to new media forms, and their openness gives way to the spread of fake news and the manipulation of public consciousness, which can not but attract the attention of the state.”

    Aside from that, Levin also pointed to the need to improve the system of protection of users’ personal data. Summing up the meeting, the Deputy noted that the discussion highlighted the impossibility of copying the norms of any country for their legal application in another state.

    It is noteworthy that on the same day Russian President Vladimir Putin gave an interview to the Austrian TV channel ORF, and he was asked about the “troll factory” fake news (associated with the billionaire Yevgeny Prigozhin, with whom the head of state does not his good relations). Putin answered evasively, “I don’t even know what he’s doing.” In the light of the State Duma’s policy on fighting fake information, the position of the President is also not clear — whether Russia will investigate the activities of domestic misinformers, who are suspected of influencing elections in other countries, inciting social, inter-racial and inter-ethnic hatred, as well as participation in the forced distribution of unreliable news on the Internet.

    Translated from RosKomSvoboda: https://roskomsvoboda.org/39429/

     
  • Earthling 6:46 am on June 13, 2018 Permalink | Reply
    Tags: Big Data, Boston Consulting Group, encryption, global marketing, global policy, hackers, Kripta technology, Mikhail Kozinski, MKS, Ms. Kasperskaya, , net neutrality in russia, Nikita Mikhalkov, , , russian counterterrorism, russian hackers, Russian infocommunication code, , , , stenography, Steven Spielberg, , , , ,   

    The Yarovaya package, Big Data, and the death of network neutrality: The last frontier 

    packs-163497_960_720.jpg

    What awaits us after the entry into force of the “Yarovaya” law on July 1, 2018? Increased rates for internet services? Tighter authoritarian control over citizens? The end of network neutrality?

    In the very near future, this year in fact, in connection with the entry into force of new regulations on total network surveillance of Russian citizens, it is likely that such negative scenarios will play out. We will pay more for the internet and other modes of communication. Resources that are unsuitable for the state or individual corporations will be prohibited, or harder to access because they did not fall into the “fast track” determined by internet providers. For access to YouTube, WhatsApp and Skype you will pay a separate fee, and instead of them “import-substituting” services will be imposed.

    Network Neutrality

    What is on the verge of being lost is the principle of network neutrality, whereby access to all resources is allowed without restrictions, as long as the information published is not prohibited by law. In full compliance with this principle, operators must pass traffic at the same speed, regardless of whether it comes from a small site or a giant corporation.

    In 2015, the US Federal Communications Commission (FCC) introduced the principle of full network neutrality, forbidding providers from blocking websites or applying discriminatory measures against any internet traffic. But at the end of 2017 the FCC changed its mind and began the process of abolishing these neutrality rules, while the supporters of this move call it the “RESTORING INTERNET FREEDOM ORDER”.

    The ability of politicians to distort things is simply amazing: to restrict the functioning of sites and services is “restoration of internet freedom”!

    The FCC press release said:

    “Restoring a favorable climate for network investment is key to closing the digital divide, spurring competition and innovation that benefits consumers.

    Generally speaking, it can be said that internet providers (especially cellular operators) are seeking to earn more money. In particular, having bitten off a decent chunk of the media companies’ revenues, they are also sharing with the politicians who lobbied the decision to abolish network neutrality. And this is all under the banner of freedom.

    The possibility of an early cancellation of network neutrality caused a storm of indignation in the US: Silicon Valley, digital human rights defenders, and the media sector have met this initiative furiously.

    The creator of the World Wide Web, Tim Berners-Lee, spoke out against changes in American internet policy: “Network neutrality — the principle that Internet service providers treat all traffic equally, underpins the internet as we know it today.”

    Already more than 2.4 million people have signed a petition in defense of the principles of network neutrality. A number of IT giants have declared their readiness to participate in the forthcoming trials against the FCC.

    Also, most senators are determined to abolish the FCC decision. All 49 Democrats support the resolution to abolish the FCC decision, along with a Republican senator from Maine. The supporters of network neutrality in Congress have had only 60 days to use the law on revision. The deadline is June 12. On May 9, the senators submitted a petition that would allow a vote to be taken to abolish the FCC decision.

    And what about Russia?

    At present the principle of network neutrality in Russia is observed by providers in practice, but at the legislative level it is not defined.

    At the end of 2017, the Media-Communications Union, represented by the largest telecommunications operators and media holdings of Russia, started developing the Infocommunication Code, a single document that is intended to replace the existing laws “On Communications”, “On Information, Information Technologies and Protection information”, and “On personal data”.

    The new legislation will take into account not only technologies and relations within the industry, but also “the opportunities and risks inherent in their development, including the exchange of information between devices, ensuring constitutional rights to privacy, protection of personal data, etc.”

    The Infocommunication Code project provides for a “soft interpretation” of the principle of network neutrality, where “reasonable restriction and control of traffic” is allowed. For example, an operator will be able to manage traffic during network congestion and provide priority access to its own content or partner content.

    “We create regulations not for the sake of regulation, but for the sake of creating a unified competitive environment. This is the first task. The second task is to protect national content.” said MKS President, Pavel Stepanov.

    This he said, when he lobbied for laws on online video sites and SMS registration in messengers (in fact, de-anonymization of all users of these services).

    In other words, we can assume that when the Infocommunication Code comes into force, figuratively speaking, the latest film from Nikita Mikhalkov will download faster than a blockbuster from Steven Spielberg.

    The first version of the Infocommunication Code was intended to appear by April 2018. The Boston Consulting Group (BCG) is working on its creation on the order of the MKS, and signed a contract for $600 thousand.

    Yet this first version has still not appeared. Some information did get out, however. It was pointed out that the Code is intended to consolidate the principle of network neutrality as it operates today. At the same time, the developers of the concept indicate that it is necessary to work out the issues of traffic management in case of network accidents, as well as the possibility of slowing down certain types of traffic, in particular, P2P – the network principle on which user file-sharing and torrent trackers work.

    And what is the connection between the InfoCode and the Yarovaya package?

    The Yarovaya package comes into force on July 1. According to this pair of laws, ISPs are obliged to record and store all user traffic for up to 6 months: text messages, voice data, images, sounds, video and other messages of users of communication services. This could mean:

    • ISP expenses are rising
    • Communication becomes more expensive
    • A wave of indignation among internet users
    • Power rating is reduced

    This is one option.

    Another option is filtering traffic by content type, and limiting the speed of access to certain resources and types of communication.

    The main portion of Russian internet traffic is video content. And regardless of whether it is required to store it under the law or not, it just makes sense to take media resources and require an extra fee for access to them at normal speeds. This will not increase the overall cost for subscribers, since it will cover the costs for online cinemas and other sites with video content.

    Torrent trackers will also be slowed down under the filter, but this is in tune with the “anti-piracy law”. This will allow them to swing audiences towards legal online cinemas,. Music and game content will also be taken under control.

    No matter how you look at it, this is bad news for the users. How this deterioration will affect the general political situation is hard to predict (we are not in Europe or the US, where any little attempt to harm the freedom of the internet brings hundreds of thousands to the streets, or even millions).

    The Great Game, Big Data

    On September 1, 2015, the law on the storage of personal data of Russians in the territory of the Russian Federation came into force. Many foreign companies in response just moved their servers outside of Russia.

    Ms. Kasperskaya has long openly stated that “big user data” of Russians should be recognized as the property of the state. Also, her subgroup “Internet+society” has offered to regulate the collection of impersonal big data, which can be used to identify the user.

    Believe me – with this approach, we ourselves will soon be recognized as the property of the state. It’s been tacitly acknowledged, and for a long time…

    It is interesting – and what do such statements mean by the term “state”? Who exactly should these data belong to?

    With such data in your hands, you can make a fairly accurate “digital portrait” of a person.

    In 2012, Mikhail Kozinski proved that analyzing 68 likes on Facebook is enough to determine skin color (with 95% accuracy), sexual preferences (88% accuracy) and political views (85% accuracy).

    Kozinski’s model helps to know more about a person than his colleagues do after ten studied likes. After 70 likes, more than a friend. After 150 likes – more than parents. After 300 likes – more than a partner. An even greater number of studied actions helps to learn more about the person more than he himself.

    There is a story that after analyzing the data of 200 million American citizens on the model of Kozinski, a certain group that specializes in election campaign managed to influence the course of the last US elections, through targeted content. Another trump card for opponents of the current US President.

    Russia is not far behind in terms of big data analysis. This is normal practice all over the world.

    For example, the Kripta technology, which allows Yandex to evaluate a user’s gender, age category, income level and many other personal characteristics, was launched in 2011. Previously you could even check the results for yourself. The results were not always successful, but a lot of progress has been made since then.

    I just want to emphasize what power lies in Big Data. And why politicians are so eager to get this data… They already have domestic social networks and search engines up their sleeves, and now they want Google, Facebook and Twitter.

    And since they can’t get the data directly from these companies, they are using a completely legal basis, in the name of combating crime and terrorism, to obtain the data from ISPs.

    Rostelecom has already announced its interest in this market and is ready to invest 40 billion rubles in the construction of data centers. Furthermore, Rostelecom plans to acquire the Data Storage Center (SafeData trademark) from Gazprombank. Rostelecom and SafeData intend to create a network for storing and analyzing big data on a truly Federal scale.

    Encrypted traffic

    ͓͓̠̮ͤ͛ͧ̾̋́ ́̾ͧ͠ ̟̤͍̓́ ͙̿͐ͭ̓͐̐̒ ̙̤̺̞̹̏̿̅̄̊ͅͅ ̻̤̪͢ ̼̥̟̟̬͗̒́͋̕ ̞̗̲̪̼̱̙̐̐̓̕ ͚̫̣̖ͣ̌́́̔̓ ͒̄ͨ̌̆̀́͏͎̯ ̞̟̥̺̟̾̅̉̿͋̓ͩ̕ ̱̪͎̻ͣ̇̅̐̿̒ ̉͠ͅ ̸͚̘̜͎̫͗̍̓̈̋̈̇ ̭̼͙̬̭̎̑͛̕ ͮͨ͆́ ̛̣̭̞̙̪̟̯͆̅͊̐̒ ͚͕͙̭͎̃̔̌̽͑ͦ͜ ͔͍̺̓ͪ̓ͯ̄ͅ ̲͎̣̙͎̗͛̃̃͋̋͞ ̼̓ͪ̑ͤ̾̏ ͨ̃͐̅̂̾͞ ̹̰̘̳̣̝͆ͮ̍ ̥̜̰̭̌̑̋͌ͬ͋͟ ̯̜̹̲̝̬͈̌ͫ ̠̘̬̯̳̙͉͊͂̈́̅͒́ ̥̫͈̹ͪ ̤̥͉͉̙͢ ̥̅̽͆ͭ͠ ͚̭̹̻̖̺ͪ ͋̈͊̚͏̻̫̳͙ ̅̉ͣ̊ͫ͏̥̻̟̰̥ ̵̘̫̱̂ͤ͋̌ ̉̒͊̊̿ ̜̘̺͔̞̦̋ͯ͐ͭ ̺̱̤̰̓̈́̂̿̃͒͌ ̸̳̒̾ͪ ̹̰͌ͯ͂̚ ̩͉ͥ̽ͭͪͮ̾͊ ͗̽̎ͬ̚͡ ̙̙ ̠̿ͭͭ̂ ͍̮̩͇̹̌ͨͥ ̹̪̭̬͈̾͑̅̉̇ͫ͐ ͉̟̮̫̝̾͒ͤ̉̎̚ ̨̏͒ ͓͓̠̮ͤ͛ͧ̾̋́ ́̾ͧ͠ ̟̤͍̓́ ͙̿͐ͭ̓͐̐̒ ̙̤̺̞̹̏̿̅̄̊ͅͅ ̻̤̪͢ ̼̥̟̟̬͗̒́͋̕ ̞̗̲̪̼̱̙̐̐̓̕ ͚̫̣̖ͣ̌́́̔̓ ͒̄ͨ̌̆̀́͏͎̯ ̞̟̥̺̟̾̅̉̿͋̓ͩ̕ ̱̪͎̻ͣ̇̅̐̿̒ ̉͠ͅ ̸͚̘̜͎̫͗̍̓̈̋̈̇ ̭̼͙̬̭̎̑͛̕ ͮͨ͆́ ̛̣̭̞̙̪̟̯͆̅͊̐̒ ͚͕͙̭͎̃̔̌̽͑ͦ͜ ͔͍̺̓ͪ̓ͯ̄ͅ ̲͎̣̙͎̗͛̃̃͋̋͞ ̼̓ͪ̑ͤ̾̏ ͨ̃͐̅̂̾͞ ̹̰̘̳̣̝͆ͮ̍ ̥̜̰̭̌̑̋͌ͬ͋͟ ̯̜̹̲̝̬͈̌ͫ ̠̘̬̯̳̙͉͊͂̈́̅͒́ ̥̫͈̹ͪ ̤̥͉͉̙͢ ̥̅̽͆ͭ͠ ͚̭̹̻̖̺ͪ ͋̈͊̚͏̻̫̳͙ ̅̉ͣ̊ͫ͏̥̻̟̰̥ ̂

    So, the ground is prepared – according to the law, the data of Russian users is stored in Russia (in theory), online cinemas will be under control, soon ISPs will store the data of “owners” of traffic, and registration in messengers should be via SMS.

    Next we need to access the data of users from these messengers, so that also can be analyzed. But there’s a bit of an obstacle. End-to-end encryption, which is used in many modern messengers such as Telegram, does not allow you to just take and read someone’s correspondence, roughly speaking. You need to get the keys to decrypt the traffic, under the guise of a backdoor for security services.

    The Telegram messenger is used by millions – and it is a tasty morsel for analysts and special services. Having received from Pavel Durov his refusal to provide keys, it was decided to unchain Roskomnadzor, which began to shoot in all directions. It killed everyone but Telegram.

    Accessing a user’s device never represented a problem for intelligence services or hackers.

    It’s quite easy, just access their device or account. No need to decrypt the traffic. The difference is that the state wants to legally obtain the information to which it previously had illegal access, and gather all the data together. So that the hackers can then trade the stolen data on the black market…

    I cannot but mention that on July 28, 2017, the “Digital economy” project (RF Government Decree No. 1632-R) was approved, which is a project on the formation of a global system for processing all personal data of all Russian citizens and the development of artificial intelligence.

    The essence of the project of end-to-end identification is to assign each citizen a number (personal code, electronic ID). The ID will be a kind of key to access the full file with information about the person from the various information bases currently formed in all spheres of their life.

    What to do? The last frontier

    It’s a complex issue. There is an opportunity to confuse all the cards and bypass the bans through anonymous networks and VPNs, although legislation has already introduced a mechanism for their strict regulation. But how the law will be executed isn’t absolutely clear yet. Although it came into force on November 1, 2017, the law still does not work effectively, and this was acknowledged by Roskomnadzor. Despite this, the state Duma is considering new laws with sanctions against VPNs, proxies and search engines for failure to comply with the requirements of the authorities to filter traffic and disclose data.

    But if through some incredible genius the authorities are be able to eliminate access to anonymous technologies, freedom will end. This is the last frontier.

    There is also a bill to block information on the internet that discredits the honor, dignity or business reputation of a citizen or legal entity. Who is the first person to be protected? And soon they will block without trial.

    But as you know – the more pressure, the stronger the resistance.

    Anonymous networks and VPNs are thriving. It is important that VPNs not only open access to blocked resources, but also hide all traffic from the ISP. The state accuses anonymizing technologies and cryptocurrencies of all mortal sins.

    Only anonymous technologies and anonymous cryptocurrencies, combined with cash, will save this world from the Great Trouble.

    But those who seize virtually unlimited power through the senseless introduction of technologies in state administration will be severely punished for this. Any system is subject to hacking.

    I’m still interested in the question: why don’t we include cameras and microphones in our homes as counter-terrorism efforts, so we can analyze and store all this data for several years? Isn’t reading and storing our correspondences the same invasion of privacy? What will come next after the Yarovaya package, under a good pretext? All of us will be marked like animals with microchips, placed under video surveillance in our homes, and once a month we will be obliged to go to the investigator for an interrogation? Within the framework of “counteraction to something” you can push any idea.

    You can imagine such a news item: “The terrorists planned the attack, actively discussed it on Telegram / Viber / Email / Whatever, were tracked by FSB agents, and arrested on the same day.” Who are the idiots here, the terrorists or the readers? Or do the officials seriously want to convince someone that terrorism is built on open communication channels?

    And did you know that besides cryptography there is also steganography, which allows you to exchange encrypted messages under the guise of any inconspicuous image? If you modify this method a bit, you can exchange messages very quickly. Even I, without being a specialist, would be able to offer a dozen useful methods to conduct absolutely secret correspondences online. In this case, no one can get the key — it is only for the sending and receiving parties.

    This is a global policy, this is global marketing

    So, it turns out that the state wants to monitor our every step, to sell and use our data and most importantly, all at our expense. And this is only the beginning.

    Relevant Links

    https://vpnlove.me/en

    https://www.psiphon3.com/

    https://www.torproject.org/

    https://zenmate.com/

    https://www.hideman.net/

     
  • Earthling 12:20 am on June 8, 2018 Permalink | Reply
    Tags: Andrei Svintsov, Facebook data in russia, Facebook users data, Facebook users data in Russia, Federation Council, , Mark Zuckerberg, Russian Federation Council, State Duma Committee for Information Policy, , tracking request ban, user tracking request ban, Zuckerberg invited to Russia   

    Russia: State Duma discusses a ban on internet tracking requests 

    The Deputy Chairman of the State Duma Committee for Information Policy Andrei Svintsov has suggested regulating the work of contextual advertising services and news aggregators.

    Parliamentarians are concerned that many internet services use algorithms that remember certain preferences of users during online searches, news reading, etc. Deputy Chairman of the State Duma Committee on Information Policy Andrei Svintsov proposed to ban the user tracking requests of contextual advertising services and news aggregators.

    Although at the moment there are many ways to nullify this kind of internet surveillance, Svinstov insists on “somehow trying to regulate the existing mess”: “We can see that the contextual hype served the interests of business initially, and today it is already capable of changing the news cloud, the information background around each of us. Aggregators are already setting up their robots in such a way that some of the specific news cannot reach us — a filter is put in place. I myself have repeatedly spoken about this and addressed online journalists so that they, for example, would rigidly separate news sources with licenses from bloggers.”

    Today, the Internet is used by 71 percent of Russia’s population, or 87 million people. Search engines closely monitor their preferences. According to one search engine, Russian citizens basically ask for results related to auto, leisure, computers, electronics, literature and transport.

    The issue of safe use of social media arose not so long ago, and focused primarily on one of the most popular social networks in the world, Facebook.

    “Rapid development of the internet and the widespread penetration of mobile internet have brought social media to a serious new level, and its significant influence on the life of society is noted by many experts,” said Leonid Levin, Chairman of the State Duma Committee for Information Policy, Information Technologies and Communications. “And the questions that were asked to the leadership of Facebook, the largest social network, by the US Congress and the European Parliament show that the problems of fake news and mass-manipulation of minds are being realized by politicians on both sides of the ocean.”

    The Russian Federation Council had previously voiced that it would be appropriate to invite Facebook CEO Mark Zuckerberg to one of its meetings as part of the “Expert Hour”. The meeting will be devoted to the digitalization of the country, and several senators made the invitation for Mr. Zuckerberg. The proposal was supported by Matvienko, the Chairman of the Federation Council.

    According to Matvienko, Mark Zuckerberg should be interested in the invitation, since Russia is a big advertising market for Facebook. Nevertheless, not everyone was delighted with this proposal; the representative of the Crimea, Sergei Tsekov, called Zuckerberg a Russophobe and spoke out against his arrival.

    The Chairman of the Federation Council scolded Tsekov, stating that sometimes it was necessary to listen to “another point of view.”

    Recently it became known that Facebook for the past 10 years has provided access to user data to at least 60 companies engaged in the production of telephones. Among these companies are Apple, Amazon, BlackBerry, Microsoft and Samsung. In some cases, phone manufacturers have gained access not only to the information of the user (including information the user chose not to share), but also to the data of their friends on the social network, without their consent.

    Most of the agreements in which mobile device manufacturers gain access to Facebook users’ data are still valid, although in recent years the social network has been gradually abandoning them. Representatives of Facebook assure us that all agreements with phone manufacturers on access to data comply with the company’s rules, as well as the requirements of the US Federal Trade Commission. The social network also stressed that for the duration of the agreements there has not been a single case of any abuse of the data received.

    Translated from RosKomSvoboda: https://roskomsvoboda.org/39373/

     
  • Earthling 12:55 am on June 4, 2018 Permalink | Reply
    Tags: columbine communities, , Permsky Krai, Permsky Krai surveillance, preventing school attacks, protecting children, protecting children from harm, , Social network surveillance, , Surveillance of children, Surveillance of children in Russia, surveillance on social networks, Vkontakte surveillance   

    Russia: Permsky Krai authorities plan internet surveillance of children 

    slezhka-za-detmi-v-inete

    Under the guise of “implementing a system of measures to reduce family and child deprivation,” the regional government is launching a system that monitors and analyzes the behavior of adolescents on social networks.

    In the Perm region, a new information system will analyze the behavior of adolescents on social networks and collect information about their mental health, problems in the family, and communication with their peers and the law. Information on the implementation of internet surveillance for minors was announced at a meeting of the regional government.

    Maxim Reshetnikov, Governor of the Perm Territory, justifies the introduction of such a system by the fact that, although in the last 2 years there has been a decrease in juvenile delinquency by a quarter, violations of the law occur more often with the participation of children from well-off families than those from the “risk” group and the “socially dangerous situation” group. “The reasons here are, as they say, collective. Parents with a modern rhythm of life do not always have time to deal with children, while teachers have a big load, an orientation toward the educational process. And sometimes there are no skills present to recognize when children are in difficult situations. The current prevention system is mainly oriented towards working with children who are already in the zone of attention of social services. Obviously, we need new approaches and solutions. First and foremost, we need an interdepartmental and multi-level preventive system that will identify risks at the earliest stages, when the problems are only beginning to appear.”

    Deputy Prime Minister Tatyana Abdulina said that the system will be formed before the end of 2018. It will collect information from various sources and “provide a comprehensive solution.” “It will be … constantly monitoring social networks to identify participation in destructive groups. The diagnostic tools of psychologists have been significantly changed in terms of risk factors,” she said, adding that since the beginning of September, parents in Permsky Krai will begin to educate on the issue of education through specially created lessons.

    The special system is intended to help identify at an early stage children who are predisposed to crimes or suicide and to help them. The auction for its creation should take place before October 1, 2018.

    It is not known whether the consent of the children and their parents will be required for the collection of information.

    A similar social surveillance project for children was organized in February last year by the Tyumen League of Internet Safety. After agreeing with the regional education authorities, the League started collecting data on the pages of schoolchildren in the social network VKontakte. It was formed on the base of teachers, and access to it was given to the activists of the BizInternet League (WithoutInternet League). This league’s head Denis Davydov also reported that they intend to introduce this initiative in other regions — certain agreements were already available at that time.

    Let us recall that since the beginning of this year, the media has reported several cases of attacks on schools by students with the use of cold weapons, firearms or traumatic weapons. Authorities attribute this to a trend of the so-called “Columbine” community on social networks, but the social networks themselves have denied this. In the wake of media hype, certain politicians, in particular Irina Yarovaya and Elena Mizulina, have repeatedly voiced the idea of ​​further tightening legislation. Recently Yarovaya submitted a bill to the State Duma “aimed at protecting the lives of children from Columbine communities and promptly identifying criminals involving minors in life-threatening situations.”

    Translated from RosKomSvoboda: https://roskomsvoboda.org/39324/

     
  • Earthling 2:50 am on June 2, 2018 Permalink | Reply
    Tags: Comforttel, Dom.ru, Increased internet costs in Russia, internet data storage law, Mikhail Oseyevsky, , Rostelecom, Russia internet data storage law, Russian ISP, Russian Law 374-FZ, Russian Law 375-FZ, , , Tele2, Telecompass LLC, Yarovaya law, Yarovaya law costs, Yarovaya law expenses,   

    Russia: The Yarovaya package reaches into the wallets of users 

    Russian internet providers have begun to warn their customers that, in connection with the costs of enforcing the requirements of law No. 374-FZ, they will have to raise the prices for their services.

    To recap, in April this year, the Russian government approved the rules for data storage in accordance with the requirements of the Yarovaya package (Laws 374-FZ and 375-FZ). The resolution of the Cabinet of Ministers prescribes the storage of discussions and text messages of subscribers for 6 months. Internet traffic will have to be stored in an amount “equal to the amount of telecommunication messages sent and received by the provider’s users in 30 days.”

    To store messages one provider can use the resources of other providers, in coordination with the FSB. From the launch of the internet data storage system, providers have to increase their storage capacity by 15% every year for 5 years.

    Recently, the St. Petersburg provider Telecompass LLC (Comforttel brand) warned subscribers about an 8% increase in subscription fees starting July 1, 2018, due to the entry into force of the Yarovoy package. Telecompass’s co-founder Dmitry Petrov explains the price hike as serving to help cover the costs of fulfilling the requirements of the federal law 374-FZ for five years. In his estimation, a 8% increase in prices will be minimally painful for clients. Telecompass estimates its costs for the purchase of equipment for storing information as greater than 60 million rubles.

    Petrov believes that eventually all providers will raise prices: “Keeping the old prices with such costs will lead to a drop in profits margins, since the market has not grown for several years.”

    One of the largest internet providers in Russia, Dom.ru, will raise the rate of some fees by 10% starting June 1. And although ER-Telecom (the owner of Dom.ru) does not associate the tariff change directly with the Yarovaya package, ascribing the price increase to the “situation on the market,” users have suggested the coming into force of a number of norms of this law as a cause for the increase.

    Earlier, Dom.ru estimated its required expenditure at 50 billion rubles. According to the company’s representative, “the operation of providers is affected by the economic situation: inflation, rising costs for equipment, for content, increased investment costs for network modernization.”

    Providers are reviewing the costs of services in order to “continue to provide quality services,” he said.

    Experts and market participants repeatedly warned that providers will have to pay for the costs of implementing the Yarovya package with an increase in prices. “The providers will have to shift these costs to the subscribers, and the rates will increase,” said Leonid Reiman, ex-Communications Minister and Chairman of the Board of Directors of Angstrem. “It will completely fall on the shoulders of consumers, because it cannot happen another way,” believes David Yakobashvili, a member of the Board of Directors of Sistema.

    Earlier, Rostelecom’s president Mikhail Oseyevsky, speaking at the St. Petersburg International Economic Forum (SPIEF-2018), proposed to abolish the principle of net neutrality, according to which access to all resources on the Internet is enabled without restrictions as long as they contain legal content. He also suggested compensating for the costs of executing the Yarovaya package at the expense of foreign internet and media companies. He explained his proposal by the fact that Russian telecom operators are investing in the development of telecommunications infrastructure, and large foreign companies such as Facebook, Google and its “daughter” YouTube, etc. are not, but at the same time receive substantial income from Russian users. “This situation seems abnormal to me. I would suggest opening the discussion on what measures, primarily economic, we need to improve the situation,” Oseyevsky said.

    In particular, according to the head of Rostelecom, which is the leader of the Russian broadband internet market and co-owner of the cellular network Tele2, providers should be able to regulate traffic based on its priority and in accordance with the interests of the state and society, who paid for it. “This problem is even more relevant in terms of meeting the requirements of the Yarovaya law, because a significant amount of traffic that we will have to store will consist of videos that users download,” said Oseyevsky.

    Alexander Popovsky, Executive Vice President for Strategy and Business Development of VimpelCom (Beeline brand) agrees that the Yarovaya package has exacerbated the problem of net neutrality. “Now the providers must, from their own income, not only invest in the development of networks for the transfer of traffic of internet actors (and mostly foreign ones), but also in the storage of this traffic,” he said. According to Popovsky, many countries are reviewing the principle of net neutrality in order to increase the investment attractiveness of telecom and thereby accelerate the development of fifth-generation networks (5G).

    Earlier, a source close to one of the providers said that the idea of ​​canceling the requirements of the Yarovaya package for internet companies was being discussed. “The traffic mainly concerns large foreign companies, which are unlikely to comply with the provisions of the law. They can store information for communication providers, but internet companies will have to pay for this service,” he said, stating that in this case it is necessary to cancel the principle of net neutrality in order to be able to influence foreign internet companies.

    Translated from RosKomSvoboda: https://roskomsvoboda.org/39293/

     
c
Compose new post
j
Next post/Next comment
k
Previous post/Previous comment
r
Reply
e
Edit
o
Show/Hide comments
t
Go to top
l
Go to login
h
Show/Hide help
shift + esc
Cancel
Bitnami