Investigation report: Mobile phone data extraction by police forces in England and Wales

After massive criticism, the English data protection authority has taken a close look at the topic of mobile phone evaluations. The result: The police take too much data from the phones and store it for too long - often without a legal basis.

The British data protection authority ICO criticises the way law enforcement agencies deal with the smartphones of victims in England and Wales. For the 64-page investigation report (PDF), the authority had consulted law enforcement agencies, civil society groups and victims' associations. The investigation was preceded by numerous complaints from individuals and a report by Privacy International.

Mobile phones now store a large part of our lives, from address books to private photos and our private communications. In addition to this data, which often extends over long periods of time, phones store much more: browser histories, geodata, used Wifi's, health data and often the passwords and access data of their owners. This makes the phone one of the most interesting data sources for law enforcement agencies today.

👉🏼 PDF:
https://assets.documentcloud.org/documents/6953083/ICO-Phone-PD-Report.pdf

👉🏼 Digital stop and search: how the UK police can secretly download everything from your mobile phone
https://privacyinternational.org/report/1699/digital-stop-and-search-how-uk-police-can-secretly-download-everything-your-mobile

Read more 🇩🇪:
https://netzpolitik.org/2020/england-polizei-handyauswertung-untersuchung/

#surveillance #ICO #uk #police #PrivacyInternational #study #wales #netpolitics
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES

Farewell news from Hong Kong - The new Hong Kong Security Law

Beijing's national security law is already having an impact, pushing activists to take self-protection measures such as resignations, dissolutions of organizations and deletion of social media accounts. The law package could finally destroy the city's democratic hopes.

The new security law (👇🏼PDF) has 66 articles and provides for sentences ranging from ten years to life imprisonment for the new offences of secession, subversion, terrorism and participation in outside interference.

👉🏼 PDF 🇬🇧:
https://www.gld.gov.hk/egazette/pdf/20202444e/es220202444136.pdf

Read more 🇩🇪:
https://netzpolitik.org/2020/repression-gegen-demokratiebewegung-abschiedsnachrichten-aus-hongkong/

#FreeHongKong #democratic #netpolitics #thinkabout #pdf
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@NoGoolag
📡@BlackBox

A new license to hack

The German Federal Intelligence Service (BND) is to be allowed to hack mobile phone and Internet providers quite legally in the future. This is the result of the new BND draft law, which we are publishing. The Federal Constitutional Court had classified the old law as unconstitutional and overturned it.

The German Federal Intelligence Service is looking for hackers (m/f/d) via job advertisement and overwrites an employee story with a license to hack. Business trips abroad belong to the intelligence hackers like "unique" attack tools with which they are supposed to penetrate computer networks and collect data. The focus of the BND is on networks outside Germany. For a long time, the secret service agents considered non-European countries in particular to be "outlawed".

In May, the Federal Constitutional Court set the BND the highest judicial limits. The judges from Karlsruhe made it clear: Even abroad, the German state is bound by basic rights; human dignity and the secrecy of telecommunications apply not only to Germans. The highest court declared the only four-year-old BND law of the Grand Coalition unconstitutional.

The legislator must therefore amend the BND law by the end of 2021. The Federal Chancellery has prepared a draft bill and sent it to the other ministries on Friday. We publish the draft law in full text.

As the employer of the secret service, the Federal Chancellery tries with the new law to comply with the court's requirements on the one hand and to restrict the BND as little as possible on the other hand. This can be seen among other things in the offensive hacking powers.

👀 👉🏼 Translated from German with DeepL:
https://netzpolitik.org/2020/bnd-gesetz-eine-neue-lizenz-zum-hacken/

👀 👉🏼 🇩🇪 Draft law amending the law on the Federal Intelligence Service to implement the provisions of the Federal Constitutional Court's ruling of 19 May 2020 (1 BvR 2835/17)
https://netzpolitik.org/2020/bnd-gesetz-eine-neue-lizenz-zum-hacken/#2020-09-25_Bundeskanzleramt_Referentenentwurf_BND-Gesetz

#bnd #germany #secretservice #law #hacking #netpolitics #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

The Pandemic's Digital Shadow

The pandemic is fueling digital repression worldwide.

The coronavirus pandemic is accelerating a dramatic decline in global internet freedom. For the 10th consecutive year, users have experienced an overall deterioration in their rights, and the phenomenon is contributing to a broader crisis for democracy worldwide.

In the COVID-19 era, connectivity is not a convenience, but a necessity. Virtually all human activities—commerce, education, health care, politics, socializing—seem to have moved online. But the digital world presents distinct challenges for human rights and democratic governance. State and nonstate actors in many countries are now exploiting opportunities created by the pandemic to shape online narratives, censor critical speech, and build new technological systems of social control.

Three notable trends punctuated an especially dismal year for internet freedom. First, political leaders used the pandemic as a pretext to limit access to information. Authorities often blocked independent news sites and arrested individuals on spurious charges of spreading false news. In many places, it was state officials and their zealous supporters who actually disseminated false and misleading information with the aim of drowning out accurate content, distracting the public from ineffective policy responses, and scapegoating certain ethnic and religious communities. Some states shut off connectivity for marginalized groups, extending and deepening existing digital divides. In short, governments around the world failed in their obligation to promote a vibrant and reliable online public sphere.

👀 👉🏼 https://freedomhouse.org/report/freedom-net/2020/pandemics-digital-shadow

👀 👉🏼 Countries: 👇🏼
https://freedomhouse.org/countries/freedom-net/scores?sort=desc&order=Country

#surveillance #pandemic #digital #shadow #report #netpolitics #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

The Egyptian authorities block “Telegram”

Technology and Law Community “Masaar” documented the blocking of the Telegram website and application by the Egyptian authorities on 22 October 2020. The authorities blocked Telegram on three of the Internet service networks operating in Egypt. These networks included “We”, “Vodafone” and “Orange”. Masaar learned about the blocking action after complaints from several users of the Internet services on the three networks, stating that they cannot access the application or the website. It should be noted that Telegram is one of the most popular and widespread encrypted chat applications in the world.

👀 👉🏼 https://masaar.net/en/the-egyptian-authorities-block-telegram/

#egyptian #authorities #telegram #censorship #thinkabout #netpolitics
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

California votes to “expand” privacy laws to allow companies to make you pay for privacy

On election day, California voters chose to pass Proposition 24, which alters the newly inaugurated California Consumer Protection Act (CCPA) with some pretty significant changes that can be viewed as a net negative for privacy. There are modest improvements to the CCPA; however, some such as those in the No on Prop 24 campaign, think that those modest gains are far outweighed by the negatives. One of those negatives is formally allowing tech companies to pay for privacy.

Proposition 24 allows pay for privacy, and more

Detractors also point out that there was no public process as in legislative proceedings and the iterations of the Prop 24 highlight that there may have been many backroom deals that were done here to create the ballot measure to rewrite the CCPA even though the CCPA has only been in effect for less than a year. Many of these negatives will affect consumers directly: Allowing Pay for privacy has a positive impact on the bottom lines of corporations, but is a net negative to netizens. They are essentially allowing companies to charge when someone exercises their privacy rights.

If global opt outs of tracking by your browser won’t be respected, it’s a net negative. The mentioned points are just scratching the surface. For more information on why Prop 24 wasn’t a net benefit to privacy, read why the EFF didn’t support Proposition 24.

Privacy News Online has previously written extensively on pay for privacy schemes that have been tried by big tech companies such as AT&T and Verizon in the last several years. The price of privacy changes from $3.50 to “five or ten dollars” depending on who you ask and what type of privacy is being considered, but one thing is clear: setting any price on it devalues its innate nature as an inalienable human right.

👀 👉🏼 https://www.privateinternetaccess.com/blog/california-votes-to-expand-privacy-laws-to-allow-companies-to-make-you-pay-for-privacy/

#california #CCPA #EFF #privacy #netpolitics #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Crypto Wars: Green light for contested EU declaration on decryption

Diplomats have approved the EU Council resolution on encryption drafted by the German government. IT companies should help with decryption.

🇬🇧 EU: Council set to adopt declaration against encryption
https://www.statewatch.org/news/2020/november/eu-council-set-to-adopt-declaration-against-encryption/

👀 👉🏼 🇩🇪 https://data.consilium.europa.eu/doc/document/ST-13245-2020-INIT/de/pdf

#eu #encryption #declaration #cryptowars #netpolitics #thinkabout #pdf
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Whatsapp, Threema & Co.: Messenger must hand over personal data

A new telecommunications law provides new surveillance powers for security authorities. It also includes data retention.

The new Telecommunications Act (TKG) has it all. On 465 pages, messengers and e-mail are declared to be telecommunications services, thus introducing surveillance powers similar to those for conventional telephones. Data retention and faster network expansion also appear in the bill. This is to be decided on a fast-track basis.

Whereas many of the provisions of the Telecommunications Act previously applied to Internet providers or telephone providers, they will now be extended to so-called over-the-top services such as e-mail providers or messengers like Whatsapp, Signal, Threema, Telegram or Wire. According to the so-called Gmail ruling of the European Court of Justice (ECJ), these are not telecommunications services, and accordingly the surveillance powers of the security authorities do not apply to them.

With the TKG amendment, messengers that collect inventory data such as name, address or an identifier such as phone number, user name or other ID are obliged to store this data and hand it over to security authorities upon request, even if the account has already been deleted.

👉🏼 Source 🇩🇪 👈🏼
https://www.golem.de/news/whatsapp-threema-co-messenger-sollen-bestandsdaten-herausgeben-muessen-2012-152770.html

#whatsapp #threema #telegram #personaldata #surveillance #authorities #messenger #netpolitics #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@NoGoolag
📡@BlackBox

German government decides on intelligence surveillance like in Snowden times

The German Federal Intelligence Service is to hack into mobile phone and Internet providers and monitor the communications of all customers. The German government has passed a bill to this effect. A new body, not the Federal Data Protection Commissioner, is to be responsible for oversight.

The German government today decided to again massively expand the powers of the Federal Intelligence Service. The cabinet approved the bill to amend the BND law, which will then go to the Bundestag.

The grand coalition had passed the current BND law in 2017 in response to the revelations by Edward Snowden and the intelligence investigation committee. At the time, our conclusion was, "Everything the BND does will simply be legalized. And even expanded." In May, the Federal Constitutional Court ruled the law unconstitutional and overturned it. Now the federal government is making a new attempt, which is likely to end up in court again.

We published the first draft in September and the second draft in November. Experts criticized the drafts: think tanks, journalists, press freedom NGOs, Internet associations and the Federal Data Protection Commissioner. Despite the opportunity to comment, the government did not change much.

Hacking, mass surveillance, metadata
Because the current BND law is based on unconstitutional basic assumptions, the Chancellor's Office has almost completely rewritten the law. We had already reported on many of the details. In the future, the foreign intelligence service will be allowed to legally hack not only individuals and devices, but also servers and service providers, including entire mobile and Internet providers.

https://netzpolitik.org/2020/bnd-gesetz-bundesregierung-beschliesst-geheimdienst-ueberwachung-wie-zu-snowden-zeiten/

#mass #surveillance #germany #secretservice #goverment #privacy #hacking #metadata #mobilfunk #isp #thinkabout #netpolitics
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

RuTracker Found Itself Unblocked in Russia So Immediately Blocked Itself

Infamous Russian torrent site RuTracker is one of many pirate sites that are permanently blocked by the Russian authorities for failing to remove copyrighted content. However, when the site suddenly became accessible again this month, RuTracker took its own measures to block Russian users.

https://torrentfreak.com/rutracker-found-itself-unblocked-in-russia-so-immediately-blocked-itself-220323/

#russia #rutracker #netpolitics
📡@cRyPtHoN_INFOSEC_FR
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
📡@BlackBox_Archiv