background propaganda

Fnord666 sends this quote from an article at Slate: “Despite the pervasiveness of law enforcement surveillance of digital communication, the FBI still has a difficult time monitoring Gmail, Google Voice, and Dropbox in real time. But that may change soon, because the bureau says it has made gaining more powers to wiretap all forms of Internet conversation and cloud storage a ‘top priority’ this year. … a 1994 surveillance law called the Communications Assistance for Law Enforcement Act only allows the government to force Internet providers and phone companies to install surveillance equipment within their networks. But it doesn’t cover email, cloud services, or online chat providers like Skype. Weissmann said that the FBI wants the power to mandate real-time surveillance of everything from Dropbox and online games (‘the chat feature in Scrabble’) to Gmail and Google Voice. ‘Those communications are being used for criminal conversations,’ he said.”

Read more of this story at Slashdot.

SOURCE Slashdot

Bank overdraft fees can pile up rapidly, making it increasingly more difficult for a consumer to get back to zero, which is why Congresswoman Carolyn Maloney of New York recently introduced legislation aimed at limiting how much and how frequently banks can ding account holders for these fees.

The Overdraft Protection Act would cap the frequency of overdraft fees and one per month, up to six per year, and would require that these fees be “reasonable and proportional” to the amount an account has been overdrafted, as consumers often complain about being hit with a $35 fee for overdrafting only a few cents.

The act would also stop banks from charging a fee if the overdraft results from a hold placed on an account that exceeds the amount of the transaction. We’ve heard of several instances, especially at gas stations, where a merchant automatically puts a 3-figure hold on a customer’s debit card, regardless of how much they intend to spend at the pump.

Perhaps most importantly, the act would stop the practice of processing transactions in an order that is most likely to maximize overdraft fees. Say, for example, that a customer has $99 in his account and there are four pending purchases, one for $100 and three for $33 each. If all these purchases are processed, the customer is going to overdraft regardless. But if the bank processed the three $33 purchases and then the $100 item, the customer is only charged a single overdraft fee. But if the bank processes the $100 charge first, each of those $33 purchases will likely be hit with a separate fee. So even though the customer has spent the same amount of money, the bank has made significantly more for itself by processing the more expensive purchase first.

“It’s very clear that banks are gouging customers with incredibly high and outrageous overdraft fees that are not related to their cost,” said Ed Mierzwinski, consumer program director at U.S. Public Interest Research Group tells Herb Weisbaum. “The idea of a $35 fee for the privilege of overdrawing your account is good for the banks, but not for the consumer.”

Meanwhile, the American Bankers Association says such legislation is unnecessary.

“History has shown that when the government intervenes in how private markets price their services, there are unintended consequences that usually are adverse to consumers,” said Nessa Feddis, senior counsel at the ABA.

Of course, given the influence of banks on the lawmaking process, and the general difficulty any new legislation has of being enacted, this bill has a snowball’s chance in Hades of getting out of committee… but it’s good to see people try anyway.

SOURCE Consumerist

Microsoft reveals in a new transparency report that between all of its online services — including Hotmail, Outlook.com, SkyDrive, Xbox LIVE, Microsoft Account, Messenger, Office 365, and Skype — it received more than 75,000 requests from law enforcement agencies around the world in 2012.

Since some requests involved multiple accounts, Microsoft says that authorities made inquiries about a total of 137,424 accounts last year.

According to the info released by Microsoft [PDF], 18% of these requests resulted in no disclosure whatsoever, though nearly all of those cases (93.3%) fall under the “No Data Found” heading, while a a small fraction of requests were rejected for not meeting legal requirements.

Around 4-in-5 requests resulted in what’s described as “non-content information” being provided to authorities. This can include such data as the user’s name, billing address, and IP history, but would not include any disclosure of things like e-mail text or subject lines, stores images, address book and calender entries.

For those, Microsoft requires a court order, which is why almost all international requests did not result in content disclosures. In fact, of the 1,558 requests that led to disclosure of users’ content, 1,554 of them were made by U.S.-based law enforcement.

In all, Microsoft says that law enforcement requests only represented around .02% of its entire user base last year.

You can get more details and the full report on Microsoft.com.

SOURCE Consumerist

A new Samsung lockscreen hack has been identified, allowing unofficial access to PIN-secured Galaxy smartphones through a combination of keypresses and commands, though Samsung is apparently working on a software fix. The exploit relies on brief visibility of the phone’s display, unlocked, after a failed emergency call placed from the lockscreen; though ponderous, you could use that access to download a screenlock disabler from the Google Play store.

The flaw was identified by Terrence Eden, who has something of a track record for spotting Samsung exploits. Earlier this month he found ways to bypass the lockscreen security on the Galaxy Note II, a hack which then prompted another researcher to come forward with a second hack, this time for the Galaxy S III.

Eden’s latest discovery only allows for a brief period of interaction with the momentarily-unlocked phone at a time, but given sufficient access to repeat the process, it could allow for calls to be placed, apps downloaded, data viewed, or other illicit use to be made of the handset.

Eden says that he’s been in communication with Samsung around the issue, and that the company will have a patch to address the loophole that it intends to release “shortly.” He also offered to withhold an announcement of the exploit until that happened, something Eden says Samsung declined.

Until it’s patched, however, there’s no way to avoid the problem, bar removing Samsung’s ROM and replacing it with a more standard Android installation. As ever, be careful who you leave your phone with.

Yet another Samsung lockscreen hack identified is written by Chris Davies & originally posted on SlashGear.
© 2005 – 2012, SlashGear. All right reserved.

SOURCE SlashGear

Rodney’s son asked him to pick up some nicotine patches, so he did. Rodney, an ex-smoker himself, knows the agony of nicotine withdrawal, and was happy to help him out. Up to a point. He wasn’t happy enough to let Target scan his driver’s license and hold on to the information that he had bought nicotine patches when he hasn’t smoked in years. The thing is, his caution is entirely justified. He could very well land on a data broker’s list of recent smokers.

The manager on duty insisted first that requiring ID was a legal requirement, then a store policy. The latter may have been true, but that means Rodney was can just take his business to another store. So he did.

Rodney writes:

My son, who is trying cast off the vile tobacco habit, called to ask me to pick up a box of nicotine patches that he is using to eases his craving. Since I would do nearly anything to help him quit smoking I tossed a box of the patches in my shopping cart.

At the checkout, the nice lady (really!) asked me for my driver’s license. Assuming that she wanted to verify my age (Wow – being carded at 57) I showed it to her. She then said that she needed to scan the stripe. I declined and told her that I’ve proven my identity and my age and I would prefer to NOT have them record my details. The article in the New York Times about Target’s data mining practices that The Consumerist linked to some time ago was a factor in my refusal, too.

She then called over a manager who appeared to have gotten her makeup tips from RuPaul to override the register by inputting my date of birth. The manager then informed me that it was the law to scan my license. Before I could complete my rebuttal, she changed her story that it was store policy whereupon she snatched up the box of patches and left the checkout. The clerk was obviously horrified and mouthed an “I’m sorry” to me. I simply smiled and told her that Target could keep everything else, too.

I went to a nearby Wal-Mart for the same item and had no problem with the purchase. The register simply asked the clerk to verify if the customer was over 18. She did so without documentation. Perhaps my gray hair was a clue.

Maybe my stand was pig-headed (my spouse seems to think so) but as an ex-smoker myself, I don’t want to risk winding up on some database of smokers. I have no way of knowing how this could be used against me during a health insurance claim or background investigation.

Thanks Consumerist! Keep fighting the good fight.

Of course, if you make a big fuss about privacy and refuse to hand over your driver’s license, then pay with a credit or debit card, that defeats the point entirely.

Does Rodney sound paranoid? He isn’t. It’s not far-fetched at all. The Wall Street Journal reported not long ago that health insurers are quietly buying spending data on their customers, the same information that marketers collect, in order to look at spending habits and make predictions of future health care costs for employers.

Are you suddenly spending a lot of money in plus-size clothing stores? That’s an indication that you’ve put on weight. Dropping a lot of money in liquor stores or on skydiving trips? Data brokers can tell you who is buying a lot of painkillers, who buys more vitamins and supplements, who are frequent dieters, and who takes part in sporty hobbies like running and cycling.

How the Insurer Knows You Just Stocked Up on Ice Cream and Beer [Wall Street Journal]
Everything We Know About What Data Brokers Know About You [ProPublica]

SOURCE Consumerist

The President Barack Obama administration is claiming that authorities do not need court warrants to affix GPS devices to vehicles to monitor their every move.

SOURCE Threat Level

The Supreme Court on Monday let stand a jury’s conclusion that infamous file-sharer Jammie Thomas-Rasset pay the recording industry $222,000 for downloading and sharing two dozen copyrighted songs on the now-defunct file-sharing service Kazaa.

SOURCE Threat Level

Two men were charged for an elaborate hacking scheme. They have been identified as Shahin Abdollahi, whose alias was Sean Holdt, and Jeffrey Thomas Wilkinson. The two men hacked over 13 point-of-sale (POS) computers at a variety of Subways located in Massachusetts, Wyoming, and California. This isn’t the first time Subway’s been hacked. Last September, the franchise’s credit card terminals were hacked at over 150 of its locations. It suffered $10 million in losses and 146,000 accounts were compromised.

Abdollahi and Wilkinson went through an elaborate scheme to execute their plans. Abdollahi operated his own POS business, called “POS Doctor”. There he sold POS computers to various Subways, and he preloaded his LogMeIn (remote desktop tool) information into those machines. In order to get a better understanding of how Subway and their POS systems worked, he operated a few of his own Subway franchises in Southern California.

After learning how Subway operates and how they use their POS system, he and Wilkinson then remotely accessed Subway’s POS systems to create fake gift cards totaling up to $40,000. They took the fake gift cards and sold them either on eBay, or Craigslist. According to the reports, Abdollahi’s hacked systems were sold to a variety of other businesses besides Subway as well.

The two men were charged with computer intrusion and wire fraud. It seems like they did an awful lot of scheming and prep work just to create fake gift cards. Abdollahi went through alot of hassle of owning his own POS company and a few Subways just to get this plan into motion. It’s speculated that Subway was just the testing grounds for an even bigger scheme the two had planned.

[via Ars Technica]

Two men hacked Subway to steal gift cards totaling $40,000 is written by Brian Sin & originally posted on SlashGear.
© 2005 – 2012, SlashGear. All right reserved.

SOURCE SlashGear

So apparently the Ukrainian Navy trains killer dolphins. That’s not the most shocking news you’ll hear all day. Apparently 3 out of the 5 killer dolphins that they have trained have run away from base, presumably to look for a mate to hook up with (at least that’s what experts believe). The dolphins took off during a training exercise held at Sevastopol Aquarium around February 24th. They’re equipped with pistols and knives, and yes, they know how to use them.

They are currently swimming around in the Black Sea in search of some other dolphins to mate with. Yury Plyachenko, a former Soviet naval anti-sabotage officer, stated that this is typical behavior coming from male dolphins. It is mating season, and they usually come back within a week. That’s not exactly reassuring since it’s been about 2 weeks and 2 days since the dolphins took off.

Before they were trained to be killers, these dolphins were in charge of civilian tasks like rehabilitating disabled children. The Ukrainian’s decided to re-train these dolphins in order to fend off enemy combat swimmers. They were fully trained to use weapons strapped to their heads. The dolphin training program originated in the USSR, and there they were taught how to find mines, or plant explosives onto enemy ships. After the breakup of the USSR, the dolphins were given to the Ukrainian Navy.

The Ukrainian Defense Ministry were quick to call these reports a lie. They stated that they were just “fabrications” and “gross provocations”. While that would be a good counter-argument, the killer dolphin training program has been caught on various Ukrainian media reports. Whatever the case may be, civilians (and ships) should probably stay away from the Black Sea for a little while.

[via RIA Novosti]

Ukrainian killer dolphins are on the loose is written by Brian Sin & originally posted on SlashGear.
© 2005 – 2012, SlashGear. All right reserved.

SOURCE SlashGear

Amazing but true — commonsense ideas are still capable of getting bipartisan support. A bipartisan coalition of senators this week introduced legislation that would lift the current ban on consumers unlocking their cellphones without permission from their carriers. The bill, which was proposed by Senate Judiciary Committee Chairman Patrick Leahy (D-Vt.) and cosponsored by Sens. Al Franken (D-Minn.), Chuck Grassley (R-Iowa), Orrin Hatch (R-Utah) and Mike Lee (R-Utah), would let users unlock their cellphones after completing all service agreements with their wireless carrier. The proposed legislation comes less than two weeks after the White House signaled its support for an online petition urging the government to reverse a decision made by the Librarian of Congress last fall to deny consumers the right to unlock their phones and bring them to different carriers.

SOURCE Boy Genius Report