11-05-2013, 20:02 #1
[EN] Policia: Seu Smartphone, Sua Vida
Even when login safeguards are set up, law enforcement have still often been able to use tools to bypass or brute-force a phone’s security measures. Google in some cases helps law enforcement to get past Android phones’ lockscreens, and if law enforcement can’t crack a seized iPhone, officers will in some cases mail the phone to Apple, who extract the data and return it stored on a DVD along with the locked phone.
“We know the police have started using tools that can do this. We’ve known the iPhone retains records of the cell towers it contacts. But we’ve never before seen the huge amount of data police can obtain,” says ACLU technology lead Chris Soghoian.
Cell phone searches are a common law enforcement tool, but up until now, the public has largely been in the dark regarding how much sensitive information the government can get with this invasive surveillance technique.
Last fall, officers from Immigration and Customs Enforcement (ICE) seized an iPhone from the bedroom of a suspect in a drug investigation. In a single data extraction session, ICE collected a huge array of personal data from the phone. Among other information, ICE obtained:
phone book directory information
stored voicemails and text messages
photos and videos
eight different passwords
659 geolocation points, including 227 cell towers and 403 WiFi networks with which the cell phone had previously connected.
The type of data stored on a smartphone can paint a near-complete picture of even the most private details of someone’s personal life. Call history, voicemails, text messages and photographs can provide a catalogue of how—and with whom—a person spends his or her time, exposing everything from intimate photographs to 2 AM text messages. Web browsing history may include Google searches for Alcoholics Anonymous or local gay bars. Apps can expose what you’re reading and listening to. Location information might uncover a visit to an abortion clinic, a political protest, or a psychiatrist.
Intrusive cell phone searches are becoming ever easier for law enforcement officers to conduct. Companies such as Cellebrite produce portable forensics machines that can download copies of an iPhone’s “existing, hidden, and deleted phone data, including call history, text messages, contacts, images, and geotags” in minutes. This type of equipment, which allows the government to conduct quick, easy phone searches, is widely available to law enforcement agencies—and not just to federal agents.
New Document Sheds Light on Government
11-05-2013, 20:21 #2
Nos seriados modernos americanos, essas "descobertas" da ACLU são rotina para os agentes da lei de Hollywood e muitas vezes dispensam o telefone para obter tais dados. Se você está mal intencionado, não sai de casa com o seu celular.
Última edição por 5ms; 11-05-2013 às 20:26.
13-05-2013, 11:48 #3
[Secrets of 27 million mobile phones offered to policeTHE data of 27m mobile phone users has been offered for sale to the Metropolitan police, private companies and other bodies, enabling them to track users’ movements.
Ipsos Mori, one of Britain’s biggest research firms, has been caught offering text and call records for sale.
The company has claimed in meetings that every movement by users can be tracked to within 100 metres. This weekend the Met, which has been in talks with Ipsos Mori about paying for some of the controversial data, shelved any deal after being contacted by The Sunday Times.
Documents to promote the data reveal that it includes “gender, age, postcode, websites visited, time of day text is sent [and] location of customer when call is made”.
They state that people’s mobile phone use and location can be tracked in real time with records of movements, calls and texts also available for the previous six months.
Última edição por 5ms; 13-05-2013 às 11:53.
13-05-2013, 11:52 #4Brits' phone tracking, web history touted to cops: The TRUTH
What's inside the info on 27 million punters up for sale
By Bill Ray
Posted in Mobile, 13th May 2013 13:29 GMT
Analysis Pollster Ipsos MORI is under fire for touting data on millions of EE customers - from their whereabouts to their browser history - to anyone with a chequebook, including London's Metropolitan Police.
The Met shelved the deal when the Sunday Times learned of the mass info flogging. But private companies have been buying the mobile network's subscriber stats, which include customer locations, calling habits and web-browsing history broken down by demographic.
This is all entirely legal as the data is supplied in anonymous blocks of 50 people grouped by activity and location: for example, 150 peope sent a text message at midnight from the capital's Shaftesbury Avenue, or 50 people visited Amazon's website from within a Coventry Tesco.
However, the monetisation of this information has still got privacy campaigners riled.
The Sunday Times is very excited that the customer records have been offered for sale, pointing out that 27 million customers are being tracked by EE every day. But the network operator is adamant that the data being flogged is anonymous, and it's hardly the only telco that has set up shop selling information about its customers.
All the mobile network operators track users, storing punters' location for two years, and logging details of calls and downloads. Mostly that's done for network planning purposes, such as working out where and when people tend to concentrate so as to surround them with phone masts. And police officers can, by law, request access to these databases to track suspects and the recently deceased. Now operators are trying to squeeze revenue from their big data, too.
Last year O2 owner Telefonica created a division specifically tasked with selling customer data, and Vodafone feeds anonymous information to satnav biz TomTom, so it shouldn't be surprising that EE has outsourced the task to Ipsos MORI.
Supermarkets and shopping centres are always interested in visitor numbers, and what customers are doing - such as what percentage of shoppers are checking price-comparison sites. Councils are interested in the flow of people around city centres, on foot and in cars, while the plod want to know how many people were in a riot and where they went to next.
Not as individuals, of course. Data that specifically identifies Brits is available to the police, through their Single Point of Contact and for a fee. The Sunday Times reckons the police were interested in correlating address and names to the EE data, and one can see why the cops would wish to do that, but for EE to facilitate that would be an illegal breach of privacy - so any such detailed data isn't handed over.
In a statement to The Register, the operator said:
The suggestion that we sell the personal information of our customers to third parties is misleading to say the least. The information is anonymised and aggregrated, and cannot be used to identify the personal information of individual customers. We would never breach the trust our customers place in us and we always act to comply fully with the Data Protection Act.
Anyone interested in exactly what data operators store should watch this animation from the German politician who successfully extracted all the information about himself from his network operator and put it into a map of his activities. His mobile internet use isn't included, but even so the picture is quite chilling for the privacy conscious among us.
Ipsis MORI wasn't trying to sell data on individuals, and what it was selling is an entirely legal commodity even if we're a little uncomfortable seeing it traded. Our personal habits are already a valuable commodity and mobile operators are late to the market. But they are coming, and bringing ever-more detailed information about us to anyone who's willing to pay for it. ®
13-05-2013, 11:55 #5
EE defends user-data selling scheme following police interestBy Dave Lee Technology reporter, BBC News
Mobile operator EE has defended plans to sell its data, after a newspaper reported personal information was being offered to the Metropolitan Police.
Research company Ipsos Mori has an exclusive deal to sell on EE's data, and has held talks with the force, according to the Sunday Times.
EE told the BBC the article was "misleading to say the least".
The company said Ipsos Mori had access only to anonymised data grouped in samples of 50 people or more.
"We would never breach the trust our customers place in us and we always act to comply fully with the Data Protection Act," a statement from EE said.
"The information is anonymised and aggregated, and cannot be used to identify the personal information of individual customers."
The newspaper's report said information about 27 million of EE's customers was on offer - including their gender, age, postcode, the websites they visited, the time of day they sent texts and their location when making calls.
The Met Police confirmed to the BBC that they had held an "initial meeting" with Ipsos Mori to discuss how the data could be used to tackle crime, but added it "has made no offer to purchase data from Ipsos Mori nor has any intention of doing so".
The force would not comment on whether it had made similar enquiries with other mobile operators.
In response to the story, Ipsos Mori - which is yet to fully finalise the terms of the deal with EE - told the BBC the data set was "not about individuals - it's about behaviour".
On its website, the research company outlined what powers it had:
We can see the volume of people who have visited a website domain, but we cannot see the detail of individual visits, nor what information is entered on that domain
We only ever report on aggregated groups of 50 or more customers
Ipsos Mori only receives anonymised data without any personally identifiable information on an individual customer
We do not have access to any names, personal address information, nor postcodes or phone numbers
'Movement of crowds'
Monetisation of mobile-data intelligence is a major new revenue source for operators.
Clues about a user's location, and what they are interested in, are a potential goldmine for retailers looking to offer targeted advertising.
Other networks such as Vodafone and O2 also offer businesses the chance to capitalise on the personal information it holds on its customers.
"Aggregated, anonymised data based on analytics such as footfall and outdoor media tracking can enable an organisation to make informed decisions," said Vodafone in a recent press release about services it offers.
Likewise, O2 offers "analytical insights" to retailers through parent company Telefonica, whose digital insights team - set up last year - promises "a digital headcount to help them understand the movement of crowds".
"Retailers are quite good at measuring footfall inside their stores," the company said.
"But this data will tell them where people go once they are outside, as well as their age and gender."
Such schemes have attracted the concern of privacy rights campaigners - particularly at a time when debate over what access the government should have to private data is under scrutiny.
Last week, proposals for the Communications Data Bill - referred to by some as the Snoopers' Charter - was left out of the Queen's Speech.
The bill called for greater powers to investigate crime in cyberspace - but was opposed by the Lib Dems who said the measures went too far.
On news the Met Police was in contact with Ipsos Mori about mobile data, one privacy group told the BBC it was "alarmed".
"There is no point in the government announcing that they don't want a Snoopers' Charter only to get a privatised one by the back door," said Loz Kaye from the Pirate Party UK.
"Companies must start to realise that it is against their interests to treat their customers this way. Otherwise we just end up being commodities in a 21st Century data gold rush."
13-05-2013, 12:13 #6
Mapa interativo das andanças, viagens de avião, e comunicações do politico, do Partido Verde alemão, Malte Spitz, utilizando 6 meses de dados armazenados pela operadora de celular:
Vorratsdatenspeicherung - interaktive Grafik | Datenschutz | Digital | ZEIT ONLINE
Última edição por 5ms; 13-05-2013 às 12:17.