States Launch Joint Probe of Google Wi-Fi Snooping

CWmike writes "As many as 30 states could join an investigation into Google's collection of personal information from unprotected wireless networks, Connecticut attorney general Richard Blumenthal announced today. Google's response was similar to what it said earlier this month: 'It was a mistake for us to include code in our software that collected payload data, but we believe we didn't break any US laws. We're working with the relevant authorities to answer their questions and concerns.' Google already faces investigations by privacy authorities in several European countries, including the Czech Republic, France, Germany, Spain and Italy. In the US, Google faces multiple civil lawsuits, and the company has been asked for more information from several congressmen as a preliminary step to a legislative hearing. Google has asked that the lawsuits be consolidated and moved to a California federal court's jurisdiction."

still dont see

[Tmack]

Why this is being given such legal scrutiny. Its akin to driving down the street with a tape recorder and parabolic mic, recording whatever conversations people might be having as part of a population density study, and accidentally recording someone in their front yard yelling their cc# into the phone. It should fall under general privacy law: if you dont spend the time/energy to setup encryption of some form, dont expect privacy (same as if you dont try to block peeping toms, or if you go sunbathing nude in your front yard next to the street, dont be surprised to find yourself posted to /b). Even windows warns you now if you try to connect to an unencrypted AP. If anyone should be sued for this, sue the manufacturers that distributed the APs with a default configuration of no encryption and see how well that flies.

Tm

Re:still dont see

[schwit1]

How can it be illegal in 'some states'? isn't this the jurisdiction of the FCC?

Re:still dont see

[murdocj]

For god's sake, the whole "I was walking down the street and happened to intercept unecrypted wifi" argument is utterly ridiculous. No one "happens to intercept" wifi. You have to actively snoop. If you want a better analogy, try "I walked down the street and opened up people's mailboxes and read their letters. But they had it coming to them, they didn't have lockable mailboxes".

Google screwed up. Period. If they had simply done what they claim they wanted to do, and only recorded header information, this just wouldn't be an issue. If anyone else drove a fleet of vans around intercepting wifi, people on Slashdot would be going nuts, but because it's the cool company, all is forgiven.

Re:still dont see

[PopeRatzo]

Why this is being given such legal scrutiny. Its akin to driving down the street with a tape recorder and parabolic mic

Actually driving down the street with a tape recorder and a parabolic mic recording conversations should be illegal. If I'm standing on my porch having what I think is a private conversation with someone and someone in a car is recording that conversation with a parabolic mic, it sounds like an invasion of privacy to me. Just because something is done "in public" shouldn't mean that it's meant for public consumption. And if it that private conversation is being used for financial gain, then it's even more egregious.

Driving by my house and taking a picture is one thing. Driving by my house and recording private conversations is another.

It's strange that some of the same people who would shit themselves with anger if the government was doing this think it's just peachy if a transnational corporation does it.

Problem solved

[bennomatic]

I use WPA on my wifi, so they can't sniff. I do it because there are a lot of people out there who feel that a non-protected wifi link is theirs for the using. If you're worried about Google sniffing, then you should be more worried about people using your wifi to download torrents, bringing your connection under the watchful eyes of the RIAA and MPAA.

Re:Problem solved

[Itninja]

I use WPA on my wifi, so they can't sniff.

Oh, you're adorable.

Re:Problem solved

[vivian]

I use WPA on my wifi, so they can't sniff. I do it because there are a lot of people out there who feel that a non-protected wifi link is theirs for the using.

The problem is there are some people/organizations who run nodes that ARE free to use - so if you don't want people to use your network uninvited, the simplest thing to do is close the door as you have done. Even the very weakest encryption would be enough to indicate that you do not intend your network to be used publicly. Simply having SSID broadcast turned off with no encryption at all would also indicate you do not intend it to be public, however, if you have your router happily broadcasting it's SSID, with no encryption and transmitting strongly enough to be received by a car driving down the street, well that's basically saying "come use me!"

Although it is worth investigating exactly what information Google collected and why, that is not what the suit is going to be about - it's going to be a great big money grab by a bunch of lawyers on behalf of a bunch of people who couldn't be bothered to make their wireless networks private, and who lost absolutely nothing at all and were not damaged in any way by Google's actions. (Did Google start using captured credit card details or start spamming some private email address that was captured, or selling any of the private data that was captured other than perhaps the name and location of the node? I think not.)

Oh and for anyone who whines "oh not everyone is a geek who can understand how to configure a router"
RTFM! that's what it is for. It really isn't that hard!

Google is fucked

[larry+bagina]

Legal or not, accident or not, there's only two facts that matter:

• States are desperate for money
• Google has money

The state Attorney Generals (Attorney's General for the pedants) can taste the green. They haven't been this rabid since the Big Tobacco lawsuits. I expect Google will make a big donation to "help educate people about identity theft" (read: prop pension plans and make sure state employees and their union masters are happy).

Re:Google is fucked

[bennomatic]

Attorney's General for the pedants

Actually, it's Attorneys General; plural, not possessive.

Leave it alone

[itsphilip]

Call me naive, but I trust Google. I've been using Gmail since late 2004. I just migrated away from the iPhone after three years; I now have a Nexus One as my primary phone. My calendar, my contacts, etc. are in the Google cloud. And guess what? They've never done ANYTHING to erode my trust in them. In the age of telecom companies trying to cap mobile data plans, and place arbitrary restrictions on IP-delivered media content, Google is busy trying to roll out fiber and generally make the Internet better. I believe that not only do they live by their "don't be evil" mantra, but that they realize the days of the free Internet may be numbered. They're doing their best to save the Internet as we know it. Granted, they have something to gain. But other companies' failure to evolve leaves the door wide open for a company which we should trust far more than AT&T, Time Warner, etc. to preserve the landscape that slashdotters are so eager to protect. The tag is correct, it's a witch hunt. Google admitted their mistake, we move on.

This curious concern I have...

[Masque]

Does it not seem odd that the Government's reaction to the potential invasion of privacy by a corporation is to... insist upon seeing all of the data?

Re:Why of why...

[sangreal66]

It really wasn't voluntary. Go back and read Google's disclosure again. They were under investigation by Germany on the matter. They originally told the investigators that they don't collect any payload data. Not satisfied, Germany demanded Google audit the data they had stored at which point Google fessed up to saving all the payload data. Really the only voluntary part was announcing it to public in a positive light instead of waiting for the news to break independently.