Slashdot Mirror
Google Caught Misbehaving By Kenyan Startup
An anonymous reader sends in an interesting story from Mocality, a company that painstakingly built a business directory in Kenya. When they discovered that somebody was systematically harvesting the contact information they'd collected (and after a few very odd phone calls from confused Kenyan business owners), they set up a sting to see what was really going on. They swapped out the phone numbers listed for a few businesses with phone numbers in their own call centers, and then waited to see who called. Mocality was shocked to discover it was Google Kenya, who falsely claimed a business collaboration with Mocality, and then lied about Mocality's business practices.
FTFA:
On this call (first 2 minutes) you can clearly hear Douglas identify himself as Google Kenya employee, state, and then reaffirm, that GKBO is working in collaboration with Mocality, and that we are helping them with GKBO, before trying to offer the business owner a website (and upsell them a domain name). Over the 11 minutes of the whole call he repeatedly states that Mocality is with, or under (!) Google.
If the allegations in this article are true, this is where they really cross the line. Harvesting a publicly available database and then contacting those businesses to sell them something is fine (though a little sleazy for a mainstream business like Google). But then trying to claim that you're working with that company when you're not is just plain fraud. It would be like some random insurance company calling people up and saying "Hi, we're working with your mortgage holder, Bank of Topeka, and would like to offer you a special insurance deal...in conjunction with Bank of Topeka."
In fact, Mocality found out about this whole scam when customers started calling them up and asking for support for their new websites (thinking Mocality were the ones who had sold them the sites). I guess it never occurred to Google that this would happen and that Mocality would want to know why.
SJW: Someone who has run out of real oppression, and has to fake it.
This wasn't just misbehaving. What Google did was outright illegal. Not only did they falsely claim that they have business partnership with Mocality, they also claimed that Mocality is engaging in bait-and-switch practices to try and charge businesses up to $200 for their listing. Mocality said they have never charged businesses and never will.
Such blatant lies aren't just misbehavior, they are pure fraud. Google is trying to destroy their competitor in any way possible and in turn profit from lies. This is not a new practice to Google - they haven't been able to gain market share in social space because Facebook and Twitter got there first (of who did it well), and it's seriously injuring their currently. They are desperately trying to change that with Google+ but they know they're unable to do so because they weren't there at the right time. Google is also facing serious competition in Russia, China, South Korea and a few other countries where local search engines have the largest market share and Google is unable to compete as again, they weren't there at the right time.
Google has a long history of scraping other websites and then dropping them lower in search in favor of their own sites. They have been doing this for ages with hotels, restaurants and similar information. They're also trying to do it with flights information. All of these practices will net Google enemies and most likely antitrust issues. But Google doesn't care - they know how important timing is and they will abuse their position whenever they can to get there. It's a long term goal and Google has managed to get the position where no one can really touch them even if they misbehave. Seriously, they were also found out polluting search engines with paid links. After that they blame someone else and try to seem like a good guy. The most hilarious thing is that most geeks believe them just because they use open source (while ironically their products are all proprietary).
And note that this isn't just Google's Kenyan office misbehaving. They also received calls from Google's Indian call centers engaging in similar practices, so this is a practice accepted from Google's HQ.
On top of that, EPIC has said they will try to get antitrust investigation into Google's introduction of Google+ into search results. People are finally starting to wake up to see how bad Google is and how it abuses other companies.
At first glace I swore it read "Google caught masterbating by Kenyan"
Isn't this illegal in the USA? If it is a US based company can they be sued in the US for doing this? This at least crosses the slander lines, and I'm sure the FTC would love to hear about this. Any attorneys in the audience care to comment?
Help me, help you. - Jerry McGuire
This is a rumor posted on a blog. Really, Slashdot?
Why don't you change Google's icon to Sergey Brin as a Borg while you're at it?
Hail Eris, full of mischief...
E pluribus sanguinem
And, really, what would you expect from anything that was founded and staffed in kenya these days. even if it is google's local branch, it is still staffed with kenyans with current kenyan business perceptive.
Read radical news here
So is the person calling actually from Google? Or is it just some scammer claiming to be from Google?
Is there any proof that this is actually google and not someone impersonating a google employee?
This is a rumor posted on a blog. Really, Slashdot?
Why don't you change Google's icon to Sergey Brin as a Borg while you're at it?
The Gates borg icon is now an anachronism, while a Brin one is quite relevant given their ongoing shady practices
When twisted priests shit on the entire order. Did u expect diff. of people regarding GOOGLE?
I'd hate to pour some cold water on your hot heads - the man has proof, recorded proof. In addition he has IP logs and tracebacks to Google HQ. He has enough evidence to stand in a court of law and press charges against Google inside of the United States. He's checked with ISPs and double-checked over a period of many months. This is no fake; and this is a huge, huge, blow to Google.
Help me, help you. - Jerry McGuire
In comapnies the size of google, things liek this are bound to happen. It is highly unlikely that these actions were directed by top officials at het company. thisis probably one rogue manager or employee somewhere.
There's a Google KENYA?!
"Don't be caught being evil"
the preceding comment is my own and in no way reflects the opinion of the Joint Chiefs of Staff
I haven't RTFA, but I have read Boingboing's article about the same thing. As far as I can tell, IP address != company. You know, it's pretty easy to make requests from fake IP addresses if you're the ISP of your target.
Yet anothe possibility is that the scammer has actually sent the requests from Google's servers. It isn't impossible to take over some of Google's servers and use them to make some requests.
Another possibility is that some of Mocality's own employees are the scammers, and they have planted fake requests in the logs to desinform anyone trying to investigate the scam.
And these are just some of the many different possibilities.
(Yes, I know I will not get modded up, but I don't care. I'm just an AC.)
Don't be (caught being) evil.
Has anyone from Google responded to this yet?
Damn, there are some pathetic Google cult members among the techie community.
It's really pathetic how deluded most of you people are - that you really think Google is above and beyond reproach, and that they would never do anything bad to you.
Would have no moral scruples about fleecing Google as well. I think there is 99% chance that this is either a criminal consultant, hacked servers or plain social engineering. Stefan should have purchased "website hosting" (which Google doesn't offer) and informed authorities of the resulting money trail (but it's understandable that he didn't, being a tech guy rather than a professional detective).
... I am not surprised. Why not ? Because very large entities like Google lack, by definition, the internal social control to "do no evil". What can go wrong must and shall somewhere, somehow, go wrong.
Religous speak to God. Insane are spoken to by God. When all shut up, one can finally hear Shostakovich in peace
Don't admit to being evil.
As a punishment, let's slashdot google!
and i had a kenyan client who told me that when they went to atms to withdraw, they carried shotguns with it. go figure what goes about in corporate practices.
Read radical news here
It's important to remember something here. This wasn't Google HQ, out in California. This was Google Kenya. Kenya ranked 154th (out of 182) in Transparency International's Corruption Index in 2011. It's not a country that is known for an ethical business climate in general; this will steep into the behaviors of any local business, regardless of who the parent company is. So while the actions of Google Kenya were reprehensible, let's not all assume that Eric Schmidt called them up personally and said, "Hey! I want to see you guys lying about the competition and stealing their information...get to it!" It's a pretty safe bet that this is not what happened.
For your security, this post has been encrypted with ROT-13, twice.
IP address ownership, sadly, doesn't prove anything. Anyone with a BGP connection can hijack any IP address for large parts of the world. And before you say "but surely Google can prevent this" :
Read this
I've been the admin on 3 networks which were IP hijacked now. In two cases it was accidental, in a third case it was not. The situation is bad in North America, seriously disappointing in Western Europe, and beyond outrageous everywhere else. Basically, outside of North America and Europe you can pretty much assume anyone can hijack anything they want. Inside "the West" you have to be a carrier, a transit provider with a few hundred customers. Which sounds good, until you realize there's over 500 such organizations in North America alone.
Well I work at Google, and generally the FUD I hear around here is just that. This sounds truly awful though.
For what it's worth, I do believe this is a Kenya office problem. Individual offices have a ton of autonomy and a call center will do what they're told. From the central office perspective, (a) they really do believe what they preach, and (b) this is just retarded. In the grand scheme of things, nobody cares about Kenyan business listings except for the top people in the Kenyan office trying to make a name for themselves.
Assuming it really is all true, I hope heads roll, and I hope Google makes amends before the courts makes amends for them.
Well ... That depends, don't you agree ?
Apparently facebook is ("was") paying people for bad-mouthing google. I am not saying that's necessarily the case here, but it's certainly a datapoint to consider.
There are a lot Google employees that read Slashdot.
I strongly encourage those of them that are appalled at the practice to express their disgust to their direct and indirect managers, up to and including the execs.
some supposedly really smart folks are facing jail time
or
Mocality will get very rich and withdraw.
It seems fair that Mocality should end up owning all the Google Kenya operations with Google as a cooperative partner.
I think it is a crock. Everything they posted could be easily fabricated and if it was real why not pursue legal recourse instead of just blogging about it. I think they are just trying to get extra attention.
Everything you said is true except the last bit, "this is a huge, huge, blow to Google." Cynically, there is no way some small Kenyan firm is going to be able to bring a serious lawsuit in the US against Google. Google's legal team would crush them, tie them up in series after series of motions, and bankrupt Mocality before any verdict could hope to be passed. Such is the nature of the US legal system.
FTFY.
30,000+ hits, but they suspect it's a group of people and not bots? That seems dubious.
The UA string is completely messed as well.
"The user agent is unusual for Kenya: the stable version of Google Chrome released on 20 September 2011, running on 32-bit Linux. With the exception of this IP, it barely appears in our logs."
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/535.7 (KHTML, like Gecko) Chrome/16.0.912.63 Safari/535.7
It seems close to safari, but also identifies itself as chrome running on Linux 64-bit...
I've checked my own UA on linux, and a buddy's Safari. The UA string is closer to Safari except that Safari doesn't run on Linux, and Safari wouldn't have the Chrome markings either. This is more than a bit unusual for a UA, it's a mismatched spoof.
My guess is that
a) Somebody has found a way to abuse google search or the search servers to perform queries
or
b) Somebody has managed to infect some devices at google. My first thought along this line would be an infected smartphone
At the moment, the only tie to google seems to be an IP address range with a messed up User Agent and somebody claiming to be a google employee (but also lying about being in partnership with mocality). That's not exactly hard data. If the phone # had been the same google office it might be a bit more (also spoofable with VOIP in about 2 seconds).
If google *was* involved in such a thing I'd gladly throw them under the bus. But I'd not be willing to do so based on the evidence given.
Provided Google has a worldwide VPN, which it almost certainly does, the data packets could originate from its Kenyan or Indian branch, go through VPN to Google CA, leave their private network there and come back to Kenya.
Where can you find liars?
Google in Kenya!
Google in Kenya, they've got liars!
-- "Oh. This guy again."
Shocked. I am completely shocked.
Obi-Wan: "I felt a great disturbance in the Force, as if millions of voices suddenly cried out in terror and were sudden
They still have credit to me for all the good they do for open source (summer of code, open protocols, webm, patents, android...), but they're starting to look a bit like the company of Scorpio in that famous Simpsons episode.
http://www.weebls-stuff.com/songs/kenya/
Google-Kenya caught misbehaving in Kenya.
For once, it was the Africans getting scammed and not vice versa?
Google just provide the network.
" The partnership with Safaricom, Equity Bank and Kenic called the Getting Kenyan Businesses Online (GKBO) program,"
http://www.blackweb20.com/2011/09/12/google-getting-kenyan-businesses-online-with-gkbo/#.TxBmUKUS22U
About the story:
"I’d like you to meet Douglas. On this call (first 2 minutes) you can clearly hear Douglas identify himself as Google Kenya employee, s"
Yeah, no one lie about that to make them seem more legit.
"attempt to undermine our business, "
Undermine it for what? There is nothing there to undermine for Google.
"It looks like Google has now outsourced the Getting Kenya Businesses Online operation to India!"
no, it doesn't.
The person claims Google is doing it to sell a services, but as far as I can tell Googles service is free.
http://www.kbo.co.ke/faqs
Why haven' they contacted Google?
Why haven'tr they bothered to do cursory investigation into the company?
Why do the limit there 'research' to just the network?
This smells like some stirring the pot to get into the news.
As a side note, information is online, anyone can get it.
The Kruger Dunning explains most post on
1. This is all currently unverified
2. The main evidence is that people making fraudulent phone calls containing multiple lies, also claim to work for google. That's fairly weak. Lots of people try to sell products claiming to be from a certain vendor, but they're actually reselling services.
3. The only other evidence is the google IP. This IP is associated with manual scans of websites, so seeing lots of requests from this IP would not be unusual. I'd like to see verification or at least further details of their "sting" operation to ensure that they only sent false flag information to this IP, and didn't send false flag information to other IPs.
4. Even if the link between the fraudulent phone calls and the google IP can be established without question, there's still the possibility that an outsourced call centre abused access to google network services (eg VPN).
5. Note the switch between Kenyan google and Indian google, isn't so surprising, these scams tend to move around. The fact that the Indian stuff picked up right when the Kenyan stuff stops, actually points more to the same call centre. When you move call centres you often have them running side by side for a short period in order to work out any kinks. The graphs in the article, indicate a sudden shift.
No he doesn't. In fact, he has no proof Google is doing this at all.
He has proof someone on Google Keyna's network is going this.
He keeps saying Google GKBO as if GKBO is someone part of Google, It is not.
Google Kenya Provides the Network and some web building services for free. That's their involvement.
http://www.kbo.co.ke/faqs
http://www.blackweb20.com/2011/09/12/google-getting-kenyan-businesses-online-with-gkbo/#.TxBmUKUS22U
"That’s why we’re thrilled to announce today that Google, Safaricom, Equity Bank and KENIC have come together to create Getting Kenyan Businesses Online (GKBO),"
http://google-africa.blogspot.com/2011/09/getting-kenyan-businesses-online.html
It's most likely KENIC people who are doing this.
The Kruger Dunning explains most post on
"|does google have a hosting business ?
Yes, they do. Did you not read the article?"
No they do not. You need to look a little farther the then accuser to get facts.
http://google-africa.blogspot.com/2011/09/getting-kenyan-businesses-online.html
http://www.kbo.co.ke/faqs
"That’s why we’re thrilled to announce today that Google, Safaricom, Equity Bank and KENIC have come together to create Getting Kenyan Businesses Online (GKBO)"
KENIC runs the hosting busins and the operation, Google Kenya provide free access to tehir network and some services.
The Kruger Dunning explains most post on
yes. well done ! you have showed everyone how big a moron i was.
now, we are expecting to show the same kind of aptitude when something undesirable is done by any microsoft outfit.
Read radical news here
It's unlikely that this the first time that Google has done this in Kenya or anywhere else...especially considering that their Indian call centers are apparently involved.
I can believe someone from Google stumbled across a publicly available database and used that as a listing to cold call people, but there's nothing to be gained by claiming to be Mocality's partner (likely this was just a vendor making stuff up on the fly to cover face). The amount of money involved is trivial compared to time spent on other efforts, and I suspect GKBO is more of a goodwill mission than about trying to make money.
I'm sorry Google is competing against Mocality, but Mocality can't just sit on a database and expect to make money indefinitely, it's bad for Kenyans if there isn't competition.
Since when is Google in the business of building web sites for small businesses?
Moderating "-1, Disagree" is simple censorship. Have the guts to post your opinion.
Competition Act. Section 21: Restrictive Trade Practices. Section 55: False or Misleading Representations (Specifically 55.a.v.) And Section 56 & 57: Unconscionable Conduct. (Probably 56.2.d, and Section 57.1 in general.) And the Trade Descriptions Act. Specifically sections regarding "Prohibition of False Trade Description". And of course the Defamation act, because of the false claims about Mocality's business practices.
And possibly the Witchcraft Act. Because computers, you know.
People believe that to make a copy of openly available information (A website, a Facebook profile, etc) is evil.
PROTIP: If you don't want others to copy it, DON'T MAKE IT AVAILABLE! Duh! Is that so hard to get?
Writing "Don't copy this" next to it means nothing if the person reading it is not somebody you can trust personally. Which is the case just about... NEVER.
And that is also still true if the "Don't copy this" text is part of a law book. Since it's physically impossible to enforce, without putting a DRM chip into everyone's head so that one can't communicate without your censorship^Wcontrol.
Look, I'm sorry you wasted so much time to collect the data. But if you're living in a fantasy reality or are being stupid, then you got only yourselves to blame. Get this, or please just go and die.
After that initial statement from Google there's more Got this from http://larrymadowo.co.ke/google-kenya-investigating-mocality-ripoff-claims/ Google’s Nelson Mattos, Vice-President for Product and Engineering, Europe and Emerging Markets just released this statement: ‘We were mortified to learn that a team of people working on a Google project improperly used Mocality’s data and misrepresented our relationship with Mocality to encourage customers to create new websites. We’ve already unreservedly apologised to Mocality. We’re still investigating exactly how this happened, and as soon as we have all the facts, we’ll be taking the appropriate action with the people involved.’
http://it.slashdot.org/comments.pl?sid=2603836&cid=38661950
If the perpetrators of this are misrepresenting themselves as Mocality, it is unsafe to assume that their representation as Google is truthful.
For those of you claiming that the IP address in the Mocality logs doesn't prove this is Google, you're wrong. It pretty much does prove exactly that.
If it is discovered that Mocality is lying / falsifying their logs than sure, Google is innocent of this. Otherwise, all you need to do is examine the ARIN registry info for this 74.125.63.33 IP address to see that the 2nd batch of scrapings (which Mocality says were from Google India) is a legit Google IP address.
http://whois.arin.net/rest/net/NET-74-125-0-0-1/pft
http://whois.arin.net/rest/org/GOGL.html
http://whois.arin.net/rest/org/GOGL/nets
http://whois.arin.net/rest/asn/AS15169/pft
All of the above is official Google address space / orgID / ASNs / etc stuff with ARIN. It isn't fake. That 74.125.63.33 IP is a real Google IP.
It sounds like some /. posters are suggesting that anyone could register IPv4 address space with ARIN as Google. My response to those posters is, if you'd ever requested IPv4 address space from ARIN I don't think you'd suggest that it's trivial to do that. There aren't that many people working at ARIN, and in my experience they're pretty sharp. If I tried to social hack my way into registering address space as Google I would need to do so using one of the ARIN POC handles (http://whois.arin.net/rest/poc/ZG39-ARIN.html ie. arin-contact@google.com) already listed as the admin POCs for Google's Org.
And if all of the above didn't convince you (and you don't happen to have some of Google's IP ranges memorized), try pinging www.google.com like I just did:
ping www.google.com
PING www.l.google.com (74.125.115.106) 56(84) bytes of data.
64 bytes from vx-in-f106.1e100.net (74.125.115.106): icmp_seq=0 ttl=43 time=25.7 ms
64 bytes from vx-in-f106.1e100.net (74.125.115.106): icmp_seq=1 ttl=43 time=26.5 ms
Then look that up in ARIN's DB. It's from the same IP block as the IP that was scraping Mocality. So, the people claiming that someone not-Google registered this IP space as Google are also claiming that the posers are serving up www.google.com now?
You could take both of those IP addresses and go to any BGP looking glass on the web and do a BGP lookup on them ("show ip bgp 74.125.63.33" in Cisco IOS). Look at the ASN path for both the google.com web page and the IP Mocality reports - they both point back to the same ASN: 15169.
Instead of saying that Mocality is lying, you're saying that someone totally hacked all of Google's ARIN accounts in order to conduct this grand conspiracy that wasn't perpetrated by Google. This is sounding quite a bit more far fetched than the 2 most likely possibilities which are that either:
#1 Mocality is lying / falsifying logs or
#2 Google did this
And if Google did do this, it wasn't just a person or two, but multiple employees at least 2 separate field offices were working on this during business hours for weeks on end. That suggests that it could have been someone higher up in Google with enough juice to control 2 separate Google offices in 2 different countries who made a decision to begin a coordinated and possibly illegal effort against this Kenyan business.
It's a good thing Google doesn't offer hosting because if they did that could also explain the Google IP showing up on Whois.
War doesn't show who is right - just who is left.
He's part Kenyan.. Does that mean our country really as retarded as it seems?
Are you so sure of that? Or does he merely claim he has IP logs, etc. etc.?
This is Kenya, not Nebraska; it might as well be Nigeria. Right now it's status is simply a rumor posted on a blog, nothing more. If proof really emerges, it'll be something else, but experience cautions that such claims are to be taken with a grain of salt.
Update 2 of this article states Google has taken some responsibility:
http://techcrunch.com/2012/01/13/facing-another-pr-disaster-google-accused-of-fraudulently-undermining-a-kenyan-startup/
More details still need to emerge.
>Google has a long history of scraping other websites and then dropping them lower in search in favor of their own sites.
> They have been doing this for ages with hotels, restaurants and similar information.
> They're also trying to do it with flights information [mashable.com]. All of these practices will net Google enemies and most likely antitrust issues.
>But Google doesn't care - they know how important timing is and they will abuse their position whenever they can to get there.
> It's a long term goal and Google has managed to get the position where no one can really touch them even if they misbehave.
> Seriously, they were also found out polluting search engines with paid links [searchengineland.com].
>After that they blame someone else and try to seem like a good guy.
>The most hilarious thing is that most geeks believe them just because they use open source (while ironically their products are all proprietary).
>And note that this isn't just Google's Kenyan office misbehaving.
>They also received calls from Google's Indian call centers engaging in similar practices, so this is a practice accepted from Google's HQ.
>On top of that, EPIC has said they will try to get antitrust investigation [techcrunch.com] into Google's introduction of Google+ into search results.
> People are finally starting to wake up to see how bad Google is and how it abuses other companies.
This is utter crapola.
When Google aggregates information and then their aggregated page appears higher in the search results than a bunch of poorly done mom&pop-ola, because it better matches individuals' needs, that's not manipulation of results, that's good service.
Your searchengineland example is poor. Some subcontractor purchased sponsor trash, and when it was discovered, Google killed it. Big deal. The rest of your links are similar FUD. Google Kenya contracts with a Google India call center, and you think corporate headquarters knew about it? C'mon.
OK I am going to be that guy everybody hates:
Al though we are all aware that Google is not what it used to be or at least what it pretended to be, the title should "Google KENYA..." You cannot expect a totally standard way of behaving in a huge corporation no matter how much you try to encourage and enforce it. Ethics and good business practices are going to be the ones chosen by the local offices. Soure you can fire them to make an example of it but cannot prevent it. You cannot expect the same ethical conduct from the main offices, the ones in North America or Western Europe than the ones in Africa, Russia, etc. That would be a perfect world and we are far far away from that.
From the same Google India IP range comes a vandalism attack on OpenStreetMap, the open-data alternative to Googlemaps:
OpenStreetMap claims map vandalism traced to Google IP range
OpenStreetMap blog posting
Troubling Google Contractor Allegedly Caught Vandalizing Open Street Map