Slashdot Mirror
NSA Spies On International Payments
jones_supa writes "The National Security Agency (NSA) widely monitors international payments, banking and credit card transactions, according to documents seen by SPIEGEL. Information acquired by the former NSA contractor and whistleblower Edward Snowden, show that the spying is conducted by a branch called Follow the Money (FTM). The collected information then flows into the NSA's own financial databank, called Tracfin, which in 2011 contained 180 million records. Some 84 percent of the data is from credit card transactions."
Yes, I do! I find it quite amusing that America was schooled by Putin on exceptionalism.
For a country one who claims to boast its own national exceptionalism and moral superiority. Yet, forgets to mention they are the holders of the largest national debt known to man. If you ask me. I find this fact hardly exceptional or superior ... heck it's not even moral!
NSA knows what you are up to with your credit card
And my wife ask me why I don't like to pay with any plastic cards (credit and/or debit)... I always pay cash whenever i can. Even if all my transactions are legal, some could be frowned upon but not illegal (not yet), I don't like my bank or any other private corporation to know what I do and what i like.
Is it really news that a spy agency is spying? "oh look at them doing their job!"
Does this mean that the NSA is PCI Compliant?
Since, to my knowledge, the financial networks use multiple levels of encryption, I wonder if the VPN boxes used have NSA-prescribed backdoors in them. Is it in fact possible to buy a VPN box without backdoor?
Please tell us instead what websites/activities are NOT monitored by NSA, thank you!
Another reason why Bitcoin and services accepting it rock.
I'm sick of these NSA stories. They're doing their job. I'm pretty sure terrorists and spies used credit cards so it is probably important for the President and other national security personnel to know what they are buying.
"Follow the money" is exactly what one should do if one wants to know the true motives of those who run the spying business. It's ultimately nothing but a justification for billions in spending -- and billions in profit for the elite few at the top. As usual, power is merely a stepping stone to the real goal: money.
to report on the two or three things the feds DON'T have their noses in (legally or otherwise)?
extra credit points: name those things..
"The human eye is a wonderful device. With a little effort, it can fail to see even the most glaring injustice."
This is a quote, not mine, but a quote nonetheless that holds relevance. When do we tear down the walls and regain our country?
So rise up, all ye lost ones, as one, we'll claw the clouds.
If a nation were like a computer programming project, we would write tests to continually ensure its correct operation. One test would be to ensure that voters, not the government, are in control of their own nation.
What kind of test would make sure it is so? Maybe successfully voting a new party in power, one that has never before been on top?
sent to my work address ... now will look even more suspicious.
I'd be VERY worried if the only powerful multicultural country on Earth wasn't watching what racist groups the Chinese and Japs are supporting financially. I'd give them more funding!
I may for things as much as I can in CASH. Cash is anonymous and won't snitch on you.
"A door is what a dog is perpetually on the wrong side of" - Ogden Nash
I have a bunch of CDs that I've ordered, and the arrival rate is rather spotty over here in Oz....
Now they know I bought keys to open dominion lockboxes in Star Trek Online.
Many companies with which I do business (insurance, bank, utilities, medical, credit card, etc.) asked me to switch to paperless billing and notifications. In the spirit of progress I did so.
But now, with all the government snooping, I am changing back, forcing all these companies to snail mail all their paperwork. And I mail them paper checks. It my small protest against their collusion with the NSA.
If they can assure me that they are not willing to share my data with the government, and that my https interactions are not being hacked, I might relent.
Also, I have noticed that they want to send you all legal communications over the internet, but will not reciprocate and allow you to do the same with them.
Prove anything by multiplying Huge Number times Tiny Number
NSA was set up from the start to spy on foreign transactions. Its purpose was to provide inside information to Wall Street from its beginning. Spying on people is just a sideline.
Don't stop where the ink does.
Going on a rant where random words are in bold or italics is a shortcut to having everyone quickly dismiss you as another random crazy person ! It's just one of those heuristics that people develop to weed out bullshit on the Internet.
In the scale of credit card transactions, 180 million, the number of records referenced in the article, is not a large number. Does this imply that there is very specific targeting going on? If so, FTM is doing some filtering before passing on the data.
And, yes, I'm pretty sure that the NSA's Tracfin would pass a PCI audit. It does, however, mean that a lot of QSRs have not been considering if companies' and processors' environments are vulnerable to government agencies as part of their audits.
Why not just get it over with and use that headline instead? Let's face it, they're either Big Brother at this point, or they're trying VERY HARD to be.
The cow says "Moo." The dog says "Woof." The Timothy says "Thanks, valued customer. We appreciate your input."
"The NSA's Tracfin data bank also contained data from the Brussels-based Society for Worldwide Interbank Financial Telecommunication (SWIFT), a network used by thousands of banks to send transaction information securely. "
EU Commission GAVE them Europe's Swift data, on promise they wouldn't misuse it. I suspected NSA had political leverage over the EU Commission because the EU Commission can enforce the privacy right but has not right to *waive* the privacy right. Yet that was exactly what they did. They decided it was proportionate to hand the EU Bank data to the US on condition they pretended not to misuse it. You are unlikely to see a reversal of this policy, despite the new revelations because there is something wrong with the EU Commissioners, I suspect political leverage.
Watch SEPA, the European bank transfer system, this was largely driven by Germany to replace SWIFT. Just as its due to become mandatory in Europe, we have marketing for data exchange among G20 countries. I bet you'll see the EU Commission find a way to hand that SEPA data to the UK, which in turn hands it to the NSA, or perhaps they'll have the balls to hand it directly to NSA.
That data will contain all Europes commercial transactions, every euro cent spent by companies to employees, suppliers, every sale, every order. That's just the commercially sensitive data.
It means they have a track record of every card purchase on every potential political candidate, campaigner, reporter, politician, civil servant, judge, jury member, lawyer, teacher, everyone. If you donate to a political party or a cause the NSA doesn't like, they have record of that donation. I bet US transactions are in there too, they're the easiest to grab. It will be like the phone meta data, all grabbed, all data mined.
Tracfin (Traitement du renseignement et action contre les circuits financiers clandestins) is a service of the French Ministry of Finances. It fights money laundering. Tracfin is a unit of French Ministry for Economy, Finance and Industry and the Ministry for the Budget, Public Accounts, the Civil Service and State Reform with a state-wide reach. Since its foundation in 1990 its aim is to fight against illegal financial operations, money laundering and terrorism financing. Annual report 2010 brings an interesting overview of the Tracfins activities.
Here in Canada, we've phased out the penny, and are in the process of phasing out printed cheques for government payments. Curious to see how long it will take for physical cash in its entirety to make its way into obsolescence, thus opening the gates for controlled/monitored transactions...
http://www.deredactie.be/cm/vrtnieuws.english/News/130916_Belgacom
Belgium's federal public prosecutors have said that the bugging of the Belgian telecom giant was probably the work of 'international state-sponsored cyber espionage'. Earlier it emerged that Belgacom's internal systems had been hacked for a period of two years.
The former state telecom monopoly and Belgium's largest telecommunications operator has confirmed the news of the hacking. The daily De Standaard believes that the US intelligence service NSA is behind the espionage.
The hacking came to light after Belgacom enlisted the services of a specialised Dutch firm to check its operations. It emerged that the company's communications infrastructure had been infected with sophisticated malware. As a result outsiders have been able to listen in to Belgacom's systems.
Why is "spying" continually on /. front pages???? We know. We knew this. This has been known for decades. This is not new behavior for the NSA, CIA, FBI, and other foreign and domestic intelligence and law enforcement agencies. I don't see them stopping any time soon.
How about some REAL news fro a change /.? Ah, here's one. NEWSFLASH - America IS NOT the only country spying! OMG! What do we do? Wait, most people already knew that. How about going back to nerd news instead of naive activist brain candy?
I'm sure they'll bring this post up when they have me in a dark room with jumper cables hooked up to my testicles."Not so funny now, is it, bitch?"
I'm trying to teach myself to set people on fire with my mind... Is it hot in here?
The Muslims have been right all this time, America IS the prime evil on the planet today.
Bitcoin, by itself, allows freedom of transaction, but not necessarily privacy. It is attainable, but not in a fool-proof way.
We need to get used to separating our different trading identities, just like we do for communicating identities. We also need to get used to obfuscating our location, either constantly, or again by exiting from different IP's for different identities.
All this is easily attainable with a few scripts on modern operating systems, Bitcoin, TOR and maybe some VPN accounts. What we don't have is systems that do this out of the box, so that we have different GPG keys, Bitcoin wallets, IP's, e-mail accounts, etc. for our different identities as a basic operating principle. I would love to see such a system implemented; it should be fairly straightforward to do as a Linux distro.
Yup, pretty sure I'm going to end up in a dark room somewhere with *cough* Freedom cables hooked up to my testicles.
I'm trying to teach myself to set people on fire with my mind... Is it hot in here?
Many more three-letter agencies are known to monitor international payments. I would have been surprised if the NSA wasn't monitoring them.
The company my dad works at has a very generic, uninspired name and it happens to be the same as one of the front companies used by the Iranian nuclear programme. Equipment purchases are often blocked and won't be allowed through until someone has a chat with US authorities to remind them that they're still not smuggling parts for Iran's reactors.
"When information is power, privacy is freedom" - Jah-Wren Ryel
My taint.
That I know of.
65033 54423 98954 12195 66564 14332 76775 48442
If you can crack that, I'll give you a cookie. (60 year old encryption that the NSA's best can never crack.)
Do not look at laser with remaining good eye.
That's really trivial!
All those data are already in electronic format, possibly a standard format, along with all the users' details.
Amounts of money and timestamps, transaction IDs, shop and ATM codes (with GIS data)...
It's just like the call metadata the telcos are providing to them.
I would have be puzzled in case the NSA was not colecting them ...
...to hear how HSBC managed to launder money for drug cartels and transfer money to Iranian banks without the NSA knowing about it. And how about that LIBOR-rigging scandal? Must've slipped under the radar, I guess.
They know it when the tax and purchase records are sent from stores to government.
It doesn't matter what you do - the whole community is monitored.
And their operations are solely funded by you American citizens.
NSA should be monitoring their use. When sharpened they could cause a death by million cuts at any time, any place.
Please only inform me when it's something NSA doesn't spy on!
They spy on national money transfers as well.
Or do you think they draw the line just when things don't end up in the same country?
SWIFT does a LOT of transactions between banks.
When you do a payment in Belgium to a company, it takes 2 to three days (even at the same bank) because they need that much time to prevent terrorism.
It would be great if the people reading those messages would work on the weekend as well, because it takes 2 to 3 WORKING days. No transactions on the weekend.
And in Europe when they say 'because of terrorism' they mean 'We hand it over to the USofA.' (Insert joke about the USA being the real terrorists.)
Interesting part at the end
Don't fight for your country, if your country does not fight for you.
I used to write finance software for a living, so I've actually been responsible for putting the hooks into systems that alert and in some cases silently block these transactions. There are actual federal regulations stating we need to do this, and this isn't a new thing - this predates modern banking. The difference is that more and more international names are landing on the list.
The funny thing is that most of this tracking is astoundingly, mind numbingly bad.
I have the most experience with banking (as opposed to credit card transactions), so here's a quick explanation that works:
1) The feds provide us a list, occasionally updated. Format is a plain text file with names of suspects, 1 per line, all caps.
2) We have to do an exact match - if the name of the sender or recipient exactly equals one of the lines, then we tag it, and it's up to the bank manager to deal with it from there. They authorize or not the transaction during the end of day clearing house, or alert the feds or whomever.
That's it. It's sort of like setting up a spam blocker for an explicit email address. It's hilariously trivial.
Now, once transactions go over a certain size, those are independently reported right to the federal reserve, so those may be subject to much more analysis, but evasion is as simple as keeping transfer size low and adding an extra letter to the recipient's name.
There are some caveats; transaction often have to bounce through many entities, but tracking this way is often very difficult since there's no guarantee which ACH a given transaction is bouncing through - each bank uses it's own set based on contracts and legal agreements between countries. Reconciling source and target becomes painful, to say the least.
To recap: 1) they've always done this, 2) they don't seem to be very good at real time tracking
Is it just me or does that name seem inspired by 1984?
Shall we start calling the NSA "Minipriv" (Ministry of Privacy)?
"Secrecy and a free, democratic government don't mix." - Harry Truman
It is by the juice of the coffee bean that thoughts acquire speed, the teeth acquire stains. The stains become a warning
I don't see a problem with the NSA monitoring International payments. How else will they track money transfers for illegal arms sales? At least, for those who use the banking network...
What I would have a problem with, is if they set the lower boundary for their monitoring too low. For example, if they're monitoring anything lower than say, $5.000, they're wasting their fucking time.
The other problem I have with this is economic modeling they are likely doing, and using that for active and changing foreign policy. I'm betting some real-time economic trade forecasting based on geopolitics is in play, and there are a good many people who are getting rich off that data.
What I would really like to see, is someone to run the math on just how much computing, network, and storage it would take to monitor, collect and analyze all the data the NSA appear to be slurping up. I want some hard numbers on this, both domestically and internationally. I'm well aware of the massive data sites they have domestically, but with the volume they are doing overseas, they must have equivalent size, or larger, sites stashed somewhere. Which in turns means Government cooperation on fairly large scale. Or, they bought off said Gov. officials which isn't out of the question.
Given what we know about the extent of NSA data gathering, it seems reasonable to presume that they do have the ability to track financial transactions and transfers of all types across the globe.
They can watch transfers in and out of accounts in countries which refuse to provide information to international police agencies; they can follow the money trail from origin to destination; they know who has the millions and billions of dollars (or whatever) derived from illegal activities.
They know who the bad banks are. They know who the bad countries are. They know who they bad people are. They've untangled and mapped the web of interconnected banks, countries, corporations, and individuals who provide financial services for drug lords, dictators and tax evaders.
Sharing that information with international law enforcement should make it possible to use existing laws to make massive seizures of ill-gotten wealth.
So, the questions is: why do the bad guys still have any money?
Discuss among yourselves.
If there's a power outage on the east coast, the NSA can download this information for safekeeping.
Yeah, right.
Another 9/11 could easily be funded by a rich Saudi prince 'losing' a bunch of money in Las Vegas over a weekend. And they still can't find what happened to much of Bernie Madoff's take?
This isn't about crime or terrorism, its about conducting commercial and industrial espionage to benefit US corporations.
Have gnu, will travel.
Wrong intelligence agency.
http://en.wikipedia.org/wiki/Financial_Crimes_Enforcement_Network
The constitution grants limited powers to the government; it's not intended to be an exhaustive list of all of the things the government is not allowed to do. Those powers not explicitly granted to the government belong to US citizens. The constitution would never say it's forbidden for the government to monitor international monetary transactions -- if the founders had intended to allow the government to be arbiter of all financial transaction data, they would have expressly listed that as a power granted to government. They didn't.
Plus I'm pretty sure the Bill of Rights (you know, those ten amendments to the constitution that were included out of fear that the constitution was too silent on privacy and civil liberty issues) says something like "no Warrants shall issue, but upon probable cause", and "The right of the people to be secure in their .. papers, and effects, against unreasonable searches and seizures, shall not be violated".
So, in summary: It doesn't need to say it, but it does anyway. It's not a power granted to the government by the constitution, and it's explicitly clarified as forbidden by the 4th amendment to the US constitution.
I come from a public school in France, msot of my friends and colleague also do come from public school in France and germany. I never , ever, heard of such a bad teaching in any public school. But then again the program (books) and what needs to be learned is decided on the national level. You can't really do bad stuff as you mention, because then you would be kicked in the butt rapidely and thrown out. The reverse of the medail, is that you can't do great stuff either, youa re constrained by the program. All in all it sounds to me the public school system in the US is so bad, because it is neither directed nor united on the fed level, making it a crapshot on what you will get taught.
C. Sagan : A demon haunted world:
http://www.amazon.com/gp/product/0345409469/
visit randi.org
"The National Security Agency (NSA) widely monitors international payments, banking and credit card transactions"
This could be interpreted to mean that the NSA monitors international payments and ALL (international + domestic) banking and credit card transactions.
http://www.verisigninc.com/en_US/products-and-services/domain-name-services/registry-products/tld-zone-access/index.xhtml?loc=en_US sites are ALWAYS monitored by NSA.
Casteism