Privacy Advocate Jacob Appelbaum Reports Break-In Of Berlin Apartment

← Back to Stories (view on slashdot.org)

Privacy Advocate Jacob Appelbaum Reports Break-In Of Berlin Apartment

Posted by timothy on Sunday December 22, 2013 @04:25AM from the watch-your-friends'-enemies dept.

Jacob Appelbaum isn't shy about his role as a pro-privacy (and anti-secrecy) activist and hacker. A long-time contributor to the Tor project, and security researcher more generally, Appelbaum stood in for the strategically absent Julian Assange at HOPE in 2010, and more recently delivered Edward Snowden's acceptance speech when Snowden was awarded the Government Accountability Project's Whistleblower Prize. Now, he reports, his Berlin apartment appears to have been burglarized, and his computers tampered with. As reported by Deutsche Welle, "Appelbaum told [newspaper the Berliner Zeitung] that somebody had broken into his apartment and used his computer in his absence. 'When I flew away for an appointment, I installed four alarm systems in my apartment,' Appelbaum told the paper after discussing other situations which he said made him feel uneasy. 'When I returned, three of them had been turned off. The fourth, however, had registered that somebody was in my flat - although I'm the only one with a key. And some of my effects, whose positions I carefully note, were indeed askew. My computers had been turned on and off.'" It's not the first time by any means that Appelbaum's technical and political pursuits have drawn attention of the unpleasant variety.

49 of 194 comments (clear)

Min score:

Reason:

Sort:

Paranoia by the+eric+conspiracy · 2013-12-22 04:29 · Score: 5, Insightful

It's not paranoia when they really are out to get you.
1. Re:Paranoia by Anonymous Coward · 2013-12-22 04:54 · Score: 5, Insightful
  
  It's not paranoia when they really are out to get you.
  The distance between paranoia and reality has narrowed considerably.
2. Re:Paranoia by cold+fjord · 2013-12-22 05:04 · Score: 5, Insightful
  
  It is always an interesting question though as to which "they" it is. Appelbaum has access to documents that Snowden leaked. Is it the Russian government trying to get their hands on the full cache of documents that Snowden leaked, assuming they don't have it already? Germany is crawling with Russian spies. Is it the German government looking for more information on US and British activity? Chancellor Merkel brought a former intelligence officer into her government recently. Is it the US government? Is it the Iranian government looking for ways to avoid detection of its agents? Is it another nation, impatient to see if there are any revelations about intelligence involving it but not wanting to wait for newspaper publication that may never come? Is it another advocacy group looking for information to share in the limelight? Is it another hacker group looking for clues as to how to avoid government surveillance of their activities, or for information they can crib into attacks? It is criminal gangs looking for information that can be exploited in many ways - making a profit and avoiding police surveillance? Is it a former lover looking for revenge? All that can be said is that he claims that something happened, but what it means is very much an open question. Various people will claim to know that it was this, or that, but Appelbaum doesn't know exactly what, how could anyone else but the perpetrators.... if they exist?
  
  --
  much of left-wing thought is a kind of playing with fire by people who don't even know that fire is hot - George Orwell
3. Re:Paranoia by KingOfBLASH · 2013-12-22 05:18 · Score: 2, Insightful
  
  It's not paranoia when they really are out to get you.
  The distance between paranoia and reality has narrowed considerably.
  Where's +1 Sad when you need it?
4. Re:Paranoia by Anonymous Coward · 2013-12-22 05:33 · Score: 4, Informative
  
  Burglars wouldn't bother to touch the computer unless they were going to steal it.
5. Re:Paranoia by cold+fjord · 2013-12-22 07:02 · Score: 3
  
  Snowden ally Appelbaum claims his Berlin apartment was invaded
  
  Appelbaum ... is one of the few people with access to some of the data held by former NSA contractor Edward Snowden.
  You tell me.
  
  --
  much of left-wing thought is a kind of playing with fire by people who don't even know that fire is hot - George Orwell
6. Re:Paranoia by CanHasDIY · 2013-12-22 07:23 · Score: 3
  
  I guess that depends on which group accuses him of having CP on his machine, here in a week or two.
  
  --
  An enigma, wrapped in a riddle, shrouded in bacon and cheese
7. Re:Paranoia by timothy · 2013-12-22 10:18 · Score: 2
  
  Burglary and theft aren't the same. (I used to think they were; as a 3 or 4-year-old, I thought burglars had a fun-looking job, but I guess my moral sense was still developing ...but I also thought that burglars and bank-robbers were pretty much the same thing. I was a burglar for Hallowe'en when I was 4, not realizing that the black-and-white stripes are really only for burglars who aren't at present pursuing that line of work.)
  Wikipedia puts it this way: "Burglary (also called breaking and entering[1] and sometimes housebreaking)[2] is a crime, the essence of which is illegal entry into a building for the purposes of committing an offence. Usually that offence will be theft, but most jurisdictions specify others which fall within the ambit of burglary."
  At least in many jurisdictions, the "in the night" aspect of common law burglary is really ignored, and (as above) pretty much any structure can fill in for the old requirement that it be a "dwelling" that's invaded.
  
  --
  jrnl: http://tinyurl.com/c2l8yr / foes: http://tinyurl.com/ckjno5
8. Re:Paranoia by morethanapapercert · 2013-12-22 10:50 · Score: 4, Insightful
  
  Criminals skillfully disabling alarm system after alarm system, entering and leaving with next to no trace are the stuff of jewel heist movies. For decades, the advice of experts has been to make things difficult (not impossible) for thieves to steal your stuff. That's because thieves are usually a) lazy b) stupid c)) feeding a habit or d) some combination thereof. As a rule, they are looking for the quick score. The will not spend hours disabling alarms in order to steal your TV/computer/jewellery/etc when there are numerous other apartments in the same building or homes in the same neighbourhood that don't have that protection.
  Even if we stipulate, for the sake of argument, that some criminal did break into his home in this manner, that leaves us the obvious question of why the fuck wasn't anything taken? Thieves takes things, that's pretty much the definition! Whoever broke in could have taken all of his valuables, but didn't. Ergo, he, she or they weren't interested in valuables.
  Then there is the fact that it would appear that some care was taken to leave minimal traces of the illicit visit. Again, this is not the behaviour of your typical burglar. B&E guys know that most of the time cops won't bother with the whole forensic fingerprints, DNA analysis etcetera. As long as they don't leave clear prints in obvious places, the cops will usually just file a report and move on. It is just not cost effective to spend tens of thousands of department funds to pursue your typical B&E.
  The only logical conclusions we can make here is that:
  a) The perpetrator(s) were far more skilled and patient than your average burglar
  b) They weren't after fence-able valuables
  c) They were interested in something they thought he had that none of his neighbours had.
  d) Based on the access to his computers, what they were interested in was electronic data of some sort.
  e) Given his long standing political views, he may have been investigated by the German intelligence community on general principles, but given his well known connection to Edward Snowden, it is highly probable that he was being investigated by someone with a strong interest in that situation.
  f) Virtually all of the groups with access to people with those skills and with a strong interest in the Snowden case are state actors, mostly in the covert community.
  I'll concede that there is a small chance that some private sector group might be involved with this. There may be a group on the scale of Anonymous that also acts on the real world/physical level and is (therefore) more paranoid about associating themselves with any actions. One could hypothesize that such a group was looking for data so that they could reach out and help Snowden with his agenda without leaving any clues for other agencies to follow as to how they found him, but I think that is a very low probability. (it would make for a great plot for some cyberpunk novel though wouldn't it?)
  
  --
  I need a wheelchair van for my son. Help me get the word out. https://www.gofundme.com/wheelchair-van-for-jj
seems a little bit sloppy by Trepidity · 2013-12-22 04:30 · Score: 2

So someone managed to turn off three alarm systems, but didn't think to make sure that the contents of the apartment were all left in the same position that they found them?

--
10 PRINT CHR$(205.5+RND(1)); : GOTO 10
1. Re:seems a little bit sloppy by wjcofkc · 2013-12-22 04:35 · Score: 3, Funny
  
  Just because they are spooks doesn't make them competent.
  
  --
  Brought to you by Carl's Junior.
2. Re:seems a little bit sloppy by nurb432 · 2013-12-22 04:57 · Score: 2
  
  They may have tried, but you can set things up so that you can notice when even the best has come and gone.
  
  --
  ---- Booth was a patriot ----
3. Re:seems a little bit sloppy by cold+fjord · 2013-12-22 05:06 · Score: 5, Insightful
  
  You can't overlook the possibility that they were leaving a message, whoever it was.
  
  --
  much of left-wing thought is a kind of playing with fire by people who don't even know that fire is hot - George Orwell
4. Re:seems a little bit sloppy by Jawnn · 2013-12-22 05:13 · Score: 4, Insightful
  
  So someone managed to turn off three alarm systems, but didn't think to make sure that the contents of the apartment were all left in the same position that they found them?
  Only if your aim was to hide the fact that you were ever there.
5. Re:seems a little bit sloppy by AK+Marc · 2013-12-22 05:45 · Score: 4, Insightful
  
  My desktop computer moves when I make hardware changes. The dust is medium and consistent. Someone moving the computer to clone a drive or plug something in the back will make it so I can tell, unless they can also clean it and age the dust 8 months. You don't have to be OCD to notice changes. It just helps.
  
  --
  Learn to love Alaska
6. Re:seems a little bit sloppy by Nyder · 2013-12-22 06:15 · Score: 5, Funny
  
  My desktop computer moves when I make hardware changes. The dust is medium and consistent. Someone moving the computer to clone a drive or plug something in the back will make it so I can tell, unless they can also clean it and age the dust 8 months. You don't have to be OCD to notice changes. It just helps.
  I use the same excuse as a reason not cleaning my apartment.
  
  --
  Be seeing you...
7. Re:seems a little bit sloppy by jd · 2013-12-22 07:13 · Score: 3
  
  Very true. Instill an element of fear in someone who you know will talk about it, creating an element of fear over the wider community. PsyOps. Which we know governments practice.
  The Russians know no more than the rest of us - Snowden has made it clear he gave all documents to others, and this is extremely believable. It makes it pointless to limit damage - or even establishing what damage there is to be limited - by capturing or killing him.
  
  --
  It's a small world and it smells funny; I'd buy another if it wasn't for the money; Take back what I paid (SoM)
8. Re:seems a little bit sloppy by icebike · 2013-12-22 08:16 · Score: 3, Insightful
  
  So someone managed to turn off three alarm systems, but didn't think to make sure that the contents of the apartment were all left in the same position that they found them?
  They might have had no alternative but to turn off the three alarms. After all a loud ringing alarm will soon bring investigators of one sort or another.
  Who knows just how persnickety his staged positioning of items in the room might have been. That magazine might overlap that envelope on the table "just so", and he could have had photos on his smartphone that he could match better than even a professional team could restore.
  
  --
  Sig Battery depleted. Reverting to safe mode.
9. Re:seems a little bit sloppy by icebike · 2013-12-22 08:19 · Score: 2
  
  Snowden has made it clear he gave all documents to others,
  
  He has made it clear he has given encrypted copies to others, and he releases encryption keys selectively as the need arises.
  Which suggests he as a very good memory, or access to something to retrieve the next key or the key specific to the topic he chooses.
  He hasn't made the whole trove accessible to all of the holders yet.
  
  --
  Sig Battery depleted. Reverting to safe mode.
10. Re:seems a little bit sloppy by icebike · 2013-12-22 08:38 · Score: 4, Interesting
  
  But turning the computers on is just plain gross incompetence.
  Turn the computer off/reboot into a forensic linux cd/dvd, examine the hard drive, do what you want, switch some system files for files more under your control, then hope he doesn't notice you've done these things.... then follow his computer activity/trail, his tor activities....
  No "security researcher and hacker" would have his computer set up to boot from the CDrom, or have his bios un-password protected, or his hard drive unencrypted. If they were "Really Good" at computer forensics they might have simply removed the drives cabled them up and cloned them, encrypted partitions and all. (It would be impossible to add their own versions of software to an encrypted drive. Of course this assumes he's not running Windows).
  If done right, and everything put back in place, the only thing he would have to determine that the "computers" were turned on would be the power on count in the drive's SMART data.
  Of course, he could have gone old-school, and placed a tuft of cotton fuzz in the fan vent. Someone who uses 4 alarms might just be that careful.
  
  --
  Sig Battery depleted. Reverting to safe mode.
11. Re:seems a little bit sloppy by icebike · 2013-12-22 09:02 · Score: 2
  
  He doesn't have to SEND anything. As clearly stated in my post and published in many sources, he had distributed encrypted copies to many different locations.
  The means by which he releases encryption keys is unknown. But what is known is that not ALL the information has been decrypted by the holders.
  
  --
  Sig Battery depleted. Reverting to safe mode.
12. Re:seems a little bit sloppy by Richy_T · 2013-12-22 09:38 · Score: 2
  
  Zersetzung
  http://en.wikipedia.org/wiki/Stasi
There's going to be more of this to come. by dclozier · 2013-12-22 04:33 · Score: 3, Interesting

As we improve our ability to keep private things private the government's orginizations will find it easier to snoop by gaining physical access first. There's no doubt we're on the slippery slope. I have to wonder, which orginization broke into his apartment? Or maybe it was a combined effort and they are sharing in the information gained, if any.
time to buy some new equipement by Anonymous Coward · 2013-12-22 04:40 · Score: 2

There's no way he can trust using the electronic devices that were in the apartment now. In fact, he should probably move to a new place, or go all Gene Hackman on it.
1. Re:time to buy some new equipement by Anonymous Coward · 2013-12-22 04:49 · Score: 2, Funny
  
  He should put his wireless router in a faraday cage so the US government can't spy on him.
What an idiot... by Anonymous Coward · 2013-12-22 04:44 · Score: 2, Insightful

Seriously, if you don't want the American secret police to dig around through your shit, kidnap, torture, and possibly kill you (while making your body disappear), don't piss off anyone in the American government.
I'm not being sarcastic.
Perceptions by Gonoff · 2013-12-22 04:47 · Score: 2

It's surprising that there are still some people in the USA who are surprised that your spooks are generally perceived, all over the world, to be criminals.

--
I'll see your Constitution and raise you a Queen.
1. Re:Perceptions by cold+fjord · 2013-12-22 05:12 · Score: 4, Insightful
  
  It's surprising that there are still some people in the USA who are surprised that your spooks are generally perceived, all over the world, to be criminals.
  It is surprising that some people are unable to conceive of the idea that many nations would like to get their hands on the information that Snowden took, and which Appelbaum has access to. For all you know it could be Russians, Chinese, Iranians, Germans, French, Israelis, Swedes, or just about any other country's agents. That is before you consider criminal gangs or hacker groups. Your imagination is far too limited to consider the range of possibilities.
  
  --
  much of left-wing thought is a kind of playing with fire by people who don't even know that fire is hot - George Orwell
Re:For the Lulz by Anonymous Coward · 2013-12-22 04:51 · Score: 5, Informative

Common tactic of the German Stasi https://en.wikipedia.org/wiki/Stasi#Zersetzung
Four alarm systems and not a single camera? by grumbel · 2013-12-22 04:53 · Score: 4, Insightful

Come on, he installed four alarm system and didn't bother with a single surveillance camera? I am not saying that there wasn't somebody in his apartment, but it's hard not to think this might have just been a case of a malfunctioning alarm system and a whole bunch of paranoia on top. If the government is after you, at least make sure you get some pretty pictures of them, cams are cheap these days.
1. Re:Four alarm systems and not a single camera? by flyingfsck · 2013-12-22 04:56 · Score: 2
  
  Yup - pics or it didn't happen.
  
  --
  Excuse me, but please get off my Pennisetum Clandestinum, eh!
2. Re:Four alarm systems and not a single camera? by nurb432 · 2013-12-22 05:04 · Score: 2
  
  Better not try to turn off that TV either.
  
  --
  ---- Booth was a patriot ----
3. Re:Four alarm systems and not a single camera? by spacefight · 2013-12-22 06:49 · Score: 5, Informative
  
  He has pictures. https://twitter.com/ioerror/status/394042003928776704
4. Re:Four alarm systems and not a single camera? by icebike · 2013-12-22 09:34 · Score: 2
  
  Come on, he installed four alarm system and didn't bother with a single surveillance camera? I am not saying that there wasn't somebody in his apartment, but it's hard not to think this might have just been a case of a malfunctioning alarm system and a whole bunch of paranoia on top. If the government is after you, at least make sure you get some pretty pictures of them, cams are cheap these days.
  That triggered alarm bells in my head as well. Maybe those "alarms" that were disabled were really cameras sending pictures to someplace, these are cheap and getting cheaper these days. If he was using something from a commercial service (like Dropcam) those accounts would have been disabled before the break in crew arrived at his door step. If they were watching his internet stream they would have known about such things.
  Still, a guy that worried would have a cam somewhere.
  
  --
  Sig Battery depleted. Reverting to safe mode.
5. Re:Four alarm systems and not a single camera? by echucker · 2013-12-22 11:09 · Score: 2
  
  The tweet is from October, yet the story is released now. Either the two are unrelated, or the story is being released due to the current climate.
BIOS Attacks by TechyImmigrant · 2013-12-22 05:16 · Score: 4, Informative

Plug in UEFI bootable USB stick.
Turn off
Turn on
Keylogger and remote backdoor installed.
So those machines are toast. He needs new ones.

--
I should use this sig to advertise my book ISBN-13 : 978-1501515132.
1. Re:BIOS Attacks by SuricouRaven · 2013-12-22 05:20 · Score: 3, Insightful
  
  And then go over the EFI boot partition, and find some way to compare the firmware with the file from the manufacturer's site. If they have been compromised, don't pass up the chance to document exactly how it was done.
2. Re:BIOS Attacks by Anonymous Coward · 2013-12-22 05:24 · Score: 4, Informative
  
  Or, he could be real savvy;
  Use a computer of a different architectural type, (Say ARM or PPC) and an EEPROM programmer. Clamp the connector onto the compromised system's UEFI bios, and dump it.
  Compare the dump against the vendor's stock image.
  Note the differences, Decompile the differences.
  Report on the hows and whys of the keylogger.
  Reflash the bios with the vendor's stock image, then nuke all harddrives from orbit. (Harddrives also contain updatable firmware, which may be harder to ensure are in a sane condition.)
3. Re:BIOS Attacks by TechyImmigrant · 2013-12-22 05:36 · Score: 4, Insightful
  
  I'd swap out the keyboards as well. Just sayin'
  
  --
  I should use this sig to advertise my book ISBN-13 : 978-1501515132.
Time for some counter-espionage by dutchwhizzman · 2013-12-22 05:17 · Score: 4, Interesting

This computer holds the latest and greatest they have in espionage software and possibly hardware. I'd say get it thoroughly examined so we know what to look for on other machines.Make good forensic copies of anything that is able to hold data in the device and only work on copies of copies so you'll always be able to start from scratch if you mess up or want to prove your findings.

--
I was promised a flying car. Where is my flying car?
Ugh... by koan · 2013-12-22 05:26 · Score: 5, Insightful

None of your hardware can be trusted any longer, your apartment is bugged, and man do I feel for you having to clean it up.

--
"If any question why we died, Tell them because our fathers lied."
So this is the first time he's noticed. by matbury · 2013-12-22 05:55 · Score: 2

Competent spies can do it without you noticing. Perhaps "they" are getting sloppy? Maybe "they" subcontracted it out to a 3rd party private security agency? Maybe it was deliberately sloppy and intended to send a message to Appelbaum? Or maybe it was aliens? We can speculate about this all week if we want to ;)
1. Re: So this is the first time he's noticed. by Anonymous Coward · 2013-12-22 06:42 · Score: 2, Interesting
  
  I can set it up so even the most competent spy can be detected.
  Insert USB dongle in laptop that tracks power on/off cycles, motion sensor, etc. with RF transmission as well.
  Remotely record the RF transmission with scanner (not a paired device); check that device, which can readily be hidden anywhere (including a block or two away).
  A custom device like this is simple, but unless you are truly absolutely exceptional you're not going to bypass it. And that level of exceptional only exists in people's imaginations.
  (You could block the rf signal, if you expected the possibility, but how do you fix its flash storage if it's on chip like many low end processor designs? And how do you not trigger the watchdog event timer on the remote device when it expects to be received, but you have it shielded?)
He must be doing something right by Anonymous Coward · 2013-12-22 06:08 · Score: 5, Informative

By the sound of it, he's doing a lot of things right. Read his bio. I'm very glad and thankful there are still brave men left.
Someone broke into my house by khelms · 2013-12-22 06:16 · Score: 2

and replaced all my furniture with exact duplicates.
This was a message by argStyopa · 2013-12-22 07:09 · Score: 4, Insightful

Sure, there are probably some surveillance things tossed in mainly "to be found", but the fact is that a break-in like this - where 3/4 of the systems weren't even turned back on is either a) laughably amateur, or b)(more likely) a deliberate message TELLING him he's under surveillance.
If he's practicing even moderately good security measures, he's likely beyond all but governments' ability to crack. And if they're after him, there are few things that he could do to PREVENT such surveillance.

--
-Styopa
Why Modded down? Re: For the Lulz, by icebike · 2013-12-22 08:55 · Score: 2

He doesn't need help with a messed up head...who wants to bet this is some stunt? What proof we have besides the word of a wacko?
Seriously, people, why is this modded down into oblivion?
Is it not at least plausible, and worth discussing?
No proof, no details, no explanations on how he "knows" these things? No Pictures? Four alarms, carefully positioned objects, and not one camera?
Sure he might not want to give away his trade-craft, but then why give away his knowledge that it happened?
We all want to blame the three letter agencies these days, but we should at least entertain the thought that this might be cheap self aggrandizement.

--
Sig Battery depleted. Reverting to safe mode.
Re:Worry about planted nasties by VortexCortex · 2013-12-22 10:16 · Score: 5, Insightful

Your web browser will download anything from anywhere the pages you visit tell them to. Even if you browse only encrypted sites the site itself can be trivially exploited via XSS, SQL injection, or the zero-day exploits purchasable on the black market. Now, some of the pages you've been browsing can contain hidden <iframe> tags or if JS is enabled XMLHTTP Requests to download child porn. You'll never see the images, but there it is: an ISP record that your computer regularly made requests to child porn sites and downloaded kiddie porn. The spy agencies can simply put CP on your systems remotely, and give them "probable cause" to search. A physical copy would be quite a nice touch.
This isn't a hypothetical warning. I clean up servers linking to CP about 3 times a year. The government doesn't even have to do anything but make possession of certain strings of 1's and 0's illegal. Then the angsty teen skiddies with a copy of Metasploit inject the illegal pictures to ordinary sites in protest that sexting pics of themselves is illegal. Now, your Internet history clears after a period of time, so if it's not in there right now, it could have been and probably still resides on your drive's free sectors. You should be using whole drive encryption for this reason alone -- Although that doesn't rid the ISP record of your apparent obsession with disgusting perverse illegal imagery.
A police state has two prime tools:
0. Ensure it's impossible to obey every law.
1. Selective enforcement of the law.
Taco Cowboy - Inventive & Deceptive by cold+fjord · 2013-12-22 13:13 · Score: 2

Trying to hoodwink us with your fairy tales again, Cold Fjord ?
Quoting from a major German paper is deceptive?

Just a few days ago NSA admitted that they have NO IDEA HOW EXTENSIVE IS THE SNOWDEN'S SECRET FILE COLLECTION ) and the one who has the BIGGEST PANIC ATTACK is NSA, not Russia, not China, and of course, not the Germans.
My post had nothing to do with panic, but rather the lack of evidence about who actually entered Applebaum's apartment.

The fact that the Berlin apartment of one Jacob Appelbaum was invaded, with 3 of his 4 alarms cut off, and his computers tempered with, signifies the SHEER PANIC ATTACKS NSA is suffering right now !
Interesting. What is the source of your claimed knowledge that it was NSA, and not some other country or intelligence service? Are you making it up, or is there a clue in this line in your post:

And btw, Cold Fjord, you are NOT the only one who has worked in clandestine projects.
That seems to be quite an admission on your part. Who are you working for? Is that why you are trying so hard to discredit the NSA and the US?

Had the Ruskies so hard up for the files, Edward Snowden is IN THEIR HAND RIGHT NOW and KGB sure knows a lot of ways to GET RESULT OUT OF PEOPLE WHO REFUSE TO TELL THEM ANYTHING.
Even the KGB/FSB can't get something that doesn't exist. If Snowden didn't bring the files with him, as people keep claiming, then there is nothing for them to get, is there? Are you claiming that is a lie, and that he really has the files with him?

--
much of left-wing thought is a kind of playing with fire by people who don't even know that fire is hot - George Orwell