NSO Has Been Selling a Smartphone-Surveilling Malware For Six Years (nytimes.com)

← Back to Stories (view on slashdot.org)

NSO Has Been Selling a Smartphone-Surveilling Malware For Six Years (nytimes.com)

Posted by EditorDavid on Sunday September 4, 2016 @01:44PM from the spying-on-spyware dept.

The New York Times continues their coverage of the commercial spytech industry, noting its services "are in higher demand now that companies like Apple, Facebook and Google are using stronger encryption to protect data in their systems, in the process making it harder for government agencies to track suspects... For the last six years, the NSO Group's main product, a tracking system called Pegasus, has been used by a growing number of government agencies to target a range of smartphones -- including iPhones, Androids, and BlackBerry and Symbian systems -- without leaving a trace...to extract text messages, contact lists, calendar records, emails, instant messages and GPS locations." Slashdot reader turkeydance quotes their article: That will cost you $650,000, plus a $500,000 setup fee with an Israeli outfit called the NSO Group. You can spy on more people if you would like -- just check out the company's price list. The NSO Group is one of a number of companies that sell surveillance tools that can capture all the activity on a smartphone, like a user's location and personal contacts. These tools can even turn the phone into a secret recording device...

The company is one of dozens of digital spying outfits that track everything a target does on a smartphone. They aggressively market their services to governments and law enforcement agencies around the world. The industry argues that this spying is necessary to track terrorists, kidnappers and drug lords. The NSO Group's corporate mission statement is "Make the world a safe place"... An ethics committee made up of employees and external counsel vets potential customers based on human rights rankings set by the World Bank and other global bodies....
One of the services offered by the NSO group is "over the air stealth installation," though they can also install their spying software through Wi-Fi hot spots. One critic argues "They can say they're trying to make the world a safer place, but they are also making the world a more surveilled place."

52 of 98 comments (clear)

Min score:

Reason:

Sort:

Gee... by 110010001000 · 2016-09-04 13:48 · Score: 2, Interesting

I can sell you a 99 cent app that can do all that. No one checks permissions on apps.
1. Re:Gee... by FatdogHaiku · 2016-09-04 15:25 · Score: 1
  
  OK, calm down. It's going to be all right.
  First, do you keep your cell phone in your back pocket?
  If so, please move it before the microphone gets plugged up...
  
  --
  You have the right to remain sentient. If you give up the right to remain sentient, you will be elected to public office
I"m safe! by NewtonsLaw · 2016-09-04 13:50 · Score: 4, Interesting

Haha... now those folk who mock me for having a $9 "dumb" phone will realise exactly why I've not moved my life onto an Android or iPhone device!
1. Re:I"m safe! by sims+2 · 2016-09-04 14:08 · Score: 5, Informative
  
  Why can't I deny individual permissions like I can with an Iphone? Solitaire needs access to your location information..Like hell it does deny!...And then somehow the app continues on just fine without access to the camera.
  Unlike android calculator needs access your contact list, photos, location information and bank account.
  And then i'm given an ultimatum I either let it do whatever it likes or I can't use the app at all.
  
  --
  Minimum threshold fixed. Thanks!
2. Re:I"m safe! by TheGratefulNet · 2016-09-04 14:14 · Score: 4, Interesting
  
  with all the layers (rf, netmgt, etc) in a 'phone' these days, its 100% impossible for any of us normal folks to fully secure these things.
  I have not even tried; given up before trying. I know better. there are carrier layers and layers that even the first few support folks can't get to. layers the vendors put in, and there might be some blobs that even THEY don't get access to.
  whole thing is a shit stink mess.
  I never install apps unless absolutely necessary. never do anything 'important' on phones and treat them as if each one is perma-keylogging me. that's the only way to work with them - to assume they are thru-and-thru compromised.
  which, really, they are. no matter what you fanboys think.
  all phones are under government (and other orgs) control. horse has left the barn.
  such a shame. pocket computers were a cool concept, but we lost the right to own our own computers and even desktops are becoming owned by others who will never tell you that they have access to your stuff.
  depressing to see this down-side of what humanity lowers itself to.
  aliens should just nuke us from orbit. its the only way to be sure.
  
  --
  
  --
  "It is now safe to switch off your computer."
3. Re:I"m safe! by Desler · 2016-09-04 15:11 · Score: 1
  
  Because you want to make it easier for them to snoop on you?
4. Re:I"m safe! by currently_awake · 2016-09-04 15:34 · Score: 5, Insightful
  
  We need a third option: Deny but fake yes. The App thinks it has permission but it doesn't. All access just gets fake data and a "Everything worked ok" message. And log all access attempts, with data, so we can see what it's actually doing.
5. Re:I"m safe! by amiga3D · 2016-09-04 15:52 · Score: 1
  
  It's defective by design. It's not intended to be secure. Anyone who trusts their phone with anything more important than their grocery list is a fool.
6. Re:I"m safe! by sims+2 · 2016-09-04 18:39 · Score: 1
  
  Sounds like a good option to have for diagnostics but its not an option I would want to put in front of he average user.
  I don't have anything running the latest IOS but none of the versions I used allowed apps to talk to each other in the background. Thats another thing I don't like about android no one seems to know how to keep apps from chatting with each other something they never should have been allowed to do in the first place at the very least not without permission.
  
  --
  Minimum threshold fixed. Thanks!
7. Re:I"m safe! by jonwil · 2016-09-04 18:59 · Score: 1
  
  I have a Nokia N900 Linux phone which is so obscure and unpopular no-one is going to bother writing exploits specifically for it. And with the unofficial updates from the community I get fixes for a lot of the general bugs going around (e.g. more recent OpenSSL than the phone came with for example). And being Linux and using so much open source software I can contribute directly to the development of the thing (e.g. I have done a lot of work on updating the included set of root certificates to the latest set from the Mozilla team as well as documenting exactly how you do that)
  The N900 also has some hardware features that make spying a little bit harder (for one thing the cellular radio has no ability to access the microphone, speakers or audio hardware and record audio on the sly nor can it access the main Linux filesystem of the device, everything the cellular radio does is done by the main CPU pushing data/audio/etc to it)
8. Re:I"m safe! by stealth_finger · 2016-09-04 19:34 · Score: 1
  
  I'm safe. I have a windows phone and nothing fucking works on it and hardly any other fucker has one (because they're shit). It's quite nice in the security through obscurity boat now that it's been abandoned by the mac people.
  
  --
  Wanna buy a shirt?
  https://www.redbubble.com/people/stealthfinger/shop?asc=u
9. Re:I"m safe! by AHuxley · 2016-09-04 20:14 · Score: 2
  
  Re "I never install apps unless absolutely necessary. never do anything 'important' on phones and treat them as if each one is perma-keylogging me. that's the only way to work with them - to assume they are thru-and-thru compromised."
  
  Thats what makes it all so fun now, everyone knows the US branded product lines are all crypto junk and seem very gov friendly as sold over every generation.
  So a journalist or activist can now have some real fun. Create vast investigations on one device and look up government document's, hint at meetings with a few gov informants or contractors who reached out to pass on paper files. Read up on whistleblower protections and the private sector, the private sector with gov contracts. Seek out law firms with security cleared staff who can take on such issues. Create huge lists of contacts that are only hinted at on that device. Hints about other agencies, funding... documents.
  Pack lots of fiction in and make the junk crypto become a chore to any intelligence service or contractor who actually has to extract and read it all :)
  A real human has to wade into all that effortlessly collected data, so make the haul impressive and add some fictional depth.
  Get a voice actor with an older voice who can invoke doubt about their decades in gov, mil to create the other party to conversations every so often too so the mic malware gets some use. Wonder around the right parts of a city to make a meeting with a gov worker or contractor seem possible to any mapping or tracking software.
  
  --
  Domestic spying is now "Benign Information Gathering"
10. Re:I"m safe! by guises · 2016-09-04 20:21 · Score: 1
  
  This was a proposed solution for the spying on Android - instead of trying to block permissions, just give a fake location and fake credentials, fake contacts, etc. Most MOD makers rejected this though, for fear that it would make Google angry. Maybe it's time to return to this option.
11. Re: I"m safe! by Anonymous Coward · 2016-09-04 20:47 · Score: 1
  
  Suicide by NSA? It might work, but why try?
12. Re:I"m safe! by AmiMoJo · 2016-09-04 21:11 · Score: 1
  
  You can deny individual permissions on Android since Marshmallow, or before if you had Cyanogen or another ROM that supported it (my phone shipped with Cyanogen).
  The stock calculator and every one I've ever downloaded needs zero permissions. If you look at the reviews on Play, apps that want excessive permissions get negative ratings and developers usually justify each permission in the description.
  
  --
  const int one = 65536; (Silvermoon, Texture.cs)
  SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
13. Re:I"m safe! by AmiMoJo · 2016-09-04 21:14 · Score: 2
  
  Privacy Guard supports this. Apps get fake data, usually stuff like "user has 0 contacts" or "GPS location not available at this time". You can enable logging on a per app basis. Many phones ship with it built in.
  There is also the separate system from Marshmallow onwards that lets apps be aware of when they are being denied. You can use Privacy Guard instead if you want them not to know that you denied them for some reason.
  
  --
  const int one = 65536; (Silvermoon, Texture.cs)
  SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
14. Re: I"m safe! by AHuxley · 2016-09-04 21:52 · Score: 1
  
  Re "It might work, but why try?"
  A gov would work out it's all one way, on one device rather quickly. Think of it more as desensitisation to the words, terms, movements, talks. Fictional work by an author is not a very interesting person needing a team of 6-12 gov agents tasked on them or even the cost of long term digital tracking.
  Thats really the fault with the domestic modern collect it all vision the NSA has totally sold its 5 eye supporters on over decades.
  Humans tasked with looking at an entire nations population are going to have to make some quick selections to find interesting people given the teams needed to cover so, so many other interesting people wondering around.
  One consumer grade account been totally overloaded with digital fiction could allow a member of the press to focus on their real work. 150 complex fictional stories are waiting to be sorted or the account set as having been investigated and found to be fictional.
  A hint of a small amount of data found and the gov is very interested, just the right amount and the gov stays interested, a dump of fiction that clogs up the neat tracking database and a few contractors (buddy system now) have to fix things..
  Vast domestic spying networks have to be able to take fictional errors into account, so why not induce that finding :)
  Get that account listed in with the wider confederation of basement-dwelling loners.. i.e. well away from the interesting people lists.
  
  --
  Domestic spying is now "Benign Information Gathering"
15. Re:I"m safe! by NotAPK · 2016-09-04 22:21 · Score: 1
  
  "Nothing on it is encrypted. NOTHING."
  But that's the point: there's nothing on it.
  Also, the user doesn't trust it because they know that it's not encrypted.
16. Re:I"m safe! by tburkhol · 2016-09-04 22:44 · Score: 2
  
  Watchlists and mass surveillance already sweep up more people and information than "they" can follow. They've poisoned their own data set, and there's little need to go out and create a handful of honey pots.
  Those agencies still believe in the myth that big data can pull the One True Terrorist out of a hundred million, if you just give it a big enough data set. They can't. They don't have enough of a positive control population to train their algorithms. The data may be helpful, after the fact, to find co-conspirators, but even that hasn't really worked out so far. If big data really worked, I wouldn't be seeing ads for TVs for a month after I bought one.
  They want the public to believe that big data can identify the One True Terrorist, because it serves the two-fold goals of making the public feel like the government is keeping them safe and serves as a deterrent against organizing or conspiring. All of the "you can't trust your devices" paranoia furthers these goals.
17. Re:I"m safe! by e70838 · 2016-09-04 23:33 · Score: 1
  
  The dumbphone is more secure because it contains almost nothing. IMHO, we need dumbphone with good battery, good 4G and excellent tethering.
18. Re:I"m safe! by houghi · 2016-09-05 00:46 · Score: 1
  
  No, we do not need that option, because it means we agree with what is going on. Can it be used as a workaround? Sure. And how do you know it is not still sending the real info? What we need is :
  a) a way to turn it off if we so desire.
  b) having it off by default,
  c) Only usage within the domain, so no sales of the date. No usage of Google data for Youtube.
  d) Insight in what they are doing with the data
  e) ability to remove the data (not just hide it)
  d) limited time that this information can be stored
  If that is too hard for them then boo-fucking-hoo.
  Will this ever happen? No, because our data is way more valued than we are.
  
  --
  Don't fight for your country, if your country does not fight for you.
19. Re:I"m safe! by coolsnowmen · 2016-09-05 04:46 · Score: 1
  
  Sounds like a good option to have for diagnostics but its not an option I would want to put in front of he average user.
  Stop doubting your fellow man. Give them the option, just don't make it easy to shoot yourself in the foot.
20. Re:I"m safe! by amiga3D · 2016-09-05 06:08 · Score: 1
  
  The funny thing is that snail mail is probably more secure than a cell phone. The lazy fuckers have to get off their asses and actually go get the mail, open and read it. I bet they don't even bother. I wonder what they'd think if you had a modem and simply set up an encrypted BBS for communication? All sorts of tricks you can do if you think about it. Almost anything is better than a cell phone.
21. Re: I"m safe! by BellyJelly · 2016-09-05 06:42 · Score: 1
  
  Is it possible to use LXC containers in an android kernel? Containerise the app and control it's access. Maybe use that to allow the presentation of multiple different address books to different containers so that Facebook only gets to see the contacts you actually use Whatsapp to talk to. Feed fake location data to other apps so they think you are in Antarctica.
22. Re:I"m safe! by AHuxley · 2016-09-05 12:29 · Score: 1
  
  Re "What it *is* ideal for is domestic surveillance (and blackmail) of journalists, activists, ideological/political opponents/candidates, parallel-construction, and planting evidence (at least, as long as they still bother with things like trials and evidence)."
  FIRSTFRUIT tracked the press daily :)
  https://theintercept.com/2016/... (May 17 2016)
  
  --
  Domestic spying is now "Benign Information Gathering"
23. Re: I"m safe! by jmcvetta · 2016-09-06 19:52 · Score: 1
  
  If you're an American, the joke's on you. Ever since CALEA, it's unlawful to sell a phone in the United States that doesn't have hardware level remote surveillance capabilities built-in.
  This particular badlaw was signed by Bill Clinton well before 911. Try to get a copy of the (secret, but leaked) implementing regulations if you can.
1/ to cover a hack, leave cyrillic clues by sittingnut · 2016-09-04 14:03 · Score: 1

to cover identity, use the well tested fact that western media/'security researchers' are always willing to 'fall' for any and all obvious cyrillic clues left behind, to blame russians on all occasion.
but don't forget to leave small amount of korean script too. very good for free publicity.
CFAA? by whoever57 · 2016-09-04 14:40 · Score: 2

How is using this software not illegal under the CFAA?

--
The real "Libtards" are the Libertarians!
1. Re:CFAA? by dead_user · 2016-09-04 14:57 · Score: 1
  
  U.S. law, Israeli company. I would assume they wouldn't have to follow U.S. law.
2. Re:CFAA? by Desler · 2016-09-04 15:13 · Score: 1
  
  This isn't an actual serious question, right? You aren't really that naive, are you?
3. Re:CFAA? by whoever57 · 2016-09-04 15:35 · Score: 1
  
  U.S. law, Israeli company. I would assume they wouldn't have to follow U.S. law.
  
  Yes, I understand that. However, the USA has extradited people from abroad for breaking into computers based in the USA. Also, some of the users may be in the USA.
  
  --
  The real "Libtards" are the Libertarians!
4. Re:CFAA? by whoever57 · 2016-09-04 15:38 · Score: 2
  
  This isn't an actual serious question, right? You aren't really that naive, are you?
  No, it was a rhetorical question, designed to show how f*cked up things are in the USA.
  
  --
  The real "Libtards" are the Libertarians!
5. Re:CFAA? by Desler · 2016-09-04 15:43 · Score: 1
  
  Right. Because governments and police agencies in other countries don't do the exact same thing.
6. Re:CFAA? by amiga3D · 2016-09-04 15:53 · Score: 1
  
  Welcome to the New World Order. Hope you like it.
7. Re:CFAA? by stealth_finger · 2016-09-04 22:19 · Score: 1
  
  How is using this software not illegal under the CFAA?
  Ha, like they give a shit what's legal.
  
  --
  Wanna buy a shirt?
  https://www.redbubble.com/people/stealthfinger/shop?asc=u
Only terrorists, kidnappers and drug lords? by haruchai · 2016-09-04 14:45 · Score: 2

"The industry argues that this spying is necessary to track terrorists, kidnappers and drug lords"
what about pedophiles? And Jason Bourne?

--
Pain is merely failure leaving the body
1. Re:Only terrorists, kidnappers and drug lords? by stealth_finger · 2016-09-04 19:53 · Score: 2
  
  Israel is always in trouble, they have three highly aggressive neighbors who don't seem they think they have the right to exist (because they're jewish I think is the main reason) and everyone else expects them to play nice and get along.
  
  --
  Wanna buy a shirt?
  https://www.redbubble.com/people/stealthfinger/shop?asc=u
2. Re:Only terrorists, kidnappers and drug lords? by stealth_finger · 2016-09-04 22:23 · Score: 2
  
  I didn't think this had anything specifically to do with jewishness or israel itself. That just happens to be where these guys are. They could be in the US, Russia, China or even fucking North Korea and it wouldn't change the implications too much.
  
  --
  Wanna buy a shirt?
  https://www.redbubble.com/people/stealthfinger/shop?asc=u
Re:Windows 10... by Gumbercules!! · 2016-09-04 15:26 · Score: 4, Funny

Windows Phone users are protected from vulnerability in the same way Santa Claus is protected from vulnerabilities. Neither exist.
Re:Windows 10... by zenlessyank · 2016-09-04 15:52 · Score: 1

I feel like I exist. Feel me and see if I exist. And so does my WinPhone. Security through obscurity.
Re:Windows 10... by amiga3D · 2016-09-04 15:54 · Score: 1

Oh man. I haven't laughed that hard in ages. My sides hurt.
Israeli outfit called the NSO Group? by khz6955 · 2016-09-04 16:12 · Score: 3, Insightful

"Want to invisibly spy on 10 iPhone owners .. That will cost you $650,000, plus a $500,000 setup fee with an Israeli outfit called the NSO Group .. Since it is privately held, not much is known about the NSO Group’s finances"

In other words a front group for the Israeli Security Service, the same people that have full control of all telephone records in the continental United States.

NSO Group’s iPhone Zero-Days used against a UAE Human Rights Defender
1. Re:Israeli outfit called the NSO Group? by AmiMoJo · 2016-09-04 21:19 · Score: 2
  
  It's telling that no government has set up an agency like these guys or the NSA / GCHQ, that is tasked solely with finding zero days and helping companies fix them. They could protect their citizens from the bad guys, but instead they prefer to keep their options open in case they want to make use of these services one day.
  
  --
  const int one = 65536; (Silvermoon, Texture.cs)
  SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
2. Re:Israeli outfit called the NSO Group? by khz6955 · 2016-09-05 10:24 · Score: 1
  
  There isn't a security company on the planet that isn't hooked into the security services of some nation state. In certain cases the security apparatus of one state is a wholly owned subsidiarity of another states security apparatus.
  
  Behind the Scenes at the Company Behind the Scenes
  --
  At my fingertips, the zero day is wrapped in code like a Christmas present, then becomes an exploit, the programmatic expression of my will. I live for this shit.
You can have most anyone tracked for a $1.1 MILLIO by raymorris · 2016-09-04 16:20 · Score: 1

This software is $500,000 setup plus $650,000 per target. So $1.15 million dollars.
Bounty hunters track down bail jumpers for $250 (if they're easy and for $5,000 if they're hard. ($50-$100/hour isn't bad for someone without a degree).
If someone is willing to spend over a million dollars tracking you, you'll be tracked. A million dollars will hire ten private investigators for a year.
Re:You can have most anyone tracked for a $1.1 MIL by tlhIngan · 2016-09-04 18:15 · Score: 1

This software is $500,000 setup plus $650,000 per target. So $1.15 million dollars.
Bounty hunters track down bail jumpers for $250 (if they're easy and for $5,000 if they're hard. ($50-$100/hour isn't bad for someone without a degree).
If someone is willing to spend over a million dollars tracking you, you'll be tracked. A million dollars will hire ten private investigators for a year.
I suspect that's because of the relative difficulty in breaking iOS. There are a lot of flaws in it, but it's very hard to exploit in a way that's repeatable and without user interaction. Which is why iOS exploits cost a lot of money. If you're using this for Android, you're really wasting a lot of money (Android flaws are practically a dime a dozen).
Apple's $200,000 bug bounty is probably 1/10th of what people are willing to pay for iOS exploits, which they re-sell at high prices for services like this.
And to be honest, you are probably right - it's cheaper to just do gumshoe tracking of an iPhone user than to actually hack into an iPhone to track said user.
Not sure if ... Also, not even most secure iOS by raymorris · 2016-09-04 18:51 · Score: 2

I'm not sure if you're a fan saying "best team ever", a troll, or just very misinformed.
If you're a big fan of Apple, that's cool. Your quarterback is the best ever. Steve Jobs was a genius. Beat the hell outta Microsoft! Stop reading here if you're a big Apple fan.
If you're trolling, you're late. Try getting in right when the story is posted for best results.
Lastly, I've been doing network security full time for nearly 20 years. Apple's iOS doesn't -completely- suck for some aspects of security. Convenience is of utmost importance with Apple iOS, though, and there are always compromises between convenience and security. Apple's iOS is not even the most secure iOS. Cisco iOS is safer. Cisco iOS basically runs the entire internet, that's how much it's trusted. (But even it isn't perfect.) If we wanted to expand to operating systems not called iOS, many are more secure.
Attention Slashdot Editors by Anonymous Coward · 2016-09-04 23:13 · Score: 1

It's "malware", not "a malware".
How to make NSO's job difficult by hwstar · 2016-09-05 03:45 · Score: 1

Let's see... If I was a terrorist, I'd have a pool of 100 or so smartphones ready to be cloned from a virgin image. When one needs to use a phone for a mission, I'd pull one randomly from the pool, install the image, and a never-used, new SIM card, and give it to the operative. When they are done with a mission, I'd wipe the phone, and return it to the pool.
TELL ME AGAIN: WHY SHOULD I HAVE A SMARTPHONE? by kheldan · 2016-09-05 05:47 · Score: 1

I'm the guy who keeps saying: "So-called 'smartphones' have more holes in their security than a swisscheese or a colander, why the hell would I ever want one!?" and then I get called a 'Luddite' and any number of other names for not adopting such shitty technology -- regardless of the fact that practically every single day I read about yet another exploit someone discovered that can be used to take total and complete control of any smartphone. Then there's this story, which just confirms everything I've been seeing and saying all this time, and puts the final nail in the 'smartphone' coffin; why the ACTUAL FUCK would I want one of these gods-be-damned things, when it apparently is childs' play for any large corporation or government to slip a total spyware package into the gods-be-damned thing, and not only access everything on the phone, but watch and listen to every damned thing I do and track every single step I take, 24/7/365?

Oh, HELL NO.

I will never, never, EVER own a gods-be-damned 'smartphone', now or ever. I'd rather have NO cellphone and go back to using a landline and an answering machine, before carrying around something that's only one step removed from the monitoring anklet the cops put on people under house arrest.

Seriously, people: WHY DO YOU STILL HAVE ONE? Get rid of it. You don't NEED it. Get the cheapest dumb phone and leave it at that!

--
Are YOU using the TOOL, or is the TOOL using YOU? Think about it!
1. Re:TELL ME AGAIN: WHY SHOULD I HAVE A SMARTPHONE? by kheldan · 2016-09-05 10:17 · Score: 1
  
  I have the dumbest of dumbphones ($50 retail price). First sign it's been compromised? I consider going back to a landline.
  I don't own a 'smart TV' because I'm not stupid.
  I don't have cable, I have an antenna, so no cable box or satellite box.
  I can't control the phone network or the internet. If I ever need a job above dishwasher at a mexican restaurant I need those (unfortunately!) but I don't use my real name online anywhere I can get away with it -- and I DO NOT use 'social media' of any kind because IT IS A TRAP.
  I don't talk about or text or email anything seriously sensitive and everyone I know knows better than to do so with me. They all also know how much shit will come down around their ears from me if they post pics of me online anywhere, so they know not to do that (or else!). I don't participate in 'rewards card' programs because that just gives them consent to track my purchases in a very personal way. I pay cash everywhere I can and am always looking for ways to do it more. I don't give my name, address, phone number, or email address out anywhere I can possibly avoid doing so. I'm doing EVERYTHING I CAN to preserve as much of my privacy and private life as I can -- and I do everything I can to Hide In Plain Sight. But it's getting harder and harder EVERY year. There's either going to be a Revolution, or I'm going to be Ted Kaczynski sans explosives and psychosis.
  
  --
  Are YOU using the TOOL, or is the TOOL using YOU? Think about it!
On why we should assume systems are compromised by Paul+Fernhout · 2016-09-05 15:14 · Score: 1

By me: http://pdfernhout.net/why-encr...
"I believe decentralized knowledge sharing is important, especially for disaster preparedness. I also believe encryption is important in practice, the same way as many people have locks on their doors. Such things do affect a balance between state power and individual power, which is important in a democracy, and they also make it harder for vandals and criminals to operate. So, a project like Briar that supports decentralized communications and encryption is important for those and other reasons. Still, as my father (a machinist among other things) used to say, "Locks only keep honest people honest." Here is a partial list of all the ways a tool like Briar can fail when being used by activists engaged in controversial political actions. ..."

--
A 21st century issue: the irony of technologies of abundance in the hands of those still thinking in terms of scarcity.