Slashdot Mirror

← Back to Stories (view on slashdot.org)

A Facebook Employee Asked a Reporter To Turn Off His Phone So Facebook Couldn't Track Its Location (businessinsider.com)

Posted by msmash on from the closer-look dept.

Steve Kovach, writing for BusinessInsider: To corporate giants like Facebook, leaks to rivals or the media are a cardinal sin. That notion was clear in a new Wired story about Facebook's rocky time over the last two years. The story talks about how Facebook was able to find two leakers who told a Gizmodo reporter about its news operations. But one source for the Wired story highlighted just how concerned employees are about how their company goes after leakers. According to the story, the source, a current Facebook employee, asked a Wired reporter to turn off his phone so Facebook wouldn't be able to use location tracking and see that the two were close to each other for the meeting. The Wired's 11,000-word wide-ranging piece, for which it spoke with more than 50 current and former Facebook employees, gives us an inside look at how the company has been struggling to curb spread of fake news; battling internal discrimination among employees; and becoming furious when anything leaks to the media. Another excerpt from the story: The day after Fearnow (a contractor who leaked information to a Gizmodo reporter) took that second screenshot was a Friday. When he woke up after sleeping in, he noticed that he had about 30 meeting notifications from Facebook on his phone. When he replied to say it was his day off, he recalls, he was nonetheless asked to be available in 10 minutes. Soon he was on a video-conference with three Facebook employees, including Sonya Ahuja, the company's head of investigations. According to his recounting of the meeting, she asked him if he had been in touch with Nunez (the Gizmodo reporter, who eventually published this and this). He denied that he had been. Then she told him that she had their messages on Gchat, which Fearnow had assumed weren't accessible to Facebook. He was fired. "Please shut your laptop and don't reopen it," she instructed him.

29 of 304 comments (clear)

  1. Is it me or... by Opportunist · · Score: 5, Insightful

    Is it me or does that company become more and more like some kind of cult?

    --
    We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    1. Re:Is it me or... by WilliamGeorge · · Score: 5, Funny

      "Hydra...without the scary red skull looking guy."

      Are you *sure*? Have you seen what Mr. Zuckerberg looks like when he takes his face off?

      Hail Facebook!

      [just kidding, of course]

      --
      William George
  2. Facebook creeps me out by sjbe · · Score: 4, Insightful

    But one source for the Wired story highlighted just how concerned employees are about how their company goes after leakers. According to the story, the source, a current Facebook employee, asked a Wired reporter to turn off his phone so Facebook wouldn't be able to use location tracking and see that the two were close to each other for the meeting.

    And people wonder why I don't want to have anything to do with Facebook. If Facebook really is tracking people's location with that amount of accessible detail then I will never ever have an account with them and I will block them by every means I have available.

    1. Re:Facebook creeps me out by 110010001000 · · Score: 4, Informative

      They don't need you to have an account with them in order to track you. They create a shadow profile for you and log your movement across the web using their various web properties and associated sites.

    2. Re:Facebook creeps me out by Anonymous Coward · · Score: 4, Insightful

      If Facebook really is tracking people's location with that amount of accessible detail then I will never ever have an account with them and I will block them by every means I have available.

      Of course they are, and whether you realise or not, you gave them permission when you installed the app ... because that thing wants access to pretty much EVERYTHING. And you can bet your ass they're mining your phone for all sorts of stuff you aren't aware of.

      From this:

      -Your contacts, call logs, text messages. This essentially means that the company can see who all are in your contacts, call them, message them and also see who youâ(TM)ve been in contact with. The app can also make modifications in your deviceâ(TM)s calendar.
      -Your location, which enables them to know where you are.
      -Your camera, which means the app has permission to click images, record videos and audio via the microphone too.
      -Your internal storage, which means they can see files on your phone as well as delete them.
      -The app can access your WiFi, change the wallpaper, network connectivity and much more.

      Fuck that.

      And, just as bad, so many websites have embedded links to Facebook in their page that they track much of where you go ... if you have an account they match it up, if they don't, they do anyway.

      My browsers all block Facebook outright, because I simply do not trust Facebook even in the slightest.

      Facebook exists to collect your data and monetise your life, and I refuse to accept that. If you have the app installed, you've given the ability to read everything you do.

      How is anybody even slightly surprised by this?

    3. Re:Facebook creeps me out by bluefoxlucid · · Score: 4, Interesting

      That part they can do for their own internal use by correlating any public data.

      They have his location data, his Google Chat data (hangouts?), and other stuff. ... what? Hold on, something is wrong here. People require some measure of privacy, and the capacity to peer into private conversations on other platforms is simply unacceptable.

      We'll have to start a regulatory push to provide capacity for non-breakable end-to-end encryption in text messaging and private messenger applications, perhaps as a legally-recognized implication of using the words "secure", "private", or "privacy" to describe conversations over these mediums. So "Facebook Messenger" can tell Facebook everything you say, in plain text, on their servers, as long as it's not described by Facebook as "Secure" or "Private"; whereas a messenger such as WhatsApp using double-ratchet end-to-end can claim your conversations are "Private", so long as the application is designed with the good-faith intent (meaning yes, you have to use secure protocols and encryption algorithms) to ensure no entity besides the communicating parties can read the messages.

      --
      Support my political activism on Patreon.
    4. Re:Facebook creeps me out by fafalone · · Score: 3, Informative

      Facebook recently went so far over the line I'd hope a civil suit might even have a chance... the mobile app is taking recent photos, uploading them Facebooks servers, and asking if you want to share them, without having any ability to turn off the "feature" short of revoking access to photos through the app manager entirely (so you can't even upload the photos you do want to share). Whenever this is brought up in the support forum, the thread is locked.

    5. Re:Facebook creeps me out by innocent_white_lamb · · Score: 5, Interesting

      I own and operate a small business. I occasionally run my business name through google just to see what turns up about it.

      Imagine my surprise when I discovered that my business has a facebook page! According to facebook's help pages, I believe that the facebook page was automatically created when people "check in" (whatever that means).

      I can apparently claim that page if I send facebook some documentation to prove that I own my business. But I can't delete it.

      I have zero intention of claiming that page and rewarding facebook for their slimy behaviour in setting it up behind my back, though. And why would I want to intentionally forward even more information to facebook to prove that I own my business?

      --
      If you're a zombie and you know it, bite your friend!
  3. Wait, what? by TheRaven64 · · Score: 5, Insightful

    Why didn't the person who was leaking just leave his phone at home, then Facebook would have seen the journalist in one place and the leaker in another and not been concerned. Either turning off the phone is enough to disable the tracking, in which case either party can do it because the thing they're worried about is being seen together, or it isn't in which case why ask the reporter to do it?

    --
    I am TheRaven on Soylent News
    1. Re:Wait, what? by Opportunist · · Score: 3, Insightful

      Did I already mention that cult-like behaviour?

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    2. Re: Wait, what? by c6gunner · · Score: 4, Informative

      There's generally no way to prevent any app from accessing your location on Android

      Of course there is. Install LineageOS, which comes with privacy guard. Or, if you want to keep your current ROM, install the XPosed framework. XPosed with XPrivacy is especially great because you can feed apps fake location data. Back when i still had Facebook they thought I was in the middle of the pacific ocean one day, and in the Arctic the next.

  4. The wrong kind of comforting by Teun · · Score: 4, Insightful

    This makes me kind of smile, apparently it's not just the Facebook users that suffer a total loss of privacy but also their own employees.

    I have little sympathy for FB users that get burned but it's even less for those evil enough to work there.

    --
    "The likes of Facebook and WhatsApp are free to those whose privacy is of zero value."
  5. facebook can see gchat? by Cederic · · Score: 5, Interesting

    So was he stupid enough to be using gchat on a corporate device or are Facebook guilty of hacking?

    Yeah, I'm assuming Google are innocent (on this occasion).

    1. Re:facebook can see gchat? by Jfetjunky · · Score: 4, Insightful

      I hope it was a corporate device, potentially signaled by the "Please shut your laptop and don't reopen it" line. Otherwise that would be a shocking level of collusion.

    2. Re:facebook can see gchat? by Enigma2175 · · Score: 4, Informative

      Buahahahahaha, this is the US we are talking about. There are no privacy protections. If a company employs you, they basically own you. They can look at absolutely anything they want if you're on a corporate-owned device. You are basically locked into a company because if you leave somewhere you no longer have health insurance and your company may blacklist you so you can't find a job elsewhere. Only laws that benefit corporations are ever passed as the governmental officials are owned by the corporations. Companies can do anything they want, down to regulating what activities you do when not at work or dictating when you piss. They can fire you at any time for almost any reason. The only exception is for certain protected classes (rage, gender, religion, etc.) but if they are firing someone for being black they just say "they aren't a team player" or "didn't align with our corporate culture" - it doesn't really matter as long as you don't mention their protected class and cite something sufficiently nebulous. The only real protected class is the US is profit.

      --

      Enigma

  6. Block as much as possible by sjbe · · Score: 5, Insightful

    They don't need you to have an account with them in order to track you.

    Which is why I make heavy use of various ad blockers and privacy guarding software to prevent as much of that as possible. I'm well aware they try to track me but I try to not make it easy for them. For example on my current browser I have Privacy Badger, Ublock, and Adblock Plus as well as some stuff to block flash. I'll use every tool I can find to give them the figurative (and literal) middle finger.

    1. Re:Block as much as possible by 110010001000 · · Score: 3, Informative

      That will help. I would recommend Ghostery as well. This very website has at least 8 active trackers.

    2. Re:Block as much as possible by Anonymous Coward · · Score: 5, Informative

      A few years ago Ghostery got bought out and changed their policies to "block all but our partner trackers"...they're useless now.

    3. Re:Block as much as possible by Thelasko · · Score: 3, Informative

      Using plugins is a good idea, but I find killing the traffic further upstream is more effective.

      --
      One of our competitors trademarked the term "hypothesis". From now on, we will call them "boneheaded ideas".
  7. Not surprising by Vermonter · · Score: 4, Insightful

    99% of the time, the more powerful an entity becomes, the more it will exert it's power to keep (and usually increase) said power. It doesn't matter if that entity is a company, a government, or an individual.

  8. He should have followed his own advice by nospam007 · · Score: 4, Interesting

    ...and shut his own phone down.

    It's good that Facebook lost over 2 million 17-25 year olds last year and will lose even more this year.

    It's becoming the GrannyBook, the over 55 years are joining mostly, which is poison for the young generation.

  9. Traffic analysis by goombah99 · · Score: 5, Interesting

    Facebook probably will have some way to see you are using a covert app, and probably be able to see other people who are using the app at the same time. Likewise google, may verywell be the DNS that originates this. And finally how can you be sure that Signal or Skype doesn't share it's transaction analysis with its "partners and customers" as the EULA you didn't read might say. And perhaps the person you are talking to is also taking notes in google docs, etc..

    De-anominization isn't that hard. More to the point, you can't really know ahead of time if is. And finally, your early contacts with a reporter probably don't happen via covert channels. Few people plan ahead like Snowden.

    --
    Some drink at the fountain of knowledge. Others just gargle.
    1. Re:Traffic analysis by umghhh · · Score: 5, Interesting

      There was one of the Bourne movies where they found a leaker because he was the only one that fit the profile out of a (IIRC) 3 persons that switched off the phone at given time. Things went ahead and now if some effort is put into it FB and google may be in a possession of data on most of movement (physical and virtual) of most of humans in the west. I know from a friend that his criminal acquaintances switch off their phones when they meet to discuss next job - imagine this: 10 people meeting in a coffee bar switching phones simultaneously. Is that difficult to spot? Not really. Difficult part is to get over the phone - person relationship but that is not a big deal if you have additional info pre-selecting the target group. The idea that we have privacy or any sorts is these days based on our belief that people and corps hold on to not written rules of behaviour. If the rules were written and enforced this would be no guarantee but they are mostly not written and I guess as soon as you have FB app on your phone you agreed the their rules possibly suspending general ones (if any existed). It is not doom and gloom. It is just reality of 21st century.

    2. Re:Traffic analysis by tinkerton · · Score: 3, Insightful

      Leaving smartphone at home sounds like an idea, though..
      check movement sensors of smartphone
      check gps data of car
      check financial transactions of credit cards
      check laptop activity
      and that's only for that person. There's all the public monitoring of people movements.

  10. even without FB by Anonymous Coward · · Score: 5, Interesting

    Just bought a new ZTE phone from Cricket Wireless... I found out that every cricket phone comes preloaded with a Wifi Manager application that is supposed to transition you between wifi and cell data automatically. If you agree to the EULA, it collects data about your phone and wifi and location and moves you between open wifi and data networks. Well this sounded like a bad idea so I reset the phone and didn't accept the EULA this time.

    Turns out that the data collection happens whether or not you accept the EULA. GPS info if you leave it on, WIFI SSIDs, cell locations, IMEI, Phone ID, data traffic levels...

    The offending app was from smithmicro and could not be disabled. I ended up in debug mode on adb shell and was able to uninstall the package for current user (not something Joe schmoe's grandma will do).

    My point is, you may think that no one is watching so long as you remove FB or other apps, but your location data and patterns is more valuable than the $50 the company gets for selling you service.

  11. Android development by OYAHHH · · Score: 4, Informative

    While doing Android development i find it disturbing to say the least that while debugging my extremely basic app (think hello world) I see calls to Facebook and Amazon urls in my console logs.

    WTH is up with that, I'm just a novice?

    --
    Caution: Contents under pressure
    1. Re:Android development by Anonymous Coward · · Score: 4, Insightful

      Check what libraries you're including. Nothing is free...

  12. I resent having to police my friends by sjbe · · Score: 4, Insightful

    However, many of your friends, family, co-workers, etc, likely use Facebook, and in doing so may reveal much about you.

    I've had this exact argument with several people. Some of them couldn't wrap their head around the fact that I: A) didn't want to be on facebook, B) resented them posting information about me without my permission, and C) resented that I had to police them from doing so which is difficult since I don't want to use Facebook in the first place. Even if I liked what Facebook offers (I don't) I still don't trust the company to be responsible with information about me.

    I worry about my daughter because in her generation it's kind of hard to have a social life without using some social networking systems that often don't care at all about respecting privacy.

  13. High time for federal regulation by LeftCoastThinker · · Score: 3, Interesting

    Aaaand this is just highlighting why Facebook needs to be federally regulated. They have every right to fire a leaking employee, but I am pretty sure that how they figured it out is a violation of a number of laws. Even if they have access to said information for advertising purposes through the employees Facebook page, there is a whole different set of regulations as to what an employer can do to spy on an employee, especially on their days off...

    It is high time the technocrats running Google, Facebook and Twitter go the hard slap down of federal regulation. They are just companies and they have been abusing their increasing power for far too long already.

    --
    If you disagree, please post your argument. (-1, Overrated) isn't your personal censorship tool for views you don't like