The FBI is looking to develop a web application that can monitor social networks, including Facebook and Twitter, in order to gain better real-time intelligence about current or potential future security threats or situations.

This plan was inadvertently revealed by the FBI’s Strategic Information and Operations Center (SOIC) in a market research request for a “Social Media Application.”

The eagle-eyed New Scientist picked up on the request, which aims to “determine the capabilities of the IT industry to provide a social media application.”

Government agencies like the FBI are usually reluctant to openly discuss how social networks are used as an intelligence tool.

In the Request for Information document, the FBI lays out the requirements for the application that it is seeking to build. In the background portion of the document, the SIOC writes:

The FBI has conducted market research and determined that a geospatial alert and analysis mapping application is the best known solution for attaining and disseminating real time open source intelligence and improving the FBI’s overall situational awareness.

We’ve embedded the six-page document below, but here are some of the highlights:

• Provide an automated search and scrape capability of both social networking sites and open source news sites for breaking events, crisis, and threats that meet the search parameters/keywords defined by FBI SIOC.
• Ability for user to create, define, and select parameters/key word requirements. Automated search of national news, local news, and social media networks. Examples include but are not limited to Fox News. CNN, MSNBC, Twitter, Facebook, etc.
• Provide instant notifications of breaking events, incidents, and emerging threats that have been vetted and meet the deÔ¨Åned search parameters.
• Ability to immediately access geospatial maps with coding in addition to providing critical infrastructural layers. Preferred maps include but are not limited to Google Maps, Google 3D maps, ESRI, and Yahoo Maps.
• Ability to instantly search and monitor key words and strings in all “publicly available” tweets across the Twitter Site and any other “publicly available” social networking
  sites/forums (i.e. Facebook, MySpace, etc.).

The entire document is worth reading, if only to see the request for a “tweet lingo” dictionary within the app.

Monitoring social media activity isn’t limited to the FBI. Earlier this month, House subcommittee members urged the Department of Homeland Security to more closely monitor social media traffic.

While privacy advocates have bristled at the idea of social media monitoring, the government position is that if information is public, it’s fair game for scraping and monitoring.

The FBI’s RFI specifically targets “publicly available information” — rather than anything users keep private.

What do you think about how government agencies and law enforcement are using social media monitoring tools? Let us know in the comments.

---

Social Media Application Request for Information

---

Social Media Application

For entertainment studios around the world, Kim Dotcom probably looks a lot like King Henry VIII. To them he is rich, rotund, and chopping their businesses off at the head.

Two of those attributes, at least, are factually true. The third is in legal dispute.

Kim Dotcom, the founder of recently indicted file sharing company Megaupload, was born Kim Schmitz. A German native who legally changed his surname to Dotcom ten years ago, he has a speckled past. This includes accusations of credit card fraud and criminal hacking, as well as a confession of embezzlement. Now Kim lives in a New Zealand mansion allegedly worth $30 million and owns high-end vehicles like a Rolls-Royce, a Maserati, and a Lamborghini.

It’s all legitimately-acquired wealth, according to Megaupload spokesperson Bonnie Lam.

In accordance with German’s “clean-slate” law, Dotcom’s record has been wiped clean of his previous offenses, and he has paid his due after his convictions, Lam said.

“He has matured, learned from his past mistakes and is a successful businessman,” Lam told Cnet. “Kim is one of many shareholders at Mega and not involved in most day-to-day business decisions.”

He is, nevertheless, a colorful character. Dotcom co-produced and appears in a popular promotional video for Megaupload that came out in December, 2011 (that’s him in the screen shot above). The video, which included such popular music stars as Macy Gray, Will.i.am, Kanye West, Kim Kardashian, Serena Williams, Snoop Dogg and a host of others, was targeted by Universal Music Group for unspecified reasons, briefly removed from YouTube, and then reinstated to the popular video-sharing site shortly afterward. Megaupload filed its own suit against Universal immediately after the incident. The video has now been seen almost 12 million times.

Dotcom, who is married and a father of three, was charged this week with five counts of copyright infringement, along with money laundering. He was arrested at his own birthday party on Thursday, along with other employees of Megaupload and its various properties, including Megaporn, Megavideo, Megaclick, and Megarotic. When the police came calling, he barricaded himself inside the mansion’s safe room with what appeared to be a sawed-off shotgun.

Megaupload is the company’s flagship site, founded in 2005. It lets people upload, store and transfer files around the globe, a service that can be used for legitimate purposes (transferring a large data file to a business associate, for instance) but which, the FBI alleges, is also used for distributing copyrighted video and audio. The company’s headquarters are said to be in Hong Kong, though its servers exist in other countries as well. The US FBI took action after discovering servers in Virgina holding unlicensed copyrighted material. Indeed, the US calling this a “Mega Conspiracy.”

The indictment served yesterday listed assets owned by Dotcom and his fellow employees, which tallied to around $175,000,000. Expensive vehicles, artwork, electronics, and a laundry list of bank accounts were named.

On Friday, police in New Zealand raided Dotcom’s home and seized many of these assets, including a Rolls Royce, numerous Mercedes-Benz cars, cash and allegedly guns. Dotcom is known for enjoying his fast cars and attending the Gumball 3000, an automobile “rally” that has drawn celebrities such as Snoop Dogg, Johnny Knoxville and others.

In response, the loose hacker collective known as Anonymous retaliated by taking down the Department of Justice and FBI websites with a denial-of-service attack.

Dotcom has been in trouble with the law for money before. In 2001, the Megaupload founder pocketed 1.5 million euros after promising to invest 50 million euros into failing company LetsBuyIt.com. He pulled the fraud off by purchasing 375,000 euros worth of stock in the company, made his investment announcement, and watched the stock price soar. After the stock had climbed a considerable amount, Dotcom cut and ran, having never possessed enough money to make the 50 million euro investment in the first place. In 2003, Dotcom admitted to embezzlement and was flown from Thailand to Germany for the trial.

According to New Zealand-based website 3 News, New Zealand’s government initially denied Dotcom’s application residency when he failed a “good character” test. However, he then donated to the Christchurch Earthquake Fund and invested $10 million in government bonds, and his application was subsequently approved.

Now Dotcom is facing even more financial charges. He and his alleged co-conspirators are accused of paying third parties to upload copyrighted material.

Dotcom remains positive, however. When faced with three of his coworkers before the press in a New Zealand court room, he invited pictures and video. When a lawyer asked the press to stop, Kim Dotcom interjected with, “We have nothing to hide.”

 

The Stop Online Piracy Act (SOPA) and the Protect IP Act (PIPA) are two bills that sound like they have a mildly positive aim but, in reality, have serious potential to negatively change the internet as we know it. While the Obama administration has come out against SOPA, effectively shelving it indefinitely, the very similar PIPA bill is still alive and well. Both SOPA and PIPA put power in the hands of the entertainment industry to censor sites that allegedly "engage in, enable or facilitate" copyright infringement. This language is vague enough to target sites you use every day, like Facebook and Google, making these bills a serious problem. Here's what you need to know about the bills and what you can do about them.

What Are SOPA and PIPA All ABout, and Why Should I Care?

The idea behind these bills sounds reasonable. They came about in order to try and snuff out piracy online, as the entertainment industry is obviously not excited that many people are downloading their products without payment or permission. The issue is, however, that it doesn't really matter whether you're in support of piracy, against it, or just don't care. The methods are ineffective. Here's what they are and why they're problematic.

SOPA and PIPA were initially designed to do two things. The first was to make it possible for companies to block the domain names of web sites that are simply capable of, or seem to encourage copyright infringement. This would have been bad for everyone because such a measure doesn't actually prevent piracy. The reason that blocking a domain name isn't effective is because any blocked site can still be accessed via its numeric IP address. For example, if lifehacker.com were blocked, you could still find it by visiting a number-based address. In fact, before the bills were even supposed to come to a vote, tools were created to automatically route domain names to their IP addresses to completely render this measure of SOPA and PIPA useless. As a result, the IP-blocking provisions have been removed from both bills.

 

The other, still-active measure present in the SOPA and PIPA bills would allow rights holders to cut of the source of funding of any potentially infringing web site. This means any other companies doing business with this site would have to stop. Whether that means advertising, links in search engines, or any other listings would have to be removed.

There is, however, an important difference between SOPA and PIPA. SOPA targeted any site that contributed to copyright infringement, even if it was simply facilitating the act by providing a tool that could be used for illegal purposes (regardless of intention). PIPA, on the other hand, requires the targeted site to have no significant use beyond copyright infringement. Basically, PIPA can only be used to censor a site if it's more likely to be a source of illegal content than not. This is still problematic because a tool designed to accept user-generated content is, to some extent, at the whims of its users. If infringing content is found, rights holders already have the Digital Millenium Copyright Act (DMCA) to help them request the legal removal of that content. They also have the ability to sue infringers for damages, as we've previously seen with the Recording Industry Association of America (RIAA) when they, for example, sued a 12-year-old for downloading music. SOPA and PIPA provide a means to censor the tool that provided a means for the infringing content to exist on the internet rather than the content itself. This puts a lot of power in the hands of rights holders and has significant potential for abuse.

This is, of course, our interpretation of these bills. Because we love the internet and oppose censorship, we have an obvious bias. While we believe the right thing to do is to oppose these bills, you should make an informed decision on your own. For more information, please read the exact content of both the SOPA and PIPA bills.

What Can I Do About SOPA and PIPA?

Currently Twitter, Google, Reddit, Kickstarter, Tumblr, Mozilla, Yahoo, AOL, eBay, Zynga, Facebook, and several other sites have spoken out in opposition of SOPA and PIPA. In fact, many sites are censoring their logos (e.g. Google) or completely taking down their sites (e.g. Wikipedia) in protest on January 18th, 2012. There is incredible opposition to these bills because they don't just affect users like you, or small startups, but even very large companies with a large stake in the great things the internet and modern technology have to offer. If you'd like to join in your protest, there are a few things you can do.

 

First, call your congressperson on the phone. This is especially important if you live in a state with SOPA and/or PIPA supports or sponsors. Nonetheless, if your congresspeople do not support these bills you should still contact them to voice your support for their position.

Second, get the word out. Post this article, the American Censorship Day web site, or any other information about SOPA/PIPA on your social media accounts. Send emails to friends and family. If you oppose the bill, help others to understand why you believe they should oppose and encourage them to read more so they can make an informed choice.

 

Let's End the Fight and Start a Discussion

Finally, if you know a supporter or person in favor of SOPA and/or PIPA, have an open discussion. Myself and many others believe that the root of this problem stems from a lack of communication on both sides. Despite what my articles may suggest, I'm not a supporter of piracy. I do believe there is a compromise that both sides can reach with enough discussion, education, and understanding. It's important to remember that both the supporters and opposers of SOPA and PIPA have legitimate concerns. This should not be a fight but rather a cooperative discussion to find a solution. Whichever side you're on, please encourage a conversation that will move us towards change that is good for everyone rather than extreme measures that won't help anyone.

 

 

Apple has released a list of hardware component suppliers (and many of their human rights and environmental violations) as part of its 2012 Supplier Responsibility Progress Report.

This list, the company says, accounts for more than 97 percent of its of Apple’s procurement expenditures
for materials, manufacturing, and assembly of iPads, iPhones, iPods, MacBooks and various other personal computing products worldwide.

In this year’s report, Apple says it conducted more audits of manufacturers than ever — 229 audits altogether for various partners along Apple’s supply chain. The number of audits represents an 80 percent increase over audits conducted in 2010 and includes more than 100 first-time audits.

While the company says it has educated more than a million employees at Apple’s manufacturing partners around the world about worker’s rights, on-the-job safety and more, the audits unearthed some ugly facts about the companies making iDevice components.

In Chinese partners, Apple’s investigations found issues with payment of workers, benefits for workers and environmental practices. Some suppliers were found dumping wastewater at a farm near the plant, using unsafe machinery, forging payroll records and even administering pregnancy tests to some workers.

Perhaps most troubling of all from a human rights perspective is the continuing instances of child and involuntary labor in Apple’s supply chain. Although Apple says it maintains a a zero-tolerance policy for such labor and that the 2011 audits found that instances of child labor “were down significantly,” the company can only verify that no underage workers were found at final assembly suppliers.

“I would like to totally eliminate every case of underage employment,” Apple CEO Tim Cook told reporters.

“As we go deeper into the supply chain, we found that age verification system isn’t sophisticated enough. This is something we feel very strongly about and we want to eliminate totally.”

In a email sent today to Apple staff, Cook wrote, “We are taking a big step today toward greater transparency and independent oversight of our supply chain by joining the Fair Labor Association.

“The FLA is a leading nonprofit organization dedicated to improving conditions for workers around the world, and we are the first technology company they’ve approved for membership. The FLA’s auditing team will have direct access to our supply chain and they will report their findings independently on their website.”

While Apple certainly seems to be trying to tackle these overarching issues of international business and manufacturing, we are nevertheless disturbed at many of the things we’re reading in this report. After all, 78 percent compliance with involuntary labor requirements still means 28 percent noncompliance, which translates to coercion and debt bondage being part of how your your iPhone was made.

Still, all our electronics come from plants such as these. At least Apple is making an effort to be transparent about this process, to find violations, to correct those violations, and in some cases, to stop doing businesses with companies that consistently ignore human rights and environmental regulations.

Here are some other highlights of the report, as well as some graphs we created showing percentage of compliance, based on data from the report:

Overwork

---

93 facilities had records that indicated more than 50 percent of their workers exceeded weekly working hour limits of 60 in at least 1 week out of the 12 sample period. At 90 facilities, more than half of the records we reviewed indicated that workers had worked more than 6 consecutive days at least once per month, and 37 facilities lacked an adequate working day control system to ensure that workers took at least 1 day off in every 7 days.

Inadequate pay

---

42 facilities had payment practice violations, including delayed payment for employees’ wages and no pay slips provided to employees. 67 facilities used deductions from wages as a disciplinary measure. 108 facilities did not pay proper overtime wages as required by laws and regulations.

Slave & child labor

---

Two facilities were repeat offenders in the category of involuntary labor. Apple’s report states, “We terminated business with one supplier and are correcting the practices of the other supplier.”

[In] 15 facilities… we discovered foreign contract workers who had paid excessive recruitment fees to labor agencies… Some of our suppliers work with third-party labor agencies to hire contract workers from countries such as the Philippines, Thailand, Indonesia, and Vietnam. These agencies, in turn, may work through multiple subagencies in the hiring country, the workers’ home country, and, in some cases, all the way back to the workers’ home village. By the time the workers have paid all fees across these agencies, the total cost can equal many months’ wages, forcing workers into debt…

We discovered a total of 6 active and 13 historical cases of underage labor at 5 facilities. In each case, the facility had insufficient controls to verify age or detect false documentation. We found no instances of intentional hiring of underage labor.

Health & safety

---

126 facilities did not have the appropriate administrative documentation or approval for at least one item in the health and safety protocol. Examples included workers who performed certain tasks without the legally required licenses, expired elevator permits, and lack of labeling of maximum load for shelving. 78 facilities had at least one instance where a workstation or a machine was missing the appropriate safety device such as a gear guard, pulley guard, or interlock. 58 facilities had workers who were not wearing appropriate personal protective equipment (PPE), such as earplugs, safety glasses, and dust masks. In some instances, the facility had not provided the appropriate
safety equipment. In others, the workers neglected to use the equipment or were using it improperly. Also, 72 facilities lacked procedures for PPE management.

Next Story: Asemble your own MLG Pro Circuit Controller from Mad Catz (video)

On January 6th reports of Symantec (makers of Norton Anitvirus) being hacked surfaced. The group of hackers behind the attack behind the attack were from India. In a statement issued by a member from the Lords of Dharamraja group (badass name!), the guys said:

As of now we start sharing with all our brothers and followers information from the Indian Militaty (sic) Intelligence servers, so far we have discovered within the Indian Spy Programme (sic) source codes of a dozen software companies which have signed agreements with Indian TANCS programme (sic) and CBI

Ignoring the typing error, gaining access to Indian Military’s Intelligence servers is pretty damning for the agency. The hack got covered since the hackers claimed to have acces to Norton’s source code. Earlier today I came across scans of a set of documents that are internal communications between the Indian Military. The documents claim the existence of a system known as RINOA SUR. While I did not find what SUR stands for but RINOA is RIM, NOkia and Apple. And this is where things start to get very interesting, according to the set of documents, the RINOA SUR platform was used to spy on the USCC—the US-China Economic and Security Review Commission. Let’s take a moment for that to digest. Here’s an image from the documents underlining the relevant part:

The documents contain snippets of emails sent by members of the USCC. Apparently, RINOA SUR platform has been declared a success and the Indian Navy has shown interest in the same. The leaked military documents suggest, RINOA were arm twisted into providing backdoor access in exchange for operating in India:

While the Indian government recently gave the nation’s premiere spy agency—RAW—permission to access any citizen’s electronic communication, the Department of Telecommunications has reached out to the Interpol for help in decrypting communication via services like RIM’s BlackBerry.

In recent weeks we discovered BitTorrent pirates at the RIAA, Sony, Fox, Universal and even law-abiding organizations such as the Department of Homeland Security. By now it should be clear that people are using BitTorrent pretty much everywhere, and not only for lawful downloads. Today we can add the U.S. House of Representatives to that list, the place where lawmakers are drafting the much discussed “Stop Online Piracy Act” (SOPA).

YouHaveDownloaded is a treasure trove full of incriminating data on alleged BitTorrent pirates in organizations all across the world.

Unauthorized downloads occur even in the most unexpected of places, from the palace of the French President, via the Church of God, to the RIAA.

Although we don’t plan to go on forever trawling the archives, we felt that there was at least one place that warranted further investigation – the U.S. House of Representatives. Since it’s the birthplace of the pending SOPA bill, we wondered how many of the employees there have engaged in unauthorized copying.

The answer is yet again unambiguous – they pirate a lot.

In total we found more than 800 IP-addresses assigned to the U.S. House of Representatives from where content has been shared on BitTorrent. After a closer inspection it quickly became clear the House isn’t just using it for legitimate downloads either, quite the opposite.

Below we’ll list a few of the 800 hits we found on YouHaveDownloaded, which in turn represent just a fraction of total downloads since the site only tracks a limited percentage of total BitTorrent traffic. Again, this is real and confirmed data that is just as good as the evidence used by the RIAA when they sued tens of thousands of people for file-sharing.

Something that immediately caught our eye are the self-help books that are downloaded in the House. “Crucial Conversations- Tools for Talking When Stakes Are High,” for example, may indeed be of interest to the political elite in the United States. And “How to Answer Hard Interview Questions And Everything Else You Need to Know to Get the Job You Want” may be helpful for those who aspire to higher positions.

Books tend to be popular in the House because we found quite a few more, including “Do Not Open – An Encyclopedia of the World’s Best-Kept Secrets” and “How Things Work Encyclopedia”. But of course the people at the heart of democracy are also downloading familiar content such as Windows 7, popular TV-shows and movies.

And there was another category we ran into more than we would have wanted too. It appears that aside from self-help books, House employees are also into adult themed self-help videos. We’ll list one of the least explicit here below, but that’s just the tip of the iceberg.

Although the above is interesting, as the House is the place where lawmakers are currently trying to push though SOPA, this revelation might actually help their cause. If even people at the House are “stealing” content, we really need SOPA to counter it, they may say.

The question is though, whether SOPA will be able to break the habits of millions of Americans, as there will always be alternatives available. And even if it manages to put a dent in the current piracy rates, is that really worth it considering the potential damage SOPA can do to the open Internet and legal businesses?

 

 

Facebook has rolled out its new Timeline feature to the masses.

This ultra-illustrative, chronological listing of posts, photos, shared links, check-ins, and more is a radically different arrangement than the Facebook profile you've been used to.

And now that your life can be exposed for everyone to see -- and scrutinize -- you may be interested in curating the new interface. Once you've activated Facebook Timeline (go here to do so), you've got seven days to tweak it to make sure it's just how you like before it goes live for everyone to see.

Below are five quick tips on how to personalize, privatize, and generally get the most out of Facebook's newest feature. It doesn't take long to master the new interface, and it's an important exercise for anyone interested in, well, reputation management.

1. Privacy 101: How to hide things

You probably already know that Facebook has controversial positions on privacy. So you may now find that some things included on your Timeline are best kept from curious eyes. This could be anything from an embarrassing status message you posted in simpler social media times, to a rant your ex left on your wall a few months ago.

To hide a Timeline element, click the pencil icon at the top of the offending post, then choose "Hide from Timeline." Easy.

And please note: Any privacy settings you've already set still apply to the Timeline interface. So the photos of you getting wild at last weekend's kegger are still safe from Mom.

If you prefer to keep your profile public, but don't want everyone to see what you posted back in high school, for example, you can also tweak your Timeline settings more generally. Click the arrow next to your Home button at the top of the screen to access your Privacy Settings. Scroll down to "Limit the Audience for Past Posts," then choose "Manage Past Post Visibility." Now click "Limit Old Posts" -- all

2. Tell your life story: How to add past events

Privacy, schmivacy! Perhaps, you want the whole world to know the day you were born, the first time you rode a bike, and that debate club award you got in high school. These events aren't listed on your Timeline, but they can be.

To add a status update, photo, place check-in, or life event to your Timeline, simply hover the mouse over the line in the center of the page until it turns into a plus sign, and reveals the option to add one of those four types of posts.

Now, Facebook can accurately reflect your entire life -- and not just the events that occurred after you first signed on.

3. Add some individuality: How to customize your Timeline

There are a number of ways you can personalize your Timeline so it highlights the posts, pictures and events you cherish most.

First, you can add a cover to your Timeline. Toward the top of your profile, above the buttons where it says "Update Info," you should see "Add a Cover." Once you click that, you can select an image from your photos, or opt to upload a new image. Once it loads, you can adjust the positioning of your cover image.

If you set a cover photo and then decide it's not as great as you first thought, just hover your mouse over the image, and a "Change Cover" option menu will pop up, letting you reposition the image or select a new one.

For photo albums you've created, you can change the primary photo that displays (you could do this before, but now the process is different). Simply click the pencil icon in the upper corner of the album post, and select "Change Primary Photo."

You can also choose to highlight a post -- expanding it from a small, half-page-size post to a wide-screen version — by selecting the star icon in the post's upper-right corner. Conversely, you can click the star on a maximized featured post to make it normal again.

4. Appearances matter: How to check out your Timeline from different angles

If you decide to make a number of posts and photos private or hidden from your Timeline, you can still get the full, complete view of your Facebook action history.

On your Timeline, click "Activity Log." There you'll find posts and information you need to review before it publishes to your profile, as well as a complete look at your interactions on Facebook. This is log completely private to you.

You can choose to filter what you see by clicking the "All" dropdown menu at the top. You can choose to see only your posts, posts by others, posts from specific Facebook apps ("Hmm, let's look at my past Farmville accomplishments"), photos and more.

Like before, you can also check how others view your profile. Next to "Activity Log" is a cog icon. Click that, and you can choose "View As..." and either enter a friend's name or click the "public" link to see how your profile looks to strangers.

5. Information overload: How to organize friends and filter updates

Now that your Timeline is all straightened out, you might as well do some house cleaning on what shows up in your Newsfeed.

When you add a friend or follow someone's public updates, Facebook automatically sets the level of posts you see to "Most Updates." You can change this by going to that profile, and clicking the "Subscribed" button. You can change it to "Only Important" updates or "All updates," and you can also filter what types of posts you're interested in seeing: things like life events, status updates, or photos.

And if you haven't done so already, you can organize friends into lists, a la the Google+ Circles feature. Facebook Lists rolled out in September.

Just go to the left-hand side of your Newsfeed page, click "More," and toward the bottom you'll see "Lists." You can add friends individually to lists like Close Friends, Family, or Co-workers. You can click "More" next to Lists to add other lists of your choosing — "Acquaintances," "Poker Club Members," you get the picture.

The average Facebook user has 130 friends, but I'd venture to say that most of you reading this have far more than that, so this will help streamline your Facebooking experience.

One last thing: If you're one of those people who's still into "poking" your friends, you can still do that. Go to your friend's profile, and the Poke option is listed under a gear cog dropdown menu next to "Message."

The same RIAA that makes examples out of ordinary folks by suing them for millions of dollars for file sharing? Turns out someone there's been pirating full seasons of Dexter. Nine million dollars worth. Whoops!

That number—$150,000 for each of the 60 episodes illegally downloaded on the RIAA HQ ISP (OK?)—comes compliments of YouHaveDownloaded which logged the BitTorrent activity of some 50 million users and revealed that not only are the major movie studios pirating their own movies, but the RIAA is downloading pirated TV shows. Lots of 'em.

Again, this is the same RIAA that has been shaking down a Minnesota mother of four for $1.5 million over 24 songs she shared on Kazaa. And it turns out, they're being generous in that case! Since the statutory damages cited by its own guidelines are much higher:

… copyright holders can sue you for up to $150,000 in statutory damages for each of their copyrighted works that you illegally copy or distribute.

So let's see, $150k per episode times 60 episodes comes out to roughly... $9,000,000, checks payable to CBS.

Look, the RIAA's method of "enforcing" copyright law by suing people to oblivion is unfair. But to layer hypocrisy on top of that unfairness is just gross. How about you get your own house in order before you target your next Minnesota mom?

A Russian BitTorrent tracking firm traced pirated movies and television show downloads back to IP addresses from Sony, Fox, and NBC—as TF points out, "these are the same companies who want to disconnect people from the Internet after they've been caught sharing copyrighted material."

This shouldn't surprise anyone. When studios push fascist copyright law, they're speaking on behalf of their shareholders, not the thousands of people they employ. Those people are ordinary people, who, yes, sometimes pirate albums, movies, shows, and games, like millions of other ordinary people around the world. But the hypocrisy is more than superficial. We shouldn't ever let companies that can't control their own miscreant employees shape federal legislation for all of us.

Americans consented to secretly installed software on 150 million mobile phones that logs what apps they use and what websites they visit and who they communicate with, according to mobile-phone makers and carriers.

Sprint, AT&T, HTC and Samsung told Sen. Al Franken (D-Minnesota) Thursday that their end-user licensing agreements — those pages of fine print you sign when you get a new cell phone — authorize them to use Carrier IQ software to monitor app deployment, battery life, phone CPU output and data and cell-site connectivity. The companies’ statements, released by Franken, are a good roadmap to how the companies will fight federal privacy lawsuits already brought by consumers over the secret software.

The companies have deployed the software on handsets for years now. But it had only received mainstream attention last month when a Connecticut researcher publicized its presence on YouTube. The ensuing furor over the video prompted Franken to demand answers.

Franken was none too happy with the ones he got.

“People have a fundamental right to control their private information. After reading the companies’ responses, I’m still concerned that this right is not being respected,” Franken said in a statement. “The average user of any device equipped with Carrier IQ software has no way of knowing that this software is running, what information it is getting, and who it is giving it to — and that’s a problem.”

T-Mobile, which has acknowledged using the software, and Motorola are expected to respond to Franken’s inquiry by Dec. 20. Carrier IQ, founded in Mountain View, California, six years ago, has also spoken to government officials, including the Federal Trade Commission, but maintains no official investigation has commenced.

AT&T, for example, cited its terms-of-service agreement with consumers to Franken. Among other things, the agreement says consumers consent to monitoring to “improve your network and the quality of your wireless experience.”

Samsung, which installs the software at the carriers’ request, told Franken that the carriers are responsible for notifying consumers about it. The phone maker said it does not sell phones installed with Carrier IQ “directly to consumers.”

The software runs hidden from users, who generally can’t find it or uninstall it without very sophisticated knowledge or by switching out the operating system by “rooting” their phone and flashing an alternative operating system. While legal, rooting almost always voids a phone’s warranty.

What data is sent to Carrier IQ and the carriers depends on how much data the telcos want. Some carriers might want the text-message data, for example, only when certain conditions are met, such as when a text doesn’t go through to the intended recipient.

“Sprint does not always know why a call drops or a website will not load, for example. Sprint may not always know why a get message is not delivered timely, or why service is unavailable in a particular area,” Sprint wrote. “To help it better understand these issues, Sprint uses troubleshooting software installed on customers’ devices to report diagnostic and analytics data so it can solve particular problems,” Sprint told Franken.

Sprint, which said Friday it was disabling Carrier IQ from 26 million active devices that carry it, added that its “privacy policy explains that it may use tools and analytics to collect such information.”

Verizon does not employ Carrier IQ.

Some carriers collect the the data on an anonymized basis. That provides them a roadmap to where and when calls are dropped without knowing whose phone was being used. When too many calls are dropped in a certain location, for example, that could mean extra cell towers are needed in that area. The same could be true for when the software detects similar areas of low data connectivity.

But other carriers collect data that lets them drill down to the individual phone, providing customer-service representatives with vast tools to assist complaining customers. For example, a carrier could tell a customer that battery life is poor because a certain app is hogging electricity in the background. The software can be programmed to know when a consumer changed the battery, or how many times a battery charger was used. AT&T’s and Sprint’s letters spell out what data Carrier IQ collects on their behalf.

Here’s a synopsis of what the respondents told Franken:

• “AT&T collects information about the proximate location of your Device in relations to our cell towers and the Global Positioning System (GPS). We use that information, as well as other usage and performance information also obtained from our network and your Device, to provide you with wireless voice and data services, and to maintain and improve your network and the quality of your wireless experience,” AT&T said, (.pdf) citing its terms of service.
• “Information we collect when we provide you with Services includes when your wireless device is turned on, how your device is functioning, device signal strength, where it is located, what device you are using, what you have purchased with your device, how you are using it, and what sites you visit. And, Sprint’s privacy policy explains that it may use tools and analytics to collect such information,” Sprint wrote (.pdf) Franken, also citing its user agreement.
• “To the best of HTC’s knowledge the wireless service providers have made their collection activities known via their privacy policies and terms of use. The Federal Trade Commission staff also recognize that consumers ‘reasonably anticipate, and are likely to accept, that an [electronic communication service provider] will monitor the transmission of data for reasons related to providing the [related service], such as to ensure that their service is not interrupted or to detect and block the transmission of computer viruses or malware.’ Accordingly, the FTC calls this type of activity a ‘commonly accepted practice,’” HTC responded. (.pdf)
• “Because Samsung does not sell any relevant devices directly to consumers, Samsung is not in a position to determine the extent of consumer awareness regarding the nature of the relationship between the carrier and the consumer, including the carriers’ inclusion of Carrier IQ on devices operating on their networks. Samsung understands that the carriers have Terms of Service and/or Privacy Policy agreements that discuss the collection and usage of consumer data, and that those agreements may govern the carriers’ relationships,” Samsung said.