back to article Australia gave police power to compel sysadmins into assisting account takeovers – so they plan to use it

Australia's Federal Police force on Sunday announced it intends to start using new powers designed to help combat criminal use of encryption by taking over the accounts of some social media users, then deleting or modifying content they've posted. The law also requires sysadmins to help those account takeovers. The force (AFP …

  1. Anonymous Coward
    Anonymous Coward

    Tsk tsk tsk

    What’s that Skip?

    You need help with some encryption?

    1. NickyD

      Re: Tsk tsk tsk

      Yes, because, like Australian privacy, its fallen down a well!

  2. Peter Prof Fox
    FAIL

    Evidence m'lud...

    If the police can hack an account willy-nilly, including changing content, then I put it to you that any 'evidence' is planted.

    1. Barrie Shepherd

      Re: Evidence m'lud...

      ".................then I put it to you that any 'evidence' is planted."

      Which is why they want the law - back to stitching up "crims" who they don't have real evidence about.

      How easy will it be to slip a few naughty pics into someone's social media / email account and then bang them away for kiddie porn.

      1. Christoph

        Re: Evidence m'lud...

        Stitching up protesters, rival politicians, personal enemies, the inconvenient husband of their mistress ...

        The number one way to discredit a whistleblower is to accuse them of a sexual crime.

        1. martinusher Silver badge

          Re: Evidence m'lud...

          ....and the (Australian) expert on this process is currently languishing in Belmarsh prison. Never forget that the initial grounds for arresting him was a bogus sexual assault allegation from Sweden with no evidence being presented in the UK to extradite him to that country (and then onto another jurisdiction).

          It is very difficult to regard our "western/democratic/independent" judicial system as credible.

    2. Anonymous Coward
      Anonymous Coward

      Re: Evidence m'lud...

      Legalizing planting evidence is what this is all about. And if it's legal, it can't be held against them: Totally legal procedure, followed the law step by step, now lock that annoying person away already.

  3. SusiW
    WTF?

    "Won't somebody think of the sysadmins..?"

    I'm all for locking the child porn creatures up forever and cracking down on crims, but once again it's another twang of the Public Heartstrings being used to undermine the security and privacy of the largely-innocent masses.

    The grey area around how they will force reluctant sysadmins to 'help' is an area of some concern.

    1. jmch Silver badge

      Re: "Won't somebody think of the sysadmins..?"

      Not to mention who is paying the sysadmins for their time

      1. Yet Another Anonymous coward Silver badge

        Re: "Won't somebody think of the sysadmins..?"

        It's out-sourced.

        They got a very cheap bid from some outfit in a Korea - just need to forward the root logins.

  4. sreynolds

    As always...

    Lets do it to save the kiddies.

  5. Anonymous Coward
    Anonymous Coward

    Stepping stones...

    ...towards law enforcement under the new world order.

    Also will be used to enforce religious viewpoints when church and state joins at last, which will happen.

    1. Keven E
      Pint

      Re: Stepping stones...

      When did church and state separate?

  6. Anonymous Coward
    Anonymous Coward

    2018, 5 eyes

    It stems from the 2018 meeting of 5-eyes, where they decided because "Privacy Is Not Absolute" they could/should backdoor encryption.

    https://9to5mac.com/2018/09/03/five-eyes-privacy-encryption/

    Sep. 3rd 2018 : "An international network of intelligence agencies has told the tech industry that ‘privacy is not an absolute’ and that the use of end-to-end encryption ‘should be rare’ … The statements were made in a joint communiqué and statement of principles following a meeting of the so-called Five Eyes nations – the US, UK, Canada, Australia and New Zealand."

    By mid 2019: AN0M fake encrypted phone, appears to to be a marketing psychop for that. AN0M was a fake encrypted phone used to demonize encryption, it was used to create the perception that encryption = criminal.

    https://www.abc.net.au/news/2021-06-15/no-one-in-america-arrested-in-operation-ironside/100213036

    "The US court document showed that by the middle of 2019, the FBI decided it needed greater reach. It struck an agreement with an unnamed third country to install a server to download communications from AN0M devices around the world which would then be copied and sent to the FBI."

    That unnamed third country? Australia. There are 3 groups in that [developer][distributor][end users].

    The [developer] will be the USA given we can now see the court order and can see the driver for this.

    These were given to a handful of [distributors], typically criminals that the police thought got off lightly. They were told they could earn a vast amount of money distributing these phones and collecting cash. I also suspect they were told it was legal.

    [End users] claimed to be variously 9000-11000, yet the numbers released per-country suggest a far smaller number. I suspect many [end users] were also agents for the spies there to give the initial monetary incentive to the [distributors],

    The end-user case details don't match up, you find repurposed arrests, retold with different dates as if they were AN0M cases. It appears to be a marketing operation. AN0M cases would immediately be challenged, the legal basis for that surveillance you wouldn't want challenged in court. The "king-pin" claim criminal fronting it, is a classic baddie who escaped into the dark underworld at the end. It's shit in there.

    So they've rolled out their backdoors for trial in Australia and so now there is a legal basis for hacking the world by 5-eyes.

    DO NOT USE 5 EYES SERVICES, KIT, ROUTERS, HARDWARE, FIREWALLS, CLOUD SERVICES, PHONES, VPNs, DEVICES, CDNs, bulk internet connections, ANY OF IT. They are ALL backdoored. You cannot rely on any kind of legal process here. Any false belief in judicial process and review is meaningless now, any contracts worthless.

    Also, watch what you say online, measure your words, even in private and even with friends.

    1. Anonymous Coward
      Anonymous Coward

      United Kingdom, next

      https://www.theguardian.com/uk-news/2019/jul/30/five-eyes-backdoor-access-whatsapp-encryption

      "[July 2019] British, American and other intelligence agencies from English-speaking countries have concluded a two-day meeting in London amid calls for spies and police officers to be given special, backdoor access to WhatsApp and other encrypted communications."

      "GCHQ, the UK agency which monitors and breaks into communications, has suggested that Silicon Valley companies could develop technology that would silently add a police officer or intelligence agent to conversations or group chats"

      "[Priti] Patel described the summit as “an exciting moment for the UK” and said the UK was “a global leader on national security and child protection and we are committed to working with our close partners on shared challenges”

      [So, the psychop marketing for UK will be a "for the children's" thing. For the Australians it was largely "drugs smugglers". I'm expecting you UK fake NGOs will be doing your part, perhaps a new set of front companies pretending to be 'stakeholders'. Lots of fake harrowing stories from your bullshit writers. I'm expecting Priti Patel to be at the forefront of that marketing.]

      The core problem: Trump failed Presidency. Barr goes off on an 'attack the messenger' route, where dissent is the problem, dissent is the reason they failed! Critics are the problem, Tik Tok is the problem, people getting together and dissenting from their chosen path is the problem. People stating that Trump got fewer votes so is not the legitimate President is the problem. Democracy is the problem. Speech is the problem. Freedom is the problem. 5 eyes goes into action to eliminate said freedom, back in 2018, and you're seeing the fruits of that attack, blooming now in 2021.

      1. Fruit and Nutcase Silver badge
        Trollface

        Re: United Kingdom, next

        "UK was “a global leader on national security and child protection "

        but not child poverty and education

      2. Fruit and Nutcase Silver badge
        Alert

        Re: United Kingdom, next

        Someone mentioned the home secretary?

        “I said last year we’re the Saudi Arabia of wind. Probably the Saudi Arabia of penal policy, under our wonderful home secretary,” Johnson said.

        https://www.theguardian.com/politics/2021/sep/14/disgusting-pms-joke-over-uk-becoming-saudi-arabia-of-penal-policy-condemned

    2. elsergiovolador Silver badge

      Re: 2018, 5 eyes

      DO NOT USE 5 EYES SERVICES

      Other governments are watching closely to see what they can get away with.

      Assume all equipment is compromised.

      1. W.S.Gosset Silver badge

        Re: 2018, 5 eyes

        If you're physically in the EU, 100% of your ex-country internet traffic is handed over to the NSA by iirc Denmark for a fairly tidy sum. This includes all UK traffic routed out via continental Europe.

      2. fidodogbreath Silver badge

        Re: 2018, 5 eyes

        Assume all equipment is compromised.

        Including that which is hosting this forum...

    3. Anonymous Coward
      Anonymous Coward

      Re: 2018, 5 eyes

      Yes, source all your hardware and software from China, where if the maker didn't adequately comply with government/party requests, they get to take a long walk off a tall roof?

      1. Anonymous Coward
        Anonymous Coward

        Re: 2018, 5 eyes

        If you're worried, I would demand China show the source code to be checked... Huawei opened their software and was audited by GCHQ and GCHQ failed to show the backdoors they claimed.

        So much for that claim.

        Meanwhile the same GCHQ was pushing "Ghost Protocols", which would expose UK comms to US surveillance.

        I see the split loyalty, a group more loyal to a foreign power than their own country. Their own country to be spied on, with the trust/help of that foreign power.

        1. fidodogbreath Silver badge

          Re: 2018, 5 eyes

          This is nation-state level stuff. Huawei (and Cisco, for that matter) also make the hardware, so the software source code is not a complete picture. There are lots of ways to hide things in programmable controller firmware, seemingly-safe utility chips that are not in fact what they appear to be, chips hidden within a multi-layer PCB, components added inside connectors etc.

          Then there are the not-insignificant issues of ensuring that the code you audited is what is actually running on the device, that every single board and component in the system is truly as described, and that those conditions are true for every single unit that you purchase. If you're buying, say, 100 "identical" routers, it might only take one back-doored unit to compromise your network.

          And of course, you can't exclude the possibility of compromise without participation by the vendor.

  7. elsergiovolador Silver badge

    Power

    When you create a new power, don't look how it can be used for the benefit of population, but how the enemy can use it against you.

    Unless Australia assumes people won't elect a government that will use that instrument to silence opposition and become in power in perpetuity. Unless they already are that kind of government.

    Scary stuff.

  8. The Central Scrutinizer

    Politicians are, by and large, technologically clueless. The cops say "we need this and that and the other", so to be seen to be "tough on crime", the government mindlessly rams this sort of legislation through parliament. The opposition dare not oppose anything because the government head kickers will inevitably claim they are soft on crime and child porn.

    "You're either with us or you are supporting the pedophiles" is a common refrain. There is absolutely no room for a sensible debate on these sorts of matters.

    And interfering with encryption is also such a great idea that keeps us all so, so safe.

    1. elsergiovolador Silver badge

      Politicians are, by and large, technologically clueless.

      That's true, but they are not clueless when it comes to the thirst of power. This is calculated to make sure any politician will not go into withdrawals and they can always order to control someone or an organisation to get the dopamine kick.

  9. Anonymous Coward
    Anonymous Coward

    Ferral misbehaving Aussies

    will reap what they continue to breed^ahem sow...and get the results they want. the AFP goon squad will help Skippy won't they?

  10. Cuddles Silver badge

    Possibility

    "It's impossible to argue against the strongest possible action against those who create or consume child sex abuse material."

    No, it's very much possible, and indeed entirely sensible, to do so. Child abuse is a fairly unpleasant crime, but that doesn't mean you have to throw all rationality out the window the moment someone screams "Think of the children!". The "strongest possible action" would be along the lines of summary execution, but that is rightly not an option in any civilised country. Warrantless investigation, lynch mobs, indefinite detention... there are all kinds of strong action that most sane people would consider unreasonable no matter how bad you think a particular crime might be. And as this article demonstrates, even allowing regulated warrants in a legal setting may well be considered going too far by many people.

    So let's try to keep things in perspective a bit please. I will happily argue against the strongest possible action against child abusers, just as I will do so against murderers, Nazis, and all kinds of other unpleasant types. Just because they're bad people, that doesn't mean anything and everything must be allowed in response.

    1. Ian Johnston Silver badge

      Re: Possibility

      Came here to make the same point, less eloquently. Well said.

      That said, is there any limit to the snooping, intrusion and state control which the happy larrikins of the seven penal colonies will gladly accept?

  11. Wade Burchette Silver badge

    "Cyber-enabled serious and organised crime, often enabled by the dark web and other anonymising technologies, such as bespoke encrypted devices for criminal use, present a direct challenge to community safety and the rule of law. For example, on the dark web criminals carry out their activities with a lower risk of identification and apprehension."

    There are many smart criminals. This law will do absolutely nothing to stop them. The smart ones, the ones you need to stop, will just move to a different system. One where the government cannot hack no matter what law is passed. This law may catch a few criminals; it will be used more against people. Your social media post about protesting ... taken down and you get sent to an Australian gulag.

    The thing to do is what the FBI did a few years back. They convinced criminals to buy phones that used an encryption system that the FBI had access to. They convinced criminals to use their compromised service. This was not an existing service that had a backdoor. This was a honeypot the US government set up to specifically catch criminals.

    1. Graham Cobb Silver badge

      Exactly. This will do absolutely nothing against terrorists, against the child abusers who create CSAM, against the most serious organised crime. Those people understand encryption, understand that they need to use standalone encrypted services (not dependent on a third party), understand the need to employ people who can teach them about key management, etc. The encryption cat is well out of the bag and the serious bad guys - the 4 horsemen of the apocalypse - will be doing it properly, under their own control and unaffected by these laws.

      The laws will, indeed, be used against the consumers of CSAM but it will mostly be used against people organising "illegal" demonstrations (whether BLM in the US or Extinction Rebellion in the UK), against trade unions, against asylum seekers and against people who are a threat to the powers that be. Some of them will be criminals, but not all. Some of them will be victims (of planted evidence, of taking down of legitimate sites or communications, ...).

  12. Chris Evans

    Annoyed by unexplaimed Acronyms?

    Is it just me that gets annoyed by unexplained Acronyms?

    Child Sexual Abuse Material (CSAM). The full text does appear towards the end of the arcticle but not with the acronym.

    I'd only expect a small proportion of readers to know the above meaning and others may be confused knowing of: CSAM, Customer Support and Maintenance (electronic commerce)!

    1. The Bobster

      Re: Annoyed by unexplaimed Acronyms?

      UAAS? Not me!

    2. Phil Kingston

      Re: Annoyed by unexplaimed Acronyms?

      TJMIU!

      1. Sam Therapy

        Re: Annoyed by unexplaimed Acronyms?

        ISWYDT

  13. Tron

    A relevant quote.

    'The problem with Australians is not that so many of them are descended from convicts, but that so many of them are descended from prison officers.' [Clive James]

  14. Snowy Silver badge
    Coat

    I look forward

    to Juice media's take on this story.

    1. Anonymous Coward
      Anonymous Coward

      Re: I look forward

      Thanks for that - great site I'd never heard of!

  15. StrangerHereMyself Bronze badge

    Non-free

    There has been some discussion about it online already, but I hereby officially declare Australia to be a NON-FREE country.

    1. Anonymous Coward
      Anonymous Coward

      Re: Non-free

      Citizens should move to China.

      LOL!

  16. Anonymous Coward
    Anonymous Coward

    Australia's politicians

    Are sending the message that Australia has no interest in encouraging world class technology companies to invest there.

    And they're convincing the technology sector to move overseas.

    1. Anonymous Coward
      Anonymous Coward

      Re: Australia's politicians

      Australia doesn't need technology, we have sheep!

  17. Flywheel Silver badge
    Holmes

    I was wondering...

    ... what happens when all this nonsense fails to make any noticeable difference in CSAM takedowns?

  18. Tired and grumpy

    It's entirely possible to argue against the strongest possible action against those who create or consume child sex abuse material, when creating the framework that allows that action enables the complete elimination of basic freedoms for all in favour of overreaching state power. We seem to have forgotten that government is an unwelcome imposition to be tolerated insofar as it serves us, not a godhead or a master. Given the staggering witlessness and incompetence of those who presently govern us, pretty much irrespective of who "we" refers to, this is somewhat surprising.

    Broad powers created to fight "terrorism" or child abuse always end up being used to serve petty bureaucracy, fight personal vendettas and line pockets. Or have we forgotten McCarthyism so completely? If so, then let's at least remember that the UK's IPA has been used by councils to check whether people are putting the right things in the right bins. That was created to fight "terrorism" and "organised crime" too.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021