Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
×
Businesses Government Privacy Communications Google Microsoft Network Security The Internet United States Yahoo! News Apple Technology

Apple, Google, Microsoft: We Have No Government Email Scanning Program Like Yahoo's (vocativ.com) 139

Apple, Google and Microsoft -- three of the largest technology companies in the U.S. -- have each said they don't scan all incoming messages for the U.S. government, which is exactly what Yahoo does. According to Reuters, Yahoo secretly built a custom software program last year to search all of its customers' incoming emails for specific information provided by U.S. intelligence officials. The company complied with a classified U.S. government directive, scanning hundreds of millions of Yahoo Mail accounts at the behest of the National Security Agency or FBI. Vocativ reports: In a statement, a Microsoft spokesperson told Vocativ that "We have never engaged in the secret scanning of email traffic like what has been reported today about Yahoo." While Apple declined to give a statement on the record, a representative for the company did, in response to Vocativ's question, refer to CEO Tim Cook's official letter on consumer privacy, which reads in part: "I want to be absolutely clear that we have never worked with any government agency from any country to create a backdoor in any of our products or services. We have also never allowed access to our servers. And we never will." The fact that both the companies declined further statement means it's not yet known if the NSA or FBI approached them to request they build a program like Yahoo's. Meanwhile, a spokesperson from Alphabet's Google issued a statement to CNBC: "We've never received such a request, but if we did, our response would be simple: 'no way.'" [The spokesperson later clarified that the company has not received a "directive" or "order" to that effect, either, according to The Intercept.] But the question is whether or not you believe them. With Yahoo's case, only a handful of employees knew about the program. The same could be true with Apple, Google, Microsoft or any other large tech company. Edward Snowden tweeted not too long after Reuters' report surfaced: "Heads up: Any major email service not clearly, categorically denying this tomorrow -- without careful phrasing -- is as guilty as Yahoo."
This discussion has been archived. No new comments can be posted.

Apple, Google, Microsoft: We Have No Government Email Scanning Program Like Yahoo's

Comments Filter:
  • by dohzer ( 867770 ) on Tuesday October 04, 2016 @08:28PM (#53014915)

    Everyone knows they read all your emails.
    That's why I've gone off shore.
    - jamesd@qq.com

    • "We have never engaged in the secret scanning of email traffic like what has been reported today about Yahoo. I want to be absolutely clear that we have never worked with any government agency from any country to create a backdoor in any of our products or services. We have also never allowed access to our servers. And we never will."

      ie. Your system is so insecure that the government didn't need your help to get in.

      • by tsqr ( 808554 )

        "We have never engaged in the secret scanning of email traffic like what has been reported today about Yahoo. I want to be absolutely clear that we have never worked with any government agency from any country to create a backdoor in any of our products or services. We have also never allowed access to our servers. And we never will."

        ie. Your system is so insecure that the government didn't need your help to get in.

        With regard to the Apple statement, please refer to Snowden's comment about careful phrasing.

    • It's written in the Bible, on Isaias 69:171
  • by Anonymous Coward

    This is exactly what they would have to say, legally speaking

    • Re: (Score:3, Insightful)

      This is exactly what they would have to say, legally speaking

      No. Gag orders prevent you from telling the truth. They cannot, legally, require you to lie.

  • Bullshit (Score:2, Insightful)

    by Anonymous Coward

    - Anonymous "Coward"

  • by UnknownSoldier ( 67820 ) on Tuesday October 04, 2016 @08:36PM (#53014949)

    > Microsoft spokesperson told Vocativ that "We have never engaged in the secret scanning of email traffic like what has been reported today about Yahoo."

    Bullshit.

    Proof: Microsoft (R) Online Services Global Criminal Compliance Handbook [meetup.com]

    • > Microsoft spokesperson told Vocativ that "We have never engaged in the secret scanning of email traffic like what has been reported today about Yahoo."

      Bullshit.

      Proof: Microsoft (R) Online Services Global Criminal Compliance Handbook [meetup.com]

      Could be true. Key element in MS quote: "like what has been reported ... about Yahoo." Meaning, they scan your emails for *other* reasons, like for marketing and demographic information -- I'm looking at you Google too.

    • by ShanghaiBill ( 739463 ) on Tuesday October 04, 2016 @09:26PM (#53015109)

      That handbook is about specific information requested through proper legal channels, such as a subpoena, warrant or an NSL. All companies are required to comply with those. It is not about scanning all email for keywords like TFA is describing. Perhaps Microsoft is doing what Yahoo did, but your link is not proof of that.

      • bad guys are convince us they're the good guys - can and will abuse this.

        because it exists, they'll get (have gotton) around any inconvenient barriers and now, everything is of 'national security, just let us in' level.

        I advocate for ending all law-enforcement and government access to email and online encrypted comms. governments exist for the betterment of their people (that's the idea, even though its never quite followed, in practice). no LE official really can be trusted with power; we're seeing this

      • by guruevi ( 827432 )

        NSL is not a legal channel and is exactly what Yahoo quotes as following.

        • NSL is not a legal channel and is exactly what Yahoo quotes as following.

          NSL is a legal channel, but it's restricted to providing only metadata and only about specific targets. Yahoo cited it, but they've gone well beyond what the statute authorizes.

          • by guruevi ( 827432 )

            The constitution doesn't agree. The government has to have (a) cause, (b) due process and (c) the right for an open defense in a public court

            • The constitution doesn't agree. The government has to have (a) cause, (b) due process and (c) the right for an open defense in a public court

              That's an argument for challenging the law in court. Until that's done, it's legal. That's how the system works. Granted that in this case it's particularly hard to challenge because it's difficult to prove harm when the harm is hidden behind a veil of national security secrecy, but that doesn't change the fact that it is legal until someone manages to challenge it.

    • by msauve ( 701917 )
      But if they document it, it's not secret, is it?
    • maybe I missed it but I could not see anywhere in that document that shows they secretly scan email traffic? It seems to outline the legal process and means to access an account after law enforcement serve a warrant.
    • They could have just said "We have never engaged in the secret scanning of email traffic." Period. End of statement. But they decided to qualify it further. Draw your own conclusions.
  • by p51d007 ( 656414 ) on Tuesday October 04, 2016 @08:43PM (#53014965)
    They just copy EVERY email and send it to them!
  • gag orders (Score:5, Interesting)

    by TheGratefulNet ( 143330 ) on Tuesday October 04, 2016 @08:43PM (#53014967)

    we can't trust any company, not large and not even small.

    to 'play ball' in today's USA, you have to follow orders. and one of those orders is 'do not admit to following orders'.

    so, all this is just talk. 100% unverifyable talk. maybe its true, but likely - based on what we now know (that we once just assumed but didn't know for sure) - the spooks own the internet and they are not showing any signs of giving it back.

    look at the wordplay and parse it out. WE don't scan emails. ok, maybe the 'we' is not active, but does ANYONE scan them on your network? how about transit networks?

    so many holes to exploit. and again, to stay in business, you can't say no to Pappa. not in the US, at least.

    I don't believe apple, either, when they appeal to 'privacy' and that they don't disclose backdoors to gov orgs. totally unprovable, just 'take tims word for it'. yeah sure. right.

    the only thing you can assume is that every network is bugged and every cpu has backdoors (think: intel ME).

    • Re:gag orders (Score:4, Insightful)

      by ShanghaiBill ( 739463 ) on Tuesday October 04, 2016 @09:30PM (#53015127)

      we can't trust any company, not large and not even small.

      You seem to be implying that small companies are generally more trustworthy. That is nonsense. Big companies have a lot more to lose by betraying the public's trust, and they have more legal oversight. When small companies cheat and betray, it doesn't make the headlines.

      • by Anonymous Coward

        You seem to be implying that small companies are generally more trustworthy.

        Not the original poster, but yes and no. Part of the "trustworthy" comes from the notion that the government is designed around acting with other large organizations. So, it targets the larger organizations to capture most of the traffic, attack most the problem. etc And the media, like /., respond by also seeking out the big players because their involvement would have the widest detectable impact. Hence, smaller companies are

        • by tlhIngan ( 30335 )

          Big companies have a lot more financial buffer to suffer any "betray[al of] the public's trust". Look at Apple and "The Fappening"?

          Nothing happened with that. Because it was not Apple's fault.. There was no hack of Apple or iTunes.

          The Fappening was traced to basically a hacked account - either reused credentials, or someone used a really weak password.

          Neither of which Apple could really protect against without making it completely unusable for everyone else.

          In fact, it appears most iTunes/iCloud/Apple hack

  • by dark_requiem ( 806308 ) on Tuesday October 04, 2016 @08:43PM (#53014971)

    I want to be absolutely clear that we have never worked with any government agency from any country to create a backdoor in any of our products or services. We have also never allowed access to our servers. And we never will.

    Yeah, that's reassuring. Except, what's being described here falls under neither of those categories. It's not a backdoor, and it doesn't require providing access to Apple's servers. So, Apple is blithely sidestepping the issue with careful phrasing, denying only activities about which they were not asked, while artfully ignoring those about which they were.

    • by Anonymous Coward

      The truth is bad for business. It doesn't matter how many geeks call them out on their lies, the majority believe, so business rolls along, and we all get scanned.

      There is no changing this. We will *never* have the privacy we once had. It is gone for good. Expect even more government intrusion...it will seep in just as steadily as all forms of tech seep in to our lives. THERE IS NO ESCAPE, there is only adaptation.

    • by AHuxley ( 892839 )
      So from the PRISM, decryption, plain text access days we are back to very careful words again.
      Does that depend on what scanning legally is? On what "email traffic" on some part of the network is this decade?
      Some national security related requests are more legal than others?
      If the gov knows to ask in a different way to the right staff it would never be self discovered?
      Is that big new gov server really a per device or per service backdoor or trapdoor?
    • So, Apple is blithely sidestepping the issue with careful phrasing, denying only activities about which they were not asked, while artfully ignoring those about which they were.

      Indeed. If Apple is not scanning all the emails, they really need to issue a clear categorical denial immediately. Otherwise, Apple's statement should be taken as an admission of guilt. If you use Apple's email client, you should assume the NSA and FBI are reading everything you write.

      • If you use Apple's email client, you should assume the NSA and FBI are reading everything you write.

        "If you use....email, you should assume..."
      • by guruevi ( 827432 )

        You mean Apple's e-mail service. The e-mail client doing something nefarious like forwarding e-mails to the NSA would be quite noticeable. The solution, as always, is to decentralize and do your own e-mail service. It's not that hard.

    • Or at least that's what they call it here in DC.

  • I believe them, mostly because they realize the value of the data, and they don't want competition on the spying.

  • It looks like it's twitching almost like a wink, when you say that.
  • PRISM (Score:5, Informative)

    by SumDog ( 466607 ) on Tuesday October 04, 2016 @09:25PM (#53015103) Homepage Journal

    Did everyone forget about PRISM? I feel like everyone forgot about PRISM.

    The PRISM leak states that every one of this big companies, MS, Google, Facebook, have dedicated software hooks for searching any record, anytime.

    Or is Edward Snowden is limited hangout, and everything he said coming straight from the CIA?

    • by nnull ( 1148259 )
      People have a short memory.
    • Re:PRISM (Score:5, Informative)

      by freeze128 ( 544774 ) on Tuesday October 04, 2016 @11:03PM (#53015377)
      I remember PRISM. I also remember that when its existence was leaked, Google specifically went out of their way to ENCRYPT traffic between their data centers to prevent the PRISM from capturing any useful data. Before the leak, Google was unaware that any data capture was going on.

      PRISM wasn't a Google initiative, it was an NSA initiative.
      • Sure it was an NSA initiative. That doesn't mean Google wasn't just posturing when they "went out of their way to encrypt traffic". Encrypting doesn't really do anything if you are already complying with the NSA with other tools. Lets consider an alternative - Google began encrypting their intranet traffic because they became concerned hackers could reveal this compliance easily prior to the encryption.
  • Publicly traded companies like these are required by law to do what is best for it's shareholders. Since they are not bound by law to tell the truth, they could simply be lying because not lying could hurt them financially.

    • by donaldm ( 919619 )

      Publicly traded companies like these are required by law to do what is best for it's shareholders. Since they are not bound by law to tell the truth, they could simply be lying because not lying could hurt them financially.

      You are quite right, lying cannot hurt you financially but being caught lying can.

      The problem you have is many people adopt the attitude of "I have nothing to hide". Sad really, I guess George Orwell was only out by about 40 years.

  • Sure, right (Score:5, Funny)

    by AndyKron ( 937105 ) on Tuesday October 04, 2016 @10:27PM (#53015267)
    Nope, never been approached. Yahoo was the ONLY one. Yup.
  • by account_deleted ( 4530225 ) on Tuesday October 04, 2016 @10:46PM (#53015331)
    Comment removed based on user account deletion
  • by hcs_$reboot ( 1536101 ) on Tuesday October 04, 2016 @11:46PM (#53015495)
    After this news, Yahoo will have much less accounts that can be hacked.
    More seriously, how come (especially in Japan) so may people keep using Yahoo is a big mistery.
  • by fatp ( 1171151 ) on Wednesday October 05, 2016 @12:48AM (#53015615) Journal
    ... like Yahoo's...

    Ours are much more advance and stealthy
  • No one can be held accountable for for naughty things that might have been said in their Yahoo email because their password was compromised.
  • Yeah right.

  • To say they don't do it in the same way as Yahoo is not the same as completely denying cooperation. I've never heard a a denial from these companies, for example, that they might feed all information sources to either an on-site or off-site cluster that government entities have access to. I've always watched the wording on statements and they seem to be carefully crafted to not lie, and to only deny very specific suspicions.
  • I got a list of all the emails for the U.S. government and tack it on to .cc in all my emails. I don't want anybody in U.S. government to be left out.

  • Wait, does this imply that there are people who use yahoo mail as anything other than a spam trap?
  • The clueless (and mostly co-opted) Fourth Estate will dutifully parrot the statements from all the various spokespersons and maybe even the CEOs... who intentionally don't know shit.

    The CTOs and their senior staffs on the other hand...
  • ..from overpaid Yahoo CEO Marissa Mayer, net worth approximately $300m.

  • The faster competitors team up to answer concerns of those that feed their profit, the more of a lie their answer is.

  • PRISM showed that they lie.

If it wasn't for Newton, we wouldn't have to eat bruised apples.

Working...