Google: don't expect privacy when sending to Gmail

Ronald0 · Aug 15, 2013

Critics call revelation 'a stunning admission' as Google makes claim in court filing in attempt to head off class action lawsuit

People sending email to any of Google's 425 million Gmail users have no "reasonable expectation" that their communications are confidential, the internet giant has said in a court filing.

Consumer Watchdog, the advocacy group that uncovered the filing, called the revelation a "stunning admission." It comes as Google and its peers are under pressure to explain their role in the National Security Agency's (NSA) mass surveillance of US citizens and foreign nationals.

"Google has finally admitted they don't respect privacy," said John Simpson, Consumer Watchdog's privacy project director. "People should take them at their word; if you care about your email correspondents' privacy, don't use Gmail."

Google set out its case last month in an attempt to dismiss a class action lawsuit that accuses the tech giant of breaking wire tap laws when it scans emails sent from non-Google accounts in order to target ads to Gmail users.

That suit, filed in May, claims Google "unlawfully opens up, reads, and acquires the content of people's private email messages". It quotes Eric Schmidt, Google's executive chairman: "Google policy is to get right up to the creepy line and not cross it."

The suit claims: "Unbeknown to millions of people, on a daily basis and for years, Google has systematically and intentionally crossed the 'creepy line' to read private email messages containing information you don't want anyone to know, and to acquire, collect, or mine valuable information from that mail."

In its motion to dismiss the case, Google said the plaintiffs were making "an attempt to criminalise ordinary business practices" that have been part of Gmail's service since its introduction. Google said "all users of email must necessarily expect that their emails will be subject to automated processing."

According to Google: "Just as a sender of a letter to a business colleague cannot be surprised that the recipient's assistant opens the letter, people who use web-based email today cannot be surprised if their communications are processed by the recipient's ECS [electronic communications service] provider in the course of delivery."
Click to expand...

Not only is google reading confidential emails, they are also calling it ordinary business practise. Private businesses are spying on others and some people seem to think that the government doesn't.

waltky · Mar 21, 2014

Google improving encryption for Gmail...

Google enhances encryption technology for email
Mar 20,`14 WASHINGTON (AP) -- Google has enhanced the encryption technology for its flagship email service in ways that will make it harder for the National Security Agency to intercept messages moving among the company's worldwide data centers.

Among the most extraordinary disclosures in documents leaked by former NSA systems analyst Edward Snowden were reports that the NSA had secretly tapped into the main communications links that connect Yahoo and Google data centers around the world. Google, whose executive chairman, Eric Schmidt, said in November that he was outraged over the practice, didn't mention the NSA in Thursday's announcement, except in a veiled reference to "last summer's revelations." The change affects more than 425 million users of Google's Gmail service. Yahoo has promised similar steps for its email service by this spring.

Google and other technology companies have been outspoken about the U.S. government's spy programs. The companies are worried more people will reduce their online activities if they believe almost everything they do is being monitored by the government. A decline in Internet use could hurt the companies financially by giving them fewer opportunities to show online ads and sell other services. "Your email is important to you, and making sure it stays safe and always available is important to us," Nicolas Lidzborski, Gmail's security engineering lead, wrote in a blog post. Lidzborski said that all Gmail messages a consumer sends or receives are now encrypted. "This ensures that your messages are safe not only when they move between you and Gmail's servers, but also as they move between Google's data centers - something we made a top priority after last summer's revelations," Lidzborski wrote.

The NSA has said it only focuses on targets with foreign intelligence value. A secret Jan. 9, 2013, accounting indicated that NSA sends millions of records every day from Yahoo and Google internal networks to data warehouses at the NSA's Fort Meade, Md., headquarters, according to documents released by Snowden and obtained by The Washington Post last year. The NSA's principal tool to exploit the Google and Yahoo data links is a project called MUSCULAR, operated jointly with the agency's British counterpart, GCHQ. NSA and GCHQ are copying entire data flows across fiber-optic cables that carry information between the data centers of the Silicon Valley giants, the Post reported.

President Barack Obama has promised to consider changing some of the surveillance programs that Snowden disclosed. But the type of surveillance Google is trying to prevent by improving its encryption technology is not among the reforms Obama has discussed. Google and other technology companies provide information to the NSA and other government agencies when required by a court order. "Google is making it tougher for the government to spy on its customers without going through Google," said Chris Soghoian, a senior policy analyst at the American Civil Liberties Union. "There are still ways for NSA to spy on the bad guys," Soghoian said. "But this will prevent them from spying on 500 million people at once."

http://ap.stripes.com/dynamic/stories/U/US_NSA_SURVEILLANCE?SITE=DCSAS&SECTION=HOME&TEMPLATE=DEFAULT
Click to expand...

See also:

Microsoft says it snooped on Hotmail to track leak
Mar 20,`14 -- Microsoft Corp., which has skewered rival Google Inc. for going through customer emails to deliver ads, acknowledged Thursday it had searched emails in a blogger's Hotmail account to track down who was leaking company secrets.

John Frank, deputy general counsel for Microsoft, which owns Hotmail, said in a statement Thursday that the software company "took extraordinary actions in this case." In the future, he said, Microsoft would consult an outside attorney who is a former judge to determine if a court order would have allowed such a search. The case involves former employee Alex Kibkalo, a Russian native who worked for Microsoft as a software architect in Lebanon. According to an FBI complaint alleging theft of trade secrets, Microsoft found Kibkalo in September 2012 after examining the Hotmail account of the blogger with whom Kibkalo allegedly shared proprietary Microsoft code. The complaint filed Monday in federal court in Seattle did not identify the blogger. "After confirmation that the data was Microsoft's proprietary trade secret, on September 7, 2012, Microsoft's Office of Legal Compliance (OLC) approved content pulls of the blogger's Hotmail account," says the complaint by FBI agent Armando Ramirez.

The search of the email account occurred months before Microsoft provided Ramirez with the results of its internal investigation in July 2013. The email search uncovered messages from Kibkalo to the blogger containing fixes for the Windows 8 RT operating system before they were released publicly. The complaint alleges Kibkalo also shared a software development kit that could be used by hackers to understand more about how Microsoft uses product keys to activate software. Besides the email search, Microsoft also combed through instant messages the two exchanged that September. Microsoft also examined files in Kibkalo's cloud storage account, which until last month was called SkyDrive. Kibkalo is accused of using SkyDrive to share files with the blogger.

Kibkalo has since relocated to Russia, the FBI complaint says. Frank said in his statement that no court order was needed to conduct the searches. "Courts do not issue orders authorizing someone to search themselves," he said. "Even when we have probable cause, it's not feasible to ask a court to order us to search ourselves." Hotmail's terms of service includes a section that says, "We may access or disclose information about you, including the content of your communications, in order to ... protect the rights or property of Microsoft or our customers."

Redmond, Wash.-based Microsoft has taken a defiant stand against intrusions of customer privacy, in the wake of National Security Agency systems analyst Edward Snowden's revelations of government snooping into online activities. General counsel Brad Smith said in a blog post in December that Microsoft was "especially alarmed" at news reports of widespread government cyber-spying. Microsoft also has a long-running negative ad campaign called "Scroogled," in which it slams Google for scanning "every word in every email" to sell ads, saying that "Google crosses the line."

http://ap.stripes.com/dynamic/stori...VACY?SITE=DCSAS&SECTION=HOME&TEMPLATE=DEFAULT
Click to expand...

waltky · Sep 12, 2014

Granny don't use Gmail, `cause she don't want folks googlin' at her...

Gmail Hack: 5 Million Passwords Get Posted on Russian Forum
Sep 11, 2014 — Nearly 5 million Google user names and passwords were posted on a Russian Bitcoin forum this week. Though the passwords have since been removed, the information could have been public long enough to allow hackers access to Gmail and other services using a Google login.

Other email systems have also suffered public user data leaks on Russian Internet services, though some of the data has been reported as outdated. Google is not admitting a recent hack, and reports are claiming that the posted login information had been gathered over years, from phishing exploits. The security issue will most likely impact users who have retained the same password for extended periods of time – and those who use the same login information on multiple systems.

Several media outlets that reported the leak directed readers to isleaked.com, a purported email breach verification system. Blogger James Watt claims the site may in fact be a “honey pot” – a hacker trap to gather personal login information from unknowing users. “All of the news articles are telling people to go to isleaked.com to check their addresses," Watt wrote on his blog. "However, I don’t think any of the media has vetted this website and could possibly be sending millions of people to a website run by people harvesting email addresses for spam or other hacking activities. It’s even possible that isleaked.com is run by the very people who leaked the passwords in the first place. Why do I think this? Because isleaked.com was registered on the 8th, 2 days before the story broke anywhere else.”

Rather than trust an online tool to determine if your account information was posted in the Russian leak or not, you can simply try to login to your Google account as usual. If your account was on the list, Google will redirect your login to a password reset system in order for you to regain access to your account.

With ongoing concerns from frequent private data hacks, security experts are advising consumers abide by these precautions:
Click to expand...

See also:

Justice Dept. seeks new tool against data fraud
Sep 12,`14: WASHINGTON (AP) -- Working to combat an increasingly lucrative crime that crosses national boundaries, Justice Department officials are pressing for a new law to help them prosecute criminals overseas who traffic in stolen credit cards.

Authorities say the current law is too weak because it allows people in other countries to avoid prosecution if they buy and sell stolen card data entirely outside the United States. The Justice Department is asking Congress to amend the law to make it illegal for an international criminal to possess, buy or sell a stolen credit card issued by a U.S. bank no matter where in the world the transaction occurs.

Though prosecutors do have existing tools and have brought international cybertheft cases in the past year, the Justice Department says a new law is needed at a time when criminals operating largely in Eastern Europe are able to gobble up millions of stolen credit card numbers and commit widespread fraud in a matter of mouse clicks. Companies and banks, too, have been stung by faraway hackers who have siphoned away personal information. "It's a very simple fix, and it makes perfect sense to fix it," Assistant Attorney General Leslie Caldwell, the Justice Department's criminal division chief, said in an interview. "This is a huge law enforcement issue when it's our financial institutions and our citizens' credit card data that's being stolen ... by overseas people who never set foot in the United States."

The problem, though certainly not new, has evolved to the point that "a lot of these folks who are trafficking in these devices are overseas," Caldwell said. The issue is more than hypothetical, Caldwell told a Senate subcommittee, as law enforcement agencies have identified criminals in other nations who are selling large quantities of stolen credit cards without passing the business through the U.S.

Officials say the crime is facilitated by online marketplaces where participants, cloaked in the anonymity of the Internet and trading data with the ease of eBay commodities, advertise, buy and sell credit card information stolen in data breaches. The credit cards are valued at different prices, generally depending on the balance, and swapped on web forums that often operate in foreign languages and are primarily hosted in non-U.S. countries.

MORE
Click to expand...

garyd · Sep 12, 2014

So basically what they're saying is what anyone with a lick of sense should have known for years, to wit, if you don't want anyone to see it don't put it online. Any security system man can invent man can crack.

Steady Pie · Sep 12, 2014

Ronald0 said: ↑

Not only is google reading confidential emails, they are also calling it ordinary business practise. Private businesses are spying on others and some people seem to think that the government doesn't.
Click to expand...

That's life - you should always assume that they'll violate your privacy, because they almost certainly will.

If you have a bit of time, encrypt your message. Then it doesn't matter if they look at it, you've taken away their power to do so, even if they want to.

waltky said: ↑

Granny don't use Gmail, `cause she don't want folks googlin' at her...

Gmail Hack: 5 Million Passwords Get Posted on Russian Forum
Sep 11, 2014 — Nearly 5 million Google user names and passwords were posted on a Russian Bitcoin forum this week. Though the passwords have since been removed, the information could have been public long enough to allow hackers access to Gmail and other services using a Google login.

See also:

Justice Dept. seeks new tool against data fraud
Sep 12,`14: WASHINGTON (AP) -- Working to combat an increasingly lucrative crime that crosses national boundaries, Justice Department officials are pressing for a new law to help them prosecute criminals overseas who traffic in stolen credit cards.
Click to expand...

Anything that involves a computer with a connection to the internet is at risk, even computers without a connection might have been hacked in person since you last used them.

There's no such thing as complete security in the computer world. Accept it, choose a level of protection you're comfortable with, and move on.

Oh, and always assume that an online service is perfectly willing to give over all your private information to the state. There's no protection against that even if they claim otherwise.

Log in or Sign up

Google: don't expect privacy when sending to Gmail

Ronald0 New Member

waltky Well-Known Member

waltky Well-Known Member

garyd Well-Known Member

Steady Pie Well-Known Member Past Donor

Share This Page

Log in or Sign up

Google: don't expect privacy when sending to Gmail

Ronald0 New Member

waltky Well-Known Member

waltky Well-Known Member

garyd Well-Known Member

Steady Pie Well-Known Member Past Donor

Share This Page

Useful Searches