Revealed: 'Collect It All' NSA Targets Those Seeking Web Privacy

October 22, 2020News

Internet users who use online privacy tools or read certain websites may themselves become targets of NSA surveillance, according to a new investigation by public broadcasting outlets in Germany published on Thursday.

Citing documents that refer to “deep packet inspection” rules used by the NSA for its so-called “XKeyscore” program to determine what targets are selected for surveillance and how, the investigation (versions: German | English) reveals that people who seek out or use online privacy tools—including things like TOR, a network tool that provides digital anonymity and minimizes exposure to possible surveillance—may be targeted simply for making those efforts.

Other platforms targeted by the program include the LINUX open source operating system as well as privacy and encryption services such as HotSpotShield, FreeNet, Centurian, FreeProxies.org, MegaProxy, privacy.li and an anonymous email service called MixMinion. According to the reporting, the NSA characterized those who would use such services as “extremists,” which sparked spirited outrage on social media as the story broke.

As part of its investigation, the researchers examined a piece of computer code found on a server maintained by Sebastian Hahn, a German student of computer science who manages a node on the TOR network. The discovery showed not only that Hahn was a target of NSA surveillance, but also the previously unknown lengths the agency has gone in targeting users of such tools.

Examination of the XKeyscore rules contained in the code (now published for the first time) goes beyond previous reporting by the Guardian newspaper about the program and, according to the English version of the new reporting, “provides a window into the actual instructions given to NSA computers” conducting the surveillance.

“The top secretsource code published here,” the report continues, “indicates that the NSA is making a concerted effort to combat any and all anonymous spaces that remain on the internet. Merely visiting privacy-related websites is enough for a user’s IP address to be logged into an NSA database.”

When asked for his reaction to the findings, Roger Dingledine, an MIT alumnus who spearheads the TOR project, told the investigative team:

On Thursday, as news of the story spread around the world, Hahn himself answered questions about the new developments surrounding XKeyscore and his role in the investigation.

SCROLL TO CONTINUE WITH CONTENT

Asked how it felt to be in the company of German Chancellor Angela Merkel as a target of NSA surveillance, Hahn responded: “It is a different level of surveillance, thus I dislike this comparison. Every German citizen is subject of surveillance on a daily basis, without anyone mentioning it. My personal case might be good for headlines; the whole dimension and the missing protection measures, especially for less technical experienced people is the real scandal. I am shocked how easily innocent people can get into the focus of surveillance. Intelligence agency [sic] take that for granted.”

As the German public broadcaster Das Erste summarizes, the investigation into the code and the NSA targeting it represents revealed: “Merely searching the web for the privacy-enhancing software tools outlined in the XKeyscore rules causes the NSA to mark and track the IP address of the person doing the search. Not only are German privacy software users tracked, but the source code shows that privacy software users worldwide are tracked by the NSA.”

Cory Doctorow, writing for Boing Boing in a piece aptly titled, ‘If you read Boing Boing, the NSA considers you a target for deep surveillance,’ says the reporting contains several key revelations. He writes:

In addition, and not for the first time, the source of leak has the potential to be an explosive development all its own. According to Doctorow:

And technology expert and privacy advocate Bruce Shreier agreed, writing: “I do not believe that this came from the Snowden documents […] I think there’s a second leaker out there.”

________________________________________