The incredible U.S. military spy drone that’s so powerful it can see what type of phone you’re carrying from 17,500ft

 Articles of Interest, Crimes & Criminal Activity (Organized Crime, Narcotics, Predators, Cyber Crime, Cyber Stalking, UnSolved), Investigative, Law Enforcement, National security, Terrorism, Cyber Terrorism & Related Crimes, Science & Related Space Technology, Technology & Digital Security, U.S. MARINES & Military  Comments Off
May 162013
 

The incredible U.S. military spy drone that’s so powerful it can see what type of phone you’re carrying from 17,500ft

Daily Mail / UK
by Damian Gayle
January 28, 2013

  • The ARGUS-IS can view an area of 15 sq/miles in a single image
  • Its zoom capability can detect an object as small as 6in on the ground
  • Developed by BAE as part of a $18million DARPA project
  • System works by stringing together 368 digital camera chips

A sinister airborne surveillance camera gives the U.S. military the ability to track movements in an entire city like a real-time Google Street View. The ARGUS-IS array can be mounted on unmanned drones to capture an area of 15 sq/miles in an incredible 1,800MP – that’s 225 times more sensitive than an iPhone camera. From 17,500ft the remarkable surveillance system can capture objects as small as 6in on the ground and allows commanders to track movements across an entire battlefield in real time.

 

Beat that, Google: An image taken from 17,500ft by the U.S. military's ARGUS-IS array, which can capture 1,800MP zoomable video feeds of an entire medium-sized city in real time

Beat that, Google: An image taken from 17,500ft by the U.S. military’s ARGUS-IS array, which can capture 1,800MP zoomable video feeds of an entire medium-sized city in real time

 

‘It is important for the public to know that some of these capabilities exist,’ said Yiannis Antoniades, the BAE engineer who designed the system, in a recent PBS broadcast. The aerospace and weapons company developed the ARGUS-IS array as part of a $18.5million project funded by the Pentagon’s Defense Advanced Research Projects Agency (Darpa).

In Greek mythology, Argus Panoptes, guardian of the heifer-nymph Io and son of Arestor, was a primordial giant whose epithet, ‘Panoptes’, ‘all-seeing’, led to his being described with multiple, often one hundred, eyes. Like the Titan of myth, the Pentagon’s ARGUS-IS (a backronym standing for Autonomous Real-time Ground Ubiquitous Surveillance-Imaging System) works by stringing together an array of 368 digital camera imaging chips. An airborne processor combines the video from these chips to create a single ultra-high definition mosaic video image which updates at up to 15 frames a second.

 

All-seeing: This graphic illustrates how the U.S. military's ARGUS-IS array links together images streamed from hundreds of digital camera sensors to watch over a huge expanse of terrain in real time

All-seeing: This graphic illustrates how the U.S. military’s ARGUS-IS array links together images streamed from hundreds of digital camera sensors to watch over a huge expanse of terrain in real time

 

What it looks like: The ARGUS-IS (a backronym standing for Autonomous Real-time Ground Ubiquitous Surveillance-Imaging System) strings together an array of 368 digital camera imaging chips into a single unit

What it looks like: The ARGUS-IS (a backronym standing for Autonomous Real-time Ground Ubiquitous Surveillance-Imaging System) strings together an array of 368 digital camera imaging chips into a single unit

 

That tremendous level of detail makes it sensitive enough to not only track people moving around on the ground thousands of feet below, but even to see what they are doing or carrying. The ARGUS array sends its live feed to the ground where it connects to a touch-screen command room interface. Using this, operators can zoom in to any area within the camera’s field of view, with up to 65 zoom windows open at once. Each video window is electronically steerable independent of the others, and can either provide continuous imagery of a fixed area on the ground or be designated to automatically keep a specified target in the window.

 

Sinister: The system tracks all moving objects in its field of view, highlighting them with coloured boxes, allowing operators to track movements across an area as and when they happen

Sinister: The system tracks all moving objects in its field of view, highlighting them with coloured boxes, allowing operators to track movements across an area as and when they happen

 

The system automatically tracks any moving object it can see, including both vehicles and individuals on foot, highlighting them with coloured boxes so they can be easily identified. It also records everything, storing an approximate million terabytes of data a day – the equivalent of 5,000 hours of high-definition video footage. ‘So you can go back and say I’d like to see what happened at this particular location three days, two hours [and] four minutes ago, and it will actually show you what happened as if you were watching it live,’ said Mr Antoniades.

 

iPad next? The feed from the ARGUS is transmitted to a touch-screen command and control interface

iPad next? The feed from the ARGUS is transmitted to a touch-screen command and control interface

 

Windows: Operators can open a window to zoom in to any area within the camera's field of view, with up to 65 open and running at once

Windows: Operators can open a window to zoom in to any area within the camera’s field of view, with up to 65 open and running at once

 

Total surveillance: The view of Quantico, Virginia, highlighted in the PBS film

Total surveillance: The view of Quantico, Virginia, highlighted in the PBS film

 

For the PBS programme reporting the technology, Mr Antoniades showed reporters a feed over the city of Quantico, Virginia, that was recorded in 2009. The technology has been in development since 2007 but authorities are staying tight lipped about whether it has yet been deployed on the battlefield. Dr Steven Wein, director of optical sensor systems at BAE Systems, said: ‘The ARGUS-IS system overcomes the fundamental limitations of current airborne surveillance systems. ‘Very high-resolution imaging systems required for vehicle and dismount tracking typically have a “soda-straw” view that is too small for persistent coverage. ‘Existing wide-area systems have either inadequate resolution or require multiple passes or revisits to get updates.’ BAE are now said to be working on an infra-red version of ARGUS that would allow commanders total surveillance of an area even at night.

 

Direct Link:  http://www.dailymail.co.uk/sciencetech/article-2269563/The-U-S-militarys-real-time-Google-Street-View-Airborne-spy-camera-track-entire-city-1-800MP.html

Bank Hacking Was the Work of Iranians, Officials Say

 Articles of Interest, Crimes & Criminal Activity (Organized Crime, Narcotics, Predators, Cyber Crime, Cyber Stalking, UnSolved), Firearms, Weapons & Personal Safety, National security, Terrorism, Cyber Terrorism & Related Crimes, Science & Related Space Technology, Social Media, Technology & Digital Security  Comments Off
Jan 142013
 
James A. Lewis of the Center for Strategic and International Studies in Washington believes that recent online attacks on American banks have been the work of Iran.

Bank Hacking Was the Work of Iranians, Officials Say

The New York Times
by Nicole Perlroth & Quentin Hardy
January 8, 2013
SAN FRANCISCO —

The attackers hit one American bank after the next. As in so many previous attacks, dozens of online banking sites slowed, hiccupped or ground to a halt before recovering several minutes later.

James A. Lewis of the Center for Strategic and International Studies in Washington believes that recent online attacks on American banks have been the work of Iran.

James A. Lewis of the Center for Strategic and International Studies in Washington believes that recent online attacks on American banks have been the work of Iran.

But there was something disturbingly different about the wave of online attacks on American banks in recent weeks. Security researchers say that instead of exploiting individual computers, the attackers engineered networks of computers in data centers, transforming the online equivalent of a few yapping Chihuahuas into a pack of fire-breathing Godzillas.

The skill required to carry out attacks on this scale has convinced United States government officials and security researchers that they are the work of Iran, most likely in retaliation for economic sanctions and online attacks by the United States.

“There is no doubt within the U.S. government that Iran is behind these attacks,” said James A. Lewis, a former official in the State and Commerce Departments and a computer security expert at the Center for Strategic and International Studies in Washington.

Mr. Lewis said the amount of traffic flooding American banking sites was “multiple times” the amount that Russia directed at Estonia in a monthlong online assault in 2007 that nearly crippled the Baltic nation.

American officials have not offered any technical evidence to back up their claims, but computer security experts say the recent attacks showed a level of sophistication far beyond that of amateur hackers. Also, the hackers chose to pursue disruption, not money: another earmark of state-sponsored attacks, the experts said.

“The scale, the scope and the effectiveness of these attacks have been unprecedented,” said Carl Herberger, vice president of security solutions at Radware, a security firm that has been investigating the attacks on behalf of banks and cloud service providers. “There have never been this many financial institutions under this much duress.”

Since September, intruders have caused major disruptions to the online banking sites of Bank of America, Citigroup, Wells Fargo, U.S. Bancorp, PNC, Capital One, Fifth Third Bank, BB&T and HSBC.

They employed DDoS attacks, or distributed denial of service attacks, named because hackers deny customers service by directing large volumes of traffic to a site until it collapses. No bank accounts were breached and no customers’ money was taken.

By using data centers, the attackers are simply keeping up with the times. Companies and consumers are increasingly conducting their business over large-scale “clouds” of hundreds, even thousands, of networked computer servers.

These clouds are run by Amazon and Google, but also by many smaller players who commonly rent them to other companies. It appears the hackers remotely hijacked some of these clouds and used the computing power to take down American banking sites.

“There’s a sense now that attackers are crafting their own private clouds,” either by creating networks of individual machines or by stealing resources wholesale from poorly maintained corporate clouds, said John Kindervag, an analyst at Forrester Research.

How, exactly, attackers are hijacking data centers is still a mystery. Making matters more complex, they have simultaneously introduced another weapon: encrypted DDoS attacks.

Banks encrypt customers’ online transactions for security, but the encryption process consumes system resources. By flooding banking sites with encryption requests, attackers can further slow or cripple sites with fewer requests.

A hacker group calling itself Izz ad-Din al-Qassam Cyber Fighters has claimed in online posts that it was responsible for the attacks.

The group said it attacked the banks in retaliation for an anti-Islam video that mocked the Prophet Muhammad, and pledged to continue its campaign until the video was scrubbed from the Internet. It called the campaign Operation Ababil, a reference to a story in the Koran in which Allah sends swallows to defeat an army of elephants dispatched by the king of Yemen to attack Mecca in A.D. 571.

But American intelligence officials say the group is actually a cover for Iran. They claim Iran is waging the attacks in retaliation for Western economic sanctions and for a series of cyberattacks on its own systems. In the last three years, three sophisticated computer viruses — called Flame, Duqu and Stuxnet — have hit computers in Iran. The New York Times reported last year that the United States, together with Israel, was responsible for Stuxnet, the virus used to destroy centrifuges in an Iranian nuclear facility in 2010.

“It’s a bit of a grudge match,” said Mr. Lewis of the Center for Strategic and International Studies.

(On Wednesday, the Iranian government denied involvement in the cyberattacks. “Unlike the United States, which has per reports in the media given itself the license to engage in illegal cyber-warfare against Iran, Iran respects the international law and refrains from targeting other nations’ economic or financial institutions,” wrote Alireza Miryousefi, first secretary of the Iranian mission to the United Nations, in an e-mail.)

Researchers at Radware who investigated the attacks for several banks found that the traffic was coming from data centers around the world. They discovered that various cloud services and public Web hosting services had been infected with a particularly sophisticated form of malware, called Itsoknoproblembro, that was designed to evade detection by antivirus programs. The malware has existed for years, but the banking attacks were the first time it used data centers to attack external victims.

Botnets, or networks of individual infected slave computers, can typically be traced back to a command and control center, but security experts say Itsoknoproblembro was engineered to make it very difficult to tie it to one party. Security researchers have come up with a new name for servers infected with Itsoknoproblembro: they call them “bRobots.”

In an amateur botnet, the command and control center can be easily identified, but Mr. Herberger said it had been nearly impossible to do so in this case, suggesting to him that “the campaign may be state-sponsored versus amateur malware.”

Attackers used the infected servers to fire traffic simultaneously at each banking site until it slowed or collapsed.

By infecting data centers instead of computers, the hackers obtained the computing power to mount enormous denial of service attacks. One of the banks had 40 gigabits of Internet capacity, Mr. Herberger said, a huge amount when you consider that a midsize business may only have one gigabit. But some banks were hit with a sustained flood of traffic that peaked at 70 gigabits.

Mr. Herberger declined to say which cloud service providers had been compromised, citing nondisclosure agreements with Radware’s clients, but he said that each new bank attack provided evidence that more data centers had been infected and exploited.

The attackers said last week that they had no intention of halting their campaign. “Officials of American banks must expect our massive attacks,” they wrote. “From now on, none of the U.S. banks will be safe.”

Direct Link:   http://www.nytimes.com/2013/01/09/technology/online-banking-attacks-were-work-of-iran-us-officials-say.html?pagewanted=1&_r=1

 

Computer hacking for 8-year-olds

 Articles of Interest, Crimes & Criminal Activity (Organized Crime, Narcotics, Predators, Cyber Crime, Cyber Stalking, UnSolved), Firearms, Weapons & Personal Safety, Law Enforcement, National security, Terrorism, Cyber Terrorism & Related Crimes, Science & Related Space Technology, Social Media, Technology & Digital Security  Comments Off
Aug 102012
 

Computer hacking for 8-year-olds

 

CNN
by Heather Kelly
July 31, 2012

 

Kids learn how to search for vulnerabilities in mobile games at Def Con 20 in Las Vegas

 

Las Vegas (CNN)

The hacker who goes by the pseudonym CyFi won’t share her real name and declines to be photographed without her signature aviator sunglasses.

At the annual Def Con hacking conference here Friday, Gen. Keith Alexander, director of the National Security Agency and head of the U.S. Cyber Command, brought CyFi on stage during his keynote address and called her “the most important person for our future.”

CyFi is 11 years old.

For the second year in a row, Def Con organizers included a full schedule of Def Con Kids programs for beginner hackers ages 8 to 18. The children and teens, who must be accompanied by a parent, learned how to pick locks, competed to find the most bugs in mobile apps and learned about digital forensics by investigating a mock crime scene in a hotel room. Some skilled young hackers also taught classes and gave talks.

To kick off the conference, Def Con founder and veteran hacker Jeff Moss welcomed the kids with a talk on the ethics of hacking and rules for how to stay out of trouble with the law.

“I think it’s harder for you guys now than it was for me,” Moss told a room of kids and their parents.

Moss started the conference in 1992 because he wanted an open place for hackers to meet in person and share information. Twenty years later, the young attendees from Def Con’s early years have grown up, established careers and started families.

Now they bring their own children to Def Con to soak up the knowledge and culture, but this new generation faces a different set of rules and a maze of new laws — not to mention parents who are savvy enough to know what they’re up to and keen on keeping their progeny out of trouble.

 

Navigating the law

“I just want to open it, but don’t want to see what’s on the other side,” a young woman told and Moss and Lauren Gelman, an attorney who works in the field of Internet law and policy.

Many of Def Con Kids’ school-age hackers are driven by the challenge of finding vulnerabilities in security systems and networks, not stealing information or money, or selling their knowledge to third parties. These “white-hat” hackers report any issues they find directly to the developers or relevant companies so they can be more secure.

But good intentions aren’t always enough when it comes to staying out of legal trouble.

When Moss was starting out, computer technology wasn’t widely understood by law enforcement, and laws weren’t yet in place that classified his actions as illegal.

“Technically, I wasn’t committing any crimes. I wasn’t stealing any money, wasn’t trying to break anything,” said Moss. The U.S. and international governments have since drafted complicated laws that criminalize many aspects of hacking.

However, Gelman pointed out that in many cases, the rules are still not clear or current, and that current laws are far behind what Def Con attendees are doing. She recommended the kids avoid breaking laws by asking for permission before testing any systems, and if that’s not possible, to find a situation where they can ask for approval.

“The lawyer perspective and mother perspective and ethics perspective is you can get in a lot of trouble if you don’t ask for permission.” Gelman is married to journalist and former hacker Kevin Poulsen and has two children.

Moss has his own test for deciding whether to hack something: “My rule of thumb is, do I completely own it? If yes, I can hack it.”

If hackers are unsure whether they are breaking the law, Gelman suggests they check the Electronic Frontier Foundation’s (EFF) site, which spells out rules for everyone from bloggers to coders. The 22-year-old organization also provides legal assistance for those who do get in trouble, taking on some cases itself or referring people to attorneys.

 

Building a reputation

Breaking the law isn’t the only concern Moss, Gelman and parents have for the budding hackers — true anonymity online is harder to come by and a bad reputation can follow these kids into adulthood.

Moss warned the kids that everything they do online now until they die will be backed up to the cloud. “That makes life more difficult for you guys, because if you get in trouble now, you’re screwed.”

Twenty years ago, hackers could operate in the shadows without leaving much of a trail. Chat logs weren’t recorded for long and hackers’ handles weren’t easily traceable to their real-life identities. Now, most communications that take place online are stored permanently and some can be dug up by law enforcement and human-resources departments.

Moss was just a kid himself when he got started with computers.

At 13, his father brought home an IBM computer for the family. By 14, Moss was online creating a new identity for himself, conversing with adults who were oblivious to his real age and spoke to him like an equal.

“I couldn’t drive a car, but I could have conversations about politics with people in Russia,” he said.

In those days, if someone made a mistake or needed a fresh start, they could create a new online identity. Moss got a do-over at an early age and recreated himself online as Dark Tangent, which grew into a trusted and respected identity he still uses now.

Today, a fresh start is harder to come by and old communications can surface at any time. Facebook CEO Mark Zuckerberg learned this the hard way when embarrassing instant-message conversations from his college days were made public years later.

“Your reputation is the most important thing you own,” said Moss, urging the young hackers to behave ethically, not because it will make their parents happy, but because they are the ones who will have to live with the results.

 

Hacking for good

With so many dangers, why would parents encourage their children to hack at all? Def Con Kids organizers believe in the good that can come from hacking, including making the country more secure and helping encourage freedom of speech around the world.

“Technology can really change the world,” said Gelman, citing the liberation-technology movement that encourages hackers to help people spread messages from countries where online communication is restricted.

The U.S. government sees the potential in these bright young minds as well.

The Department of Defense ran the digital forensics program at Def Con Kids, hoping to encourage more education and interest in the field. And Alexander met with three of the children before going on stage to give his keynote address.

“This is our future,” Alexander said of the kids. “What you’re doing here to help train those folks is absolutely superb, and you should be proud.”

 

STORY HIGHLIGHTS
  • Def Con Kids is a program at the annual Def Con hackers conference in Las Vegas
  • Beginner hackers between ages 8 and 18 are taught hacking techniques and ethics
  • NSA chief Gen. Keith Alexander praises the program and its kids

 

 

Direct Link:  http://www.cnn.com/2012/07/31/tech/web/def-con-kids-2012/index.html

Hackers Discover US Government Employees Using Work Emails On Porn Websites

 Articles of Interest, Crimes & Criminal Activity (Organized Crime, Narcotics, Predators, Cyber Crime, Cyber Stalking, UnSolved), National security, Terrorism, Cyber Terrorism & Related Crimes, Social Media, Technology & Digital Security  No Responses »
Mar 132012
 

Hackers Discover US Government Employees Using Work Emails On Porn Websites

The Atlantic
Adam Clark Estes
Mar. 13, 2012
A group of hackers calling themselves Th3 Consortium and  claiming to be affiliated with Anonymous and LulzSec broke into yet DigitalPlaground.com,the third porn site it’s hacked in as many weeks, stealing 72,000 passwords and 40,000 credit card numbers.All three porn sites Th3 Consortium has targeted are owned by Luxembourg-based Manwin: Brazzers got hit in mid-February – 350,000 usernames and passwords were stolen — and then came a major hack at YouPorn – a million usernames and passwords were compromised. But the porn network does not seem to be the real target of the attack: the hackers seem most interested in embarrassing government employees who used their official email addresses (for some reason?) to register for a porn site. Foolish government employees beware.

As AVN.com reports, “According to Th3Consortium, it hacked 27 admins’ names, usernames, e-mail addresses, and encrypted passwords; 85 affiliates’ usernames, plain text passwords, and in some cases, IP addresses; and 82 .gov and .mil e-mail addresses with corresponding plaintext passwords.”

“And of course as this is a porn site,” Th3 Consortium bragged in their release about the attack, “there was no shortage of .mil and .gov emails in their user list.” The hackers’ taunting of government employees could be nothing more than taunting. Those who have seen the data say that there are only a few dozen on the list. 

But the hackers seem to share the view that catching government employees engaged in naughty online behavior — whether it’s watching porn or illegally downloading movies — it refutes the calls for more aggressive enforcement of copyright laws. Fresh out of jail, Megaupload founder Kim Dotcom sounded ready for some blackmail when he told TorrentFreak in an interview, “Guess what — we found a large number of Mega accounts from US Government officials including the Department of Justice and the US Senate.” And we’re not just talking about usernames and passwords in MegaUpload’s case. It’s terabytes of actual files. Luckily for these public officials, the government has control of that data for the time being.

There are three takeaways from the recent rash of porn site hacks. Number one: if you’ve got an account and credit card on file with a porn site, double check to make sure that info is secure. Two: Don’t take the hackers too seriously. While they brag about how tens of thousands of accounts were compromised, those numbers are usually greatly exaggerated. And finally: if you work for the government, don’t sign up for porn sites with your official email address. Taxpayers are paying to keep that address up and running. The least you can do — if only to be courteous — is set up a fake Hotmail account or something. And save the porn for your personal time. We don’t want to pay for that — or any resulting sexual harassment cases — either. 

Revisit: Secret Orders Target Email / WikiLeaks Backer’s Information Sought

 Articles of Interest, Crimes & Criminal Activity (Organized Crime, Narcotics, Predators, Cyber Crime, Cyber Stalking, UnSolved), Law Enforcement, National security, Terrorism, Cyber Terrorism & Related Crimes, Social Media  No Responses »
Dec 262011
 

Secret Orders Target Email

WikiLeaks Backer’s Information Sought

The Wall Street Journal

Oct 10, 2011

By JULIA ANGWIN

The U.S. government has obtained a controversial type of secret court order to force Google Inc. and small Internet provider Sonic.net Inc. to turn over information from the email accounts of WikiLeaks volunteer Jacob Appelbaum, according to documents reviewed by The Wall Street Journal.

 

Google and internet provider Sonic.net fought a secret court order to turn over information from the email accounts of a Wikileaks volunteer, Julia Angwin reports on digits.

 

Sonic said it fought the government’s order and lost, and was forced to turn over information. Challenging the order was “rather expensive, but we felt it was the right thing to do,” said Sonic’s chief executive, Dane Jasper. The government’s request included the email addresses of people Mr. Appelbaum corresponded with the past two years, but not the full emails.

Both Google and Sonic pressed for the right to inform Mr. Appelbaum of the secret court orders, according to people familiar with the investigation. Google declined to comment. Mr. Appelbaum, 28 years old, hasn’t been charged with wrongdoing.

The court clashes in the WikiLeaks case provide a rare public window into the growing debate over a federal law that lets the government secretly obtain information from people’s email and cellphones without a search warrant. Several court decisions have questioned whether the law, the Electronic Communications Privacy Act, violates the U.S. Constitution’s Fourth Amendment protections against unreasonable searches and seizures.

WikiLeaks is a publisher of documents that people can submit anonymously. After WikiLeaks released a trove of classified government diplomatic cables last year, U.S. Attorney General Eric Holder said the U.S. was pursuing an “active criminal investigation” of WikiLeaks.

Passed in 1986, the Electronic Communications Privacy Act is older than the World Wide Web, which was dreamed up in 1989. A coalition of technology companies—including Google, Microsoft Corp. and AT&T Corp.—is lobbying Congress to update the law to require search warrants in more digital investigations.

 

[WIKILEAKS]
Associated Press
Attorney General Eric Holder, top, has said the U.S. is pursuing an ‘active criminal investigation’ of WikiLeaks.

 

The law was designed to give the same protections to electronic communications that were already in place for phone calls and regular mail. But it didn’t envision a time when cellphones transmitted locations and people stored important documents on remote services, such as Gmail, rather than on their own computers.

Law enforcement uses the law to obtain some emails, cellphone-location records and other digital documents without getting a search warrant or showing probable cause that a crime has been committed. Instead the law sets a lower bar: The government must show only “reasonable grounds” that the records would be “relevant and material” to an investigation.

As a result, it can be easier for law-enforcement officers to see a person’s email information than it is to see their postal mail.

Another significant difference: A person whose email is inspected this way often never knows a search was conducted. That’s because court orders under the 1986 law are almost always sealed, and the Internet provider is generally prohibited from notifying the customer whose data is searched. By contrast, search warrants are generally delivered to people whose property is being searched.

The secrecy makes it difficult to determine how often such court orders are used. Anecdotal data suggest that digital searches are becoming common.

In 2009, Google began disclosing the volume of requests for user data it received from the U.S. government. In the six months ending Dec. 31, Google said it received 4,601 requests and complied with 94% of them. The data include all types of requests, including search warrants, subpoenas and requests under the 1986 law.

At a Senate hearing in April on whether the 1986 law needs updating, Associate Deputy Attorney General James A. Baker cautioned Congress “that raising the standard for obtaining information under ECPA may substantially slow criminal and national security investigations.”

In May, the ECPA’s author, U.S. Sen. Patrick Leahy (D., Vt.), said the original law is “significantly outdated and outpaced by rapid changes in technology.” He introduced a bill adopting many of the recommendations of the technology coalition lobbying for changes to the law.

Some federal courts have questioned the law’s constitutionality. In a landmark case in December, the U.S. Court of Appeals for the Sixth Circuit ruled that the government violated the Fourth Amendment when it obtained 27,000 emails without a search warrant.

“The police may not storm the post office and intercept a letter, and they are likewise forbidden from using the phone system to make a clandestine recording of a telephone call—unless they get a warrant,” Judge Danny Boggs wrote in the 98-page opinion. “It only stands to reason that, if government agents compel an [Internet service provider] to surrender the contents of a subscriber’s emails, those agents have thereby conducted a Fourth Amendment search.”

In August, the U.S. District Court of the Eastern District of New York over-ruled a government request to obtain cellphone location records without a warrant, calling it “Orwellian.” Judge Nicholas Garaufis wrote: “It is time that the courts begin to address whether revolutionary changes in technology require changes to existing Fourth Amendment doctrine.” The government has appealed.

The WikiLeaks case became a test bed for the law’s interpretation earlier this year when Twitter fought a court order to turn over records from the accounts of WikiLeaks supporters including Mr. Appelbaum.

Mr. Applebaum is a developer for the Tor Project Inc., a Walpole, Mass., nonprofit that provides free tools that help people maintain their anonymity online. Tor’s tools are often used by people living in countries where Internet traffic is monitored by the government. Tor obtains some of its funding from the U.S. government.

Mr. Appelbaum has also volunteered for WikiLeaks, which recommends people use Tor’s tools to protect their identities when submitting documents to its website. In April 2010, Mr. Appelbaum’s involvement in WikiLeaks was inadvertently disclosed publicly in a blog post on the website of the Committee to Protect Journalists. The reporter, Danny O’Brien, said Mr. Appelbaum had thought he was speaking anonymously. Mr. O’Brien said he later offered to remove Mr. Appelbaum’s name from the post.

 

WIKILEAKS2

London News Pictures/Zuma PressWikiLeaks was founded by Julian Assange.

After the blog post appeared, Mr. Appelbaum became a public advocate for WikiLeaks. In June, he gave a speech at a Northern California technology camp where he called WikiLeaks founder Julian Assange one of the “biggest inspirations in my life.”

On Dec. 14, the U.S. Department of Justice obtained a court order for information from the Twitter account of people including Mr. Appelbaum and WikiLeaks supporters Birgitta Jonsdottir, a member of the Icelandic parliament, and Rop Gonggrijp, a Dutch computer programmer. Neither has been charged with wrongdoing.

The order sought the “Internet protocol,” or IP, addresses of the devices from which people logged into their accounts. An IP address is a unique number assigned to a device connected to the Internet.

The order also sought the email addresses of the people with whom those accounts communicated. The order was filed under seal, but Twitter successfully won from the court the right to notify the subscribers whose information was sought.

On Jan. 26, attorneys for Mr. Appelbaum, Mr. Gonggrijp and Ms. Jonsdottir jointly filed a motion to vacate the court order. They argued, among other things, that because IP addresses can be used to locate a person in “specific geographic destinations,” it constituted a search under the Fourth Amendment and thus required a warrant.

The government argued that IP addresses don’t reveal precise location and are more akin to phone numbers. At a Feb. 15 hearing, Assistant U.S. Attorney John S. Davis said, “this is a standard… investigative measure that is used in criminal investigations every day of the year all over this country.”

On March 11, U.S. Magistrate Judge Theresa Carroll Buchanan denied the WikiLeaks supporters’ motion. They have appealed.

Twitter hasn’t turned over information from the accounts of Mr. Appelbaum, Ms. Jonsdottir and Mr. Gonggrijp, according to people familiar with the investigation.

The court orders reviewed by the Journal seek the same type of information that Twitter was asked to turn over. The secret Google order is dated Jan. 4 and directs the search giant to hand over the IP address from which Mr. Appelbaum logged into his gmail.com account and the email and IP addresses of the users with whom he communicated dating back to Nov. 1, 2009. It isn’t clear whether Google fought the order or turned over documents.

The secret Sonic order is dated April 15 and directs Sonic to turn over the same type of information from Mr. Appelbaum’s email account dating back to Nov. 1, 2009.

On Aug. 31, the court agreed to lift the seal on the Sonic order to provide Mr. Appelbaum a copy of it. Sonic Chief Executive Mr. Jasper said the company also sought to unseal the rest of its legal filings but that request “came back virtually entirely denied.”

 

Direct Link:  http://online.wsj.com/article/SB10001424052970203476804576613284007315072.html?mod=WSJ_Tech_Below_Video