Friday 30 May 2014

A warning for NZ internet users

Vodophone fears a consumer backlash. Let's give them one!!


Vodafone - a warning
I am shifting my ISP provider from Vodophone as soon as I can and recommend NZ users to do so too.

I will explain why.



A few years ago I shifted to CLEAR as an ISP provider. 

They were a local, New Zealand  company and were good to deal with. In time they were taken over by Australian telecoms giant Telstra who then sold to British Vodophone.

Trouble for me started when I changed from an old Telstra-Clear package to a new "ultra-fast" broadband package with Vodophone.

I started having problems with the "ultra-fast" - my internet from the moment I shifted became super-slow.

When I tried to have this out with them they, not once but twice asked me over the phone to provide my password.

Both times I said directly that I would not do this as it was a gross violation of privacy (commenserate to being asked for one's PIN number by a bank - something that would never happen)

They did not provide any alternatives to giving out my most private detail until pushed - and then was offered "as an alternative" the option of being given an alternative password and then resetting.

I said I wanted to speak to management and was asked if I wanted to fill out a complaint form to which I said 'no, I need to speak to someone'

Finally, after much hesitation the operator (who was obviously based in Manila or somewhere else in Asia) put me on hold and after a long wait finally got someone from the company here in NZ.

I got the same patter, that it was essentially just a 'consumer's choice' and it wasn't until I said that I have a blog with a readership of up to 2000 a day that he started to take me seriously and left me with a vague promise to tell the operator to give the option.

What about all the other Vodophone users?

I have decided to move to another ISP provider, a local provider that comes with the recommendation of none other than Kim Dotcom. When I told me the story I'm sure that they thought they had heard me wrong, for I had to repeat it. No way, they said, it was unacceptable to ask for a customer's password.

Well, there we are.

Since then they have been totally unable to resolve my problem - by next week I will be connected with a New Zealand firm, Orcon -  and Vodophone the company that will gladly share its customers details with the GCHQ in Britain - or with the NSA, or presumably the GCSB, will be history as far as I'm concerned.

Here are some details of what Vodophone is up to in Britain. Presumably they will be just as happy to co-operate with the GCSB although we're unlikely to hear about it.

My advice - if you're a paradise.net or clear.net or Vodophone customer is - drop them like a hot potato!



BT and Vodafone among telecoms companies passing details to GCHQ
Fears of customer backlash over breach of privacy as firms give GCHQ unlimited access to their undersea cables


2 August, 2014


Some of the world's leading telecoms firms, including BT and Vodafone, are secretly collaborating with Britain's spy agency GCHQ, and are passing on details of their customers' phone calls, email messages and Facebook entries, documents leaked by the whistleblower Edward Snowden show.

BT, Vodafone Cable, and the American firm Verizon Business – together with four other smaller providers – have given GCHQ secret unlimited access to their network of undersea cables. The cables carry much of the world's phone calls and internet traffic.
In June the Guardian revealed details of GCHQ's ambitious data-hoovering programmes, Mastering the Internet and Global Telecoms Exploitation, aimed at scooping up as much online and telephone traffic as possible. It emerged GCHQ was able to tap into fibre-optic cables and store huge volumes of data for up to 30 days. That operation, codenamed Tempora, has been running for 20 months.
On Friday Germany's Süddeutsche newspaper published the most highly sensitive aspect of this operation – the names of the commercial companies working secretly with GCHQ, and giving the agency access to their customers' private communications. The paper said it had seen a copy of an internal GCHQ powerpoint presentation from 2009 discussing Tempora.
The document identified for the first time which telecoms companies are working with GCHQ's "special source" team. It gives top secret codenames for each firm, with BT ("Remedy"), Verizon Business ("Dacron"), and Vodafone Cable ("Gerontic"). The other firms include Global Crossing ("Pinnage"), Level 3 ("Little"), Viatel ("Vitreous") and Interoute ("Streetcar"). The companies refused to comment on any specifics relating to Tempora, but several noted they were obliged to comply with UK and EU law.
The revelations are likely to dismay GCHQ and Downing Street, who are fearful that BT and the other firms will suffer a backlash from customers furious that their private data and intimate emails have been secretly passed to a government spy agency. In June a source with knowledge of intelligence said the companies had no choice but to co-operate in this operation. They are forbidden from revealing the existence of warrants compelling them to allow GCHQ access to the cables.
Together, these seven companies operate a huge share of the high-capacity undersea fibre-optic cables that make up the backbone of the internet's architecture. GCHQ's mass tapping operation has been built up over the past five years by attaching intercept probes to the transatlantic cables where they land on British shores. GCHQ's station in Bude, north Cornwall, plays a role. The cables carry data to western Europe from telephone exchanges and internet servers in north America. This allows GCHQ and NSA analysts to search vast amounts of data on the activity of millions of internet users. Metadata – the sites users visit, whom they email, and similar information – is stored for up to 30 days, while the content of communications is typically stored for three days.
GCHQ has the ability to tap cables carrying both internet data and phone calls. By last year GCHQ was handling 600m "telephone events" each day, had tapped more than 200 fibre-optic cables and was able to process data from at least 46 of them at a time.
Each of the cables carries data at a rate of 10 gigabits per second, so the tapped cables had the capacity, in theory, to deliver more than 21 petabytes a day – equivalent to sending all the information in all the books in the British Library 192 times every 24 hours.
This operation is carried out under clandestine agreements with the seven companies, described in one document as "intercept partners". The companies are paid for logistical and technical assistance.
The identity of the companies allowing GCHQ to tap their cables was regarded as extremely sensitive within the agency. Though the Tempora programme itself was classified as top secret, the identities of the cable companies was even more secret, referred to as "exceptionally controlled information", with the company names replaced with the codewords, such as "GERONTIC", "REMEDY" and "PINNAGE".
However, some documents made it clear which codenames referred to which companies. GCHQ also assigned the firms "sensitive relationship teams". One document warns that if the names emerged it could cause "high-level political fallout".
Germans have been enraged by the revelations of spying by the National Security Agency and GCHQ after it emerged that both agencies were hoovering up German data as well. On Friday the Süddeutsche said it was now clear that private telecoms firms were far more deeply complicit in US-UK spying activities than had been previously thought.
The source familiar with intelligence maintained in June that GCHQ was "not looking at every piece of straw" but was sifting a "vast haystack of data" for what he called "needles".
He added: "If you had the impression we are reading millions of emails, we are not. There is no intention in this whole programme to use it for looking at UK domestic traffic – British people talking to each other." The source said analysts used four criteria for determining what was examined: security, terror, organised crime and Britain's economic wellbeing."The vast majority of the data is discarded without being looked at … we simply don't have the resources."
Nonetheless, the agency repeatedly referred to plans to expand this collection ability still further in the future.
Once it is collected, analysts are able to search the information for emails, online chats and browsing histories using an interface called XKeyscore, uncovered in the Guardian on Wednesday. By May 2012, 300 analysts from GCHQ and 250 NSA analysts had direct access to search and sift through the data collected under the Tempora program.
Documents seen by the Guardian suggest some telecoms companies allowed GCHQ to access cables which they did not themselves own or operate, but only operated a landing station for. Such practices could raise alarm among other cable providers who do not co-operate with GCHQ programmes that their facilities are being used by the intelligence agency.
Telecoms providers can be compelled to co-operate with requests from the government, relayed through ministers, under the 1984 Telecommunications Act, but privacy advocates have raised concerns that the firms are not doing enough to challenge orders enabling large-scale surveillance, or are co-operating to a degree beyond that required by law.
"We urgently need clarity on how close the relationship is between companies assisting with intelligence gathering and government," said Eric King, head of research for Privacy International. "Were the companies strong-armed, or are they voluntary intercept partners?"
Vodafone said it complied with the laws of all the countries in which its cables operate. "Media reports on these matters have demonstrated a misunderstanding of the basic facts of European, German and UK legislation and of the legal obligations set out within every telecommunications operator's licence … Vodafone complies with the law in all of our countries of operation," said a spokesman.
"Vodafone does not disclose any customer data in any jurisdiction unless legally required to do so. Questions related to national security are a matter for governments not telecommunications operators."
A spokeswoman for Interoute said: "As with all communication providers in Europe we are required to comply with European and local laws including those on data protection and retention. From time to time we are presented with requests from authorities. When we receive such requests, they are processed by our legal and security teams and if valid, acted upon."
A spokeswoman for Verizon said: "Verizon continually takes steps to safeguard our customers' privacy. Verizon also complies with the law in every country in which we operate."
BT declined to comment.


PS. - It has also been passed on to me that CLEAR and Paradise customers are the only ones in the world that cannot access their own email accounts (without using Webmail) in libraries or cafes because it is presumed that the only place they would want to do this is in their own homes.

No comments:

Post a Comment

Note: only a member of this blog may post a comment.