Intelligence Program Gives US Government Direct Access to Customer Data on Apple Servers [Update: Apple Denies]
The Guardian and The Washington Post newspapers are reporting on a top secret intelligence program that gives the U.S. National Security Agency direct access to user data on corporate servers across a wide spectrum of Internet companies including Microsoft, Yahoo, Google, Facebook, PalTalk, AOL, Skype, YouTube, and Apple.
Apple reportedly joined the program in 2012, though Microsoft has been involved since 2007. It is unknown how or why Apple resisted joining the program for five years, nor why it decided to join in 2012. Twitter is noticeably absent from the list of companies, while Dropbox is said to be "coming soon".
Update: An Apple spokesperson gave this statement to AllThingsD:
We have never heard of PRISM. We do not provide any government agency with direct access to our servers, and any government agency requesting customer data must get a court order.
Longtime Apple board member and former U.S. Vice President Al Gore tweeted earlier: "In digital era, privacy must be a priority. Is it just me, or is secret blanket surveillance obscenely outrageous?"
Data from the program, code-named PRISM, is frequently used in the President's Daily Brief -- a daily intelligence report for the U.S. President -- with PDB briefings citing PRISM data 1,477 times last year. The Post reports that data from PRISM accounts for nearly 1 in 7 intelligence reports.
From The Washington Post:
PRISM is an heir, in one sense, to a history of intelligence alliances with as many as 100 trusted U.S. companies since the 1970s. The NSA calls these Special Source Operations, and PRISM falls under that rubric.
The Silicon Valley operation works alongside a parallel program, code-named BLARNEY, that gathers up “metadata” — address packets, device signatures and the like — as it streams past choke points along the backbone of the Internet. BLARNEY’s top-secret program summary, set down alongside a cartoon insignia of a shamrock and a leprechaun hat, describes it as “an ongoing collection program that leverages IC [intelligence community] and commercial partnerships to gain access and exploit foreign intelligence obtained from global networks.”
Theoretically, the program is used to obtain data on foreign operatives, but it is possible for the NSA to scoop up untold amounts of data related to American citizens as well.
It may be necessary − by law, legal process, litigation, and/or requests from public and governmental authorities within or outside your country of residence − for Apple to disclose your personal information. We may also disclose information about you if we determine that for purposes of national security, law enforcement, or other issues of public importance, disclosure is necessary or appropriate.
The Washington Post and Guardian stories contain much more about PRISM, including slides from a PowerPoint presentation outlining the program that is classified TOP SECRET.
The Guardian reported earlier today that the National Security Agency is collecting call logs from Verizon Business Network Services "on an ongoing daily basis" on all calls "between the United States and abroad" or "wholly within the United States, including local telephone calls." The data includes "the numbers of both parties on a call […], as is location data, call duration, unique identifiers, and the time and duration of all calls".
Update 7:41 PM: Director of National Intelligence James Clapper has issued a press release noting that the Washington Post and Guardian reports contain "numerous inaccuracies" and indicating that any data collection is limited to non-U.S. citizens located outside of the United States.
Section 702 is a provision of FISA [the Foreign Intelligence Surveillance Act] that is designed to facilitate the acquisition of foreign intelligence information concerning non-U.S. persons located outside the United States. It cannot be used to intentionally target any U.S. citizen, any other U.S. person, or anyone located within the United States.
Activities authorized by Section 702 are subject to oversight by the Foreign Intelligence Surveillance Court, the Executive Branch, and Congress. They involve extensive procedures, specifically approved by the court, to ensure that only non-U.S. persons outside the U.S. are targeted, and that minimize the acquisition, retention and dissemination of incidentally acquired information about U.S. persons.
Note: Due to the political nature of the discussion regarding this topic, the comment thread is located in our Politics, Religion, Social Issues forum. All MacRumors forum members and site visitors are welcome to read and follow the thread, but posting is limited to forum members with at least 100 posts.
Top Rated Comments
Between this and Verizon, AP tapping, Benghazi coverups (don't bother overexaggerating it, it was a 9/11 off shore, even on 9/11, but anyways...) that has whistleblowers jobs threatened from coming forward, awesome sauce, NDAA to allow indefinite detention of prisoners WITHOUT due process signed on New Year's Eve when Obama promised to veto it, the politically discrimating IRS, whose head visited WH 157 times (of course Obama knew about it, you thought he learned about it when mainstream media reported it? He is president, come on, he was/is in on it), electing Rice as a national security adviser, THIS IS INSANE.
something needs to be done immediately. I don't think the American people can be afford to be passive anymore.
He is not a democrat. he is something straight out of 1984.
Secondly...is anyone really surprised? The Internet is a great tool, but any sort of sense of privacy erodes away more and more each day. We store a lot of data on other people's servers and do it in the name of convenience without giving it much of a thought. We are now seeing what we all really should have seen coming....that our convenience comes at a price.
9-11 was a terrible day and one that undoubtedly left a scar. We made a lot of mistakes in the aftermath that we would be best served to undo, starting with the Patriot Act. Ketchup may be too far out of the bottle at this point though.
So we should sacrifice our basic right to privacy and live in a weirdo surveillance police state just so we can..ahem, "prevent" the occasional terrorist attack? Millions more die from cancer, etc., yet Americans can't even agree on a decent healthcare system. Yet very rare terrorist attacks are enough to make us willingly hand over our privacy?
And how effective is such surveillance anyhow? It doesn't seem all that effective.