Edward Snowden leaks: NSA and GCHQ get personal data from Angry Birds
According to a new report, the NSA and Britain’s GCHQ routinely try to gain access to personal data from Angry Birds and other mobile applications.
A NSA document shows location, websites visited and contacts are among the data targeted from mobile applications.
It is the latest revelation from documents leaked by Edward Snowden.
In a statement, the NSA said it was not interested in data beyond “valid foreign intelligence targets”.
“Any implication that NSA’s foreign intelligence collection is focused on the smartphone or social media communications of everyday Americans is not true,” the statement said.
The report, published by the New York Times, Pro Publica and the Guardian says the NSA and GCHQ have worked together since 2007 to develop ways to gain access to information from applications for mobile phones and tablets.
The scale of data gathering is unclear.
But the reports suggest data is gained from a variety of mapping, gaming and social networking applications, using techniques similar to the ones used to intercept mobile internet traffic and text message data.
The documents also reveal the two agencies are increasingly convinced of the importance of mobile applications data.
The joint spying program “effectively means that anyone using Google Maps on a smartphone is working in support of a GCHQ system” one 2008 document from the British intelligence agency is quoted as saying.
Another GCHQ report, in 2012, laid out how to extract information from Angry Birds user information from phones on the Android operating system. The game has been download 1.7 billion times across the world.
The GCHQ said it would not comment on intelligence matters, but insisted that all of its activities were “authorized, necessary and proportionate”.
Another NSA document described a “golden nugget” – a perfect scenario where NSA analysts could get broad selections of information from the applications, including networks the phone had connected to, documents downloaded, websites visited and “buddy lists”.
Other applications mentioned by the documents include the photo-sharing site Flickr, movie-based social network Flixster and applications that connect to Facebook.
Developers are responsible for the information generated from each application, but there was no suggestion firms were actively agreeing to give the spy agencies data.
On Monday, the justice department announced it had reached agreement with five major internet firms over their request to share information about how they responded to orders from the NSA and other agencies.
Google, Microsoft, Yahoo, Facebook and LinkedIn had previously sued the US government over being able to disclose to the public more information on what they have released to intelligence agencies.
Under the compromise announced, the firms will be able to release:
- the number of criminal-related orders from the government
- the number of secret national security-related orders from government investigators, rounded to the nearest thousand
- how many national security-related orders came from the foreign service intelligence and the number of customers those orders affected
- whether those orders were for just email addresses or covered additional information
As part of the deal, the firms will delay releases of the number of national security orders by six months and promise they cannot reveal government surveillance of new technology or forms of communications they create for two years.
[youtube 5zSXu2eCZlY 650]