All the latest UK technology news, reviews and analysis
|
|
|
19 Jul 2007
FBI agents trying to track down an anonymous MySpace user who was threatening to blow up a school used spyware to trap him.
Fifteen year-old student Josh Glazebrook had the surveillance software sent to him by government agents after he threatened Timberline High School near Seattle.
According to an affidavit obtained by Wired News, FBI agent Norman Sanders described the software as a "computer and internet protocol address verifier".
The spyware program, which is known as CIPAV, logs the following:
Graham Cluley, senior technology consultant at Sophos, said that the use of spyware is not yet widespread among law enforcement agencies.
"We have not seen any evidence that this practice is becoming commonplace, but there have been occasions when the crime-fighting authorities have used malware to their advantage," Cluley told vnunet.com.
"Way back in 2001 we wrote of our concerns about the FBI running a project called Magic Lantern which was designed to do just this."
Cluley explained that people supporting the use of spyware to monitor possible criminal behaviour often compared it to tapping a suspect's phone line.
"However, there is a difference between tapping a phone line and installing malicious code on a user's computer," he said.
"Malicious code on a user's computer can be copied, archived, adapted and potentially used by people who do not work for the authorities to spy on completely innocent victims."
Glazebrook pleaded guilty to felony harassment, making bomb threats and identity theft earlier this week.
Latest stories from Public Sector
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
A leading global provider of critical information to...
Playstations and table football in the kitchen? Standard...
Systems Engineer - 2nd/3rd Line Support - Microsoft OS...
A leading global provider of critical information to...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
modern Os
obviously he had XP auto-updates turned on.. or the Mac OS equivalent. I agree, there should be a due process for allowing police to spy on citizens. A Warrant would make sense, and regulations or code of practice. If the average citizen can't make MP3s from a legitimate CD to use on his iPod, why is the trend the complete opposite for 'law-enforcement'. Its verging on digital totalitarianism.
Posted by: Oisin 04 Oct 2007
Which MAC address did the program log?
It would be useful if the author noted WHICH MAC address was logged, i.e., the MAC of the users' ROUTER or the MAC of the users' NIC? That is, was it the MAC of the router or the MAC of the computer?
Posted by: susan sonnenberg 08 Sep 2007
bad FBI
I think it should be illegal for government agencies to use spyware without a warrant. How many people did they infect before finding the correct person? and how did they get this user to instal and run the program?
Posted by: yo NSA 19 Jul 2007