Moscow’s attempt to control the Internet inside Russia has come unstuck following a campaign by hackers who have subverted a system of blacklisting sites deemed inappropriate.
Since Russian President Vladimir Putin’s re-election in 2012, authorities have banned thousands of sites — some for promoting “social ills,” others for political dissent — by inscribing their particulars on a blacklist and forcing Internet service providers to block them.
However, in recent weeks, activists seeking to push back against the crackdown have undermined the system by purchasing banned sites and inserting the particulars of perfectly legal Web pages into their domain names. Havoc ensued.
Illustration: Louise Ting
Last month, cash machines belonging to big state banks VTB and Sberbank stopped working. Major news sites and social media services were blocked and even Google became inaccessible.
“The Kremlin proved incapable of putting the Internet under control by technical means. The only thing that partly works is intimidation of companies and users,” said Andrei Soldatov, author of The Red Web, a book about Russia’s online surveillance.
“To make intimidation more effective you need to make the rules more vague and complicated, to make almost everyone guilty by definition,” he said.
With the blacklisting system looking vulnerable, the fear is that the authorities will retaliate by introducing an even harsher system of control on what Web users can view.
Already they have created a new “whitelist” of sites that can never be blocked. And last week, parliament passed a law banning the use of virtual private networks, used by many to access blocked content.
Hundreds of people staged a protest march in Moscow last weekend to object to online censorship.
The Internet cat-and-mouse game started five years ago when the state telecoms watchdog, Roskomnadzor, was given broad powers to censor the Russian Web via amendments to a law drafted to “protect children from information harming their health and development.”
This provided for the creation of a register, or blacklist, of banned sites that Internet service providers were required to block. Wikipedia, LiveJournal, Russia’s largest social network, VK, and largest search engine, Yandex, protested the law as a crackdown on the freedom of information.
With its blacklist, Roskomnadzor went after sites containing child pornography and information on narcotics and suicide. However, it also bans pages for “extremist statements,” a slippery term that has been applied to everything from terrorist groups to liberal opposition news sites and for information about unsanctioned public demonstrations.
In the first two years, more than 50,000 Web sites were blocked, about 4,000 of them for extremism. Sites can be blocked based on a court decision or a complaint by government agencies or citizens.
The watchdog’s decisions often verge on the political, such as when it blocked the site of Russia’s most prominent opposition figure, Alexei Navalny, in 2015 for a post that mentioned the possibility of a “protest action.”
Navalny accused the agency of “political censorship.”
Almost from the start, experts warned the blacklist, which includes sites’ domain names and IP addresses, was ripe for abuse. At the end of May, owners of banned sites started working out that if they listed the IP address of any other Web page in their DNS (domain name server) information, providers would automatically block that site.
Besides the banks, VK and Yandex were blocked, as were the pro-Kremlin Web sites NTV and LifeNews. Even Roskomnadzor’s own site was made inaccessible.
In a blog post titled “Block your anus, Roskomnadzor!” a 14-year-old programmer claimed that he had blocked several “popular Web sites” through the loophole.
Some of those wreaking havoc were just “trolling” the authorities, while others were wielding the vulnerability “as a weapon in the war with Roskomnadzor,” one of participants told the Meduza Web site without using his name.
“The task of these people, and I’m one of them, is to complicate as much as possible the life of all those who try to attack freedom of speech and anonymity online,” he said.
IT consultant Vladislav Zdolnikov, who writes about Web freedom and opposition politics for nearly 20,000 followers of his channel on the anonymous messaging service Telegram, posted a list of banned domain names that had been vacated by their original owners. Within 15 minutes, they had almost all been purchased.
“I was demonstrating the criminal incompetence of Roskomnadzor, which not only ignored the vulnerability, but also didn’t delete from the register domains that had freed up,” he said.
Roskomnadzor accused Zdolnikov and Web developer Alexander Litreyev, both of whom are activists at Navalny’s anti-corruption foundation, of orchestrating the blocking of innocent sites and asked the Russian Ministry of the Interior to open an investigation. The two men have since fled to Kiev.
The agency also issued a new “whitelist” of several thousand sites that could not be blocked under any circumstances, most of them government pages, and expanded it on July 11.
Many providers have neither the equipment nor the staff to sift through constantly changing IP addresses and make sure blacklisted sites are being blocked and whitelisted sites are not, according to Sarkis Darbinyan, a lawyer for the RosKomSvoboda project that promotes free Internet.
More importantly, Roskomnadzor’s methodology raises concerns about the future of Internet freedom in Russia.
Darbinyan said Internet regulation was moving toward the “presumption that everything is forbidden” except what is explicitly allowed.
The topic is especially sensitive after Navalny held huge unsanctioned protests in downtown Moscow in March and last month, many of whose participants said they had been inspired by his viral YouTube video showing the extravagant real-estate holdings of Russian Prime Minister Dmitry Medvedev.
Already, a package of amendments known as the Yarovaya law, which was passed last year and will come into effect next year, has caused huge controversy. The legislation will require telecoms providers to store information about all their users’ communications, from calls to e-mails, for six months.
Besides privacy complaints, implementing the technology to store so much information is estimated to cost 4.5 trillion rubles (US$60 billion), costs that telecoms companies will likely pass on to consumers.
Many view new legislation regulating anonymizers and VPNs like Telegram as the next step in the Kremlin’s gradual crackdown on the Web.
Since it is technologically difficult for these services to block sites, they would be easy targets for pressure and intimidation if the law passes as expected, Soldatov said.
“This law, like the other laws that censor the Internet, will be applied selectively at times when it’s advantageous to the regime,” Zdolnikov said.
A series of strong earthquakes in Hualien County not only caused severe damage in Taiwan, but also revealed that China’s power has permeated everywhere. A Taiwanese woman posted on the Internet that she found clips of the earthquake — which were recorded by the security camera in her home — on the Chinese social media platform Xiaohongshu. It is spine-chilling that the problem might be because the security camera was manufactured in China. China has widely collected information, infringed upon public privacy and raised information security threats through various social media platforms, as well as telecommunication and security equipment. Several former TikTok employees revealed
Two sets of economic data released last week by the Directorate-General of Budget, Accounting and Statistics (DGBAS) have drawn mixed reactions from the public: One on the nation’s economic performance in the first quarter of the year and the other on Taiwan’s household wealth distribution in 2021. GDP growth for the first quarter was faster than expected, at 6.51 percent year-on-year, an acceleration from the previous quarter’s 4.93 percent and higher than the agency’s February estimate of 5.92 percent. It was also the highest growth since the second quarter of 2021, when the economy expanded 8.07 percent, DGBAS data showed. The growth
At the same time as more than 30 military aircraft were detected near Taiwan — one of the highest daily incursions this year — with some flying as close as 37 nautical miles (69kms) from the northern city of Keelung, China announced a limited and selected relaxation of restrictions on Taiwanese agricultural exports and tourism, upon receiving a Chinese Nationalist Party (KMT) delegation led by KMT legislative caucus whip Fu Kun-chi (傅崑萁). This demonstrates the two-faced gimmick of China’s “united front” strategy. Despite the strongest earthquake to hit the nation in 25 years striking Hualien on April 3, which caused
In the intricate ballet of geopolitics, names signify more than mere identification: They embody history, culture and sovereignty. The recent decision by China to refer to Arunachal Pradesh as “Tsang Nan” or South Tibet, and to rename Tibet as “Xizang,” is a strategic move that extends beyond cartography into the realm of diplomatic signaling. This op-ed explores the implications of these actions and India’s potential response. Names are potent symbols in international relations, encapsulating the essence of a nation’s stance on territorial disputes. China’s choice to rename regions within Indian territory is not merely a linguistic exercise, but a symbolic assertion