Imagine a government with the power to spy on any critic, reporter or activist. A state with the capacity to extort or silence by tracking not just a person’s movements, but their conversations, contacts, photographs, notes and e-mails — the entire content of one’s digital life.
This might sound like something from dystopian fiction, but such targeted surveillance is a grim reality of the digital age. It is increasingly a tool of repressive governments to stifle debate, criticism and journalism.
Over and over, researchers and journalists have been uncovering evidence of governments, with the help of private companies, inserting malware through surreptitious means into the smartphones, laptops and other devices belonging to people they are seeking to suppress: people who play essential roles in democratic life, facilitating the public’s right to information.
It does not end there — sometimes surveillance ends with the targets in detention, under physical assault or even murdered.
Just last month WhatsApp sued an Israeli surveillance company, the NSO Group, in a US court. The case alleges that the messaging platform was compromised by NSO technology, specifically to insert its signature product — spyware known as Pegasus — onto at least 1,400 devices, which enabled government surveillance.
The NSO Group has rejected the allegation.
With Pegasus in their hands, governments have access to the seemingly endless amount of personal data in people’s pockets.
The University of Toronto’s CitzenLab has found that the Pegasus spyware is used in 45 countries.
The global surveillance industry — in which the NSO Group is just one of many dozens, if not hundreds, of companies — appears to be out of control, unaccountable and unconstrained in providing governments with relatively low-cost access to the sorts of spying tools that only the most advanced state intelligence services were previously able to use.
The industry and its defenders say this is a price to pay for confronting terrorism.
Some liberty must be sacrificed to protect people from another attack such as was seen on Sept. 11, 2001, they say.
As one well-placed person claimed to me, such surveillance is “mandatory,” and what is more, it is “complicated, to protect privacy and human rights.”
All I can say is: Give me a break.
The companies hardly seem to be trying — and, more importantly, neither are the governments that could do something about it.
Governments have been happy to have these companies help them carry out this dirty work.
This is not a question of governments using tools for lawful purposes and incidentally or inadvertently sweeping up some illegitimate targets. This is using spyware technology to target vulnerable yet vital people whom healthy democracies need to protect.
On the surface, it seems that constraining the global spyware industry could be impossible. The companies operate in an environment that brings together the shadowy worlds of intelligence and counter-terrorism, which are notoriously difficult for outsiders to penetrate or regulate.
Many say that constraining exports of such software would be folly, since Chinese surveillance companies would step in where Western companies bow out.
These are obstacles, but they are not arguments to avoid what has to be done to protect human rights. The push toward genuine reform must begin now, it must be global and it should involve the following steps.
First, governments must control the export of spyware. There are already existing frameworks to restrict the export of technology that has military as well as commercial use. The most relevant, the Wassenaar Arrangement, should be updated to go beyond “dual-use” technology, and cover spyware that is used to attack human rights.
In turn, all governments would have to commit to implement globally agreed export controls.
For now, there is only one effective response in the face of such rampant abuse: Stop all sales and transfers of the technology.
In a report I presented to the UN in June, I called for an immediate moratorium on the transfer of spyware until viable international controls are in place. It is time for a genuine campaign to end unaccountable surveillance.
Second, companies must implement effective controls on their own technologies. The NSO Group, to its credit, has committed to observing the UN guidelines for businesses and human rights, but effective control means more than self-regulating policies. It means disclosure of clients and uses of technology, strict rules against misuse to violate human rights, regular monitoring and kill switches where rights are violated.
It also requires commitments from the companies not to transfer their technology to persistent human rights offenders nor to countries that lack rule-of-law controls on surveillance — and a refusal to support the use of the spyware for illegitimate purposes. These controls should be backed up by government sanctions for misuse.
Third, it is exceedingly difficult for the victims of spyware to hold governments, or the complicit companies, accountable for abuse and misuse.
Governments should make such legal actions possible, changing their laws to enable claims against companies or governments that are responsible for illegal surveillance — a kind of universal jurisdiction for lawsuits to control the spread of this pernicious technology.
There are few better examples of the dark side of the digital age than the private surveillance industry and its tools of repression. It is well past time to bring it under control.
David Kaye is a law professor at the University of California, Irvine, and the UN special rapporteur on freedom of expression.
Could Asia be on the verge of a new wave of nuclear proliferation? A look back at the early history of the North Atlantic Treaty Organization (NATO), which recently celebrated its 75th anniversary, illuminates some reasons for concern in the Indo-Pacific today. US Secretary of Defense Lloyd Austin recently described NATO as “the most powerful and successful alliance in history,” but the organization’s early years were not without challenges. At its inception, the signing of the North Atlantic Treaty marked a sea change in American strategic thinking. The United States had been intent on withdrawing from Europe in the years following
My wife and I spent the week in the interior of Taiwan where Shuyuan spent her childhood. In that town there is a street that functions as an open farmer’s market. Walk along that street, as Shuyuan did yesterday, and it is next to impossible to come home empty-handed. Some mangoes that looked vaguely like others we had seen around here ended up on our table. Shuyuan told how she had bought them from a little old farmer woman from the countryside who said the mangoes were from a very old tree she had on her property. The big surprise
The issue of China’s overcapacity has drawn greater global attention recently, with US Secretary of the Treasury Janet Yellen urging Beijing to address its excess production in key industries during her visit to China last week. Meanwhile in Brussels, European Commission President Ursula von der Leyen last week said that Europe must have a tough talk with China on its perceived overcapacity and unfair trade practices. The remarks by Yellen and Von der Leyen come as China’s economy is undergoing a painful transition. Beijing is trying to steer the world’s second-largest economy out of a COVID-19 slump, the property crisis and
As former president Ma Ying-jeou (馬英九) wrapped up his visit to the People’s Republic of China, he received his share of attention. Certainly, the trip must be seen within the full context of Ma’s life, that is, his eight-year presidency, the Sunflower movement and his failed Economic Cooperation Framework Agreement, as well as his eight years as Taipei mayor with its posturing, accusations of money laundering, and ups and downs. Through all that, basic questions stand out: “What drives Ma? What is his end game?” Having observed and commented on Ma for decades, it is all ironically reminiscent of former US president Harry