- Ohio KKK rally met with massive counter-protest and witty signs from local businesses Saturday 5:06 PM
- Guy who said he stole drugs from MS-13 now says viral story is fake Saturday 4:07 PM
- Financial service company left 885 million private records exposed online Saturday 3:13 PM
- Sasha Obama went to prom and Twitter is delighted with the photos Saturday 2:22 PM
- Jon Voight says Trump is the greatest president since Lincoln in Twitter videos Saturday 1:31 PM
- #DeleteFacebook gains momentum after the platform refused to remove doctored Nancy Pelosi videos Saturday 11:58 AM
- ‘Game of Thrones’ failed women—and it’s a shame on its legacy Saturday 7:40 AM
- How to use Tor, the network that lets you browse the web anonymously Saturday 7:30 AM
- How to live stream Devin Haney vs. Antonio Moran on DAZN Saturday 7:00 AM
- Trump’s transphobic policies are disgusting—but they aren’t new Saturday 6:30 AM
- How to watch the Copa del Rey Final online for free Saturday 5:45 AM
- How to watch the DFB-Pokal final for free Saturday 5:30 AM
- Curvy Wife Guy drops music video for rap song ‘Chubby Sexy’ Friday 7:33 PM
- A ‘Black Mirror’-inspired miniseries is coming to YouTube via Netflix Latin America Friday 5:56 PM
- Kanye West appears on David Letterman’s Netflix show to talk Trump, TMZ, and Drake Friday 3:27 PM
The details on Yahoo’s reported scanning of users’ emails remain murky.
One day after a report claimed that Yahoo scanned users’ emails on behalf of U.S. intelligence agencies, the head of the NSA argued that getting a blanket look at hundreds of millions of Americans’ emails “would be illegal.”
“I’ve read this real quickly, and I thought, well, this is a little speculative,” Adm. Michael Rogers said at the Cambridge Cyber Summit on Wednesday.
Yahoo called the report “misleading” in a short and vague denial to reporters.
“We narrowly interpret every government request for user data to minimize disclosure,” a Yahoo spokesperson wrote. “The mail scanning described in the article does not exist on our systems.”
There’s no telling what exactly that means, but, due to the lack of a strong denial, it’s reasonable to guess that some kind of scanning system does exist.
Since the report emerged a day ago, journalists and technologists have been hypothesizing about the specific nature of what’s been going on at Yahoo.
Robert Graham, at Errata Security, emphatically pointed out that the Reuters article lacked crucial details about how the scanning worked. Actually, he called the whole report garbage.
Well? Which is it? Did they “search incoming emails” or did they “scan mail accounts”? Whether we are dealing with emails in transmit, or stored on the servers, is a BFD (Big Fucking Detail) that you can’t gloss over and confuse in a story like this. Whether searches are done indiscriminately across all emails, or only for specific accounts, is another BFD.
Rogers, who heads both the NSA and U.S. Cyber Command, argued that the U.S. does not engage in blanket domestic surveillance such as scanning all Yahoo emails.
“We don’t do that, and no court would ever grant us the authority to do that,” he said. “We have to make a specific case. And what the court grants is specific authority for a specific period of time for a specific purpose. It’s not a blanket, just everything.”
As usual, the details here are scant. But what is clear is that there is a whole lot more left to learn about exactly how much data the U.S. government gets from America’s biggest tech firms. Vague denials and secret court orders do little to educate the public on that front.
Patrick Howell O'Neill is a notable cybersecurity reporter whose work has focused on the dark net, national security, and law enforcement. A former senior writer at the Daily Dot, O'Neill joined CyberScoop in October 2016. I am a cybersecurity journalist at CyberScoop. I cover the security industry, national security and law enforcement.