Social media sites being used for undercover investigations

Advocacy group the Electronic Frontier Foundation has obtained documents showing how law enforcement agencies and the Internal Revenue Service are gathering information from social networking sites for their investigations.

The documents were obtained via a Freedom of Information Act (FOIA) lawsuit filed last December by the EFF and the University of California, Berkeley’s Samuelson Clinic. The lawsuit was filed against six federal agencies and sought information on their use of social networking sites for data collection and surveillance purposes.

The agencies named in the lawsuit were the Department of Defense, Department of Homeland Security , Department of Justice, Department of Treasury, the CIA, and Office of the Director of National Intelligence.

Related content:

ITBusiness.ca Blogs on Privacy

TTC tests video encryption tech that stops Big Brother from peeping

Social network security is risky business

The EFF this week obtained documents from two of those agencies — the IRS and the Justice Department — that show how the government is collecting information from social networking sites, which has been suspected for some time, said Shane Witnov, a law student and spokesman for the lawsuit at the Samuelson Law, Technology and Public Policy Clinic. “The documents tell us clearly that the government is using social networking sites for undercover investigations,” Witnov said.

In the case of the IRS, formal policies appear to be in place governing the manner in which agents can use social networking sites to investigate taxpayers, Witnov said. Guidelines contained in a 2009 IRS training course show that the agency clearly forbids agents from using deception and fake social networking accounts to ferret out information.

Agents are also limited to only accessing and using publicly available information from social networking sites. “We were actually quite impressed that they had formal training in place and that these were the rules they had established,” Witnov said.

The 38-page IRS training document posted on the EFF Web site provides detailed tips to agents on how to conduct searches, locate relevant taxpayer information, narrow down and refine results, and save multiple Web pages to Adobe’s Web capture feature. Among the social media applications mentioned are Google Groups, FaceBook , Twitter , MySpace, YouTube and Second Life.

The documents were obtained via a Freedom of Information Act (FOIA) lawsuit filed last December by the EFF and the University of California, Berkeley’s Samuelson Clinic. The lawsuit was filed against six federal agencies and sought information on their use of social networking sites for data collection and surveillance purposes.

The agencies named in the lawsuit were the Department of Defense, Department of Homeland Security , Department of Justice, Department of Treasury, the CIA, and Office of the Director of National Intelligence.

Related content:

ITBusiness.ca Blogs on Privacy

TTC tests video encryption tech that stops Big Brother from peeping

Social network security is risky business

The EFF this week obtained documents from two of those agencies — the IRS and the Justice Department — that show how the government is collecting information from social networking sites, which has been suspected for some time, said Shane Witnov, a law student and spokesman for the lawsuit at the Samuelson Law, Technology and Public Policy Clinic. “The documents tell us clearly that the government is using social networking sites for undercover investigations,” Witnov said.

In the case of the IRS, formal policies appear to be in place governing the manner in which agents can use social networking sites to investigate taxpayers, Witnov said. Guidelines contained in a 2009 IRS training course show that the agency clearly forbids agents from using deception and fake social networking accounts to ferret out information.

Agents are also limited to only accessing and using publicly available information from social networking sites. “We were actually quite impressed that they had formal training in place and that these were the rules they had established,” Witnov said.

The 38-page IRS training document posted on the EFF Web site provides detailed tips to agents on how to conduct searches, locate relevant taxpayer information, narrow down and refine results, and save multiple Web pages to Adobe’s Web capture feature. Among the social media applications mentioned are Google Groups, FaceBook , Twitter , MySpace, YouTube and Second Life.

“Future performance sites are potential levy sources and show where the taxpayer will be for possible summons if returns and financial information are needed,” the document said.

Meanwhile, the documents obtained from the criminal division of the Justice Department show that law enforcement is using social media sites for undercover operations, Witnov said.

A DOJ slide presentation titled “Obtaining and Using Evidence from Social Networking Sites” from the agency’s Computer Crime and Intellectual Property section describes how evidence from social networking sites can reveal personal communications that might help “establish motives and personal relationships.” The presentation also mentions how content by a user on a social media site could provide location information and “prove and disprove alibis.”

The presentation also mentions the responsiveness of some social media sites such as Facebook to law enforcement requests for data. It also notes that most Twitter content is public while private Twitter messages are stored on Twitter’s servers until a user deletes them. The “bad news” for law enforcement, however, is that there is no contact information for Twitter users, such as phone numbers, making the site less valuable for gathering information. The DOJ documents also say that Twitter only retains the last login IP address and does not preserve data unless legally required to, the presentation noted.

The DOJ presentation also says that going undercover on social media sites can allow law enforcement to communicate with suspects and targets, gain access to non-public information and map social relationships.

The goal in getting the government to disclose its policies related to such practices is to foster a dialogue on the appropriate use of social networking sites in criminal investigations, Witnov said

.

“There is a balance between privacy and protecting ourselves from crime,” that needs to be achieved, he said. There are instances where the seriousness of a crime might override privacy rights. But there need to be guidelines on when and how information from social networking sites can be collected, he added.

Jaikumar Vijayan covers data security and privacy issues, financial services security and e-voting for Computerworld . Follow Jaikumar on Twitter at @jaivijayan or subscribe to Jaikumar’s RSS feed. His e-mail address is [email protected] .

Source: CIO

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.


Jim Love, Chief Content Officer, IT World Canada

Featured Download

Featured Story

How the CTO can Maintain Cloud Momentum Across the Enterprise

Embracing cloud is easy for some individuals. But embedding widespread cloud adoption at the enterprise level is...

Related Tech News

Get ITBusiness Delivered

Our experienced team of journalists brings you engaging content targeted to IT professionals and line-of-business executives delivered directly to your inbox.

Featured Tech Jobs