http://blog.wired.com/27bstroke6/2008/06/isp-spying-made.html
Leaked Report: ISP Secretly Added Spy Code To Web Sessions, Crashing Browsers By Ryan Singel <mailto:[EMAIL PROTECTED]> EmailJune 05, 2008 | 5:43:36 PM An internal British Telecom report on a secret trial of an ISP eavesdropping and advertising technology found that the system crashed some unsuspecting users' browsers, and a small percentage of the 18,000 broadband customers under surveillance believed they'd been infected with adware. The January <http://www.wikileaks.org/leak/bt-phorm-report-2007.pdf> 2007 report (.pdf) -- published Thursday by the whistle blowing site Wikileaks -- demonstrates the hazards broadband customers face when an ISP tampers with raw internet traffic for its own profit. The leak comes just weeks after U.S. broadband provider Charter Communications told users it would be testing a <http://blog.wired.com/27bstroke6/2008/05/charter-to-inse.html> technology similar to what's described in the BT document. The report documents BT's partnership with U.K. ad company Phorm, which specializes in building profiles of ISP customers, then serving targeted ads on webpages the user visits. >From late September to early October 2006, British Telecom secretly partnered with Phorm to let the company monitor and track 18,000 of the BT's customers. Phorm installed boxes on BT's network that redirected web requests through their proxy server. Those boxes inserted JavaScript code into every web page downloaded by the users. That script then reported back to Phorm the contents of the web page, which Phorm used to create ad profiles of a user. Additionally, Phorm purchased advertising space on prominent web sites, showing a default ad for a charity. But when a user who had previously looked at car sites visited one of those pages, he instead got an advertisement for car insurance. The users were not informed they were being made guinea pigs for a new revenue system for BT and had no way to opt out of the system, according to the report. The JavaScript caused flickering problems for some users as the script reported back information about the content of the web page to a Phorm server. The script also crashed browsers that loaded a website that relied excessively on anchor tags. Additionally, the rogue JavaScript showed up unexpectedly in user's posts to some web forums. Despite these problems, the technical assessment concluded the test was successful and was largely went unnoticed by most users. The operation of the system does have noticeable side effects, which included web-page tag insertion and navigation bar flutter. >From the postings, no user correctly determined the source of these effects and users did not post that the system was causing poor performance. However all postings suspected that their machines had a virus, a malware or a spyware infection. ...
<<icon_email.gif>>
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
