Techdirt

Denuvo is... look, just go read this trove of backlinks, because I've written far too many of these intros to be able to come up with one that is even remotely original. Rather than plagiarize myself, let me just assume that most of you know that Denuvo is a DRM that was once thought to be invincible but has since been broken in every iteration developed, with cracking times often now down to days and hours rather than weeks or months. Key in this post is that much if not most of the work cracking Denuvo has been done by a single person going by the handle Voksi. Voksi is notable not only for their nearly singlehandedly torpedoing the once-daunting Denuvo DRM, but also for their devotion to the gaming industry and developers that do things the right way, even going so far as to help them succeed.Well, Voksi is back in the news again, having once again defeated the latest build of Denuvo DRM.

Good news out of Tennessee, via Christian Farias: a federal court has struck down the state's modern debtor's prison system.In Tennessee, if you fail to pay court fines and other fees associated with an arrest or imprisonment for more than a year, your driver's license is revoked. While it may not be as punitive as rounding up debtors and locking them up again (which obviously severely restricts their ability to pay off their debt), it basically serves the same purpose. Someone without a valid driver's license will find their ability to earn income restricted. Driving to and from work with a revoked license just raises the risk of being fined or arrested, placing residents even further away from settling their debts with the government.The lawsuit was brought by two men who've been unable to make regular payments and have been placed even further behind by having their licenses taken away. Their struggles are briefly described in the court decision [PDF]:

The Supreme Court's Riley decision made one thing clear: cellphones are not to be searched without a warrant. Somehow, the Georgia Court of Appeals has reached a different conclusion than the Supreme Court of the United States, even as it cites the ruling. [h/t Andrew Fleischman]It's a decision [PDF] that's decidedly law enforcement-friendly. And it's one that will pair nicely with the FBI's overblown "going dark" assertions. An arrested individual requested his phone so he could retrieve a phone number to give to the officers questioning him. Here's what happened once he had retrieved that info.

In the wake of the recent privacy controversy over Facebook and Cambridge Analytica, internet users and policymakers have had a lot of questions on the topic of “data portability”: Is my social network data really mine? Can I take it with me to another platform if I’m unhappy with Facebook? What does the new European privacy law, the General Data Protection Regulation (GDPR), demand in terms of my being able to export my data? What even counts as my data that I should be able to download or share, and as my friends’ data that I shouldn’t?There’s a growing consensus that being able to easily move your data between social platforms, and perhaps even being able to communicate between different platforms, is necessary to promote competition online and enable new services to emerge. But that raises some difficult technical and policy questions about how to balance such portability and interoperability with your and your friends’ privacy interests—and how to guarantee that new privacy efforts don’t have the unintended consequence of locking in current platforms’ dominance by locking down their control over your data.To investigate a potential path forward, New America’s Open Technology Institute partnered with Mozilla to host an event earlier this month, “A Deep Dive Into Data Portability: How Can We Enable Platform Competition and Protect Privacy at the Same Time.” It included a tutorial from OTI’s senior policy technologist Ross Schulman on the basic terminology and technologies at issue—for instance, distinguishing between “data portability” and “interoperability,” and explaining what the heck an “Application Programming Interface,” or “API,” is.The event opened with a forceful keynote from David Cicilline, who’s a congressman for Rhode Island and the top Democrat on the House Judiciary Committee’s Antitrust Subcommittee. “We need pro-competitive policies that give power back to Americans in the form of more rights and greater control over their data,” Cicilline argued. “This starts by taking on walled gardens that block startups and other competitors from entering the market through high switching costs.”Echoing a Wired op-ed he had previously co-authored, Cicilline highlighted how “[p]eople who may want to leave Facebook are less likely to do so if they aren’t able to seamlessly rebuild their network of contacts, photos, and other social graph data on a competing service or communicate across services.” Just as Congress gave cellphone users the right to “number portability”—lessening the switching cost of changing your cell carrier by giving you the ability to take your phone number with you—Cicilline argued that social network users should have the right to portability of their social media data. Unless we “free the social graph,” as one commentator put it, we may find ourselves locked into the current platform ecosystem with no chance of meaningful competitors emerging.Importantly, Facebook has offered a feature called “Download Your Information” (DYI) since 2010. This lets users download all of the content they’ve ever posted on Facebook as a browsable HTML archive. (As described in our tech tutorial, other providers like Twitter and Google offer similar options.) However, Facebook’s download feature was originally designed as a personal archiving tool, rather than for easy porting of your data to another service. Indeed, when it was launched, Facebook clearly stated that "[t]his file and the information contained within it, is designed for an individual's use and not for developers or other services." That said, over the past couple of months, in response to both the Cambridge Analytica scandal and its data portability obligations under the GDPR, Facebook has revamped the DYI tool to be more portability-friendly. Most notably, Facebook now allows users to download their data in the structured JSON data format (see the tutorial for what that is!) instead of in unstructured HTML, making it much easier to move the data between different services.But here comes the irony: The one thing you can’t download from Facebook is the one thing you’d most need if you wanted to move to a competing social network—your friends’ contact information, or any other unique information that would help you reconnect with them on another service. Instead, all you get is a list of their names, which isn’t very helpful for re-identifying specific individuals, considering how common many names are. Indeed, as was highlighted during the event, Facebook has long treated its possession of your friends’ contact information as a key competitive advantage, making it difficult for users to collect or export it.For example, when users were first able to share an email address with friends on their profile page, it was displayed as a graphic rather than as text so that it couldn’t be cut and pasted. Some users may also recall when Facebook, in 2012, temporarily replaced users’ non-Facebook addresses with new “@facebook.com” addresses by default, making it harder to obtain off-Facebook contact information about your friends. And although there’s a hard-to-find setting where Facebook users can allow their friends to download their contact information, it is by default set not to allow such downloading—one of the rare Facebook settings that defaults away from, rather than toward, more sharing with friends.Facebook has consistently justified its attempts to restrict sharing contact info as a privacy and security measure, but the alignment with its own business goals was always more than a little convenient. In addition, it’s also rather ironic, considering that a huge part of Facebook’s meteoric growth was driven by importing contact information from other services, especially Gmail (which led to a dispute between Google and Facebook back in 2010, when Google briefly cut off Facebook’s ability to access Google contacts over its API because Facebook wasn’t reciprocally allowing other services to access contact information on Facebook). Convenient and ironic or not, Facebook’s reticence to share contact information has only been bolstered by recent events: It was, of course, users’ ability to export data about their friends to outside apps that was at the root of the Cambridge Analytica scandal that has put Facebook in the privacy hot-seat. Meanwhile, thanks to GDPR’s privacy requirements, Facebook would now probably need to get affirmative consent from your friends before letting you export their email addresses, even if they arguably didn’t have to before.There were no easy answers to this privacy-versus-portability conundrum coming out of our panel discussion. However, there were a few critical takeaways in terms of things that Facebook can and should do now to promote portability—and which are in its own interest to do, as it may face unwanted regulatory action if it doesn’t.Help Set Clear Technical Standards. Easy portability of data between services will require open standards that everyone can use. Facebook’s offering downloadable data in the JSON file format is a good start, but it and other social networks should consider using the Activity Streams 2.0 open standard, a particular JSON-based format for exporting social media items. Facebook helped develop the standard at the World Wide Web Consortium, but right now only decentralized social network tools like Mastodon use it. On top of that, Facebook and all the other major cloud and social platforms should contribute to the open source Data Transfer Project, which aims to establish a common framework for easily moving data directly between services with just a few clicks and without having to download the data yourself. Google and Microsoft are already participating; others should, too.Solve the Graph Portability Problem. Social platforms should allow you to export your friends’ contact information—or, if they can’t due to privacy restrictions, otherwise provide unique identifiers or other information sufficient to easily re-identify your friends on another platform. Your social graph is yours, and we need a standardized way to move that graph around. Some ideas that came out of the panel: Facebook could ask all users to give consent for their friends to export their contact information as part of Download Your Information—or at least give friends the power to ask each other for that permission. Or, Facebook could allow users to download some other unique piece of a friend’s data, like the URL of their profile or their unique Facebook user ID number. If that raises security concerns, the data could perhaps be “hashed” to obscure it while maintaining its usefulness as a unique identifier, as Josh Constine at TechCrunch has suggested. Facebook and others could maybe even petition the European Data Protection Board for an interpretation of the GDPR that would clearly allow such sharing for competition purposes. There are a range of possible solutions; the only certainty is that Facebook needs to start identifying and testing approaches now.Allow Competitive Apps to Use the Facebook Platform. Data portability—letting someone download their data and transfer it elsewhere—isn’t the only way that people can leverage their Facebook data on another service. There’s also interoperability—the ability to use the Facebook Platform API to run an app that can make use of your Facebook data on an ongoing basis. The problem is that Facebook’s policy for app developers has long required that in order to make full use of the API, apps “must not replicate core Facebook features or functionality, and must not promote [their] other apps that do so.” For example, “your app is not eligible… if it contains its own in-app chat functionality or its own user generated feed” akin to Facebook’s messaging product or Facebook’s newsfeed. If Facebook doesn’t want to continue to be viewed by the public and by regulators as a platform monopolist, it needs to remove this anti-competitive provision and allow users to easily make use of their Facebook data on interoperable competing services.Some of these steps would be easy for Facebook to take. Others would be more challenging. But all are worthwhile, and ultimately necessary, for ensuring an internet ecosystem that continues to be open, innovative, and competitive.Reposted from New America's Weekly Newsletter.

Docker for Everyone is geared toward anyone looking to improve the way they build and distribute applications. Here, you'll learn how to set up entire development environments in a single command and run those same applications the same in production with total confidence that it will work. It's on sale for $20.Note: The Techdirt Deals Store is powered and curated by StackCommerce. A portion of all sales from Techdirt Deals helps support Techdirt. The products featured do not reflect endorsements by our editorial team.

Well here's a surprise for you. The DOJ's Computer Crime and Intellectual Property Section (CCIPS) has weighed in to support DMCA 1201 exemptions proposed by computer security researchers. This is... flabbergasting.In case you don't know, Section 1201 of the Digital Millennium Copyright Act (DMCA) is the "anti-circumvention" part of the law. It's the part of the law that makes it infringement to get around any "technological measure" to lock down copyright covered material, even if breaking those locks has nothing whatsoever to do with copyright infringement. It's a horrible law that has created all sorts of negative consequences, including costly and ridiculous lawsuits about things having nothing to do with copyright -- including garage door openers and printer ink cartridges. In fact, Congress knew the law was dumb from the beginning, but rather than dump it entirely as it should have done, a really silly "safety valve" was added in the form of the "triennial review" process.The triennial review is a process that happens every three years (obviously, per the name), in which anyone can basically beg the Copyright Office and the Librarian of Congress to create exemptions for cracking DRM for the next three years (an exemption -- stupidly -- only lasts those three years, meaning people have to keep reapplying). Over the years, this has resulted in lots of silliness, including the famous decision by the Librarian of Congress to not renew an exemption to unlock mobile phones a few years back. Many of the exemption requests come from security researchers who want to be able to crack systems without being accused of copyright infringement -- which happens more frequently than you might think.Historically, law enforcement has often been against these exemptions, because (in general) they often appear to dislike the fact that security researchers find security flaws. This is, of course, silly, but many like to take a "blame the messenger" approach to security research. That's why this new comment from the DOJ's CCIPS is so... unexpected.

Last week we noted how Comcast had imposed new limits on its shiny new "unlimited" wireless plans. The company informed users of its Xfinity Wireless service that moving forward, all video on the service would be throttled back to 480p, with plans to begin charging you more if you want to watch your video in full HD quality. As we noted then, this was just a continuation of a theme already established by wireless carriers like T-Mobile and Sprint, which involved imposing arbitrary throttling thresholds for games, music and video, then charging you additional money to get around those bogus limitations.It shouldn't be particularly hard to see how imposing arbitrary limits that impede your ability to experience content as the originators intended sets a terrible precedent. And should the FCC's net neutrality repeal survive its looming legal challenge, you're going to see wireless carriers and ISPs slowly embrace more and more of this sort of thing, at least once they know for sure that the government has zero interest in actually policing such "creative" abuse of a broken market. What we're seeing now is just the orchestra getting warmed up.Following on the heels of Comcast, Charter has launched its own wireless service offering that also promises users "unlimited" connectivity. But like Comcast's offering, Charter's service will also throttle all video to 480p. The company's Spectrum Mobile website explains how the industry's definition of "unlimited data" still leaves a little something to be desired:

Judicial citations and applications of the recent Supreme Court decision in the Carpenter case continue to roll in. The narrow holding by the Supreme Court was that acquisition of cell site location info (CSLI) now requires a warrant, seeing as it can be used to effectively "track" someone over a period of days or months. Historical CSLI -- especially large amounts of it -- is far more revealing than many other records covered by the Third Party Doctrine. An "equilibrium shift" was needed and the court applied it.The shift is trickling down to lower courts, leading to some examinations of the Carpenter ruling in cases that don't appear to call for it. The Supreme Court of California, ruling [PDF] on a case that originated 15 years ago, takes a brief moment to weigh the Carpenter ruling against the specifics of this appeal. (via FourthAmendment.com)At stake here -- one of the several challenges raised by the defendant -- are phone records gathered with an SCA court order. Phone records were left undisturbed by the Carpenter ruling, but here's the court's brief examination of the issue.

Readers of this site will be aware of the trend over the past several years for news and media sites across the internet deciding to nix their respective comments sections. This wave of muzzles on the communities that previously participated in these sites has come with a variety of reasons or excuses, depending on your perspective. Some sites have noted that comments sections devolve into the worst humanity has to offer, with vile speech and spam-bots sucking up all of the digital oxygen. Other sites have suggested that some sort of liability comes along with any proper moderation of their comments sections. Still others have pointed towards social media platforms that can better take over the duties as some sort of 3rd party community gathering place, be it on Facebook or Twitter. All of these reasons are silly and false, or they simply abdicate the site's responsibility for fostering a well-functioning community of commenters. Here at Techdirt, we love our own community and value the ever-living hell out of our comments, be they supporters of our positions or well-meaning dissenters. Trolls come along for the ride, of course, but we trust our own community to act as a moderating force against them.And, yet, the trend continues. The latest site to shutter its comment section is ESPN, to much unfortunate fanfare at Deadspin.

Many people forget now, but in the wake of the 2016 election, it was mainly those opposed to Donald Trump who were screaming about "fake news." They wanted an explanation for what they believed was impossible -- and one thing that many, especially in the journalism field focused on, were the made up stories that got shared wildly on Facebook. At the time, we warned that nothing good would come from so many people blaming "fake news" for the election, and I think it's fair to say we were correct on that. President Trump quickly co-opted the phrase and turned it into a mantra directed at any news story about him or his administration that he didn't like.And, of course, the term was always meaningless. It encompassed such a broad spectrum of things -- from completely made up stories, to stories with bad sourcing or an error, to stories that were spun in a way people didn't like or found misleading, to stories with a minor mistake, to just stories someone didn't like. But each of those is very, very different, and the way that different news organizations respond to these issues can be very different as well. For example, professional publications that make mistakes will publish corrections when they discover they've made an error. Sometimes they don't do so well, and they don't always do a very good job of publicizing the correction -- but they do strive to get things right. That's different than publications that simply put up purely fake stuff, just for the hell of it. And there really aren't that many such sites. But by lumping them all in as fake news, people start to blur the distinctions, and think that basically everyone is just making shit up all the time.That culminates in a new report claiming (though I question the methodology on this...) that 72% of Americans surveyed believe that traditional news sources "report news they know to be fake, false, or purposely misleading." The breakdown by political affiliation is that 53% of Democrats think this happens "a lot" or "sometimes," 79% of Independents, and 92% of Republicans. Of course, if you dug into the numbers, I'm guessing that the Democrats would point to Fox News as their proof, while the Republicans would point to MSNBC, CNN and maybe the NY Times/Washington Post.Of course, most of this is silly. Some of it is the fact that the vast majority of news consumers don't know the difference between the hard news divisions of these news organizations and the "commentary" side of these organizations, with the latter being more in the entertainment, bomb throwing side of things, and who stake out ridiculous positions because that's what they're paid to do. The actual news orgs all do actually tend to want to do good reporting. They aren't always good at that -- in fact, they're often bad at it. But that's very, very different than deliberately spreading "fakes, false or purposely misleading" news.However, simply lumping mistakes or a spin you dislike on coverage as "fake news" doesn't help. It just makes things more ridiculous and gets people up in arms more. And, again, just as we predicted, with the push to clamp down on "fake news," the end result is actually suppressing news. Facebook -- which was the main target of the whining from the anti-Trump world on "fake news" -- basically threw up its hands and said it would decrease all the news that people saw. And that means that every publication that was heavily relying on Facebook for traffic (i.e., nearly every publications except for us at Techdirt who ignored Facebook), is now getting slammed.Slate tried to get news orgs to talk about how much their Facebook traffic dropped and no one would talk, so it revealed its own traffic decline from Facebook, dropping from 28 million clicks in January 2017 (about 1/3 of its total traffic) down to less than 4 million in May 2018 (now representing 11% of its traffic) -- a drop of 87%. The site claims Facebook traffic has dropped 55% alone in 2018. Again, we deliberately avoided "playing the Facebook game" over the last decade, so the site has never been a significant source of traffic. However, for comparison purposes, I checked, and Facebook represented 2.7% of our own traffic in January of 2017, and 2.4% of our traffic in May of 2018 -- basically no different, but also close to a rounding error.But really, what this comes down to is that the whole "fake news" claim has always been silly and the calls to "do something" about fake news have really only served to make things worse. Using such a non-descriptive term has given lots and lots of people an excuse to mock or ignore any news or news organizations they dislike. And it's given an excuse to Facebook to step back from the news business altogether. None of that makes the public better news consumers or more media literate. All it does is keep people in their silos getting angry at each other.

Eliot Peper is a novelist who uses thorough research and creative thinking to produce science fiction that can feel more like eerily-accurate prognostication. Exploring possible futures with real insight has always been one of sci-fi's greatest strengths, and this week Peper joins Mike on the podcast to discuss his work, methods, and ideas about tomorrow.Follow the Techdirt Podcast on Soundcloud, subscribe via iTunes or Google Play, or grab the RSS feed. You can also keep up with all the latest episodes right here on Techdirt.

You can be in a consensual, legal relationship but still end up a sex offender. That's how child porn laws work. It's legal to have sex, but illegal to take pictures. In Ohio, a 27-year-old man was arrested on child porn charges for taking pictures of his then-17-year-old girlfriend. (h/t Guy Hamilton-Smith)The affidavit [PDF] from the FBI is a harrowing deliberate misconstruing of the actual events, written in service of destroying a man's life. It makes the man appear to be some sort of child porn-producing fiend, when, in fact, it was just him taking photos of his girlfriend.

Back when Verizon sued to overturn the FCC's fairly tepid 2010 net neutrality rules, the telco's lawyers threw every legal argument at the wall they could find, no matter how ridiculous they might be. One of those claims was that the FCC's rules somehow violated the company's First Amendment rights, a claim that Mike (and numerous other reporters at the time) properly eviscerated:

Pay what you want for the White Hat Hacker Bundle and you'll get access to the Web Hacking for Beginners course. If you beat the average price, you unlock access to 7 more courses. They cover a variety of subjects from the basics of ethical hacking, to network hacking, to hacking WiFi. You'll have the tools you need to help protect yourself and others.Note: The Techdirt Deals Store is powered and curated by StackCommerce. A portion of all sales from Techdirt Deals helps support Techdirt. The products featured do not reflect endorsements by our editorial team.

One of the key talking points from those in favor of Article 13 in the EU Copyright Directive is that people who claim it will lead to widespread censorship are simply making it up. We've explained many times why this is untrue, and how any time you put in place a system for taking down content, tons of perfectly legitimate content gets caught up in it. Some of this is from malicious takedowns, but much of it is just because algorithms make mistakes. And when you make mistakes at scale, bad things happen. Most of you are familiar with the concept of "Type 1" and "Type 2" errors in statistics. These can be more simply described as false positives and false negatives. Over the weekend, Alec Muffett decided to put together a quick "false positive" emulator to show how much of an impact this would have at scale and tweeted out quite a thread, that has since been un-threaded into a webpage for easier reading. In short, at scale, the "false positive" problem is pretty intense. A ton of non-infringing content is likely to get swept up in the mess.Using a baseline of 10 million piece of content and a much higher than reality level of accuracy (99.5%), and an assumption that 1 in 10,000 items are "bad" (i.e., "infringing") you end up with a ton of legitimate content taken down to stop just a bit of infringement:So basically in an effort to stop 1,000 pieces of infringing content, you'd end up pulling down 50,000 pieces of legitimate content. And that's with an incredible (and unbelievable) 99.5% accuracy rate. Drop the accuracy rate to a still optimistic 90%, and the results are even more stark:Now we're talking about pulling down one million legitimate, non-infringing pieces of content in pursuit of just 1,000 infringing ones (many of which the system still misses).Of course, I can hear the howls from the usual crew, complaining that the 1 in 10,0000 number is unrealistic (it's not). Lots of folks in the legacy copyright industries want to pretend that the only reason people use big platforms like YouTube and Facebook is to upload infringing material, but that's laughably wrong. It's actually a very, very small percentage of such content. And, remember, of course, Article 13 will apply to basically any platform that hosts content, even ones that are rarely used for infringement.But, just to humor those who think infringement is a lot more widespread than it really is, Muffett also ran the emulator with a scenario in which 1 out of every 500 pieces of content are infringing and (a still impossible) 98.5% accuracy. It's still a disaster:In that totally unrealistic scenario with a lot more infringement than is actually happening and with accuracy rates way above reality, you still end up pulling down 150,000 non-infringing items... just to stop less than 20,000 infringing pieces of content.Indeed, Muffett then figures out that with a 98.5% accuracy rate, if a platform has 1 in 67 items as infringing, at that point you'll "break even" in terms of the numbers of non-infringing content (147,000) that is caught by the filter, to catch an equivalent amount of infringing content. But that still means censoring nearly 150,000 pieces of non-infringing content.This is one of the major problems that people don't seem to comprehend when they talk about filtering (or even human moderating) content at scale. Even at impossibly high accuracy rates, a "small" percentage of false positives leads to a massive amount of non-infringing content being taken offline.Perhaps some people feel that this is acceptable "collateral damage" to deal with the relatively small amount of infringement on various platforms, but to deny that it will create widespread censorship of legitimate and non-infringing content is to deny reality.

Ma bell isn't much fun at parties. While traditional telcos desperately want to pivot from broadband and cable to video and online advertising, that transition has been challenging. Especially for a sector that has spent the last 30 years as government-pampered regional mono/duopolies. Many of these companies are good at running a network or lobbying government to stifle competition, but they're simply not very good at things like creativity, innovation, or disruption. That was recently made abundantly clear by Verizon's face plant after it tried to launch a sexy new Millennial-focused video platform dubbed Go90.AT&T suffers from the same disease, and it may soon manifest in abundance.You'll recall that AT&T's $86 billion acquisition of Time Warner was allowed to proceed after a comically narrow reading of the market by U.S. District Court Judge Richard Leon. At absolutely no point in his 172-page ruling, did Leon show the faintest awareness that AT&T wants to use the gutting of the FCC, the elimination of net neutrality rules, and vertical integration synergistically to behave anti-competitively in the broadband and streaming video space, something that's obvious to anybody that has spent thirty seconds watching AT&T do business.Leon took AT&T lawyers' arguments completely at face value, resulting in him failing to even apply a single meaningful condition to AT&T's latest megamerger.And while the death of net neutrality, regulatory capture and rubber-stamped merger mania are all wonderful things for AT&T, there's still one little problem AT&T needs to overcome in order to capitalize on its wide, open anti-competitive runway: it's just not very good at this whole creativity or innovation thing. While it's clear that AT&T executives think they're really good at innovation, there are growing concerns that the company is going to meddle with HBO and erode many of the things that made the channel a standout over the last twenty years.AT&T execs initially stated they'd be leaving HBO alone to do what the company does best. But that promise quickly evaporated this week at a town hall meeting at the network’s headquarters in Midtown Manhattan, where AT&T execs like John Stankey proclaimed that AT&T intends to dramatically reshape HBO to effectively focus on quantity and ad impressions over quality:

With ICE doing increased business everywhere in the US, the need to place detainees somewhere has never been greater. The president may have rescinded his demand families be separated and tossed into "foster care or whatever," but that just means detainee housing now has to cater to the needs of the young and old alike.The government has a duty of care for every person it locks up. The duty is still there. The care isn't. The way prisoners are routinely treated shows the government thinks of arrestees and prisoners as something less than human. The way it treats people who aren't even citizens is bound to be worse. The only mitigating factor is there are fewer immigrants to keep track of. But that shouldn't be taken to mean the average amount of "care" is slightly higher.A new Inspector General's report [PDF] lets readers know where it's going from page one. Here's the title of ICE OIG report:

Back in April, we wrote about a curious decision to give the widely-hated publisher Elsevier the job of monitoring open science in the EU. That would include open access too, an area where the company has major investments. The fact that the European Commission seemed untroubled by that clear conflict of interest stunned supporters of open access. Now one of them -- the paleontologist Jon Tennant -- is calling on the European Commission to remove Elsevier, and to find another company with no conflicts of interest. As Tennant writes in the Guardian:

The Supreme Court's ruling in the Carpenter case came as something of a surprise. The nation's courts seemed unwilling to start paring back the Third Party Doctrine, but the expansion of people's digital footprints following the widespread adoption of smartphones proved to be too big to ignore. The ruling was narrow -- finding only that the acquisition of historical cell site location info (CSLI) was a search under the Fourth Amendment -- but it possibly contains broader applications.The way it stands now, law enforcement needs a warrant to collect CSLI from cell service providers -- the first hole that's been poked in the Third Party Doctrine since its inception almost 40 years ago. If not for the Riley decision -- the one that recognized phones no longer resembled "containers" or "pockets," but rather contained a detailed depiction of a person's entire life -- the Supreme Court may not have arrived at this conclusion. But it was that decision that first conjured up the image of the government happily discovering people were carrying around personal tracking devices loaded with info 24 hours a day. Grabbing large quantities of CSLI -- 127 days in Carpenter's case -- turned cellphones into ad hoc ankle bracelets, allowing the government to reconstruct someone's movements over a period of months using only a subpoena.The lower courts are now starting to apply the Carpenter ruling as defendants use this decision to challenge evidence against them. In this case reviewed by the Georgia Court of Appeals, the warrantless acquisition didn't involve cell site location info, but rather a vehicle's black box. Here are the facts of the case, from the decision [PDF]:

You may have heard over the past few weeks that there's been some mob violence in India in response to totally false information that is being spread. But if you've heard about it, it's almost certainly in conjunction with a lot of finger pointing not at the people spreading the misinformation, or those, you know, lynching people based on false information. Instead, the blame is being squarely placed... on the app where the misinformation is being spread: WhatsApp.

One of the major benefits of cutting the traditional TV cord and switching to streaming video services was supposed to be the lower cost of service. But because broadcasters dictate the licensing cost of content for both services, it was inevitable that the sector would increasingly mimic its traditional cable counterparts. As a result, numerous streaming video services used the July 4th holiday to obfuscate an industry wide price hike, driving up the monthly subscription costs of services like AT&T's DirecTV Now, Sony's Playstation Vue, and Dish Network's Sling TV.AT&T's price hike, a $5 bump for all of the company's DirecTV Now streaming TV tiers, is likely getting the most attention because it's the precise type of hike AT&T repeatedly stated wouldn't be happening if regulators signed off on the company's $86 billion merger with Time Warner. AT&T lawyers repeatedly claimed during the recent court battle with the DOJ that the deal would lower prices, not raise them:

We've talked a little about the rush job to pass a California privacy bill -- the California Consumer Privacy Act of 2018 (CCPA) -- and a little about how California's silly ballot initiatives effort forced this mad dash. But a few people have asked us about the law itself and whether or not it's any good. Indeed, some people have assumed that so many lobbyists freaking out about the bill is actually a good sign. But, that is not the case. The bill is a disaster, and it's unclear if the fixes that are expected over the next year and a half will be able to do much to improve it.First, let's state the obvious: protecting our privacy is important. But that does not mean that any random "privacy regulation" will be good. In a future post, I'll discuss why "regulating privacy" is a difficult task to tackle without massive negative consequences. Hell, over in the EU, they spent years debating the GDPR, and it's still been a disaster that will have a huge negative impact for years to come. But in California they rushed through a massive bill in seven days. A big part of the problem is that people don't really know what "privacy" is. What exactly do we need to keep private? Some stuff may be obvious, but much of it actually depends quite heavily on context.But the CCPA takes an insanely broad view of what "personal info" is covered. Section 1798.140(o)(1) defines "personal information" to mean... almost anything:

For those who love an intense workout, there are the Pump HD Sportbuds, designed specifically to deliver unrivaled audio during extreme activity. Featuring elite wireless range and an IP67 waterproof rating, these ruggedly designed buds are perfect for any activity, be it basketball or hiking. They play for up to 8 hours and are on sale for $29.99.Note: The Techdirt Deals Store is powered and curated by StackCommerce. A portion of all sales from Techdirt Deals helps support Techdirt. The products featured do not reflect endorsements by our editorial team.

Prior to the passage of SESTA/FOSTA, we pointed out that -- contrary to the claims of the bill's suppporters -- it would almost certainly make law enforcement's job much more difficult, and thus actually would help human traffickers. The key: no matter what you thought of Backpage, it cooperated with law enforcement. And, law enforcement was able to use it to track down traffickers using online services like Backpage. Back in May we noted that police were starting to realize there was a problem here, and it appears that's continuing.Over in Indianapolis, the police have just arrested their first pimp in 2018, and it involved an undercover cop being approached by the pimp. The reporter asks why there have been so few such arrests, and the police point the finger right at the shutdown of Backpage:

Sprint and T-Mobile last week went before Congress to literally argue that fewer competitors in the wireless space will magically result in... more competition in the wireless space. The two companies are trying to gain regulatory approval for their latest $23 billion merger attempt, the second time in four years this particular deal has been attempted.The companies' previous merger attempt was blocked in 2014 after regulators noted that removing one of just four major carriers would result in a proportionally-lower incentive to actually compete on price, something that's really not debatable if you've paid attention to telecom and broadband industry history. That's especially true in Canada, where consolidation to just three players has resulted in some of the highest mobile data prices in the developed world. AT&T's attempt to acquire T-Mobile in 2011 was blocked for the same reason, a move that many forget resulted in T-mobile being more competitive than ever.But while speaking before a Senate Judiciary subcommittee investigating the deal, T-Mobile and Sprint executives told Congress a decidedly different story. One in which the rules of competition, and mathematics, no longer apparently apply:

The DOJ, after flailing wildly for most of the last 18 months, has dismissed the remaining defendants in its disastrous inauguration day protest prosecutions.

This week, our top comment on the insightful side comes in response to the disturbing discovery that cops have been instructing paramedics to inject people they arrest with ketamine. Stephen T. Stone won first place, though in fact his comment was reiterating one line from a longer comment by I.T. Guy in response to someone explaining that ketamine is commonly used for people in mental health crises:

Five Years AgoThis week in 2013, we kicked things off with the latest Snowden leaks revealing that the US had used bugs for surveillance on its allies, and that the PRISM program was huge and complex. George W. Bush stepped up to defend the NSA while President Obama tried to smooth things over with Europe, FISA court judges were upset about the scrutiny, and the Washington Post published a sad editorial calling for the leaks to stop. Then James Clapper shockingly admitted to lying to congress, but was apparently off the hook with nothing more than a staged apology.Ten Years AgoThis week in 2008, while Sony was further fragmenting the movie download market and NBC was once again failing to offer compelling Olympic coverage online, EMI was showing off its promised "new approach" to the internet by suing more platforms over piracy. Bono joined his manager in blaming ISPs for the destruction of music, while we wondered if the recording industry would play by its own proposed three-strikes rule but for faulty DMCA notices. Meanwhile, the RIAA argued in the Jammie Thomas case that evidence of actual distribution shouldn't be necessary to sue for infringement, while Viacom convinced the court that YouTube should hand over logs of the IP addresses and usernames of people who watched videos.Fifteen Years AgoThis week in 2003, the FCC launched its national do-not-call list, which was so popular that the website to sign up quickly went down. Some people quickly started calling for a similar plan for spam, while others questioned how well it would really even work for calls. Speaking of spam, one spammer won in court this week since spamming is not "trespassing", but another submitted a guilty plea in his case because it certainly can be fraud. Spam was, overall, getting worse and costing money, while the world braced for the expected onslaught of text messaging spam.

As we have been covering in the last couple of weeks, a controversial EU Copyright Directive has been under discussion at the European Parliament, and in a surprising turn of events, it voted to reject fast-tracking the tabled proposal by the JURI Committee which contained controversial proposals, particularly in Art 11 and Art 13. The proposed Directive will now get a full discussion and debate in plenary in September.I say surprising because for those of us who have been witnesses (and participants) to the Copyright Wars for the last 20 years, such a defeat of copyright maximalist proposals is practically unprecedented, perhaps with the exception of SOPA/PIPA. For years we've had a familiar pattern in the passing of copyright legislation: a proposal has been made to enhance protection and/or restrict liberties, a small group of ageing millionaire musicians would be paraded supporting the changes in the interest of creators. Only copyright nerds and a few NGOs and digital rights advocates would complain, their opinions would be ignored and the legislation would pass unopposed. Rinse and repeat.But something has changed, and a wide coalition has managed to defeat powerful media lobbies for the first time in Europe, at least for now. How was this possible?The main change is that the media landscape is very different thanks to the Internet. In the past, the creative industries were monolithic in their support for stronger protection, and they included creators, corporations, collecting societies, publishers, and distributors; in other words the gatekeepers and the owners were roughly on the same side. But the Internet brought a number of new players, the tech industry and their online platforms and tools became the new gatekeepers. Moreover, as people do not buy physical copies of their media and the entire industry has moved towards streaming, online distributors have become more powerful. This has created a perceived imbalance, where the formerly dominating industries need to negotiate with the new gatekeepers for access to users. This is why creators complain about a value gap between what they perceive they should be getting, and what they actually receive from the giants.The main result of this change from a political standpoint is that now we have two lobbying sides in the debate, which makes all the difference when it comes to this type of legislation. In the past, policymakers could ignore experts and digital rights advocates because they never had the potential to reach them, letters and articles by academics were not taken into account, or given lip service during some obscure committee discussion just to be hidden away. Tech giants such as Google have provided lobbying access in Brussels, which has at least leveled the playing field when it comes to presenting evidence to legislators.As a veteran of the Copyright Wars, I have to admit that it has been very entertaining reading the reaction from the copyright industry lobby groups and their individual representatives, some almost going apoplectic with rage at Google’s intervention. These tend to be the same people who spent decades lobbying legislators to get their way unopposed, representing large corporate interests unashamedly and passing laws that would benefit only a few, usually to the detriment of users. It seems like lobbying must be decried when you lose.But to see this as a victory for Google and other tech giants completely ignores the large coalition that shares the view that the proposed Articles 11 and 13 are very badly thought-out, and could represent a real danger to existing rights. Some of us have been fighting this fight when Google did not even exist, or it was but a small competitor of AltaVista, Lycos, Excite and Yahoo!At the same time that more restrictive copyright legislation came into place, we also saw the rise of free and open source software, open access, Creative Commons and open data. All of these are legal hacks that allow sharing, remixing and openness. These were created precisely to respond to restrictive copyright practices. I also remember how they were opposed as existential threats by the same copyright industries, and treated with disdain and animosity. But something wonderful happened, eventually open source software started winning (we used to buy operating systems), and Creative Commons became an important part of the Internet’s ecosystem by propping-up valuable common spaces such as Wikipedia.Similarly, the Internet has allowed a great diversity of actors to emerge. Independent creators, small and medium enterprises, online publishers and startups love the Internet because it gives them access to a wider audience, and often they can bypass established gatekeepers. Lost in this idiotic “Google v musicians” rhetoric has been the threat that both Art 11 and 13 represent to small entities. Art 11 proposes a new publishing right that has been proven to affect smaller players in Germany and Spain; while Art 13 would impose potentially crippling economic restrictions to smaller companies as they would have to put in place automated filtering systems AND redress mechanisms against mistakes. In fact, it has been often remarked that Art 13 would benefit existing dominant forces, as they already have filtering in place (think ContentID).Similarly, Internet advocates and luminaries see the proposals as a threat to the Internet, the people who know the Web best think that this is a bad idea. If you can stomach it, read this thread featuring a copyright lobbyist attacking Neil Gaiman, who has been one of the Internet celebrities that have voiced their concerns about the Directive.Even copyright experts who almost never intervene in digital rights affairs the have been vocal in their opposition to the changes.And finally we have political representatives from various parties and backgrounds who have been vocally opposed to the changes. While the leader of the political opposition has been the amazing Julia Reda, she has managed to bring together a variety of voices from other parties and countries. The vitriol launched at her has been unrelenting, but futile. It has been quite a sight to see her opponents both try to dismiss her as just another clueless young Pirate commanded by Google, while at the same time they try to portray her as a powerful enemy in charge of the mindless and uninformed online troll masses ready to do her bidding.All of the above managed to do something wonderful, which was to convey the threat in easy-to-understand terms so that users could contact their representatives and make their voice heard. The level of popular opposition to the Directive has been a great sight to behold.Tech giants did not create this alliance, they just gave various voices access to the table. To dismiss this as Google’s doing completely ignores the very real and rich tapestry of those defending digital rights, and it is quite clearly patronizing and insulting, and precisely the reason why they lost. It was very late until they finally realized that they were losing the debate with the public, and not even the last-minute deployment of musical dinosaurs could save the day.But the fight continues, keep contacting your MEPs and keep applying pressure.Reposted from the TechnoLlama blog.

When life is literally on the line, Texas judges are slouching their way towards another paycheck.

Malaysia's government seized upon the term "fake news" as a way to silence coverage of internal corruption. The new law gave the government a way to steer narratives and control negative coverage, going beyond its already-tight control of local media. It would have worked out well for Prime Minister Najib Razak, who was facing a lot of negative coverage over the sudden and unexplained appearance of $700 million in his bank account.Razak is no longer Prime Minister. His replacement, Mahathir Mohamad, claimed he would abolish the law if elected. Once elected, Mohamad walked back his promise, replacing "abolish" with "modify." In the meantime, the law had already claimed at least one victim, a Danish national visiting Malaysia who made dubious claims on YouTube about police response time following the shooting of an activist.UN Special Rapporteur on freedom of expression, David Kaye, had already officially complained to Malaysia's government about its "fake news" law and the damage it would do free speech. The government appeared to have ignored this in favor of protecting itself from free speech. The outgoing prime minister may not have needed this "protection" following his ejection from the public sector, but the new boss seemingly was in no hurry to give up this new power over the press.Surprise, surprise! David Kaye now reports the Malaysian government is dumping this terrible law, effective almost immediately. In a letter to Kaye, Malaysia's UN ambassador states the government had reversed course on punishing fake news.

The president's new "see something, say something" program isn't about national security, even if he'll claim it is. It's about gathering whatever bits of evidence he can use to shore up his repeated claims about "dangerous" immigrants. The narrative doesn't work without it. Unfortunately, despite the money and manpower being thrown at it, the lack of "bad hombre" data continues to undermine this administration's assertions.Last year kicked off with a bunch of ICE sweeps. Done in hopes of rustling up enough undocumented hardened criminals, it was a robust failure. Communications obtained from ICE show it inflated the number of "egregious" cases by cannibalizing reports from other jurisdictions, if not travelling back in time to include violators seized during 2016 raids. Even the inflated numbers were underwhelming.The next step was the VOICE hotline -- a place where citizens could report suspicious individuals they suspected were undocumented and known criminals/immigrants. Calls are fielded 12 hours a day, supported by $1 million in annual funding taken directly from "any and all resources that are currently used to advocate on behalf of illegal aliens."Data leaked by ICE showed this plan wasn't working either. A majority of the calls received reported aliens of extraterrestrial origin when not showering staffers with obscenities. The more "legitimate" complaints weren't all that legitimate. Many of the calls discussing illegal immigrants were nothing more than estranged spouses, angry parents, and other such upstanding Americans attempting to use ICE as an on-call vigilante force to remove people they didn't like from their lives.VOICE is still in operation and has finally delivered its first report. As Vera Bergegruen reports for Buzzfeed, there's no success story to be found in its pages.

They say that laws are like sausages, and you should never watch either be made if you don't want to be sick. But some manufacturing processes are more disgusting than others, and if we don't want to suffer ill-effects, we need to keep an eye on the worst of them.As others have discussed, the new California Consumer Privacy Act (CCPA) is at best a law with troubling aspects, if not completely chilling for future Internet businesses and even non-commercial online expression. True, there may be the opportunity to amend it before it goes into effect to dull the worst of it, but how we find ourselves in this position where we are stuck with a ticking time bomb of a law that we now need to fix is a story worth telling, because if it could happen once it could happen again. And already has.Which is why I'm going to tell the story about how California just banned soda taxes (in fact, not coincidentally, right around the same time that it passed the CCPA).To understand what happened, one first needs to understand a bit about the California Constitution. In addition to setting up the typical branches of government (legislative, executive, judicial), it also allows for a form of direct democracy through ballot initiatives. Ballot initiatives generally only need a simple majority to pass, but once passed, they can be very difficult, if not impossible, to un-pass or modify them without another ballot measure. Even when ballot measures only amend statutory code, and not the Constitution itself, the legislature can be prevented from making any modifications to that new language, no matter how necessary those changes may be, unless the ballot initiative allows the legislature to act. And even if the initiative does permit it, it may require a much more difficult to attain super-majority of the legislature to make any changes, rather than the simple majority typically required to pass legislation.The upshot is that an awful lot of California law and policy can depend on the initiative process -- and thus a whole lot can depend on who is able to use it to push forth the policy they prefer. In one sense, it's hard to get a new initiative on the ballot: it requires hundreds of thousands of signatures to qualify. But it turns out that for people who have a lot of money, it's not all that hard. Some estimate that it may take only $3-4 million to acquire enough signatures to get any initiative on the ballot.Of course, whether such an initiative would pass is a separate question, but there are a few factors that make the odds pretty good. One is that it's very difficult for the electorate to make informed choices, and I don't say that as any sort of insult to the average California voter. In the most recent election this past June I timed how long it took to figure out who and what to vote for and clocked it at a whole hour. And that's with me, a lawyer practiced in reading and evaluating law and policy, living in an unincorporated area of California, meaning that I was spared having to wade through any city candidate or ballot measure choices. I just had to vote on candidates for all county, state, and federal offices, and on all county and state ballot measures. And this was in June, where there were fewer choices all around than there will be in November, yet it still took an hour to make any sort of responsible decisions before I was prepared to head to the polls. Of course, not everyone has that hour, and for many it will likely take longer, which means that the electorate tends to be dependent on campaign advertising to help them make those choices. But if someone has a few million dollars to spend to get an initiative on the ballot, they may easily have a few more, or a lot more, to spend on that advertising, and their opponents, no matter how principled in their opposition, just as easily may not.The reality is that anyone who can spend a few million dollars to get an initiative on the ballot can use that money to put an electoral gun to the head of policymakers and force them to legislate for their desired policy in exchange for withdrawing the initiative from the upcoming election. Because at least if the policy gets implemented via the legislature's hand, rather than through the initiative process, the legislature might be able to temper some of its language. Also, by being an ordinary bill, it would theoretically be more changeable in the future, subject only to ordinary legislative majorities and not dependent on someone funding a new initiative that could successfully override it.As this article in the Sacramento Bee describes, the soda tax ban is a case study of this dynamic. A business group wrote a proposal that would have created some significant limitations in the state's ability to raise revenue. It then shopped around the proposed initiative until it found someone willing to underwrite the signature-gathering necessary to get it on the ballot. That someone turned out to be the beverage industry, which generally hates soda taxes.The relative merits of soda taxes are beyond the scope of this post. Suffice it to say, certain California communities like them, often as a way of raising revenue for public health programs and deterring the over-consumption of unhealthy drinks. Several of these communities have already passed a few such taxes.But after the beverage industry underwrote the effort to get enough signatures to qualify the tax-limiting initiative for the ballot, an initiative that did more than just ban soda taxes but instead affected the state's taxation ability more broadly, the legislature found itself having to play electoral roulette: perhaps the ballot measure might fail and everything would be fine, but if it passed, it risked messing up the fiscal health of the state and all the policies and programs the legislature wanted to fund. So it capitulated and did a deal with the initiative's sponsor to bar any other California communities from passing their own soda taxes for the next 12 years in exchange for having the ballot initiative withdrawn.In fact, June was a busy month for legislative capitulation, because right around the same time that the legislature did that deal it also did a deal with the sponsors of the "Consumer Right to Privacy Act of 2018" initiative that had also qualified for the November ballot.* Because that initiative, if it passed, would definitely cripple the Internet, the legislature instead agreed to pass the CCPA, which will only probably cripple it, but at least has the potential for improvement.And that's what this post is really about, this extortionate ability for basically anyone with $4 million to spend to blackmail the legislature to set aside its own legislative judgment and build into California law whatever terrible policy the person with the money wants. Sure, for any policy that is so awful or unpopular there's always the chance that it might lose at the polls come Election Day, and from time to time ballot initiatives do get shot down. But it's very easy for garbage to get through, and wealthy minority voices count on that possibility when they try to ram through all sorts of policies that aren't necessarily good ones for Californians or its businesses – including on matters of tech policy.On our best days these tech policy challenges require careful, nuanced treatment. We should look to the legislature, and legislators, to give it that careful, nuanced treatment before imposing drastic changes in the law that will affect them. But they can't give these regulatory proposals that sort of necessary attention they deserve if for a mere $4 million or so people can force them to rush through law that has been drafted without any of the care or necessary transparency sound regulation requires.And when they are forced to pass a law like that, as they were just now with the CCPA, it is unlikely to be something we should cheer.* Also, per the Los Angeles Times article linked above, "A third proposal, asking taxpayers to subsidize lead paint cleanup projects, was withdrawn by paint companies in exchange for lawmakers scrapping a slate of bills designed to impose new rules on the industry."

The Complete Tableau 10 Data Science Bundle has 5 courses designed to teach you all about Tableau 10. Tableau 10 is the data visualization tool that breaks mounds of information down into clear, actionable insights. You'll learn how to create gripping dashboards and story points to communicate your insights, master advanced calculations, dashboards, and solve complex queries, and more. The bundle is on sale for $19.Note: The Techdirt Deals Store is powered and curated by StackCommerce. A portion of all sales from Techdirt Deals helps support Techdirt. The products featured do not reflect endorsements by our editorial team.

Nothing says summer vacation like a police union thinking it should get to decide what kids should or shouldn't be reading during their break. The Comic Book Legal Defense Fund (CBLDF) brings us the ridiculous news that the protective coating serving the thinnest skins in the public sector has feelings about teens thinking about stuff.

Countries around the world continue to wage their not so subtle war on the use of virtual private networks (VPNs) and encryption. In Russia, the government has all but banned the use of VPNs by layering all manner of obnoxious restrictions and caveats on VPN operators. The goal, as we've seen in China and countless other countries, is to ban VPN use without making it explicitly clear you're banning VPN use. The deeper goal is always the same: less privacy and online freedom for users who use such tools to dodge surveillance or other, even dumber government policies.Case in point: Uganda recently decided it would be a great idea to impose a new 200 Uganda shilling ($0.05) tax on the use of social networking websites. President Yoweri Museveni pushed for the changes to combat what he calls "gossip," and now users have to pay the 200 shilling fee each day just to access websites and services like Facebook, Whatsapp, and Twitter. $20 more per year is not an insubstantial sum in a country where the average income is around $600, and the average Ugandan survives on usually less than a dollar per day.The tax is, not surprisingly, not being received well:

Over the weekend, Zack Whittaker of ZDNet reported a New Zealand security researcher has somehow earned the unwanted attention of DHS and ICE.

We've made the point repeatedly that one of the last and most important threads on which the current cable television industry is hanging is that of live sports. While cord-cutting is indeed a thing, the many broadcast agreements pro and major college sports leagues have with cable broadcast partners keeps the cord-cutting from becoming a deluge from a burst dam. That being said, small but important steps have begun with many leagues, which are finally recognizing the demand viewers have for over the top streaming options. While there are still far too many restrictions in these sports streaming options, there is no doubt that American sports leagues have begun snipping away at this thread for cable television.And now it this practice is coming to Europe as well. Specifically, Amazon has secured a relatively small but massively important streaming broadcast agreement for Premier League soccer.

Kim Dotcom's ongoing legal saga continues. The latest is that the New Zealand Court of Appeal has rejected his appeal of earlier rulings concerning whether or not he can be extradited to the US. Dotcom and his lawyers insist that they will appeal to the Supreme Court, though there seems to be some disagreement about whether or not that will even be possible. The full ruling is worth a read, though much of it is dry and procedural.And, I know that many people's opinion of this case is focused almost exclusively on whether they think Kim Dotcom and Megaupload were "good" or "bad," but if you can get past all of that, there are some really important legal issues at play here, especially concerning the nature of intermediary liability protections in New Zealand, as well as the long-arm reach of US law enforcement around the globe. Unfortunately, for the most part it's appeared that the courts have been much more focused on the whole "but Dotcom is obviously a bad dude..." and then used that to rationalize a ruling against him, even if it doesn't seem to fit what the law says.As Dotcom and his lawyers have noted, this has meant that, while there are now three rulings against him on whether or not he can be extradited, they all come to different conclusions as to why. A key issue, as we've discussed before, is the one of "double criminality." For there to be an extraditable offense, the person (or people) in question need to have done something that is a crime in both the US and New Zealand. As Dotcom has argued over and over again, the "crime" that he is charged with is effectively criminal secondary copyright infringement. And that's a big problem, since there is no such thing as secondary criminal copyright infringement under US law. Since Megaupload was a platform, it should not be held liable for the actions of its users. But the US tries to wipe all of that away by playing up that Dotcom is a bad dude, and boy, a lot of people sure infringed copyright using Megaupload. And all of that may be true, but it doesn't change the fact that they should have to show that he actually broke a law in both countries.Indeed, the lower court basically tossed out the copyright issue in evaluating extradition, but said he could still be extradited over "fraud" claims. Dotcom argued back that without the copyright infringement, there is no fraud, and thus the ruling didn't make any sense.The Court of Appeal comes to the same conclusion, but for somewhat different reasons. It appears that Dotcom's lawyers focused heavily on what some might consider technical nitpicking in reading of the law. Pulling on a tactic that has been tried (not successfully...) in the US, they argued that reading through the text of the copyright shows that it only applies to "tangible" copies -- i.e., content on a physical media -- rather than on digital only files. In the US, at least, the Copyright Act is written in such a way that a plain reading of the law says that copyright also only applies to physical goods, rather than digital files. But, as has happened here, US courts have not been willing to accept that fairly plain language in the statute because it would mess up the way the world views copyright. It's no surprise that the New Zealand court came to the same end result. While it would be better if the law itself were fixed, the courts seem pretty united in saying that they won't accept this plain reading of the statute, because that would really muck things up. Unfortunately, in focusing on that nitpicking, it may have obscured the larger issues for the court.Over and over again in the ruling, the court seems to bend over backwards to effectively say, "look, Dotcom's site was used for lots of infringement, so there's enough evidence that he had ill intent, and therefore we can hand him over to the US." That seems like a painfully weak argument -- but, again, par for the course around Dotcom. So, basically, even though it has other reasons than the lower court, this court says there's enough here to extradite:

As we recently noted, California was on the cusp of passing the toughest net neutrality law in the nation, a bill the EFF declared to be the "gold standard" for state-level rules. But late last month AT&T and Comcast lobbyists descended on California to scuttle the effort, convincing California Assemblyman Miguel Santiago to neuter the most important portions of the proposal. Santiago, no stranger to AT&T campaign cash, rushed through a series of last-minute amendments behind closed doors without providing the bill's backer or the public a chance to chime in.But Santiago quickly felt the ire of net neutrality activists and internet users, including a new crowdfunded billboard intended to shame Santiago. Lo and behold, lawmakers including Santiago and the original bill's backer (State Senator Scott Wiener) held a press conference today to announce that they'd come to an agreement, and would be largely restoring the bill to its original form.

I've been talking a lot lately about the unfortunate shift of the web from being more decentralized to being about a few giant silos and I expect to have plenty more to say on the topic in the near future. But I'm thinking about this again after Andy Baio reminded me that this past weekend was five years since Google turned off Google Reader. Though, as he notes, Google's own awful decision making created the diminished use that allowed Google to justify shutting it down. Here's Andy's tweeted thread, and then I'll tie it back to my thinking on the silo'd state of the web today:

The first response to a tragedy by many public officials is to capitalize on it. That's what the Anne Arundel County police are doing in the aftermath of the shooting at the Capital Gazette newspaper that left five journalists dead. Police Chief William Kampf seems to believe this could have been prevented if the department hadn't been locked out of its social media snooping tool. (h/t WarOnPrivacy)

Lean Six Sigma is one of the most popular business strategies for reducing waste, accelerating product delivery, and ultimately driving profit. This 6 course bundle takes you through the fundamentals of implementing both Lean and Six Sigma in enterprise-wide projects. You'll come to understand core concepts, such as 5S, waste reduction, process mapping, and mistake-proofing, and prepare to certify your skills with three Lean Six Sigma Black Belt simulation exams. It is on sale for $69.Note: The Techdirt Deals Store is powered and curated by StackCommerce. A portion of all sales from Techdirt Deals helps support Techdirt. The products featured do not reflect endorsements by our editorial team.

The last few days (and weeks) we've had plenty of articles about the EU's attempt to undermine the fundamental aspects of the internet with its Copyright Directive, including a snippet tax and the requirement of upload filters. Supporters of the Directive have resorted to ever-increasing levels of FUD in trying to get the EU Parliament to move the directive forward without changes -- and they did this despite quietly making the directive much, much worse and only revealing those changes at the last minute. It became quite obvious that the intent of this legislative effort was to fundamentally change the internet, to make it much more like TV -- with a set of gatekeepers only allowing carefully selected and licensed content online.As the drumbeat got louder from (quite reasonably) concerned people around the world, supporters of the effort kept trying different strategies in support of this nonsense -- including a letter claiming to be written by Sir Paul McCartney.I have some serious doubts as to whether or not McCartney actually understands these issues. The fact that the letter uses the RIAA's exact talking points -- including the made up phrase "value gap" (not to mention the American English spelling of "jeopardizes" over "jeopardises") -- certainly hints at someone else writing this up and asking McCartney to sign. It certainly reflects pretty poorly on someone as beloved as McCartney (who, in the past, has actually embraced the open internet to more directly connect with fans) that he would weigh in on the wrong side of such an issue.Either way, the good news is that even with McCartney's silly letter, the EU Parliament voted against moving the current version forward by a narrow tally of 318 to 278.

A few years back, wireless carriers began flirting with a new idea: throttling all video by default, then charging you additional money if you wanted to view video as actually intended. You'll probably recall that T-Mobile spearheaded this effort, and wasn't particularly honest about what it was doing. You might also recall that Sprint began throttling all video to 1.5 Mbps, all games to speeds "up to 2 Mbps" and all music streams to speeds "up to 500 Kbps." Fortunately for you, you could avoid dealing with this arbitrary restrictions if you were willing to pay Sprint an additional $25 per month:

Something strange and disturbing is going on in Minneapolis, Minnesota. Cops have been instructing paramedics to use certain drugs to subdue arrestees, which is about as advisable as allowing paramedics to instruct officers on use of force. Cops don't know what's best for arrestees in terms of medical care. The fact that paramedics have been following their instructions is the most disturbing fact of all. As the Star Tribune reports, cops telling EMS personnel what to do has put people's lives in jeopardy.

A month ago, we took a bunch of public domain/FOIA'd NSA "security posters" from the 1950s, 60s and 70s, and turned them into some pretty terrific retro style t-shirts. We're not publishing today as it's July 4th, and we thought: what better way to celebrate July 4th than to order some NSA-approved t-shirts (or mugs or hoodies)? They're real conversation starters. You can see the whole collection at our Teespring store.Of course, we've heard from some people that they're not sure which NSA poster they want on a t-shirt or mug -- so I thought for the holiday, I'd share some information on which ones are most popular so far. At the top of the list we've got the groovy "Secure All Classified Material" design:In close second is my favorite, "Security for the Seventies." Don't be left behind.Those two are by far the most popular. After that, far behind those two, we have a cluster of another 5 designs that people seem to like. There's "Up Tight and Out of Sight" which looks more like an album cover than a security poster:There's "Be Sure to Vote Security" -- which you can't really argue with:Another popular styling one is the "Lock Before You Leave" footprint:There's certainly something practical about the recommendation to "Tighten Security Practices":And finally, who can pass up this good advice: "Do Not Discuss Classified Business Outside Authorized Areas". I have to imagine this shirt must make for quite the conversation starter...Check them out, get a nice t-shirt, mug or hoodie -- and support Techdirt in the process.

We've had a bunch of posts today alone (and in the past few weeks) about the absolutely terrible EU Copyright Directive that the wider EU Parliament will vote on this Thursday. The version that will receive a vote on Thursday was only just released and it shows that the legislative affairs committee, JURI, that voted for it a few weeks ago actually took a really bad proposal and made it significantly worse. As more and more people have woken up to this fact and started calling it out, it appears that JURI is going on the offensive. And I mean "offensive" in both definitions of the word.JURI sent sent the attached document to Members of Parliament, trying to defend its position on Articles 11 and 13. The email it sent reads as follows:

It's indisputable that Ajit Pai's attack on net neutrality was a facts-optional hatchet job of historical proportions. Pai ignored the public, the experts, ethical boundaries, and FCC guidelines as he rushed to give a sloppy wet kiss to some of the most disliked and anti-competitive companies in any American industry. Making matters worse, Pai repeatedly rubbed salt in the wound by behaving like a tone-deaf ass at numerous points during the bizarre and amateurish gambit.That said, however terrible Ajit Pai has been (and he has been historically terrible), it should go without saying that threatening the FCC boss or his family is both idiotic and counterproductive.You'll recall that Pai was forced to cancel his appearance at CES back in January due to death threats. And late last week, the Department of Justice announced that it had arrested a 33-year old California man for sending e-mails that threatened both Pai's and his family's lives:

In 2016, Techdirt wrote about a troubling case, Hassell v. Bird, in which a court issued an injunction telling Yelp to delete a review after a lawyer won a default judgment in a defamation case. The court ignored that Section 230 of the CDA says that platforms like Yelp cannot be held liable (and thus can't be legally mandated) to remove content of third parties, and didn't seem to care that Yelp wasn't even a party in the case.The good news is that Yelp won its appeal of the injunction. The bad news, though, is that it barely won, and the relatively elegant, cogent opinion finding that Section 230 prevented the injunction is tempered in its effect by only being a plurality decision: victorious in its ultimate holding only because of a concurring vote on different grounds that provided a less-than-full-throated endorsement of the plurality's conclusion.This case began when someone, who the plaintiff Hassell believes to be Bird, had posted a critical review of the Hassell law firm on Yelp that Hassell claimed to be defamatory. Hassell sued Bird and ended up with a default judgment agreeing that it was defamatory. Hassell also got the trial court in San Francisco to issue an injunction ordering Yelp to delete the offending posts. Yelp appealed the injunction on several grounds, including that it never had a chance to be heard by the court before it issued a judgment against it, and because Section 230 should have barred it. After losing at the California Court of Appeals, the California Supreme Court agreed to take up its case, and this week it issued its ruling.The plurality opinion, which garnered three votes, found it sufficient to invalidate the injunction entirely on Section 230 grounds without having to reach any due process consideration. It cited plenty of prior cases to support its Section 230 analysis, but spent some time discussing the holdings in three in particular: Zeran v. AOL, Kathleen R. v. City of Livermore, and Barrett v. Rosenthal [p. 14-20]. Zeran was an early case construing Section 230 that set forth why it was so important for speech and ecommerce that platforms have this statutory protection for liability arising from their users' content. Barrett v. Rosenthal was a subsequent California Supreme Court case, which similarly construed it. And Kathleen R. was a case where a California Court found that Section 230 precluded injunction relief. These and other cases underpinned the plurality's opinion.It also made several other points in support of its Section 230 finding. One was the observation that if Section 230 couldn't prevent the non-party injunction against Yelp it would just prompt litigants to game the system by not even bothering trying to name platforms as defendants, since they'd have better luck getting injunctions against them if they did NOT try to sue them than if they did.