Security Archives - Page 4 of 8

BIRN Launches Online Community to Connect Journalists

Posted on January 20, 2021January 26, 2023 by BIRD

The Balkan Investigative Reporting Network launched a new cross-border journalism platform on Wednesday, aiming to connect more than 1,000 journalists who took part in BIRN’s programmes as fellows, trainees and grantees, as well as other journalists reporting on South-East and Central Europe.

BIRD Community offers a unique secure online environment in which to exchange information, as well as a comprehensive database and a rich contacts directory of experts across the Western Balkans.

The idea was the result of more than 15 years of experience in connecting journalists across the Balkans and beyond to produce complex regional analyses and cross-border investigations, as well as BIRN’s experience in providing comprehensive training in investigative reporting.

The aim of BIRD Community is to make journalistic work much easier and take journalistic networking to the next level. By joining BIRD Community, journalists will get:

A secure environment in which they can easily reach out to BIRN’s team members and other colleagues from our alumni network across South-East and Central Europe.
Free access to BIRD Source, an easily searchable and comprehensive database with thousands of documents collected by BIRN over the years and exclusive data scraped from public registries and state institutions’ websites as well as information obtained through Freedom of Information requests. BIRD Source also offers journalists the opportunity to share their own documents and leaks, and has a tool that allows them to sketch a diagram online to summarise investigative findings with other journalists.
Access to BIRD Directory, with around 1,400 names and contacts of experts from Albania, Bosnia and Herzegovina, Kosovo, Montenegro, North Macedonia and Serbia.
Access to Forum in which journalists can easily communicate with other members, privately or publicly.
The opportunity to send requests for help, information and advice from other journalists by posting them in the Bulletin Board section. The responses from other members can be made visible to all users or can be kept private.
Updates on grants and training opportunities.

Members can create public or private topics in the Forum section – the former will be visible to all members, allowing any of them to join the discussion, while with the latter, the creator can choose which members will be able to participate.

The Bulletin Board section is a place to share opportunities with others, ask for help, swap contacts or find a journalist who specialises in a particular topic. In the Bulletin Board section, members can leave posts which can either be private or be seen by all other members.

Once members subscribe to the posts and topics they want to follow on the Forum and Bulletin Board, they will receive an email each time there is an updates.

BIRD Community is part of a broader platform that BIRN introduced last year, BIRN Investigative Resource Desk (BIRD) – an innovative interactive platform created for professional and citizen journalists who want to keep up-to-date with the fast-changing world of technology without sacrificing their ethics or the standards of professional journalism.

Moldova’s Cyber Crime Defences Questioned After DarkNet Sting

Posted on January 13, 2021January 26, 2023 by BIRD

Security experts in Moldova are raising questions about the resilience of the country’s cyber defences after a massive operation at the European level, to which Moldova contributed, uncovered and closed the biggest DarkNet website selling drugs, stolen credit card data and malware.

German authorities dismantled DarkMarket, which was hosted by DarkNet, on Tuesday. Prosecutors from Koblenz said that “more than 20 servers from Moldova and Ukraine” had been confiscated and shut during the international police operation.

According to investigators, DarkMarket was “without a doubt, the largest market in the world on DarkNet”. They say the online platform included over 500,000 users and over 2,400 sellers.

“Moldova does not entirely control its territory where certain criminal groups covered by influential factors from Moldova and Russia are operating,” retired colonel Rosian Vasiloi observed to BIRN.

“In this sense, the authorities show their weakness because we have all the necessary levers to intervene in this regard with special investigation activity and criminal investigations – but somehow we don’t,” the military and security specialist told BIRN.

The former border police chief also stressed that whikle Moldova is doing well on paper in laws and security strategies, it has major difficulties implementing them. He also urged more transparency on such matters, as Moldovan authorities have stayed largely quiet so far on this problem.

Vasiloi said Moldova should cooperate more with Western investigative bodies and be more proactive in tackling such phenomena, not only when it is asked to. “We have specific commitments regarding this in the context of implementing the Association Agreement with the European Union,” he noted.

In total, at least 320,000 transactions were made on the illegal platform with Bitcoin and Monero cryptocurrencies, and the total value of the transactions could amount to 140 million euros, authorities have said.

DarkMarket was “used mainly for the sale of drugs of all kinds” but also sold “counterfeit coins, stolen or counterfeit credit card data, anonymous SIM cards’ or computer viruses”, German prosecutors stated.

A 34-year-old Australian allegedly running DarkMarket was arrested this weekend on the German-Danish border and is in pre-trial detention.

Authorities worldwide, including the FBI, the US Drug Enforcement Administration and police in countries such as the UK, Denmark, Ukraine and Moldova contributed to the investigation under EU coordination.

Turkey Investigates Facebook, WhatsApp Over New Privacy Agreement

Posted on January 11, 2021January 26, 2023 by Ivana Jeremic

Turkey’s Competition Board on Monday said an investigation had been launched into Facebook and WhatsApp over a new privacy agreement that forces WhatsApp user to share its data with Facebook. Users who reject the terms of the agreement will not be able to use WhatsApp after February 8.

The Turkish competition watchdog said the requirement allowing collection of that data should be suspended until the investigation is over.

“WhatsApp Inc and WhatsApp LLC companies will be known as Facebook after the new agreement and this will allow Facebook to collect more data. The board will investigate whether this violates Turkish competition law,” the board said.

The Turkish government is calling on its citizens to delete WhatsApp and to use domestic messaging app BiP instead, developed by Turkey’s mobile operator Turkcell, in addition to other secure messing apps such as Telegram and Signal.

Turkey’s presidency, ministries, state institutions and many other people have announced that they have deleted WhatsApp and downloaded other applications.

“Let’s stand against digital fascism together,” Ali Taha Koc, head of the Turkish Presidential Digital Transformation Office, said on Twitter on January 10, urging people to use the domestic BiP app.

BiP gained 1.12 million new users on Sunday alone after the new privacy agreement was introduced.

The new privacy agreement will not be in force in the EU and the UK because of its tight digital privacy law.

The EU fined Facebook 110 million euros earlier in 2017 euros for giving misleading statements on the company’s $19 billion acquisition of the internet messaging service WhatsApp in 2014.

Millions of people around the globe have abandoned WhatsApp and migrated to other messaging apps, Signal and Telegram in particular, and Signal and Telegram had server issues hosting such a large number of users.

Telegram and Signal which are accepted as the most secure messaging apps have become the most downloaded application in the past week for both Android and Apple phones users.

Bucharest Wins Race to Host EU Cybersecurity Centre

Posted on December 10, 2020January 26, 2023 by Ivana Jeremic

The Romanian capital has won the race to host the new European Cybersecurity Industrial, Technology and Research Competence Centre, ECCC, Romania’s Foreign Minister, Bogdan Aurescu, announced on Thursday.

“Exceptional success for Romania,” Aurescu wrote. “After intense diplomatic efforts, Bucharest was elected to host the EU’s Cybersecurity Centre – the 1st EU Agency in Romania,” the minister tweeted.

Bucharest was chosen over Brussels, Munich, Warsaw, Vilnius, Luxembourg and León, Spain, to host this new centre funded by the EU and dedicated to developing technologies to counter cyberattacks.

“Romanian expertise in IT was acknowledged in the EU. Romania is ready to work hard for a European cybersecurity ecosystem,” the minister continued in his tweet.

According to the European Council, the criteria to choose the host of the ECCC included “the date on which the centre can become operational”, “connectivity, security and interoperability with IT facilities to handle EU funding” and the existence of a “cybersecurity ecosystem”.

In recent years, Romania has become respected for its cybersecurity capacities. Conversely, it is also infamous for being the base of many cybercrime networks defrauding internet users all over the world.

The ECCC aims to “contribute to the deployment of the latest cybersecurity technology, support cybersecurity start-ups and SMEs, enhance cybersecurity research and innovation [and] contribute to closing the cybersecurity skills gap”.

The centre is expected to play a central role in the EU fight against increasing cyberthreats from hackers acting either on their own initiative or at the behest of hostile states and entities.

On such threat was reported this week by the European Medicines Agency. It said it had been hit by a cyberattack in which hackers accessed documents relating to a COVID-19 vaccine.

EU Set to Take on Big Tech with New Digital Services Act

Posted on December 1, 2020January 26, 2023 by Ivana Jeremic

Over the past two decades, the process of digitisation has completely transformed the European services sector, though EU legislation regulating the provision of those services has not kept up with the fast-changing technological environment. With consensus among European policymakers that the 20-year-old piece of legislation, the e-Commerce Directive, was in dire need of updating, the European Commission announced in January 2020 that it would pass a new Digital Services Act by the end of 2020. That date, expected to be December 2, is rapidly approaching.

With this brand new set of regulations governing the EU’s digital market, the Commission intends to clarify and introduce new digital services liability rules and ensure a more competitive digital market where even small and medium-sized businesses (SMEs) can compete with the more established players.

Policymakers in the EU, which is already home to the world’s strictest data privacy laws, believe that Europe is in a unique position to set new standards for the regulation of digital services for the whole world. The forthcoming rules represent an unprecedented strike against the seemingly limitless power of big tech, which are likely to oppose the reforms.

A close-up image shows the slogan of the ‘StopHateForProfit’ campaign on the organization’s website displayed on a smartphone screen in Cologne, Germany, 29 June 2020. EPA-EFE/SASCHA STEINBACH

What new rules are coming?

Although the final contours of the legislative package are not yet public knowledge, it is expected that the regulation will come in two legislative proposals. The first set of proposals contained in the Digital Services Act will likely focus on updating digital services providers’ responsibilities and liabilities. The Digital Markets Act will then likely be concerned with limiting the power of big platforms in general.

In a recent speech, Executive Vice-President of the Commission Margrethe Vestager said that digital media platforms need to be more transparent about the way they share the digital world that we see.

“They’ll have to report on what they’ve done to take down illegal material. They’ll have to tell us how they decide what information and products to recommend to us, and which ones to hide – and give us the ability to influence those decisions, instead of simply having them made for us. And they’ll have to tell us who’s paying for the ads that we see, and why we’ve been targeted by a certain ad,” Vestager said earlier this year.

Although it is not year clear which specific platforms will be targeted, it is widely expected that the new rules with mainly apply to social media platforms with more than 2 million users, which have, until now, bitterly resisted attempts to disclose their algorithms.

“Platforms need to ensure that their users can be protected from illegal goods and content online, by putting in place the right processes to react swiftly to illegal activities, and to cooperate with law enforcement authorities more effectively,” the Commission’s press officer for the digital economy, Charles Manoury, told BIRN an email.

When asked about the concrete rules being considered in Brussels, Manoury said that the Commission will “aim to harmonise a clear set of obligations (responsibilities) for online platforms, including notice-and-action procedures, redress, transparency and accountability measures, and cooperation obligations.”

In a report produced by the European Parliamentary Research Service in October, EU experts came up with the following recommendations for the Commission:

Introduce a clear, standardised notice-and-action procedures to deal with illegal and harmful content;
Enhanced transparency on content curation and reporting obligations for platforms;
Out-of-court dispute settlement on content management, particularly on notice-and-action procedures.

Those policy recommendations are strikingly similar to the rules already in effect in the country currently holding the Presidency of the Council of the EU – Germany.

A Google logo is displayed at the Google offices in Berlin, Germany, 24 June 2019. EPA-EFE/HAYOUNG JEON

German lessons

“The Commission in its impact assessments takes into account already existing EU laws, such as the NetzDG,” noted the Commission’s spokesman Manoury, referring to the Network Enforcement Act, which was passed by the German parliament back in 2017.

According to the website of the German Ministry of Justice and and Consumer Protection, the law aims to fight hate crime and criminally punish fake news and other unlawful content on social networks more effectively. This includes insults, malicious gossip, defamation, public incitement to crime, incitement to hatred, disseminating portrayals of violence and threatening the commission of a felony.

In practice, all social media platforms (with more than 2 million users) that are accessible in Germany are obliged to take down or block access to “manifestly unlawful content” within 24 hours of receiving a complaint. They also have to offer their users an accessible procedure for reporting criminally punishable content and take “immediate notice” of any content that might violate German criminal law.

But German lawmakers didn’t stop there. In June this year, the Budestag decided to tighten further the laws against hate speech online by requiring social networks to report to the BKA (Federal Police) and transmit some user data, such as IP addresses or port numbers, directly to the authorities.

Moreover, new rules will oblige operators of social networks to submit biannual reports on their handling of complaints about criminally punishable content. These reports must contain information, for example, on the volume of complaints and the decision-making practices of the network, as well as about the teams responsible for processing reported content. They must be made available to everybody on the internet.

Social media platforms could be liable for fines of up to 50 million euros if they fail on their reporting duties, according to a statement from the Justice Ministry.

According to the German daily Stuttgarter Zeitung, so far nine social media platforms have offered transparency reports: Facebook, Instagram, Twitter, YouTube, Reddit, Tiktok, Soundcloud, Change.org and Google+. The number of complaints varies greatly. In the second half of 2019, 4,274 unsatisfied users reported to Facebook. There were 843,527 complaints on Twitter and 277,478 on YouTube. Facebook felt compelled to take action in almost a quarter of the cases. 87 per cent of these posts were deleted within 24 hours, a total of 488. Twitter took care of 16 per cent of the complaints, 86 per cent of which were removed from the network within a day, according to the German newspaper.

However, the new obligations have their critics. Some express concern that legal content will end up being deleted by overzealous platforms eager to avoid paying hefty fines, the so-called problem of “over-blocking”. In 2017, when the law was first passed by the German parliament, even journalism unions in Germany protested against it, fearing a new form of censorship.

Reacting to the criticisms, German Justice Minister Christine Lambrecht recently called for the introduction of a “counter-presentation procedure”, which would give authors of deleted content the right to ask social networks for a reassessment of their decision before any fines would be imposed.

There is also criticism that some of the proposed rules might even be in conflict with the German constitution. This particularly concerns the law intended to combat far-right extremism and hate crime, which was passed in the summer and is intended to force operators of social networks to report criminal content such as the threat of dangerous bodily harm or defamation of public figures (mayors or municipal councillors) to the Federal Criminal Police Office. It is because of those concerns that the president has not yet signed the law.

Long way to go

The German experience clearly shows that certain measures to combat the spread of hate speech and other form of illegal content online are relatively easy to implement, while others, like direct reporting to the police, might take much longer to build a consensus around.

That being said, even when it comes to the seemingly more trivial measures, the European Commission’s mission is an infinitely more challenging one. First of all, it needs to make all member states agree on what even constitutes a hate crime on the internet. Then it has to create a set of rules that would be applicable across all member states.

According to a source in the European Commission familiar with the legislation, the first task is the easier one. “There is actually a very broad agreement across the EU on the question of illegal content. Basically, what is illegal offline is also illegal online – it is just a question of how you monitor it and what measures to take to make sure that the rules are followed also online,” the source, who wished to remain anonymous, told BIRN.

Whatever the rules that the Commission ends up proposing in early December, the speed of the final implementation of those measures will largely depend on the legal form of the rules.

Generally speaking, if the rules assume the form of EU regulations, the final implementation might take a very long time, as regulations need unilateral agreement by all member states. If EU legislators decide to go with directives, which leave a lot of space for individual member states to translate into their own respective national laws and don’t require unilateral agreement, things could go much faster.

According to the source from the Commission, half a year is an absolute minimum to expect the legislative process to take.

“If you have an extremely well-drafted piece of legislation that everyone agrees on, it can take half a year. I’ve never heard about anything going faster than this. It is already clear that this will not be very straightforward,” the source said.

Net Searches for Far-Right Keywords Soar in Bosnia

Posted on November 9, 2020January 26, 2023 by Ivana Jeremic

A company that specializes in analyzing harmful content on the internet has told BIRN that two terms favoured by hard-line Serbian nationalists – “Serbia Strong” and “Remove Kebab” – were searched for more than 4,000 times in Bosnia and Herzegovina over five months in 2020.

Research by Moonshot said these keywords were particularly searched for in May and early June 2020, which coincided with the anniversary of the May 1995 Bosnian Serb massacre in the northern city of Tuzla and Muslim festival Eid al-Fitr, and came just ahead of the 25th anniversary of the Bosnian Serb-perpetrated genocide at the eastern town of Srebrenica.

According to data collected by Moonshot, “Serbia Strong” and “Remove Kebab” were searched for 468 times in under one week from May 30 to June 4.

Its report, “Tracking Far-Right Extremist Searches in Bosnia and Herzegovina”, which it has shared with BIRN, says the rise in such searches reflects the wider rise of political and ethnic extremism in ethnically divided Bosnia.

“Karadzic, lead your Serbs” is the opening line of a song which normally appears when searches are done for “Serbia Strong” or “Remove Kebab” on the internet.

The former Bosnian Serb leader in the 1992-5 war in Bosnia was sentenced for life in 2019 for the crimes of genocide, war crimes and crimes against humanity.

Significantly, the song lauding Karadzic was played on a video recording the attack on a mosque in Christchurch, New Zealand, on March 15, 2019, when 51 people were killed and more than 20 injured.

It was allegedly recorded in 1995 but only published in 2006. Researchers describe the song as “an anti-Muslim hymn” that calls on the former Bosnian Serb chief to lead “his Serbs” against both “Ustashas” – referencing Croats, and “Turks” – a pejorative Serbian term for Bosniaks, or Bosnian Muslims.

Moonshot analyst Liam Monsell told BIRN that searches for “Serbia Strong” and “Remove Kebab” “significantly increased over the 25th anniversary of various crimes against Bosnian Muslims during the 1990s war”.

“Searches increased substantially just a few days after the 25th anniversary of the Tuzla massacre of May 25, 1995, which also coincides with festival Eid al-Fitr, when Muslims celebrate the end of Ramadan,” Monsell noted.

He added that the highest level of searches was recorded on June 2, but that sporadic leaps in searches also appeared during the marking of other wartime crimes in Bosnia.

Besides these two keywords, people in Bosnia also searched for the term “Za dom spremni”, or Ready for the Homeland, a World War II-era Croatian fascist slogan, “Kebab Remover”, an alternative construction to “Remove Kebab”, as well as for “antimigrant.ba”, an anti-immigrant portal. They were searched for 517 times over the course of the same five months.

Former Bosnian Serb leader Radovan Karadzic in court in The Hague in 2018. Photo: EPA-EFE/YVES HERMAN/POOL.

Monsell said the popularity of the Karadzic song and searches done in English from Bosnia indicate that a “Western discourse of ‘white nationalists’ sometimes spreads back into the region,” and that specific local extremist dialogues are increasingly drawing on international symbolism.

Data obtained by Moonshot suggest that over the period in which the targeting was deployed, just under half the searches came from the Serb-led entity in Bosnia, Republika Srpska. According to Moonshot, the highest number of searches per 100,000 inhabitants was registered in the northern Brcko District.

Sead Turcalo, Dean of the Faculty of Political Sciences in Sarajevo, said the searches focus on themes around which key far-right groups’ narratives focus.

“A continuous denial of genocide and glorification of war criminals reflect on right-wing circles throughout Europe,” he said, adding that this was evident not only in the terrorist attack on Muslims in New Zealand, but in the previous case of Norwegian far-right terrorist Anders Breivik who shot dead 69 young leftists in 2011 and killed another eight in a bomb attack.

“The aspect of interconnectedness of genocide denial and influence on the growth of the radical right, not only in the region, but in Europe as well, is still insufficiently researched, but is coming into the focus of researchers more and more,” Turcalo said.

“Their narrative is based on Islamophobic and anti-migrant content, accompanied by glorification of fascist groups and puppet states from World War Two,” Turcalo said, adding that, besides that, they also try to present Bosnia as a safe haven for radical extremists.

Concern over Moldova Cyber Security As Election Looms

Posted on October 28, 2020January 26, 2023 by Ivana Jeremic

As the campaign for Moldova’s presidential election intensifies, so too does the rate of cyberattacks on state institutions in the former Soviet republic, torn between Russia and the West.

But while Moldova’s Intelligence and Security Service, SIS, says it is working to disrupt cyberattacks, critics say more needs to be done to confront the scourge of fake news and disinformation.

“Moldova does not have a strategy to tackle propaganda, nor clear policies for the protection of the information space,” said Cornelia Cozonac, head of the Centre for Investigative Journalism in Moldova.

“Moldovan politicians are not even trying to take over similar research-based guidelines from the Baltic States, for example.”

Individual hackers

In an interview for Moldpres, SIS director Alexandr Esaulenco said that election campaigns in Moldova frequently brought an “intensification” of cyberattacks on state bodies handling the electoral process.

In written comments to BIRN, the SIS described four types of attacks since 2015 – denial of service, or DDOS, phishing via state e-mail, brute-force attacks trying to gain access to government information systems and the hijacking of official web pages.

“These activities aim to stop or hinder the conduct of the electoral process, but in all these cases, we act proactively to prevent their success,” Esaulenco told Moldpres.

In an interview with tribuna.md in October, Sergiu Popovici, the director of the government Information Technology and Cyber Security Service, STISC, said most attacks were the work of individual hackers, “who try out their criminal talent on randomly selected electoral processes.”

‘Real propaganda’

Esaulenco, a 43-year-old major general, previously worked as a security adviser to Moldova’s pro-Russian president, Igor Dodon.

A person scrolls the screen of a mobile phone while loading information on how to counter ‘fake news’ in New Delhi, India, May 2, 2019. Photo: EPA/Harish Tyagi

Dodon is bidding for a second term in next month’s election but faces a strong challenge from pro-European candidate Maia Sandu.

The SIS press office told BIRN that, while it confronts the threat of cyberattacks, its future focus would be more on disinformation and propaganda.

Torn between integrating with the West or remaining in Russia’s orbit, Moldova has proven particularly vulnerable to outside propaganda, particularly against NATO, the European Union and the international community in general.

The SIS said that during the COVID-19 state-of-emergency in the spring, it closed some 61 websites and news portals deemed to be spreading propaganda and fake news regarding the pandemic.

But Petru Macovei, executive director of the Independent Press Association, API, said SIS did not go far enough.

“It was a facade with the closure of those sites, to justify themselves that their activity was not in vain during the state of emergency caused by the pandemic,” Macovei told BIRN. “Indeed, it was neither effective nor sufficient.”

These “were selective decisions,” he said, “because the real propaganda was not affected by that SIS measure.”

By ‘real propaganda,’ many experts in Moldova mean Russian media outlets that broadcast in Moldova with a distinctively anti-Western tone.

“Russian media in Moldova like Komsomolskaya Pravda or Sputnik every day have at least one anti-EU and NATO news and some about Ukraine,” said Cozonac.

Strategy lacking

Elena Marzac, executive director of the Information and Documentation Centre on NATO, IDC NATO, said that COVID-19 crisis and the economic fallout were “gradually turning into a security crisis.”

The executive director of the IDC NATO in Moldova, Elena Marzac. Photo: Facebook

“Besides classic disinformation there are also the cyberattacks, both elements of hybrid warfare,” Marzac told BIRN.

“Also, the narratives circulating in the international space, but also the regional and national one are strongly influenced by geopolitics, and the main promoting actors in that sense are China and Russia.”

Moldova has made some progress towards establishing the legal basis for a better information security strategy, but experts agree there is still much to be done.

“It is too early to talk about the existence in Moldova of an integrated and effective national mechanism for preventing and combating cybersecurity incidents and cybercrime,” said Marzac.

Montenegrins in Self-Isolation Sue State for Publishing Names

Posted on September 30, 2020January 26, 2023 by Ivana Jeremic

More than 300 citizens of Montenegro have filed lawsuits against the state for publishing their names on lists of people ordered to self-isolate. On Wednesday, a Podgorica-based lawyer, Dalibor Kavaric, who represents some of the citizens, said the government had violated their human rights.

“By publishing the names and personal data of persons in self-isolation, the government stigmatized them and unnecessarily exposed their privacy to the public … the government has unnecessarily caused material damage to the budget of Montenegro just because it didn’t respect the constitution,” Kavaric told BIRN.

The government published the names on March 21, despite warnings from opposition parties and civic society organisations that it risked violating constitutionally guaranteed human rights. They also warned that citizens whose names were published might sue the state before the courts.

The government said it had a right to publish the names because some citizens were not respecting self-isolation obligations. It also said it had approval for its actions from the Agency for Personal Data Protection. It stressed that the security forces could not control every citizen who should be in self-isolation, and that anyone who failed to self-isolate posed a threat to the entire community.

The Head of the EU Delegation to Montenegro, Aivo Orav, called on the authorities to find the right balance between protecting the health and respecting the confidentiality of health information and the right to privacy of citizens.

Danilo Papovic, from the Civic Alliance, said citizens had every right to to seek legal protection of their civil rights.

“The lawsuits are completely justified … This government action indicates the absence of responsibility both in the legal and financial sense, bearing in mind that the consequences of illegal actions are ultimately borne by the citizens, because any compensation is paid from the budget,” Papovic told BIRN.

On March 22, Prime Minister Dusko Markovic said no compromises would be made with those who violated preventative measures amid the COVID-19 pandemic. He also warned that the government would continue to publish the names of citizens who had been ordered to self-isolate.

“The lives of our citizens are the priority. We have estimated that the right to health and life is above the right to unconditional protection of personal data,” Markovic said.

But after the Civic Alliance submitted an appeal to the Constitutional court on March 23, on July 23, the court annulled the government decision to publish the names of citizens ordered to self-isolate – though it did not rule that the government had violated their human rights. The government then removed the list from its website.

A lawyer from Bijelo Polje, Milos Kojovic, said the Constitutional Court had confirmed that the government had violated basic human rights and freedoms by publishing the names of persons ordered to self-isolation. “The government didn’t respect their right to a private and family life,” Kojovic told the daily newspaper Dan.

“Persons on the list published on the official government website, then transmitted by all electronic and print media, are entitled to fair compensation for violation of their personal rights,” he added.

Facebook Shuts Russian Propaganda Network ‘Based in Romania’

Posted on September 3, 2020January 26, 2023 by BIRD

Facebook’s security department has shut down several accounts belonging to a publication that presents itself as an independent global news organisation primarily based in Romania, “for violating our policy against foreign interference”.

The accounts were operated by people associated with the Russian government who used fake accounts and spread anti-Western propaganda.

Their use of environmental concerns and pacifist arguments to discredit Western democratic institutions has been described as reminiscent of the tactics used by the Soviet Union during the Cold War, which funded front organisations in Western countries to influence public opinion against democratic governments.

“Although the people behind this activity attempted to conceal their identity and coordination, our investigation found links to individuals associated with past activity by the Russian Internet Research Agency (IRA),” the social network said in its August security report.

The network, which gravitated around the news website Peacedata.net, targeted audiences from “on the left of the political spectrum”.

It posted global news and comment on current events “relevant to left-leaning communities”, including social and racial justice issues in the US and UK, NATO and EU politics, alleging Western war crimes, corruption and environmental issues.

One of the articles shared by Peacedata charged the British government with creating “a myth of a migrant crisis to distract from its failures”.

Another article published on Facebook by the same network accused France of following neo-colonial practices in its former African colonies. The third example given by Facebook officials of content distributed in the disabled accounts had the title: “Boogaloo Movement: USA Far Right is Growing Thanks to Donald Trump”.

Another item published by Peacedata.net called the Belarus opposition leader Svetlana Tikhanovskaya “a Western regime change puppet”.

The network consisted of 13 accounts and two Facebook pages with a following of 14,000. According to the social network, it was in the “early stage” of building a wider audience.

It produced content in English and Arabic and “focused primarily on the US, UK, Algeria and Egypt, in addition to other English-speaking countries and countries in the Middle East and North Africa.”

They also “recruited unwitting freelance journalists to write on particular topics”.

Peacedata.net website is still on air and has rejected Facebook’s accusation that it is a tool of the Kremlin in a lengthy statement that calls The New York Times and The Washington Post “brainwashing machines”. It also called Facebook’s CEO and founder Mark Zuckerberg an “adversary of freedom and democracy” who “proudly walks alongside such monstrous figures as Donald Trump”.

New Cyber Attacks on North Macedonia Spur Calls for Better Defences

Posted on July 28, 2020January 26, 2023 by BIRD

Fresh cyber attacks in North Macedonia, this time targeting the health and education ministries, are spurring calls for more sophisticated cyber protection.

Last week’s attacks took down the websites of both ministries and were claimed by the hacker group ‘Anonopsmkd’, which previously took responsibility for a July 15 attack on the country’s most popular news aggregator TIME.mk.

The denial of service attack on TIME.mk, which involved more than 35 million addresses that generated thousands of clicks per seconds, coincided with a closely-fought parliamentary election in North Macedonia when the State Electoral Commission was also targeted.

In an interview last week, Anonopsmkd denied hitting the electoral commission, but it has warned that law enforcement structures in North Macedonia are its next target, spurring calls for greater protection of state bodies in the newest member of NATO.

“There should be a single protection system that would cover all government electronic services including agencies, ministries, local governments, and any legal entity or state body,” said Skopje-based cybersecurity consultant Mane Piperevski.

“This can be achieved by having a state-level Security Operation Centre with mixed ownership (51:49 in favour of the state),” Piperevski told BIRN. “The joint protection system would be under the leadership of the company that would be in charge of this Security Operation Centre.”

Hackers obstruct election result announcement

Piperevski said such a model had been implemented in a number of European Union countries.

“There is a quality staff within the government bodies that is ready to respond to such challenges,” he said. “The only problem, however, is with politics and priorities of the work in the institutions.”

Privacy and data protection expert Ljubica Pendaroska said the protection system should be multi-layered, “in order to make to make it as hard as possible for the hackers, and thus increase the protection of information and especially the personal data of citizens.”

“It is necessary for the institutions to have a developed and functional team and a procedure for rapid intervention and response in the case of an attack,” Pendaroska told BIRN.

An investigation conducted by the Ministry of Interior concluded that the electoral commission had been the target of a denial of service or DDoS attack which blocked publication of the preliminary results. The Commission website was out of action for several days.

“The investigation of this case continues in order to determine the IP addresses from where the attack was carried out, and for additional information to be collected to determine the perpetrator of this attack,” the ministry said.

National cybersecurity body has met only once

A spate of cyber attacks on state bodies in North Macedonia over the past few months has raised fears over the safety of its IT system, a concern for NATO too since the country joined the Western military alliance in March this year.

As BIRN reported in May, several cyberattacks in a short period of time exposed gaps in how North Macedonia’s authorities are dealing with cybersecurity issues.

In one security breach two months ago, a Greek hacker group calling itself ‘Powerful Greek Army’ leaked dozens of email addresses and passwords from staffers in North Macedonia’s ministries of finance and economy. Authorities are yet to determine how exactly the attack happened.

Last year, North Macedonia formed a National Council for Cyber Security, bringing together the ministers of interior, defence and information society. But it has so far met only once.

NATO member countries bear primary responsibility for their national cyber defences, but the alliance does provide expert support and has rapid reaction teams it can deploy in emergencies.

“NATO cyber experts can offer support and share information with Allies in real-time, including through our Malware Information Sharing Platform,” a NATO official told BIRN in an emailed response. “NATO has cyber rapid reaction teams on standby to assist Allies 24 hours a day, and our Cyberspace Operations Centre is operational.”

“NATO also invests in training, education and exercises which improve the skills of national cyber experts. Any attempts to interfere with democratic elections, including through hacking, are unacceptable, so we must remain vigilant.”

North Macedonia hackers target British pop stars
A hacker group from North Macedonia has claimed to have taken down the websites of British pop stars Dua Lipa and Rita Ora.

The attacks happened amid a row that erupted this month when Lipa, whose parents were born in majority-Albanian Kosovo, posted on social media a map of ‘Greater Albania’.

Ora, who was born in Kosovo but moved to Britain as a child, voiced her support for Lipa and called for Kosovo – which declared independence from Serbia in 2008 – to appear on Apple Maps.

AnonOpsMKD claimed responsibility for the attacks.