Heartbleed used against net thieves

29 April 2014 Last updated at 12:53 By Mark Ward Technology correspondent, BBC News

The Heartbleed bug has turned cyber criminals from attackers into victims as researchers use it to grab material from chatrooms where they trade data.

Discovered in early April, Heartbleed lets attackers steal data from computers using vulnerable versions of some widely used security programs.

Now it has given anti-malware researchers access to forums that would otherwise be very hard to penetrate.

The news comes as others warn that the bug will be a threat for many years.

French anti-malware researcher Steven K told the BBC: "The potential of this vulnerability affecting black-hat services (where hackers use their skills for criminal ends) is just enormous."

Heartbleed had put many such forums in a "critical" position, he said, leaving them vulnerable to attack using tools that exploit the bug.

The Heartbleed vulnerability was found in software, called Open SSL, which is supposed to make it much harder to steal data. Instead, exploiting the bug makes a server hand over small chunks of the data it has just handled - in many cases login details or other sensitive information.

Mr K said he was using specially written tools to target some closed forums called Darkode and Damagelab.

"Darkode was vulnerable, and this forum is a really hard target," he said. "Not many people have the ability to monitor this forum, but Heartbleed exposed everything."

Charlie Svensson, a computer security researcher at Sentor, which tests company's security systems, said: "This work just goes to show how serious Heartbleed is. You can get the keys to the kingdom, all thanks to a nice little heartbeat query."

Individuals who repeat the work of security researchers such as Mr K could leave themselves open to criminal charges for malicious hacking.

Threat 'growing'

The widespread publicity about Heartbleed had led operators of many websites to update vulnerable software and urge users to change passwords.

Paul Mutton, a security researcher at net monitoring firm Netcraft, explained that while that meant there was no "significant risk of further direct exploitation of the bug", it did not mean all danger had passed.

He said the problem had been compounded by the fact that a large number of sites had not cleaned up all their security credentials put at risk by Heartbleed.

In particular, he said, many sites had yet to invalidate or revoke the security certificates used as a guarantee of their identity.

"If a compromised certificate has not been revoked, an attacker can still use it to impersonate that website," said Mr Mutton.

In addition, he said, web browsers did a poor job of checking whether security certificates had been revoked.

"Consequently, the dangers posed by the Heartbleed bug could persist for a few more years."

His comments were echoed by James Lyne, global head of security research at security software developer Sophos.

"There is a very long tail of sites that are going to be vulnerable for a very long time," said Mr Lyne, who pointed out that the list of devices that Heartbleed put at risk was growing.

Many so-called smart devices, such as home routers, CCTV cameras, baby monitors and home-management gadgets that control heating and power, were now known to be vulnerable to Heartbleed-based attacks, he said.

A survey by tech news site Wired found that smart thermostats, cloud-based data services, printers, firewalls and video-conferencing systems were all vulnerable.

Other reports suggest the makers of some industrial control systems are also now producing patches for their software to limit the potential for attack.

How tempting this was for malicious attackers was difficult to gauge, said Mr Lyne.

"We do not really know how much Heartbleed is being used offensively because it's an attack that is hard to track and log."

23.59 | 0 komentar | Read More

Government PC made Muslim wiki edit

30 April 2014 Last updated at 00:08 By Dave Lee Technology reporter, BBC News

The charity that represents Wikipedia in the UK has condemned edits made from government computers after more incidents of vandalism emerged.

The BBC has discovered that the phrase "all Muslims are terrorists" was added to a page about veils.

Another edit deleted text in Cherie Blair's entry about the flat-buying scandal that made headlines in 2002.

The Liverpool Echo last week revealed that insults had been added to the entry for the Hillsborough Disaster.

Stevie Benton, from Wikimedia UK, told the BBC: "We find this kind of vandalism appalling."

Wikimedia UK is the local arm of the global Wikimedia Foundation, the charity set up by the online encyclopaedia's founder Jimmy Wales to support the thousands of volunteers who edit and maintain Wikipedia.

"Wikipedia is the encyclopaedia that anyone can edit," Mr Benton added.

Continue reading the main story

"Start Quote

It is shocking and cause for great concern"

End Quote Nasima Begum Muslim Council of Britain

"This openness has led to an enormous reference work of great value. While vandalism does occasionally happen we are grateful to the many thousands of volunteers who write, edit and organise the content."

In an email, the Cabinet Office reiterated its statement on the matter.

"The amendments made to Wikipedia are sickening. The behaviour is in complete contravention of the Civil Service Code. It is entirely unacceptable."

It added: "The Civil Service Code applies at all times, and we take breaches very seriously. We have already announced an investigation to examine offensive edits to Wikipedia, and will look at other concerns raised."

'Spells evil'

The BBC found more than a hundred instances of inappropriate editing, vandalism and deletion made by computers accessing Wikipedia through the two IP addresses known to be used by government machines.

A change made to the entry for "veil" in October 2006 added: "It should be noted that the word Veil, when the letters rearraged [sic], spells evil.

"Since the Veil is mostly worn by Muslims, and all Muslims are terrorists (with the argument for this being that all terrorists have been Muslim), this fact should be dually [sic] noted by all."

The comment was removed by a Wikipedia volunteer six minutes later.

Nasima Begum, a spokeswoman for the Muslim Council of Britain, told the BBC: "It is these types of attitudes that create an unnecessary climate of fear and hostility.

"It is shocking and cause for great concern that inflammatory comments like these should be sent from someone within the government."

Removed paragraphs

As well as vandalism, large passages of text were deleted.

In 2002, Cherie Blair made a public apology after it had emerged she had bought two flats, at a discounted price, with help from convicted fraudster Peter Foster.

Paragraphs about the incident in Mrs Blair's Wikipedia entry were removed by a government PC in October 2005.

Later, a different user would revert the changes, arguing that they were "relevant to the subject's reputation".

The BBC was unable to reach Mrs Blair to discuss the matter. There is no indication that she had any knowledge of the changes.

Other edits made by government machines included:

Continue reading the main story

How edits were uncovered

• Wikipedia allows any web user to make changes to its pages, but this leaves a trace through the user's internet protocol (IP) address
• Changes are monitored by Wikipedia, but internet trolls have been known to post insulting material, which is usually swiftly removed
• Liverpool Echo reporter Oliver Duggan discovered that insults posted on the website's Hillsborough Disaster page had been made using computers within the government's internal intranet
• He confirmed this after referring to a list of 34 IP addresses used by the government released by former minister Angela Eagle in 2008
• The BBC analysed two of the addresses - 195.92.40.49 and 62.25.106.209 - to find the edits contained in this article

• In the entry for the London bombings, links to websites detailing popular conspiracy theories were added.
• The article for former prime minister Tony Blair was deleted in its entirety and replaced with the words "he should be assassinated".
• Homophobic insults were added to the entry for newspaper columnist Richard Littlejohn.
• Celebrity chef Jamie Oliver, who has worked for the government on healthy eating initiatives, also had homophobic insults added to his page.

Mr Benton, from Wikimedia UK, praised the work of Wikipedia editors in correcting the changes.

"Edits of this nature are removed very quickly by the volunteers who write and edit Wikipedia," he said. "Often in a matter of minutes."

Edits made by government computers have come under close scrutiny following the Liverpool Echo's report showing how insulting remarks about Liverpool fans were added to the page detailing the Hillsborough Disaster.

The changes were identified by analysing edits made by two IP addresses - 195.92.40.49 and 62.25.106.209 - known to be connected to the Government Secure Intranet (GSI).

The GSI is used to allow government machines to connect to the internet securely.

Investigation

The Cabinet Office has admitted that, due to the nature of its computer network, it would be almost impossible to track down who is responsible for the offensive remarks.

A spokesman said: "We are exhausting every option. Anyone with information should contact the Cabinet Office."

Unlike most people's home internet connections, where an IP address can sometimes be used to pinpoint one particular computer, large organisations tend to mask individual machines for security reasons.

It is also possible to "spoof" IP addresses to make the source of a connection look like it is coming from somewhere else. However, several of the offensive messages were made prior to the government IP addresses being disclosed in 2008.

Government machines were also used to vandalise, or "troll", on several pages, including:

• In the entry about indie band The Libertines: "[T]he more astute critics correctly identify the band as scum", and added a remark about lead singer Pete Doherty's drug use.
• Comments about footballer Wayne Rooney that said he was "currently knocking off 'queen chav' Coleen McGlochlin".
• The deletion of the entire post for Irish politician Christopher Byrne, replacing it with simply "is a sexy beast".
• Changing the entry for BBC presenter Peter Levy to list "Adolf Hitler" as an ex-partner.
• Describing Arsenal manager Arsene Wenger as being "made of clay".

Follow Dave Lee on Twitter @DaveLeeBBC

23.59 | 0 komentar | Read More

Slow user growth hits Twitter shares

30 April 2014 Last updated at 01:30

Shares in Twitter dropped to their lowest levels since the company's stock market flotation, as it reported slower than expected user growth.

The number of active users on the social network reached 255 million in the first three months of 2014, up 5.8% on the previous quarter but below analysts' expectations.

Twitter also reported a net loss of $132m (£78m) for the latest quarter.

But it posted revenue of $250m, $226m of which came through advertising.

Despite higher user growth than the previous quarter, when Twitter saw just a 3.8% rise, Twitter's stocks fell by more than 11% in after-hours trading, sending the price below its initial public offering of $38.80 per share.

The rise in Twitter active users comes after four consecutive quarters of declining growth, but the turnaround was not strong enough to convince investors.

Twitter's chief executive Dick Costolo highlighted the company's revenue increase, and said it was "fuelled by increased engagement and user growth".

The integration of advertising management software MoPub had helped Twitter "reach more than 1bn iOS and Android users each month", he added.

Another measure of user engagement, timeline views, increased 15% in the first three months of 2014 to 157 billion.

But the number of Twitter users is still well below its most high-profile competitor, Facebook, which boasts 1.28 billion active users.

WhatsApp, the messaging app Facebook bought for $19bn, recently passed the 500 million user milestone.

23.59 | 0 komentar | Read More

Motorola and Samsung abuse cases end

30 April 2014 Last updated at 12:15

Two separate but related patent-abuse probes by the European Commission - one involving Samsung, the other Motorola Mobility - have come to an end.

Both cases concerned the way the companies had enforced their ownership of critical technologies that devices require to connect to mobile networks.

They had both tried to ban Apple products from sale based on their use of these standard-essential patents.

The regulator ruled Motorola had abused its position. Samsung settled its case.

The South Korean firm escaped an official rebuke by offering to respect restrictions on its use of standard-essential patents (SEPs) over the next five years.

Continue reading the main story

SEPs are inventions recognised as being critical to being able to implement an industry standard technology.

Examples of such technologies include the Universal Mobile Telecommunications System (UMTS), a cellular standard at the heart of 3G data; and H.264, a video compression format used by YouTube, Blu-ray disks and Adobe Flash Player among others.

By creating and recognising such standards, device manufacturers are able to make sure their products can share content and communicate with each other.

Owners of standard-essential patents can register them to qualify for Frand (fair, reasonable and non-discriminatory) payments.

This commits the owner to offering a licence to all so long as the applicants agree to a non-excessive fee. In return the owner expects anyone who uses their innovation to pay, and the status can mean cheaper patent renewal fees.

In the tech sector the idea is to ensure different companies' products can communicate and share data formats with each other.

However, the principle has run into problems when companies disagree what constitutes a "fair" price, and the owner then attempts to ban their rival's products.

The commission chose not to impose a fine on Google-owned Motorola. However, its ruling against the firm set a new legal precedent.

It confirmed that a "safe harbour" provision exists if an organisation using another's SEP agreed to abide by whatever a court said would be a fair payment if the two parties could not agree a fee between themselves. Under such circumstances, the patent owner cannot seek an injunction against the licensee.

However, the European Commission added, the licensee need not give up their right to challenge the validity of the patent.

2G and 3G disputes

The cases both date back to 2012 when the regulator announced it would investigate the two firms.

Motorola had temporarily caused several iPad and iPhone models to be pulled from sale that year on the basis that Apple had failed to license some of its 2G GSM (Global System for Mobile Communications) inventions.

Apple managed to end the ban by offering to pay a bigger licence fee, but was subsequently made by Motorola to give up the right to challenge the patents at a later date in order to end the dispute - a move the European Commission has now ruled was "an abuse of a dominant market position".

The Samsung case centred on the firm's 3G mobile data inventions.

After the South Korean firm and Apple failed to agree royalty fees for the technologies, Samsung launched lawsuits in Germany, the Netherlands and elsewhere.

Following the announcement of the European Commission probe, the Galaxy phone maker dropped the cases. It added it would not seek similar SEP-related injunctions in Europe for five years so long as those using the patents agreed to take part in a 12-month negotiation processes, and would respect a court ruling if those talks failed.

The European Commission has now made that offer legally binding.

"[The] decisions reflect the commission's balanced approach with respect to intellectual property rights and competition rules," said competition commissioner Joaquin Almunia.

"Both competition and the protection of intellectual property are essential to innovation and growth."

The decisions restrict the ability of companies to counter Apple's own patent claims - the US firm has sued several others based on its ownership of non-SEP inventions.

But consultant Florian Mueller noted that Google might still welcome the news bearing in mind it is in the process of selling the Motorola handset division to Lenovo.

"It helps to clear up a mess before a major transaction is consummated," he wrote.

23.58 | 0 komentar | Read More

Xbox One console to launch in China

30 April 2014 Last updated at 06:11

Microsoft has said that Xbox One will go on sale in China in September.

It is the first foreign company to announce the sale of its consoles in China after the country lifted a 14-year old ban in January this year.

Microsoft will launch the console in collaboration with BesTV New Media Co, a subsidiary of Shanghai Media Group.

China's gaming market, which is currently dominated by PC, mobile and online games, is seen as a key growth area for console makers.

"Launching Xbox One in China is a significant milestone for us and for the industry," said Yusuf Mehdi, corporate vice-president at Microsoft.

The firms did not disclose the expected selling price in China.

'Opportunities are endless'

China banned gaming consoles in 2000, citing their adverse effect on the mental health of young people.

Continue reading the main story

The opportunities are endless for creators to unleash their imaginations for games, online education and fitness experiences for China and beyond"

End Quote Enwei Xie Microsoft

The restriction stayed in place, with a brief exception made for the PlayStation 2 in 2004.

Microsoft, Nintendo and Sony have since missed out on the rapid growth of gaming in the country.

The industry generated revenues of $13bn (£8bn) in 2013, a 38% jump from a year ago.

But majority of that is dominated by PC gaming, not least because of the ban on games consoles.

However, earlier this year China said that it would allow foreign firms to make consoles within Shanghai's free-trade zone and sell them in China after inspection by cultural departments.

"Creators and gamers alike have eagerly awaited a new generation of entertainment experiences in China, and their wait will be over with the arrival of Xbox One this year," said Enwei Xie, who will head Xbox China for Microsoft.

The two firms said they would also launch an programme that will enable creators and developers to build, publish and sell their games on Xbox One in China as well as in other markets where Xbox is available.

"The opportunities are endless for creators to unleash their imaginations for games, online education and fitness experiences for China and beyond," said Mr Xie.

23.58 | 0 komentar | Read More

'Pay-by-size' for films in future

30 April 2014 Last updated at 13:23

The cost of watching a newly released film will depend upon the size of the screen on which it is viewed in future, the head of Dreamworks Animation says.

Those who watched on a "movie screen" would pay the most while those using smartphones would only pay a small fee, Jeffrey Katzenberg said.

This pricing model will be common in 10 years' time, he told a US conference.

But one commentator suggested it would be tricky to accurately identify the precise size of the devices used.

Mr Katzenberg - who runs a studio that has produced movies such as Shrek, Madagascar and Kung Fu Panda - was speaking at the Milken Global Conference in California.

This bills itself as a forum for people to find solutions to challenges in business, as well as other areas.

"Movies are not a growth business," Mr Katzenberg told delegates.

Technical hurdles

Referring to the way films are distributed after their initial cinema release, he said: "I think the model will change and you won't pay for the window of availability.

"A movie will come out and you will have 17 days - that's exactly three weekends, which is 95% of the revenue for 98% of movies.

"On the 18th day, these movies will be available everywhere ubiquitously and you will pay for the size," he said.

The pricing model he suggested was $15 (£9) per film for a movie-sized screen, $4 (£2.40) for a 75in (190cm) TV and $1.99 (£1.20) for a smartphone.

Typically film studios have around three months to show a film in the cinema before it is released for distribution on other media channels.

"It will reinvent the enterprise of movies," he said.

Greg Maffei, chief executive of TV distributor Liberty Media Corp, agreed with Mr Katzenberg.

"Few networks are impacted by technology more than the media business," he said.

But technology website The Verge thought the idea faced some technical hurdles.

"Given the diversity of video streaming options available today, it's hard to imagine a security system that would reliably recognise the exact size of the screen it's being displayed on," wrote commentator Vlad Slavov.

23.58 | 0 komentar | Read More

eBay to repatriate $9bn cash to US

30 April 2014 Last updated at 02:04

E-commerce giant eBay has said it is repatriating almost $9bn (£5.3bn) of its cash held overseas back to the US.

The firm said the move, which will see it paying taxes of $3bn on the cash, would help it access funds for any potential acquisitions in the country.

Many US firms have kept some of their cash overseas, a move widely seen as a way to avoid high US tax rates.

On Tuesday, Apple raised $12bn via a bond sale, rather than bring back some of the $159bn it holds offshore.

However, the chief executive of eBay said the company could utilise its cash in the US as it looks to expand its business.

"If you look at our last 15 acquisitions, my guess is ten have been inside the US, maybe 11," John Donahoe said.

"Just looking at that versus where our cash is located, you just say, alright it would make more sense to have more cash in the US for mergers and acquisitions."

The firm disclosed the move as it reported its earnings for the first quarter of 2014. Its revenues rose 14% compared with same period last year, to $4.3bn.

However, the tax charge over the repatriation of its overseas cash drove the firm into a net loss of $2.3bn.

eBay also issued a weaker-than-expected forecast for the current quarter.

It forecast a profit of between 67 cents and 69 cents per share in the second quarter. Many analysts were expecting a figure of 70 cents.

The weak outlook saw the firm's share fall nearly 4.5% in after-hours trading.

23.58 | 0 komentar | Read More

Piracy sites are 'rife with scams'

30 April 2014 Last updated at 08:21 By Leo Kelion Technology desk editor

Nearly all the UK's favourite movie and TV piracy sites "contain malware or credit card scams", according to a study published by the media industry.

It analysed 30 of the most visited sites offering access to copyright infringing material, and indicated only one was free of such threats.

The police have praised the group for raising awareness of the problem.

But other experts said the research was "misleading" and an exercise in "scaremongering".

The report was commissioned by the Industry Trust for Intellectual Property Awareness, whose members include Amazon, BBC Worldwide, HMV, BSkyB, Sony and Walt Disney.

It declined to name the sites involved.

Fake buttons

Intelligent Content Protection (Incopro) - a consultancy specialising in anti-piracy services - was contracted to do the research.

It accessed pages listing the top five films and top five TV shows on each site over the fortnight beginning 4 April.

The firm said 20 of the surveyed sites featured credit card fraud and other kinds of scams, in which users might be asked to provide personal details to access content that was not as it appeared.

It added that malware and other "potentially unwanted programs" were found on 27 of the sites. It said these were most commonly triggered by a user clicking on what appeared to be a "play" button that actually carried out another function.

The most popular type - reportedly found on 10 of the sites - were pop-up ads that the authors said were annoying in themselves and could also be used to fool the user into installing other types of malware.

It said five of the sites contained rootkit malware, which could be used to modify the computer's settings so that its anti-virus protection was switched off and the machine used to secretly send spam or mount cyber-attacks.

In addition, the researchers said they found instances of:

Continue reading the main story

"Start Quote

The report is clearly scaremongering"

End Quote Dr Joss Wright University of Oxford

• Four cases of ransomware - used to encrypt a PC's files so that they become useless unless a payment is made
• Twenty seven cases of spyware - used to send back information about the victim's browsing habits, email messages and passwords
• Twenty seven cases of browser hijacking - which can change the user's default home page and search engine as well as installing extensions that can be used to monitor the user's activity

There were no discovered cases where a pirate site automatically downloaded a malicious program without a link being clicked.

But one of Incopro's researchers said the sites benefited from the fees and other "kickbacks" paid by ad networks that place the icons and texts used to lure users.

"These fake play buttons, and that sort of thing, are very much driven by the desire of people to download content," Helen Saunders told the BBC.

"We view it as a kind of social engineering attack on the users who are tricked into downloading this stuff."

The Industry Trust also published details of a survey that questioned 4,210 UK-based pirate site visitors.

It said 77% of the respondents reported they had downloaded malware or other unwanted material as a result of using an unauthorised site.

'Ethically questionable'

The trust is advising the public to use its own Find Any Film service to find where to rent or buy legal material.

But one expert, from the University of Oxford's Internet Institute, called into question both the decision to withhold the names of the sites tested and how reliable a user survey would be in this case.

"While risks exist, the report is clearly scaremongering through carefully chosen statistics," said Dr Joss Wright.

Continue reading the main story

"Start Quote

There is a fair chance that website operators would be involved"

End Quote Helen Saunder Incopro

"This is a clear extension of the long-running Fact [Federation Against Copyright Theft] strategy of portraying illegal copyrighted content as dangerous, after the ability to portray it as poor quality was finally dropped as untenable.

"It's safe to say that searching for illicit content on the internet is both risky and ethically questionable, but so is commissioning biased studies to promote new businesses."

Ernesto van der Sar, editor of the news site Torrentfreak, also raised concerns.

"The statistics reported are misleading as they suggest that the majority of the users end up with unwanted software or viruses. In practice, only the small minority who click on the ads are affected," he said.

"While many pirate sites carry advertisements that may lead to malware, the sites themselves do not host or actively distribute these files.

"Independent and reputable diagnostic tools, such as Google Safebrowsing, show no warnings for the websites that are most frequently visited."

However, Incopro said it would be wrong to absolve the pirate sites' administrators.

"This study didn't look in any form of detail about who was placing these buttons, ads or downloads on the pages," said Ms Saunders.

"But I think given the context in which the sites operate there is a fair chance that website operators would be involved in some of this."

23.58 | 0 komentar | Read More

Skype removes 'offensive' emoticons

By Amelia Butterly Newsbeat reporter

30 April 2014 Last updated at 10:26

Skype, the online video chat service, has removed some of its emojis which have the "potential to offend", according to its community managers.

Some of the icons include a smiley face showing its middle finger and a woman's legs wearing high heels.

The changes happened more than a month ago, according to TechCrunch.

A number of Skype users have complained on the site's forums about the update, which was brought in with the upgrade to version 6.14 in February.

Some of the "hidden" Skype icons

The removed emojis, which could be used during instant messaging conversations, were part of a hidden range of icons separate to the standard ones.

Other hidden emoticons are still available, including one of a smiley face smoking, another which is drunk and a third wearing boxing gloves.

Skype was first launched more than 10 years ago.

It was bought by Microsoft in 2011 which decided to phase out its Windows Live Messenger service in 2013 in favour of Skype's instant messaging service.

Skype has a number of rivals, including Apple's FaceTime, Viber and Google Hangouts.

In February WhatsApp, the mobile messaging service being bought by Facebook for $19bn (£12bn), announced it would be adding a voice-calling function "within months".

The app already offers voice notes, small audio clips, but the update means it would act more like Skype.

Follow @BBCNewsbeat on Twitter

23.58 | 0 komentar | Read More

Google halts student Gmail scans

30 April 2014 Last updated at 13:55

Google has stopped scanning millions of Gmail accounts linked to an educational scheme, after it targeted users for advertising purposes.

The decision includes email accounts associated with Google Apps for Education (GAE).

This initiative provides teachers and students with access to free apps and storage, as well as customised @schoolname.edu email addresses.

The U-turn follows reports the scans might have breached a US privacy law.

Google highlighted its use of such scans when it updated its terms and conditions last month.

"Our automated systems analyse your content (including emails) to provide you personally-relevant product features, such as customised search results, tailored advertising, and spam and malware detection. This analysis occurs as the content is sent, received, and when it is stored," the terms read.

However, the Education Week website said this data-mining activity might place the firm in breach of the US Family Educational Rights and Privacy Act.

The firm had already been sued over the matter in California by two students who said they had been required to use Gmail by their university, it added.

The UK's largest teachers' union greeted the change in policy.

"Commercialisation seeps into all corners of children's lives," said Christine Blower, general secretary, of the NUT.

"The targeting of children with advertising ranging from fast food to designer clothes is relentlessly pursued by commercial companies. This is a welcome move."

Scan switch-off

More than 30 million students, teachers and administrators use GAE, Google says.

The University of Westminster, the University of St Andrews and Southampton's Oakwood Junior School are among its UK customers.

Other clients include Nigeria's Ladoke Akintola University of Technology and the American University in Cairo.

Google had prevented adverts from being shown from within GAE's own apps, but the scans could have been used to tailor what appeared when users visited a website using the firm's AdSense platform.

"We've permanently removed all ads scanning in Gmail for Apps for Education, which means Google cannot collect or use student data in Apps for Education services for advertising purposes," wrote Google for Education director Bram Bout on a company blog.

The change is also promised for users who signed up to Gmail as part of the service while at school or university, but have now moved on.

In addition, Mr Bout said, it would also be rolled out to current and legacy users of Google's Apps for Government and Apps for Business services.

However, other Gmail users will still have their accounts scanned.

"It is certainly telling that a company like Google, which is so reliant on data driven advertising, is taking steps to act on people's concerns about their privacy," said Emma Carr, deputy director of the campaign group Big Brother Watch.

"Scanning emails is clearly intrusive, so any step to protect children is a positive one. However, Google could certainly go further by introducing the same controls for users of all ages and for all of its services."

23.58 | 0 komentar | Read More