captured the attention of the world.

2011 年阿拉伯之春

It also captured the attention

引起世界各地的關注

of authoritarian governments in other countries,

也提高了

who were worried that revolution would spread.

其他集權政體的警覺性

To respond, they ramped up surveillance

他們擔心改革思潮擴大

of activists, journalists and dissidents

因此，他們逐漸加強

who they feared would inspire revolution

對社會運動人士、 記者及異議分子的監視

in their own countries.

他們害怕這群人在國內

One prominent Bahraini activist,

推動改革

who was arrested and tortured by his government,

一個巴林的重要社運人士

has said that the interrogators showed him

被政府逮捕及虐待

transcripts of his telephone calls

他說，問話的人給他看

and text messages.

他的手機通聯記錄

Of course, it's no secret

和簡訊內容

that governments are able to intercept telephone calls and text messages.

當然，這也不是什麼新聞了

It's for that reason that many activists

政府早就能夠監聽電話和簡訊

specifically avoid using the telephone.

因為如此，許多社運人士

Instead, they use tools like Skype,

都會避免使用電話

which they think are immune to interception.

他們使用 Skype

They're wrong.

以為這樣就不會被監聽

There have now been over the last few years

但他們錯了

an industry of companies

早在過去幾年

who provide surveillance technology to governments,

已有企業

specifically technology that allows those governments

向政府提供監聽科技

to hack into the computers

尤其是一種專門的科技

of surveillance targets.

讓政府得以入侵監聽對象的電腦

Rather than intercepting the communications as they go over the wire,

與其藉由線路監聽

instead they now hack into your computer,

他們現在直接入侵你的電腦

enable your webcam, enable your microphone,

啟動你的網路攝影機、麥克風

and steal documents from your computer.

並竊取你電腦裡的文件

When the government of Egypt fell in 2011,

當埃及政府在 2011 年垮台時

activists raided the office of the secret police,

社運人士搜查秘密警察的辦公室

and among the many documents they found

裡面有許多文件

was this document by the Gamma Corporation,

有一份文件來自伽瑪(Gamma)公司

by Gamma International.

母公司是伽瑪國際

Gamma is a German company

伽瑪是一家德國公司

that manufactures surveillance software

設計監聽軟體

and sells it only to governments.

然後只賣給政府

It's important to note that most governments

值得注意的是，大部分的政府

don't really have the in-house capabilities

並沒有能力

to develop this software.

自行研發這類軟體

Smaller ones don't have the resources

小國更沒有

or the expertise,

這樣的資源與專業

and so there's this market of Western companies

因此，西方的企業

who are happy to supply them with the tools

很樂意提供這些設備與技術

and techniques for a price.

以換取酬佣

Gamma is just one of these companies.

伽瑪只是其中一個例子

I should note also that Gamma never actually sold

我要聲明：伽瑪從未

their software to the Egyptian government.

賣軟體給埃及政府

They'd sent them an invoice for a sale,

他們有寄出報價的發票

but the Egyptians never bought it.

但是埃及並未購買

Instead, apparently, the Egyptian government

很明顯的，埃及政府使用的是

used a free demo version of Gamma's software.

伽瑪免付費的試用版

(Laughter)

（笑聲）

So this screenshot is from a sales video

這個抓圖是截取自

that Gamma produced.

伽瑪公司的行銷影片

Really, they're just emphasizing

在這個頗具說服力的簡報中

in a relatively slick presentation

他們強調

the fact that the police can sort of sit

警察只要輕鬆地坐在

in an air-conditioned office

辦公室裡吹冷氣

and remotely monitor someone

就能進行遠端監控

without them having any idea that it's going on.

而且被監聽的對象完全不知情

You know, your webcam light won't turn on.

網路攝影機的指示燈並不會亮

There's nothing to indicate that the microphone is enabled.

也看不出來麥克風被開啟了

This is the managing director of Gamma International.

這位是伽碼國際的執行董事

His name is Martin Muench.

馬汀穆奇 (Martin Muench)

There are many photos of Mr. Muench that exist.

有很多他的照片

This is perhaps my favorite.

這張是我的最愛

I'm just going to zoom in a little bit onto his webcam.

讓我們放大看他的網路攝影機

You can see there's a little sticker

你可以看到有一張小貼紙

that's placed over his camera.

貼在攝影機上

He knows what kind of surveillance is possible,

他知道監聽科技的能力

and so clearly he doesn't want it to be used

所以很明顯地，他不希望這樣的事

against him.

發生在他身上

Muench has said that he intends

穆奇表示

for his software to be used

他希望他的軟體

to capture terrorists and locate pedophiles.

用來對付恐怖分子或有戀童癖的人

Of course, he's also acknowledged that once

當然，他也承認

the software has been sold to governments,

一旦這個軟體賣給了政府

he has no way of knowing how it can be used.

用途就不得而知了

Gamma's software has been located on servers

許多伺服器都有裝載伽碼的軟體

in countries around the world,

在世界各國被使用

many with really atrocious track records

也的確有令人震驚的追蹤紀錄

and human rights violations.

以及違反人權的問題

They really are selling their software around the world.

伽碼的軟體在全世界都買的到

Gamma is not the only company in the business.

伽碼並不是唯一這樣的企業

As I said, it's a $5 billion industry.

這個產業價值 50 億美元

One of the other big guys in the industry

另外一個主要企業是

is an Italian company called Hacking Team.

來自義大利的駭客團隊 (Hacking Team)

Now, Hacking Team has what is probably

這家公司現在擁有

the slickest presentation.

最具說服力的簡報技巧

The video they've produced is very sexy,

他們製作的行銷影片非常吸引力

and so I'm going to play you a clip

我會播出一段

just so you can get a feel

讓你們感受一下

both for the capabilities of the software

這個軟體的能力

but also how it's marketed

以及這家公司

to their government clients.

是如何向政府銷售這個產品

(Video) Narrator: You want to look through your target's eyes.

(影片) 旁白:你想要知道 你的監聽對象正在看什麼

(Music)

(音樂)

You have to hack your target.

你必須入侵他

["While your target is browsing the web, exchanging documents, receiving SMS, crossing the borders"]

[當你的監聽對象正在瀏覽網頁、 交換文件、接收簡訊、跨越國界]

You have to hit many different platforms.

你必須進入許多不同的平台

["Windows, OS X, iOS, Android, Blackberry, Symbian, Linux"]

[Windows, OS X, iOS, Android, Blackberry, Symbian, Linux]

You have to overcome encryption

你必須解開加密

and capture relevant data.

獲取有關的資料

[Skype & encrypted calls, target location, messaging, relationships,

[Skype 以及 加密通話 目標位置、簡訊、 關係、

web browsing, audio & video"]

網路瀏覽、影片及錄音]

Being stealth and untraceable.

神不知鬼不覺地

["Immune to any protection system Hidden collection infrastructure"]

[入侵任何保護系統]

Deployed all over your country.

監控國家的每一個角落

["Up to hundreds of thousands of targets Managed from a single spot"]

[在同一個地點， 就能監控數以千計個目標]

Exactly what we do.

這正是我們拿手的

Christopher Soghoian: So, it would be funny if it wasn't true,

克里斯多夫．索荷宜恩： 若這是虛構的，那它很有意思

but, in fact, Hacking Team's software

但事實上，駭客團隊的軟體

is being sold to governments around the world.

賣給了世界各國的政府

Last year we learned, for example,

舉個例子，去年我們得知

that it's been used to target Moroccan journalists by the Moroccan government.

摩洛哥政府 使用這個科技來監聽記者

Many, many countries it's been found in.

許多國家都有類似的例子

So, Hacking Team has also been actively courting

因此，駭客團隊也面臨

the U.S. law enforcement market.

美國執法單位的關切

In the last year or so, the company

這家公司在去年左右

has opened a sales office in Maryland.

在馬里蘭州成立了銷售據點

The company has also hired a spokesperson.

也聘請了一名代言人

They've been attending

他們陸續參與

surveillance industry conferences

監控產業的研討會

where law enforcement officials show up.

執法官員也在現場

They've spoken at the conferences.

他們在研討會上發言

What I thought was most fascinating was

我覺得最有意思的是

they've actually paid for the coffee break

他們贊助會議休息時間的餐點

at one of the law enforcement conferences

那是一場法律研討會

earlier this year.

這是今年稍早的事情

I can't tell you for sure that Hacking Team

我無法確定駭客團隊

has sold their technology in the United States,

是否將他們的科技賣給了美國政府

but what I can tell you that if they haven't sold it,

但我可以確定的是，如果他們沒賣

it isn't because they haven't been trying hard.

這並不是因為他們沒有努力銷售

So as I said before,

如同我之前所說

governments that don't really have the resources

沒有能力自行設計的政府

to build their own tools will buy

將會去購買這些現成的監控軟體

off-the-shelf surveillance software,

正因如此

and so for that reason,

譬如，突尼西亞政府

you see that the government of, say, Tunisia,

以及德國政府，可能會使用相同軟體

might use the same software as the government of Germany.

他們都購買現成的產品

They're all buying off-the-shelf stuff.

美國的聯邦調查局 (FBI)

The Federal Bureau of Investigation in the United States

擁有預算來自行發展監控科技

does have the budget to build their own surveillance technology,

因此這些年以來

and so for several years, I've been trying

我嘗試去了解

to figure out if and how the FBI

FBI 是否能夠以及 如何入侵監控對象的電腦

is hacking into the computers of surveillance targets.

我有朋友在電子領域基金會 (Electronic Frontier Foundation)

My friends at an organization called the Electronic Frontier Foundation --

這是一個公民社會組織

they're a civil society group —

取得許多來自 FBI 的文件

obtained hundreds of documents from the FBI

內容描述他們下一代的監聽科技

detailing their next generation of surveillance technologies.

這些文件的內容大多被大量塗改

Most of these documents were heavily redacted,

但若我把它放大

but what you can see from the slides,

你可以看到這個名詞：

if I zoom in, is this term:

遠端營運單位

Remote Operations Unit.

當我第一次看到這個

Now, when I first looked into this,

我從未聽過這個單位

I'd never heard of this unit before.

我已經研究監聽超過 6 年了

I've been studying surveillance for more than six years.

但我從未聽過這個單位

I'd never heard of it.

因此我上網搜尋

And so I went online and I did some research,

最後我找到了答案

and ultimately I hit the mother lode

當我進入Linkedin網站

when I went to LinkedIn,

這是求職者會使用的社群網站

the social networking site for job seekers.

裡面有許多過去美國政府的外包商

There were lots of former U.S. government contractors

這些人曾經

who had at one point worked

任職於這個遠端營業單位

for the Remote Operating Unit,

並且在他們的履歷上詳盡解釋

and were describing in surprising detail on their CVs

這份工作的內容

what they had done in their former job.

(笑聲)

(Laughter)

我把這些資料

So I took this information

交給了一名我信任的華爾街日報記者

and I gave it to a journalist that I know and trust at the Wall Street Journal,

她聯絡了一些

and she was able to contact several other

過去的執法官員

former law enforcement officials

這些人承認

who spoke on background and confirmed

FBI 的確有一個單位

that yes, in fact, the FBI has a dedicated team

專門入侵監聽對象的電腦

that does nothing but hack into the computers

如同伽碼以及駭客團隊這樣的企業

of surveillance targets.

FBI 也有能力

Like Gamma and Hacking Team,

遠端啟動網路攝影機、麥克風、

the FBI also has the capability

竊取文件、取得網路瀏覽資料等

to remotely activate webcams, microphones,

這樣的行為

steal documents, get web browsing information,

這是一個很大的問題

the works.

政府可以入侵電腦

There's sort of a big problem

恐怖分子、有戀童癖的人、

with governments going into hacking,

販毒者、記者以及人權運動人士

and that's that terrorists, pedophiles,

都使用相同種類的電腦

drug dealers, journalists and human rights activists

沒有販毒專用的電話

all use the same kinds of computers.

沒有記者專用的筆電

There's no drug dealer phone

我們都使用相同的科技

and there's no journalist laptop.

而這代表的是

We all use the same technology,

政府有能力入侵電腦

and what that means then is that for governments

那些真正是壞人的電腦

to have the capability to hack into the computers

政府也有能力

of the real bad guys,

入侵我們的電腦

they also have to have the capability

因此全世界的政府

to hack into our devices too.

都在使用這項科技

So governments around the world

他們都在使用監聽

have been embracing this technology.

作為執法的工具

They've been embracing hacking

但並沒有人真正提出質疑

as a law enforcement technique,

在美國，我的國家

but without any real debate.

並沒有國會聽證

In the United States, where I live,

並沒有通過任何法律

there have been no congressional hearings.

專門授權這項科技

There's no law that's been passed

鑒於它的能力以及被濫用的可能性

specifically authorizing this technique,

進行一個公開的討論是非常重要的

and because of its power and potential for abuse,

非常謝謝

it's vital that we have an informed public debate.

(掌聲)

Thank you very much.

(Applause)