Larry Sanger, American internet project developer and co-founder of Wikipedia, argues in a blog post that vendors must start adding physical on/off switches to webcams, smartphone cameras/mics, and other devices that spy on us. He writes: Have you ever noticed that your webcam doesn't have an "off" switch? I looked on Amazon, and I couldn't find any webcams for sale that had a simple on/off switch. When I thought I found one, but it turned out just to have a light that turns on when the camera is in use, and off when not -- not a physical switch you can press or slide. The "clever" solution is supposed to be webcam covers (something Mark Zuckerberg had a hand in popularizing); you can even get a webcam (or a laptop) with such a cover built in. How convenient! I've used tape, which works fine. But a cover doesn't cover up the microphone, which could be turned on without your knowledge.
[...]
It's almost as if the vendors of common, must-have devices want to make it possible to spy on us. An enterprising journalist should ask why they don't make such switches. They certainly have deliberately made it hard for us to stop being spied upon -- even though we're their customers. Think about that. We're their bread and butter, and we're increasingly and rightly concerned about our security. Yet they keep selling us these insecure devices. That's just weird, isn't it? What the hell is going on? [...] If your webcam, or your phone, or any other device with an Internet-connected camera or microphone (think about how many you own) has ever been hacked, these [hardware vendors like Logitech and Apple and large software vendors like Skype and Snapchat] are partly to blame if it was always-on by design. They have a duty to worry about how their products make their users less secure. They haven't been doing this duty. Sanger goes on to urge consumers to care more about our privacy and security, and demand that vendors give us an off switch. "I think we consumers should demand that webcams, smart phones, smart speakers, and laptop cameras and microphones -- and any other devices with cameras and microphones that are connected to the Internet -- be built with hardware 'off' switches that make it impossible for the camera and microphone to be operated," writes Sanger.

Do you agree?

An anonymous reader quotes a report from Ars Technica: After April 15, inmates at the Adult Detention Center in Lowndes County, Mississippi will no longer be allowed to visit with family members face to face. Newton County, Missouri, implemented an in-person visitor ban last month. The Allen County Jail in Indiana phased out in-person visits earlier this year. All three changes are part of a nationwide trend toward "video visitation" services. Instead of seeing their loved ones face to face, inmates are increasingly limited to talking to them through video terminals. Most jails give family members a choice between using video terminals at the jail -- which are free -- or paying fees to make calls from home using a PC or mobile device.

Even some advocates of the change admit that it has downsides for inmates and their families. Ryan Rickert, jail administrator at the Lowndes County Adult Detention Center, acknowledged to The Commercial Dispatch that inmates were disappointed they wouldn't get to see family members anymore. Advocates of this approach point to an upside for families: they can now make video calls to loved ones from home instead of having to physically travel to the jail. These services are ludicrously expensive. Video calls cost 40 cents per minute in Newton County, 50 cents per minute in Lowndes County, and $10 per call in Allen County. Outside of prison, of course, video calls on Skype or FaceTime are free. These "visitation" services are often "grainy and jerky, periodically freezing up altogether," reports Ars. As for why so many jails are adopting them, it has a lot to do with money. "In-person visits are labor intensive. Prison guards need to escort inmates to and from visitation rooms, supervise the visits, and in some cases pat down visitors for contraband. In contrast, video terminals can be installed inside each cell block, minimizing the need to move inmates around the jail." The video-visitation systems also directly generate revenue for jails.

Following the release of Visual Studio 2019 for Windows and Mac platforms, Microsoft today is releasing a snap version of Visual Studio Code. A report adds: No, the source-code editor is not the Windows-maker's first snap -- it also released one for Skype, for instance. "As of today, Visual Studio Code is available for Linux as a snap, providing seamless auto-updates for its users. Visual Studio Code, a free, lightweight code editor, has redefined editors for building modern web and cloud applications, with built-in support for debugging, task running, and version control for a variety of languages and frameworks," says Canonical. Joao Moreno, Software Development Engineer, Microsoft Visual Studio Code offers the following statement: "The automatic update functionality of snaps is a major benefit. It is clear there is a thriving community around snaps and that it is moving forward at great pace. The backing of Canonical ensures our confidence in its ongoing development and long-term future."

The spectre of superintelligent machines doing us harm is not just science fiction, technologists say -- so how can we ensure AI remains 'friendly' to its makers? From a story: Jaan Tallinn (co-founder of Skype) warns that any approach to AI safety will be hard to get right. If an AI is sufficiently smart, it might have a better understanding of the constraints than its creators do. Imagine, he said, "waking up in a prison built by a bunch of blind five-year-olds." That is what it might be like for a super-intelligent AI that is confined by humans. The theorist Eliezer Yudkowsky, who has written hundreds of essays on superintelligence, found evidence this might be true when, starting in 2002, he conducted chat sessions in which he played the role of an AI enclosed in a box, while a rotation of other people played the gatekeeper tasked with keeping the AI in. Three out of five times, Yudkowsky -- a mere mortal -- says he convinced the gatekeeper to release him. His experiments have not discouraged researchers from trying to design a better box, however.

The researchers that Tallinn funds are pursuing a broad variety of strategies, from the practical to the seemingly far-fetched. Some theorise about boxing AI, either physically, by building an actual structure to contain it, or by programming in limits to what it can do. Others are trying to teach AI to adhere to human values. A few are working on a last-ditch off-switch. One researcher who is delving into all three is mathematician and philosopher Stuart Armstrong at Oxford University's Future of Humanity Institute, which Tallinn calls "the most interesting place in the universe." (Tallinn has given FHI more than $310,000.) Armstrong is one of the few researchers in the world who focuses full-time on AI safety. When I asked him what it might look like to succeed at AI safety, he said: "Have you seen the Lego movie? Everything is awesome."

Technology writer Tom Chanter explores the life story of venture capitalist Marc Andreessen to ask whether software will not only eat the world, but also the jobs of what one historian predicts will be a "massive new unworking class: people devoid of any economic, political or even artistic value." Can Marc Andreessen prevent a so-called "useless class" who "will not merely be unemployed -- it will be unemployable"?

Andreessen grew up in New Lisbon, Wisconsin (population: 1,500), and taught himself the BASIC programming language at age 8. He co-developed the original Mosaic web browser before he'd graduated from college, went on to co-found Netscape, and by age 23 was worth $53 million. He then transformed into a "super angel" investor in companies like Twitter, Airbnb, Lyft, Facebook, Skype, and GitHub. "Having been an innovator in the tech start-up game, Andreessen is now an innovator in the tech venture capital game," writes Chanter. "He is a jedi that has become the master." In 2011, Marc Andreessen published an article in the Wall Street Journal titled, Why Software Is Eating The World. He wrote, "Over the next 10 years, the battles between incumbents and software-powered insurgents will be epic...." 7 years later, it's clear Andreessen was correct. Lyft has destroyed taxi jobs. Airbnb has destroyed hotel jobs. Amazon destroyed independent bookstores. How does Andreessen feel about that? "Screw the independent bookstores," he said in his New Yorker profile. "There weren't any near where I grew up. There were only ones in college towns. The rest of us could go pound sand."
But the 4,900-word article also notes Andreessen's pledge to give half his income to charitable causes -- and his observation in a 2015 interview that outside of the United States, global income inequality is falling, not rising. "He has seen technology transform his own life, and has seen how technology has bridged the global wealth gap. Why shouldn't he be optimistic about the future of America's working class?"

And Andreessen's ultimate answer to the jobs destroyed by technology may be Udacity. The article cites Andreessen's investment in the company in 2012, and points to the online education platform's hopeful mission statement. "Virtually anyone on the planet with an internet connection and a commitment to self-empowerment through learning can come to Udacity, master a suite of job-ready skills, and pursue rewarding employment."

As a boy in Wisconsin he was starved for information. He has created an education institution accessible from Wisconsin to Africa. As a boy in Wisconsin he was starved for connection. He has married an innovative philanthropist and author, Laura Arrillaga-Andreessen. They have a son named John. Andreessen is optimistic for both the working class and the future tech elite.

In his New Yorker profile he says of his son, "He'll come of age in a world where ten or a hundred times more people will be able to contribute in science and medicine and the arts, a more peaceful and prosperous world."

He added, tongue in cheek, "I'm going to teach him how to take over that world!"

Microsoft this week revamped Skype's browser-based client with a slew of new features. From a report: The Seattle company this week announced the rollout of a major Skype for Web update, which introduces high-definition video calling, a redesigned notifications panels, a revamped media gallery, and more. It's available on any PC running Windows 10 and Mac OS X 10.12 or higher with the latest versions of Google Chrome or Microsoft Edge. The bulk of the new capabilities debuted in preview last October, but they're available widely starting this week. Skype for Web does not support Safari, Firefox, and Opera browsers, Microsoft has confirmed.

A few months after adding background blurring to its Teams tool, Microsoft has brought the same option to Skype on the desktop. From a report: The feature serves two purposes. Firstly it helps to focus attention on the person that is speaking, but secondly -- and perhaps more importantly -- it hides any untidiness (or secrets) that may be going on behind the speaker. It's another push from Microsoft to move people away from Skype Classic to Skype 8. Background blurring makes use of artificial intelligence to pick out the subject of a video, having been trained to detect hair, hands and arms.

"Russian oligarchs and Kremlin apparatchiks may find the tables turned on them," writes Kevin Poulsen at The Daily Beast, reporting on a new leak site that's unleashed "a compilation of hundreds of thousands of hacked emails and gigabytes of leaked documents."

"Think of it as WikiLeaks, but without Julian Assange's aversion to posting Russian secrets."

Slashdot reader hyades1 shared their report: The site, Distributed Denial of Secrets, was founded last month by transparency activists. Co-founder Emma Best said the Russian leaks, slated for release Friday, will bring into one place dozens of different archives of hacked material that, at best, have been difficult to locate, and in some cases appear to have disappeared entirely from the web. "Stuff from politicians, journalists, bankers, folks in oligarch and religious circles, nationalists, separatists, terrorists operating in Ukraine," said Best, a national-security journalist and transparency activist. "Hundreds of thousands of emails, Skype and Facebook messages, along with lots of docs...."

The site is a kind of academic library or a museum for leak scholars, housing such diverse artifacts as the files North Korea stole from Sony in 2014, and a leak from the Special State Protection Service of Azerbaijan.

The site's Russia section already includes a leak from Russia's Ministry of the Interior, portions of which detailed the deployment of Russian troops to Ukraine at a time when the Kremlin was denying a military presence there. Though some material from that leak was published in 2014, about half of it wasn't, and WikiLeaks reportedly rejected a request to host the files two years later, at a time when Julian Assange was focused on exposing Democratic Party documents passed to WikiLeaks by Kremlin hackers. "A lot of what WikiLeaks will do is organize and re-publish information that's appeared elsewhere," said Nicholas Weaver, a researcher at the University of California at Berkeley's International Computer Science Institute. "They've never done that with anything out of Russia."
The Russian documents were posted simultaneously on the DDoSecrets website and on the Internet Archive, notes the New York Times, adding that the new site has also posted a large archive of internal documents from WikiLeaks itself.

"Personally, I am disappointed by what I see as dishonest and egotistic behavior from Julian Assange and WikiLeaks," Best tells the Times. "But she added that she had made the Russian document collection available to WikiLeaks ahead of its public release on Friday, and had posted material favorable to Mr. Assange leaked from the Ecuadorean Embassy in London, where he has lived for more than six years to avoid arrest."

Avast's PC Trends Report 2019 found [PDF] that users are making themselves vulnerable by not implementing security patches and keeping outdated versions of popular applications on their PCs. From a news report: The applications where updates are most frequently neglected include Adobe Shockwave (96%), VLC Media Player (94%) and Skype (94%). The report, which uses anonymized and aggregated data from 163 million devices across the globe, also found that Windows 10 is now installed on 40% of all PCs globally, which is fast approaching the 43% share held by Windows 7. However, 15% of all Windows 7 users and 9% of all Windows 10 users worldwide are running older and no longer supported versions of their product, for example, the Windows 7 Release to Manufacturing version from 2009 or the Windows 10 Spring Creators Update from early 2017.

A Skype call and a gullible employee was all it took for North Korean hackers to infiltrate the computer network of Redbanc, the company that interconnects the ATM infrastructure of all Chilean banks. From a report: Prime suspects behind the hack are a hacker group known as Lazarus Group (or Hidden Cobra), known to have associations to the Pyongyang regime, is one of the most active and dangerous hacking groups around, and known to have targeted banks, financial institutions, and cryptocurrency exchanges in the past years. Lazarus' most recent attack took place at the end of December last year but only came to the public's attention after Chilean Senator Felipe Harboe called out Redbanc on Twitter last week for not disclosing its security breach. The company, which has direct lines into the networks of all Chilean banks, formally admitted to the hack a day later in a message posted on its website, but that announcement didn't include any details about the intrusion. However, a day after Redbanc's admission, an investigation conducted by Chilean tech news site trendTIC revealed that the financial firm was the victim of a serious cyber-attack, and not something that could be easily dismissed. According to reporters, the source of the hack was identified as a LinkedIn ad for a developer position at another company to which one of the Redbanc employees applied.

FCC Chairman Ajit Pai today thanked Congress for preventing the U.S. government from enforcing net neutrality rules. "The Pai-led Federal Communications Commission repealed Obama-era net neutrality rules, but the repeal could have been reversed by Congress if it acted before the end of its session," reports Ars Technica. "Democrats won a vote to reverse the repeal in the Senate but weren't able to get enough votes in the House of Representatives before time ran out." From the report: "I'm pleased that a strong bipartisan majority of the U.S. House of Representatives declined to reinstate heavy-handed Internet regulation," Pai said in a statement marking the deadline passage today. Pai claimed that broadband speed improvements and new fiber deployments in 2018 occurred because of his net neutrality repeal -- although speeds and fiber deployment also went in the right direction while net neutrality rules were in place. "Over the past year, the Internet has remained free and open," Pai said, adding that "the FCC's light-touch approach is working." Pai didn't mention a recent case in which CenturyLink temporarily blocked its customers' Internet access in order to show an ad or a recent research report accusing Sprint of throttling Skype (which Sprint denies).

Microsoft is working on a new "Microsoft 365 Consumer" bundle that "will be the consumer-focused complement to Microsoft's existing Microsoft 365 subscription bundle for business users," reports ZDNet. From the report: A couple of recent Microsoft job postings mention the consumer subscription bundle, which Microsoft has yet to announce publicly. One job posting for a Product Manager for the "M365 Consumer Subscription" notes: "The Subscription Product Marketing team is a new team being created to build and scale the Microsoft 365 Consumer Subscription." The job description says the product manager for this service will help "identify, build, position and market a great new Microsoft 365 Consumer Subscription."

The job post notes that the team behind Microsoft 365 Consumer oversees the Windows platform, the Microsoft Surface device portfolio, Office 365 consumer plans, Skype, Cortana, Bing search, as well as the Microsoft Education team. If I were betting on what Microsoft 365 Consumer might include, I'd think some variant of Windows 10, Office 365 Home, Skype, Cortana, Bing, Outlook Mobile, Microsoft To-Do and maybe MSN apps and services could figure into the picture. Maybe this subscription will be tied to Surface devices only? Maybe a monthly leasing fee for Surfaces will be part of the bundle itself?

EU governments agreed on Friday to toughen up draft rules allowing law enforcement authorities to get electronic evidence directly from tech companies such as Facebook and Google stored in the cloud in another European country. From a report: The move underlines the growing trend in Europe to rein in tech giants whether on the regulatory front or the antitrust front. The e-evidence proposal also came in the wake of recent deadly terrorist attacks in Europe, pressure on tech companies to do more to cooperate with police investigations and people's growing tendency to store and share information on WhatsApp, Facebook, Viber, Skype, Instagram and Telegram.

The European Commission, the EU executive, came up with the draft legislation in April, which includes a 10-day deadline for companies to respond to police requests or 6 hours in emergency cases, and fines up to 2 percent of a company's global turnover for not complying with such orders. The proposal covers telecoms services providers, online marketplaces and internet infrastructure services providers and applies to subscriber data and other data on access, transactional and content.

Skype is getting real-time captions and subtitles, and PowerPoint will have these features, too, next year. From a report: Ostensibly an accessibility feature (and launched on United Nations International Day of Persons with Disabilities), the new option means that Skype will be able to use voice recognition to show you the text of what is being said in a voice or video call. Microsoft will also bring the same feature to PowerPoint next year. Microsoft promises that live captions and subtitles are "optimized to be fast, continuous, and contextually updated as people speak", and in the current incarnation they will automatically scroll during a call. In a future update, however, it will be possible to manually scroll through subtitles and take advantage of additional viewing options.

You and 800 million other people now can use hardware authentication keys -- and no password at all -- to log on to Microsoft accounts used for Outlook, Office 365, OneDrive, Skype and Xbox Live. From a report: Microsoft is using a technology called FIDO2, which employs hardware keys for the no-password logon, the company said Tuesday. New versions of Microsoft's Windows 10 operating system and Edge web browser support the technology. The hardware authentication keys plug into laptop USB ports or, for phones, use Bluetooth or NFC wireless communications to help prove who you are. Initially, they worked in combination with a password for dual-factor authentication, but FIDO2 and a related browser technology called WebAuthn expands beyond that to let the company ditch the password altogether.

Microsoft's no-password logon offers three options: the hardware key combined with Windows Hello face recognition technology or fingerprint ID; the hardware key combined with a PIN code; or a phone running the Microsoft Authenticator app. It works with Outlook.com, Office 365, Skype, OneDrive, Cortana, Microsoft Edge, Xbox Live on the PC, Mixer, the Microsoft Store, Bing and the MSN portal site.

A reader shares an article by former PC World columnist Chris Hoffman.

"No PC users asked Microsoft for Windows as a service," Hoffman complains. "It was all Microsoft's idea." "Software as a service" is trendy. But these types of services are generally hosted on a remote platform, like Amazon Web Services or even Microsoft Azure. Web applications like Gmail and Facebook are services. That all makes sense -- the company maintains the software, and you access it remotely. An operating system that runs on millions of different hardware configurations is not a service. It can't be updated as easily, and you'll run into issues with hardware, drivers, and software when you change things. The upgrade process isn't instant and transparent -- it's a big download and can take a while to install... [M]illions of applications (or computers!) could break if Microsoft makes a mistake with Windows.

What has Windows as a service even gotten us? How much has Windows 10 improved since its release? Sure, Microsoft keeps adding new features like the Timeline and Paint 3D, but how many Windows users care about those? Many of these new features, like Paint 3D and updates to Microsoft Edge, could be delivered without major operating system upgrades. Just take a look at the many features in Windows 10's October 2018 Update and ask whether they were worth all the deleted files and drama. Texting from your PC is great, but Microsoft could release an app that does that -- in fact, this was once supposed to be a Skype feature. Clipboard history is cool, and a dark theme for File Explorer is cute. But couldn't we have waited another six months for Microsoft to properly polish and test this stuff?

"Windows as a Service" does get us a few things. It gets us applications like Candy Crush installed on our PCs. It gets us an ever-increasing number of built-in advertisements. And it gets us activation problems when Windows phones home once a day and discovers that Microsoft has a server problem.
"Please Microsoft, slow down," the article concludes. "How about releasing a new version of Windows once per year instead? That's what Apple does, and Apple doesn't need 'macOS as a Service' to do it. Just create a new version of Windows every year, give it a new name, and spend a lot of time polishing it and fixing bugs.

"Wait until it's stable to release it, even if you have to delay it."

An anonymous reader quotes a report from Ars Technica: Three U.S. Senate Democrats today asked the four major wireless carriers about allegations they've been throttling video services and -- in the case of Sprint -- the senators asked about alleged throttling of Skype video calls. Sens. Edward Markey (D-Mass.), Richard Blumenthal (D-Conn.), and Ron Wyden (D-Ore.) sent the letters to AT&T, Verizon, Sprint, and T-Mobile, noting that recent research using the Wehe testing platform found indications of throttling by all four carriers.

"All online traffic should be treated equally, and Internet service providers should not discriminate against particular content or applications for competitive advantage purposes or otherwise," the senators wrote. Specifically, the Wehe tests "indicated throttling on AT&T for YouTube, Netflix, and NBC Sports... throttling on Verizon for Amazon Prime, YouTube, and Netflix... throttling on Sprint for YouTube, Netflix, Amazon Prime, and Skype Video calls... [and] delayed throttling, or boosting, on T-Mobile for Netflix, NBC Sports, and Amazon Prime by providing un-throttled streaming at the beginning of the connection, and then subsequently throttling the connection," the senators' letters said.

An anonymous reader quotes a report from Fortune: Sprint has been slowing traffic to Microsoft's internet-based video chat service Skype, according to new findings from an ongoing study by Northeastern University and the University of Massachusetts. Among leading U.S. carriers, Sprint was the only one to throttle Skype, the study found. The throttling was detected in 34 percent of 1,968 full tests -- defined as those in which a user ran two tests in a row -- conducted between Jan. 18 and Oct. 15. It happened regularly, and was spread geographically across the U.S. Android phone users were more affected than owners of Apple Inc.'s iPhones. The finding is particularly troubling because Skype relies on Sprint's wireless internet network, but the app also provides a communication tool that competes with Sprint's calling services, the researcher added. "If you are a telephony provider and you provide IP services over that network, then you shouldn't be able to limit the service offered by another telephony provider that runs over the internet," David Choffnes, one of the researchers who developed the app used to conduct the survey, said. "From a pure common sense competition view, it seems directly anti-competitive."

Richard Stallman recently gave a 9,000-word interview in which he first reminisces about his early days at MIT's AI Lab where he "found something worth being loyal to" -- and then assesses how things have played out. Open source is an amoral, depoliticized substitute for the free-software movement... [I]t's not the name of a philosophy -- it refers to the software, but not to the users. You'll find lots of cautious, timid organizations that do things that are useful, but they don't dare say: users deserve freedom. Like Creative Commons, which does useful, practical work -- namely, preparing licences that respect the freedom to share. But Creative Commons doesn't say that users are entitled to the freedom to share; it doesn't say that it's wrong to deny people the freedom to share. It doesn't actively uphold that principle.

Of course, it's much easier to be a supporter of open source, because it doesn't commit you to anything. You could spend ten minutes a week doing things that help advance open source, or just say you're a supporter -- and you're not a hypocrite, because you can't violate your principles if you haven't stated any. What's significant is that, in their attempt to separate our software from our ideas, they've reduced our ability to win people over by showing what those ideas have achieved...

For a long time, Microsoft was the main enemy of users' freedom, and then, for the past ten years or so, it's been Apple. When the first iThings came out, around 2007, it was a tremendous advance in contempt for users' freedom because it imposed censorship of applications -- you could only install programs approved by Apple. Ironically, Apple has retreated from that a little bit. If a program is written in Swift, you can now install it yourself from source code. So, Apple computers are no longer 100 per cent jails. The tablets too. A jail is a computer in which installation of applications is censored. So Apple introduced the first jail computer with the iPhone. Then Microsoft started making computers that are jails, and now Apple has, you might say, opened a window into the jail -- but not the main door.
Stallman cites free-software alternatives to Skype like Linphone, Ekiga, and xJitsi, and also says he's In favor of projects like GNU social, a free software microblogging server, and the distributed social networking service Diaspora. "I know they're useful for other people, but it wouldn't fit my lifestyle. I just use email." In fact, he calls mobile computing one of the three main setbacks of the free-software movement. "[P]hones and tablets, designed from the ground up to be non-free. The apps, which tend now to be non-free malware. And the Intel management engine, and more generally the low-level software, which we can't replace, because things just won't allow us to do so....

"[P]eople in the software field can't avoid the issue of free versus proprietary software, freedom-respecting versus freedom-trampling software. We have a responsibility, if we're doing things in the software field, to do it in a way that is ethical. I don't know whether we will ever succeed in liberating everyone, but it's clearly the right direction in which to push."

A new investigation uncovers a sophisticated ad fraud scheme involving more than 125 Android apps and websites, some of which were targeted at kids. From a report: Last April, Steven Schoen received an email from someone named Natalie Andrea who said she worked for a company called We Purchase Apps. She wanted to buy his Android app, Emoji Switcher. But right away, something seemed off. "I did a little bit of digging because I was a little sketched out because I couldn't really find even that the company existed," Schoen told BuzzFeed News. The We Purchase Apps website listed a location in New York, but the address appeared to be a residence. "And their phone number was British. It was just all over the place," Schoen said. It was all a bit weird, but nothing indicated he was about to see his app end up in the hands of an organization responsible for potentially hundreds of millions of dollars in ad fraud, and which has funneled money to a cabal of shell companies and people scattered across Israel, Serbia, Germany, Bulgaria, Malta, and elsewhere.

Schoen had a Skype call with Andrea and her colleague, who said his name was Zac Ezra, but whose full name is Tzachi Ezrati. They agreed on a price and to pay Schoen up front in bitcoin. "I would say it was more than I had expected," Schoen said of the price. That helped convince him to sell. A similar scenario played out for five other app developers who told BuzzFeed News they sold their apps to We Purchase Apps or directly to Ezrati. (Ezrati told BuzzFeed News he was only hired to buy apps and had no idea what happened to them after they were acquired.) The Google Play store pages for these apps were soon changed to list four different companies as their developers, with addresses in Bulgaria, Cyprus, and Russia, giving the appearance that the apps now had different owners.

But an investigation by BuzzFeed News reveals that these seemingly separate apps and companies are today part of a massive, sophisticated digital advertising fraud scheme involving more than 125 Android apps and websites connected to a network of front and shell companies in Cyprus, Malta, British Virgin Islands, Croatia, Bulgaria, and elsewhere. More than a dozen of the affected apps are targeted at kids or teens, and a person involved in the scheme estimates it has stolen hundreds of millions of dollars from brands whose ads were shown to bots instead of actual humans. (A full list of the apps, the websites, and their associated companies connected to the scheme can be found in this spreadsheet.)

One way the fraudsters find apps for their scheme is to acquire legitimate apps through We Purchase Apps and transfer them to shell companies. They then capture the behavior of the app's human users and program a vast network of bots to mimic it, according to analysis from Protected Media, a cybersecurity and fraud detection firm that analyzed the apps and websites at BuzzFeed News' request. This means a significant portion of the millions of Android phone owners who downloaded these apps were secretly tracked as they scrolled and clicked inside the application. By copying actual user behavior in the apps, the fraudsters were able to generate fake traffic that bypassed major fraud detection systems. Response from Google.