What Palantir Knows About You
Suggested by a reader who'd seen our posts about what Facebook and Google know about you:
Underlining, highlighting and bold print by FuelMix:
High above the Hudson River in downtown Jersey
City, a former U.S. Secret Service agent named Peter Cavicchia III ran
special ops for JPMorgan Chase & Co. His insider threat group—most
large financial institutions have one—used computer algorithms to
monitor the bank’s employees, ostensibly to protect against perfidious
traders and other miscreants.
Aided by as many as 120 “forward-deployed engineers” from the data
mining company Palantir Technologies Inc., which JPMorgan engaged in
2009, Cavicchia’s group vacuumed up emails and browser histories, GPS
locations from company-issued smartphones, printer and download
activity, and transcripts of digitally recorded phone conversations.
Palantir’s software aggregated, searched, sorted, and analyzed these
records, surfacing keywords and patterns of behavior that Cavicchia’s
team had flagged for potential abuse of corporate assets. Palantir’s
algorithm, for example, alerted the insider threat team when an employee
started badging into work later than usual, a sign of potential
disgruntlement. That would trigger further scrutiny and possibly
physical surveillance after hours by bank security personnel.
Over time, however, Cavicchia himself went rogue. Former JPMorgan colleagues describe the environment as Wall Street meets Apocalypse Now,
with Cavicchia as Colonel Kurtz, ensconced upriver in his office suite
eight floors above the rest of the bank’s security team. People in the
department were shocked that no one from the bank or Palantir set any
real limits. They darkly joked that Cavicchia was listening to their
calls, reading their emails, watching them come and go. Some planted
fake information in their communications to see if Cavicchia would
mention it at meetings, which he did.
It all ended when the bank’s senior executives learned that they, too,
were being watched, and what began as a promising marriage of masters of
big data and global finance descended into a spying scandal. The
misadventure, which has never been reported, also marked an ominous turn
for Palantir, one of the most richly valued startups in Silicon Valley.
An intelligence platform designed for the global War on Terror was
weaponized against ordinary Americans at home.
Police and sheriff’s departments in New York, New Orleans, Chicago, and Los Angeles have also used it, frequently ensnaring in the digital dragnet people who aren’t suspected of committing any crime. People and objects pop up on the Palantir screen inside boxes connected to other boxes by radiating lines labeled with the relationship: “Colleague of,” “Lives with,” “Operator of [cell number],” “Owner of [vehicle],” “Sibling of,” even “Lover of.” If the authorities have a picture, the rest is easy. Tapping databases of driver’s license and ID photos, law enforcement agencies can now identify more than half the population of U.S. adults.
JPMorgan was effectively Palantir’s R&D lab and test bed for a foray into the financial sector, via a product called Metropolis........
Cavicchia was in charge of forensic investigations at the bank. Through Palantir, he gained administrative access to a full range of corporate security databases that had previously required separate authorizations and a specific business justification to use. He had unprecedented access to everything, all at once, all the time, on one analytic platform. He was a one-man National Security Agency, surrounded by the Palantir engineers, each one costing the bank as much as $3,000 a day.
Senior investigators stumbled onto the full extent of the spying by accident. In May 2013 the bank’s leadership ordered an internal probe into who had leaked a document to the New York Times about a federal investigation of JPMorgan for possibly manipulating U.S. electricity markets. Evidence indicated the leaker could have been Frank Bisignano, who’d recently resigned as JPMorgan’s co-chief operating officer to become CEO of First Data Corp., the big payments processor. Cavicchia had used Metropolis to gain access to emails about the leak investigation—some written by top executives—and the bank believed he shared the contents of those emails and other communications with Bisignano after Bisignano had left the bank. (Inside JPMorgan, Bisignano was considered Cavicchia’s patron—a senior executive who protected and promoted him.)
........Cavicchia negotiated a severance agreement and was forced to resign. He joined Bisignano at First Data, where he’s now a senior vice president. Chiarello also went to First Data, as president. After their departures, JPMorgan drastically curtailed its Palantir use........
The bank, First Data, and Bisignano, Chiarello, and Cavicchia didn’t respond to separately emailed questions for this article. Palantir, in a statement responding to questions about how JPMorgan and others have used its software, declined to answer specific questions. “We are aware that powerful technology can be abused and we spend a lot of time and energy making sure our products are used for the forces of good,” the statement said.........
........ For all of Palantir’s professed
concern for individuals’ privacy, the single most important safeguard
against abuse is the one it’s trying desperately to reduce through
automation: human judgment.
Computers don’t ask moral questions; people do, says John Grant, one of Palantir’s top PCL engineers and a forceful advocate for mandatory ethics education for engineers. “At a company like ours with millions of lines of code, every tiny decision could have huge implications,” Grant told a privacy conference in Berkeley last year.
JPMorgan’s experience remains instructive. “The world changed when it became clear everyone could be targeted using Palantir,” says a former JPMorgan cyber expert who worked with Cavicchia at one point on the insider threat team. “Nefarious ideas became trivial to implement; everyone’s a suspect, so we monitored everything. It was a pretty terrible feeling.”
-----"Palantir Knows Everything About You", Bloomberg.com, 19 April 2018
ADDED BY FUELMIX:
No comments:
Post a Comment
Note: only a member of this blog may post a comment.