[Plura-list] A(nother) massive Swiss banking leak; The people's disruption

Cory Doctorow doctorow at craphound.com
Mon Feb 21 09:06:11 EST 2022


Read today's issue online at: https://pluralistic.net/2022/02/21/contra-nihilismum/

_,.-'~'-.,__,.-'~'-.,__,.-'~'-.,__,.-'~'-.,__,.-'~'-.,_

This week, I'm on two online panels about Web3 and activism.

Feb 22
The Policy Implications of Web3/Stanford Cyberpolicy Center:
https://cyber.fsi.stanford.edu/events/policy-implications-web3

Feb 24
Web3 for Activists: What Could Go Right, What Could Go Wrong (Fight for the Future/Amnesty International)
https://amnestyusa-org.zoom.us/webinar/register/WN_NVefCOFkSHWKCYxaQVpEQw

_,.-'~'-.,__,.-'~'-.,__,.-'~'-.,__,.-'~'-.,__,.-'~'-.,_


Today's links

* A(nother) massive Swiss banking leak: Sunshine won't disinfect anything on its own.

* The people's disruption: Tech rights are workers' rights.

* This day in history: 2002, 2007, 2012, 2017, 2021

* Colophon: Recent publications, upcoming/recent appearances, current writing projects, current reading

_,.-'~'-.,__,.-'~'-.,__,.-'~'-.,__,.-'~'-.,__,.-'~'-.,_

🐘 A(nother) massive Swiss banking leak

Look, there's been *another* massive banking leak, this one from Credit Suisse, showing complicity in laundering money for the world's greatest monsters: human traffickers, despots, criminals. They're calling it Suisse Secrets.

https://www.theguardian.com/news/2022/feb/20/credit-suisse-secrets-leak-unmasks-criminals-fraudsters-corrupt-politicians

They had to call it that, because Swiss Leaks was already taken, for the 2015 UBS leaks that revealed UBS's complicity in the same fucking thing.

As Jeffrey Neiman - lawyer for the Credit Suisse whistleblowers - told the *Guardian*, "How many rogue bankers do you need to have before you start having a rogue bank?" I'd add, given that this rot extends beyond Credit Suisse to UBS and undoubtably further, "How many rogue bankes do you need to have before you start having a rogue banking system?"

The friend who emailed me about this wrote, "After so many of these, I am accepting that these leaks don't matter, and that those in power don't actually want to fix the system. Sunlight isn't doing any disinfecting at all."

He's not wrong, but that's not the whole story.

The problem isn't the *transparency*, it's the *inaction*.

They money laundering revealed in Suisse Secrets abetted the worst criminals on Earth, like Nigerian dictator Sani Abacha, who looted $5b from his people and laundered hundreds of millions (or more) through Credit Suisse. Abacha is in good company - CS also laundered for the Marcoses and their bagman, and other looters from Syria to Madagascar.

Also mafiosi, killers, human traffickers, embezzlers, fraudsters, corrupters and worse. The facts laid out in the Guardian story (and stories in partner outlets like *Süddeutsche Zeitung*), there is no question that Credit Suisse knew whose money they were handling, and knew just how dirty it was.

What's more, the reporting makes it abundantly clear that Swiss banking secrecy is designed and maintained for the express purpose of laundering this blood money. Despite Swiss officials' claims to have ended banking secrecy, the country is still a rogue state, a criminal haven. It's not only failing to end money-laundering, it's encouraging it: Switzerland is *broadening* its banking secrecy law to allow it to punish whistleblowers who reveal the nation's role in global finance crime:

https://www.reuters.com/article/us-swiss-banking-secrecy-exclusive/exclusive-swiss-prosecutors-seek-widening-of-secrecy-law-to-bankers-abroad-idUSKBN1D01CI

To my friend's point, we kind of knew all of this. The leaks - SwissLeaks, LuxLeaks, IRS Files, Panama Papers, Paradise Papers, Pandora Papers - keep revealing that the marble facades of the world's greatest banks are holding back oceans of blood and misery:

https://pluralistic.net/2021/10/04/avoidance-is-evasion/#transparency

We haven't done anything about it.

Yet.

500 new billionaires were minted in 2020. Then it got worse. There's a new billionaire being minted every *17 hours*:

https://www.dw.com/en/forbes-a-new-billionaire-every-17-hours/a-57135443

Behind every great fortune is a great crime:

https://quoteinvestigator.com/2013/09/09/fortune-crime/

It's a nightmare and it shows no sign of ending.

Knowing about it isn't enough. But knowing about it is *a start*.

The knowledge we've gained from the reporting on these leaks - reporting at great expense and risk, which has resulted in a journalist's assassination - isn't the reason for the inaction.

Indeed, if the action ever comes, it will be *because* of this reporting. You can't solve a problem until you know it exists.

A truism of the free/open source world is that "with enough eyeballs, all bugs are shallow." That is, with enough scrutiny, a solution will emerge.

That idea came under enormous strain with 2014's Heartbleed Bug. It turned out that a widely used free/open piece of web-server infrastructure had a longstanding bug, just hanging out there in plain sight. The code was there for anyone to scrutinize, but no one had looked hard enough to find it.

https://heartbleed.com/

That was a wakeup call for the community. It wasn't enough to simply publish sourcecode for important infrastructure. We had to build and fund *systems* that would audit that code. Having the code where anyone could see it would make their job easier, but the job wouldn't do itself.

We got lucky with Heartbleed. The good guys found it before it was ever exploited in the wild, and they coordinated a massive, global upgrade that patched the majority of webservers before the bug was disclosed.

But we didn't get so lucky the next time. When the Log4j bug was discovered last November, it was already too late. We'd hit snooze on Heartbleed's wakeup call and holy shit had we ever overslept:

https://en.wikipedia.org/wiki/Log4Shell

Competent, serious people are worried about the vulnerabilities presented by the software that underpins our digital world, but none of them argue that the problem with that software is that it's available for inspection. The problem is that we don't inspect or act on it in a systemic, coordinated way. We don't take it seriously.

We should take it seriously.

The problem isn't that we know about these deep and worrying flaws. The problem is that we're not doing anything about them. Knowing these specifics - whether it's Log4j or SuisseSecrets - is the necessary, but insufficient condition for change.

These leaks are claim-checks on the people who sold us out. Someday, we'll collect on them.


_,.-'~'-.,__,.-'~'-.,__,.-'~'-.,__,.-'~'-.,__,.-'~'-.,_

🐘 The people's disruption

"Innovation" is in very bad odor these days. "Disruption" is even more disreputable. But as tech and the global south researcher Rida Qadri writes in *Wired*, "innovation" isn't limited to inventing unregulated banks and calling them "fintech" and "disruption" is more than just misclassifying employees as contractors.

https://www.wired.com/story/disruption-mobility-platforms-politics/

Qadri studies workers who are seizing the means of computation, reverse-engineering and repurposing the apps that are meant to keep them in bondage and figuring out how to set themselves free. Her research on gig drivers in Jakarta is essential reading:

https://pluralistic.net/2021/07/08/tuyul-apps/#gojek

Indonesian drivers have banded together to build clubhouses that serve as break-rooms, union halls, tech workshops and scooter maintenance depots. These centers are the birthplace of "tuyul" apps, which allow workers to resist algorithmic "optimization" and adapt their working conditions to improve their pay and safety.

In her *Wired* piece, Qadri gives examples of other "tech workers" - that is, low-waged, casualized workers who are dispatched and managed by apps - who use technology to take back control, from "farmers who strike against a smart city plan" to riders who band together to get back their stolen scooters.

This is mutual aid, with code. It is every bit as innovative and disruptive as Uber or Amazon, but because it is done *by* workers, rather than *to* workers, it is not recognized as such. Indeed, when workers modify the apps that script their movements, they're called "criminals," not "innovators."

Take Doordash's smear campaign against Para, an app that let delivery drivers find out how much a job paid before they took it (Doordash hides compensation from drivers in hopes of tricking them into taking unprofitable runs):

https://www.eff.org/deeplinks/2021/08/tech-rights-are-workers-rights-doordash-edition

Doordash called Para a criminal app, baselessly accused it of identity theft, and insisted that drivers had no right to know how much they were going to get paid before they committed to a job.

But as Para shows, seizing the means of computation is an important strategy for workers seeking a better life. The tactics of Adversarial Interoperability (AKA Competitive Compatibility or Comcom) can transfer power from Goliaths to Davids:

https://www.eff.org/deeplinks/2019/10/adversarial-interoperability

But the *soi-disant* disruptors of the business world will not tolerate being disrupted themselves. Uber is content to skirt labor, safety and transportation policy, but would scream bloody murder if drivers and riders hacked the app to make it obsolete:

https://locusmag.com/2019/01/cory-doctorow-disruption-for-thee-but-not-for-me/


_,.-'~'-.,__,.-'~'-.,__,.-'~'-.,__,.-'~'-.,__,.-'~'-.,_

🐘 This day in history

#20yrsago Science fiction without the future https://web.archive.org/web/20020305220328/home.earthlink.net/~judithberman/fiction/sffuture.html

#20yrsago Vegas is decadent again https://web.archive.org/web/20020215223514/http://www.usatoday.com/usatonline/20020215/3862582s.htm
#20yrsago Thin-skinned Mike Harris brings $15m libel suit against the Globe and Mail https://www.theglobeandmail.com/news/national/government-to-pay-for-harriss-libel-suit/article4131730/

#20yrsago The Betamax decision, demystified https://people.well.com/user/doctorow/betamax.txt

#15yrsago Odeo for sale https://web.archive.org/web/20070222055143/http://blog.obvious.com/2007/02/looking-for-odeos-new-home.html
#15yrsago Pay-per-use electricity in Dallas/Fort-Worth airport https://www.flickr.com/photos/doctorow/398406153/

#15yrsago  MSU forces students to watch RIAA videos https://web.archive.org/web/20070223042521/http://news.yahoo.com/s/ap/20070221/ap_on_hi_te/downloading_music

#15yrsago Understanding what a progam can do https://freedom-to-tinker.com/2007/02/21/why-understanding-programs-hard/

#10yrsago Leaked climate-change denial lobby docs came from water scientist https://www.desmog.com/2012/02/14/heartland-insider-exposes-institute-s-budget-and-strategy/

#5yrsago It’s very hard to maintain an anonymous Twitter account that can withstand government-level attempts to de-anonymize it https://theintercept.com/2017/02/20/how-to-run-a-rogue-government-twitter-account-with-an-anonymous-email-address-and-a-burner-phone/

#5yrsago “Europe’s last dictator” finally finds the limits to power: taxing the unemployed during a recession https://www.reuters.com/article/us-belarus-protests-idUSKBN15Y0PB

#5yrsago A Clinton-era tech law has quietly, profoundly redefined the very nature of property in the IoT age https://www.vice.com/en/article/qkxkmw/the-internet-of-hackable-things-you-dont-own

#1yrago The Paltrow-Industrial Complex: How Goop is cashing in on covid https://pluralistic.net/2021/02/21/paltrow-industrial-complex/#goopy

#1yrago Facebook vs Australia: It's not a link-tax, it's collective bargaining https://pluralistic.net/2021/02/21/paltrow-industrial-complex/#facecrook

#1yrago K-shaped recovery vs wealth taxes: Evita's spectre is haunting Argentina https://pluralistic.net/2021/02/21/paltrow-industrial-complex/#wealth-tax

#1yrago Tech trustbusting's moment has arrived https://pluralistic.net/2021/02/20/escape-velocity/#trustbusting-time

_,.-'~'-.,__,.-'~'-.,__,.-'~'-.,__,.-'~'-.,__,.-'~'-.,_

🐘 Colophon

Today's top sources: Bruce Schneier (https://www.schneier.com/).

Currently writing:

* Picks and Shovels, a Martin Hench noir thriller about the heroic era of the PC. Friday's progress: 500 words (64956 words total).

* Vigilant, Little Brother short story about remote invigilation. Friday's progress: 281 words (1618 words total)

* A Little Brother short story about DIY insulin PLANNING

* Moral Hazard, a short story for MIT Tech Review's 12 Tomorrows. FIRST DRAFT COMPLETE, ACCEPTED FOR PUBLICATION

* Spill, a Little Brother short story about pipeline protests. FINAL DRAFT COMPLETE

* A post-GND utopian novel, "The Lost Cause."  FINISHED

* A cyberpunk noir thriller novel, "Red Team Blues."  FINISHED

Currently reading: Analogia by George Dyson.

Latest podcast: The Internet Heist (Part II) https://craphound.com/news/2022/02/13/the-internet-heist-part-ii/

Upcoming appearances:

* The Policy Implications of Web3/Stanford Cyberpolicy Center, Feb 22:
https://cyber.fsi.stanford.edu/events/policy-implications-web3

*  Web3 for Activists: What Could Go Right, What Could Go Wrong (Fight for the Future/Amnesty International), Feb 24:
https://amnestyusa-org.zoom.us/webinar/register/WN_NVefCOFkSHWKCYxaQVpEQw

* Dangerous Visions and New Worlds: Radical Science Fiction, 1950 to 1985 (City Lights), Feb 27
https://citylights.com/events/dangerous-visions-and-new-worlds-radical-science-fiction-1950-to-1985/

* Emerging Technologies For the Enterprise, Apr 19-20
https://2022.phillyemergingtech.com

Recent appearances:

* Bringing Back Luddites (Oh No Ross and Carrie)
https://ohnopodcast.com/investigations/2022/2/14/ross-meets-cory-doctorow-bringing-back-luddites-edition

* The End of Uber (The War on Cars)
https://thewaroncars.org/2022/01/26/the-end-of-uber-with-cory-doctorow/

* Moral Panic (Drug Science Podcast)
https://www.drugscience.org.uk/podcast/53-moral-panic-with-cory-doctorow/

Latest book:

* "Attack Surface": The third Little Brother novel, a standalone technothriller for adults. The *Washington Post* called it "a political cyberthriller, vigorous, bold and savvy about the limits of revolution and resistance." Order signed, personalized copies from Dark Delicacies https://www.darkdel.com/store/p1840/Available_Now%3A_Attack_Surface.html

* "How to Destroy Surveillance Capitalism": an anti-monopoly pamphlet analyzing the true harms of surveillance capitalism and proposing a solution. https://onezero.medium.com/how-to-destroy-surveillance-capitalism-8135e6744d59 (print edition: https://bookshop.org/books/how-to-destroy-surveillance-capitalism/9781736205907) (signed copies: https://www.darkdel.com/store/p2024/Available_Now%3A__How_to_Destroy_Surveillance_Capitalism.html)

* "Little Brother/Homeland": A reissue omnibus edition with a new introduction by Edward Snowden: https://us.macmillan.com/books/9781250774583; personalized/signed copies here: https://www.darkdel.com/store/p1750/July%3A__Little_Brother_%26_Homeland.html

* "Poesy the Monster Slayer" a picture book about monsters, bedtime, gender, and kicking ass. Order here: https://us.macmillan.com/books/9781626723627. Get a personalized, signed copy here: https://www.darkdel.com/store/p1562/_Poesy_the_Monster_Slayer.html.

Upcoming books:

* Chokepoint Capitalism: How to Beat Big Tech, Tame Big Content, and Get Artists Paid, with Rebecca Giblin, nonfiction/business/politics, Beacon Press, September 2022

This work licensed under a Creative Commons Attribution 4.0 license. That means you can use it any way you like, including commercially, provided that you attribute it to me, Cory Doctorow, and include a link to pluralistic.net.

https://creativecommons.org/licenses/by/4.0/

Quotations and images are not included in this license; they are included either under a limitation or exception to copyright, or on the basis of a separate license. Please exercise caution.

_,.-'~'-.,__,.-'~'-.,__,.-'~'-.,__,.-'~'-.,__,.-'~'-.,_

🐘 How to get Pluralistic:

Blog (no ads, tracking, or data-collection):

Pluralistic.net

Newsletter (no ads, tracking, or data-collection):

https://pluralistic.net/plura-list

Mastodon (no ads, tracking, or data-collection):

https://mamot.fr/web/accounts/303320

Medium (no ads, paywalled):

https://doctorow.medium.com/

(Latest Medium column: "We Should Not Endure a King: Antitrust is a political cause, not an economic one" https://doctorow.medium.com/we-should-not-endure-a-king-dfef34628153)

Twitter (mass-scale, unrestricted, third-party surveillance and advertising):

https://twitter.com/doctorow

Tumblr (mass-scale, unrestricted, third-party surveillance and advertising):

https://mostlysignssomeportents.tumblr.com/tagged/pluralistic

"*When life gives you SARS, you make sarsaparilla*" -Joey "Accordion Guy" DeVilla



More information about the Plura-list mailing list