Hi everyone!
This is a reminder that OONI will host our monthly Community Meeting next Tuesday.
=> Where? OONI Slack channel: https://slack.ooni.org/
=> When? Tuesday, 26th November 2024 at 14:00 UTC (for 1 hour)
We will continue discussing OONI Run v2 release <https://ooni.org/post/2024-launch-ooni-run-v2/> and will be happy to address any other questions about OONI tools or OONI data.
As always, we will be using this pad for the agenda, so please add your questions or news here: https://pad.riseup.net/p/ooni-community-meeting-keep
We are looking forward to seeing you all on Tuesday in #ooni channel!
Warmly,
~ OONI Team
Hi everyone!
This is a reminder that OONI will host an October Commuinty Meeting next Tuesday.
Please join us to share your feedback for the new OONI Run v2 release <https://ooni.org/post/2024-launch-ooni-run-v2/> or to discuss the latest censorship events in different countries.
=> Where? OONI Slack channel: https://slack.ooni.org/
=> When? Tuesday, 29th October 2024 at 14:00 UTC (for 1 hour)
As always, we will be using this pad for agenda, so please add your questions or updates here: https://pad.riseup.net/p/ooni-community-meeting-keep
Looking forward to seeing you all on Tuesday in #ooni channel!
Warmly,
~ OONI Team
Hi friends,
We are thrilled to announce the *launch of OONI Run v2*!
We published a blog post which shares detailed information, as well as
a *step-by-step
guide* (with screenshots) for using OONI Run v2:
https://ooni.org/post/2024-launch-ooni-run-v2/
Since 2017, OONI Run has supported community-driven efforts aimed at
coordinating the testing of website blocks -- particularly during political
events which triggered censorship events.
With the launch of OONI Run v2, we address key community feedback
(identified through an extensive usability study).
OONI Run v2 (https://run.ooni.org/) is a major revamp, enabling you to
*dynamically
coordinate censorship testing with OONI Probe users* around the world.
With OONI Run v2:
• Create a (short!) link for the websites you want to measure for censorship
• Share that link with OONI Probe users
• *Update your OONI Run link anytime* if you want to add/change URLs (your
community of testers will get updates automatically!)
• *Automated testing* is supported (for you and your community)
• *Find your OONI Run v2 measurements on OONI Explorer* (
https://explorer.ooni.org/) as open data in real-time (based on the OONI
Run link ID)
OONI Run v2 is currently only supported on Android. Please *update to the
latest OONI Probe Android version (4.0.0) *to start using OONI Run v2:
https://play.google.com/store/apps/details?id=org.openobservatory.ooniprobe
With the launch of OONI Run v2, we also introduced UI improvements to OONI
Probe Android which we hope you like.
We thank the OONI community for their invaluable feedback, which informed
the design of OONI Run v2!
Now let's coordinate and detect all the blocks!
~ OONI team.
Hello,
This email shares OONI's monthly report for September 2024.
*# OONI Monthly Report: September 2024*
Throughout September 2024, the OONI team’s work can be tracked through the
various OONI GitHub repositories: https://github.com/ooni
Highlights are shared in this report below.
*## New partnership with Digital Rights Nepal*
In September 2024, we established a new partnership with Digital Rights
Nepal (https://digitalrightsnepal.org/), a leading non-profit organization
dedicated to safeguarding and advancing digital rights in Nepal.
As part of our partnership, we will collaborate on studying internet
censorship in Nepal. We published a page featuring Digital Rights Nepal as
a new OONI partner and highlighting their important work:
https://ooni.org/partners/digital-rights-nepal/
*## Research report on internet censorship in Kazakhstan*
On 19th September 2024, in collaboration with our partners Internet Freedom
Kazakhstan (IFKZ) and Eurasian Digital Foundation, we co-published a new
research report documenting TLS MITM attacks and the blocking of news
media, human rights, and circumvention tool sites in Kazakhstan.
We published the research report in both:
* English: https://ooni.org/post/2024-kazakhstan-report/
* Russian: https://ooni.org/ru/post/2024-kazakhstan-report/
Our partner, Internet Freedom Kazakhstan (IFKZ), published the following
article about our joint research report:
https://ifkz.org/ru/article/internet-censorship-in-kazakhstan
Our report shares censorship findings based on the analysis of OONI data
collected from Kazakhstan over the past year, as well as legal analysis and
interviews with a few media representatives.
Our analysis of OONI data from Kazakhstan reveals:
* TLS Man-In-The-Middle (MITM) attacks
* Blocking of at least 17 news media websites
* Blocking of petition sites and of the Russian language edition of Amnesty
International's website
* Blocking of at least 73 circumvention tool websites
In almost all cases, the blocks appear to be implemented by means of TLS
interference, as OONI data shows that the TLS handshakes result in timeout
errors after the Client Hello message. This is observed uniformly on all
tested networks in Kazakhstan during the analysis period.
Notably, we documented the use of the latest government-mandated root
certificate authority (CA) – and its use to emit 6 distinct intermediate
certificates – that were used to carry out TLS MITM attacks, targeting at
least 14 domains on at least 19 networks in Kazakhstan. We found that these
intermediate certificates were even being used to perform MITM attacks
during periods of certificate invalidity.
Overall, as the timing and types of blocked URLs are consistent across
networks, ISPs in Kazakhstan likely implement blocks in a coordinated
manner. Coordination among ISPs is further suggested by the fact that we
found the same certificate used by 19 distinct ISPs to implement TLS MITM
attacks. These TLS MITM attacks raise concerns because such practices
weaken the online privacy and security of internet users in Kazakhstan.
Our report received press coverage from the following outlets:
* FactCheck Kazakhstan:
https://factcheck.kz/novosti/internet-tsenzura-v-kazahstane-rezultaty-issle…
* Ulysmedia Kazakhstan:
https://ulysmedia.kz/rassledovaniya/38144-ramki-rukopozhatiia-i-lichnye-dan…
* SecurityLab Russia: https://www.securitylab.ru/news/552299.php
* Sledstvie Info:
https://sledstvie.info/news/45234-informatcionnaja_izoljatsija_kazahstana_k…
*## Report on the blocking of OONI Explorer in Russia*
In September 2024, Russia started blocking access to OONI Explorer.
We published a report, documenting the blocking of OONI Explorer in Russia
based on OONI data: https://ooni.org/post/2024-russia-blocked-ooni-explorer/
On 11th September 2024, we received an email from Roskomnadzor, informing
us of their decision to block access to OONI Explorer. On the same day,
OONI data shows that ISPs in Russia started implementing the block.
While Roskomnadzor mentioned their intention to restrict access to the
Russian translation of our circumvention tool reachability measurements, in
practice, the restriction is far-reaching. The block restricts access to
all OONI data hosted on OONI Explorer.
On some networks in Russia, we are able to automatically confirm the
blocking of OONI Explorer based on fingerprints. For example, OONI data
shows that DNS resolution returns an IP that hosts a block page.
As part of this report, we made use of the data analysis capabilities of
our upcoming OONI pipeline v5 to produce a chart with the breakdown of
failure types and errors that enable the characterization of the block. On
most networks in Russia, access to OONI Explorer appears to be blocked by
means of TLS interference, as many measurements resulted in timeout errors
and connection reset errors right after the Client Hello message during the
TLS handshake.
On 18th September 2024, our Russian partner, Roskomsvoboda (
https://roskomsvoboda.org/), shared news of the blocking of OONI Explorer
with Russian communities via Telegram: https://t.me/ru_tech_talk/560
*## Report on the blocking of Twitter/X in Tanzania*
On 30th August 2024, Tanzania blocked access to Twitter/X.
In early September 2024, we published a short report on our Censorship
Findings platform, documenting the block through OONI data.
Our report on the (temporary) blocking of Twitter/X in Tanzania is
available here: : https://explorer.ooni.org/findings/188763810301
It’s worth noting that our community members also independently reported on
the blocking of Twitter/X in Tanzania through the use of OONI tools and
data:
https://x.com/MelamiVictoria/status/1829502734078185879https://x.com/ZainaFoundation/status/1829536688890085645
*## Report on the blocking of Twitter/X in Brazil*
On 31st August 2024, Brazil blocked access to Twitter/X.
In early September 2024, we published a short report on our Censorship
Findings platform, documenting the block through OONI data.
Our report on the blocking of Twitter/X in Brazil is available here:
https://explorer.ooni.org/findings/174962608001
It’s worth noting that our community members also independently reported on
the blocking of Twitter/X in Brazil through the use of OONI tools and data:
https://x.com/vesinfiltro/status/1830262921789669543https://x.com/vinifortuna/status/1830349458384486599https://x.com/OliverLinow/status/1829846237203333282
*## Presenting thematic censorship findings on OONI Explorer*
In September 2024, we started developing the new thematic censorship
findings pages for OONI Explorer based on the user research and mockups
designed in previous months. These pages will focus on OONI measurements
pertaining to News Media (https://github.com/ooni/explorer/issues/940),
Social Media (https://github.com/ooni/explorer/issues/939) and
Circumvention Tools (https://github.com/ooni/explorer/issues/941) and will
offer users a way to explore OONI data focused on these specific themes. We
also added support for theme tags that will enable the display of relevant
reports on each thematic page of OONI Explorer (
https://github.com/ooni/explorer/pull/965). The launch date of these new
pages will be determined in the coming weeks.
*## Automating censorship detection and characterization based on OONI
measurements*
We released the OONI Pipeline v5.0.0-alpha4:
https://github.com/ooni/data/pull/83
As part of this release, we:
* Added a web interface for viewing observations;
* Added an API for returning aggregates of observations;
* Added a web view for plotting aggregates of observations;
* Added support for performing observation generation using multiple
cores (instead of multiple threads since it's CPU bound);
* Separated the observation activities into distinct smaller activities
allowing for more narrowly scoped scheduling and retry policies;
* Changed the type of PrevRange so that it's possible to serialize it in
JSON allowing to pass it as a parameter to activities;
* Moved the update_assets into the observation activity;
* Added support for passing config file via `CONFIG_FILE` environment
variable;
* Made improvements to the CLI commands;
* Dropped several CLI arguments that should only be read from the config
file;
* Made other improvements related to typing.
Following this release, we made some important improvements to the schema
of the observation tables. Specifically, we:
* Replaced observation_id with observation_idx (
https://github.com/ooni/data/issues/87);
* Used the PARTITION KEY for deduplication instead of running deletes (
https://github.com/ooni/data/issues/88).
These improvements are mainly targeted towards improving the performance of
update operations and making them more robust to reprocessing since
deduplication is handled natively using the MergeTree table engine
deduplication.
*## Data analysis for upcoming research report*
As part of an upcoming research report on internet censorship in Russia, we
analyzed OONI measurements collected from Russia over the past year. We
completed this data analysis in September 2024, and further details about
the analysis are available here: https://github.com/ooni/backend/issues/847
*## Activities supported by OTF FOSS ### OONI Explorer*
Notably, we launched an improved navigation menu for OONI Explorer (
https://explorer.ooni.org/). This work is available here:
https://github.com/ooni/explorer/pull/950
Based on community feedback shared through our user research in previous
months, we improved the navigation menu of OONI Explorer to enhance the
discoverability of resources and to enable us to add upcoming new pages in
the next months.
*### OONI Probe Mobile*
We continued to make progress on our multi-platform project that aims to
refactor the OONI Probe mobile app. After making good progress on our
internal MVP, we turned our attention to leveraging our initial work to
start developing the iOS version of Deutsche Welle’s News Media Scan
application. This includes tasks like creating the onboarding flow (
https://github.com/ooni/probe-multiplatform/issues/104), building the
results summary view (https://github.com/ooni/probe-multiplatform/issues/109),
and adding the ability to filter results (
https://github.com/ooni/probe-multiplatform/issues/98). Additionally, we
worked on the ability to update OONI Run v2 tests for our own internal MVP (
https://github.com/ooni/probe-multiplatform/issues/53).
Here is a list of all issues completed in September 2024 for our
multi-platform project:
https://github.com/ooni/probe-multiplatform/issues?q=is%3Aissue+is%3Aclosed…
*### OONI Run*
As part of our final preparation for the launch of OONI Run v2, we took
steps to ensure that by releasing OONI Run v2 we would not accidentally
introduce any bugs that cause a drop in measurements. We improved our
ability to filter measurements by different release channels, ensuring we
can filter measurements by our open testing or “beta” channel for our
Android application on the Google Play store. This way, we can more
accurately compare different versions of our applications as we make
changes and enhancements so we can increase our confidence in not
introducing issues (https://github.com/ooni/probe/issues/2803).
*### OONI Backend Maintenance & DevOps*
We worked on switching api.ooni.org to be served from AWS (
https://github.com/ooni/devops/issues/94), focusing first on what was
necessary for the OONI Run v2 project so that both the mobile application
and the web-based dashboard use the production API. As part of that work,
we had to move our test helpers back to Digital Ocean as AWS was proving
too costly (https://github.com/ooni/devops/issues/91). We also worked on
several other items related to this overall task. (
https://github.com/ooni/devops/issues/93,
https://github.com/ooni/devops/issues/95).
*## Hiring process for OONI Junior Backend Developer job opening*
As part of the ongoing hiring process for a new OONI Junior Backend
Developer (https://ooni.org/post/2024-job-opening-ooni-backend-developer/),
we continued to review incoming applications and interview shortlisted
candidates.
*## Test list updates*
Throughout September 2024, we did multiple minor updates to the test lists
for Kenya, Algeria, Iran, Armenia, Georgia, and Uganda, as well as to the
Global test list. All of these updates have been merged (
https://github.com/citizenlab/test-lists/pulls?q=is%3Apr+is%3Aclosed).
We also reviewed and merged a more extensive update to the Cambodian test
list submitted by the iMAP project:
https://github.com/citizenlab/test-lists/pull/1699/files
*## Collaboration with agency to boost OONI’s social media presence*
In September 2024, we started collaborating with Latte (
https://www.lattecreative.com/en/), an agency in Rome which supports
organizations (including many nonprofit organizations, such as Amnesty
International and Greenpeace) on improving their communication, branding,
advocacy, and fundraising efforts. We are collaborating with Latte on
designing an end-of-year fundraising strategy with the goal of boosting
OONI’s donations, as well as on improving OONI’s communication and social
media presence.
*## Fellowship at the Berkman Klein Center for Internet and Society*
In September 2024, OONI’s Maria started a research fellowship at the
Berkman Klein Center for Internet and Society at Harvard University. As
part of her year-long fellowship, Maria will explore how internet
censorship changed globally over the past eight years through OONI data.
She will also carry out interviews to explore the role of advocacy and
circumvention tool groups in responding to emergent censorship events.
More information about the 2024-2025 Berkman Klein Center fellowship cohort
is available here:
https://cyber.harvard.edu/story/2024-07/incoming-2024-25-bkc-fellows
*## Rapid response### Blocking of Telegram in El Salvador*
On 15th September 2024, El Salvador blocked access to Telegram. On the same
day, we rapidly responded by sharing relevant OONI data and findings on
social media: https://x.com/OpenObservatory/status/1835360393906074078
The information we shared included a chart produced by OONI data analysis
that we performed to examine the reachability of Telegram IPs in El
Salvador by probe ASN and target. We found that access to Telegram was
blocked on at least 5 networks in El Salvador (starting from around 4am UTC
on 15th September 2024), with some ISPs blocking access to Telegram IPs,
while others blocked access to Telegram by means of TLS interference.
This blocking event resulted in a significant OONI measurement spike in El
Salvador on 15th September 2024, as well as in ongoing measurement coverage
thereafter (suggesting increased OONI Probe adoption and use of automated
testing following the block). This is evident through aggregated OONI
measurement coverage in El Salvador:
https://explorer.ooni.org/chart/mat?probe_cc=SV&since=2024-08-12&until=2024…
*## Community use of OONI tools and data### Sinar Project Blocked or Not
tool*
Notably, our long-term Malaysian partner, Sinar Project (
https://sinarproject.org/), launched a new “Blocked or Not” tool, which
makes use of our miniooni research client and submits data to OONI.
Their tool is available here: https://blockedornot.sinarproject.org/
Sinar Project’s Blocked or Not tool is a web service that enables users to
easily and quickly check if a website is blocked or not in Malaysia.
*### Sinar Project report on the blocking of an entertainment platform*
On 20th September 2024, our partner, Sinar Project (
https://sinarproject.org/), published a report documenting the blocking of
ArtStation.com, a prominent platform for showcasing games, film, media, and
entertainment art. As part of their report, Sinar Project made use of OONI
data and encouraged further OONI Probe testing in Malaysia.
Read their report here:
https://imap.sinarproject.org/resources/internet-censorship-update-blocking…
*### Access Now’s press statement on the blocking of Twitter/X in Tanzania*
In response to the blocking of Twitter/X in Tanzania, Access Now published
a press release condemning the blocking of the platform. Their press
release cites OONI data as technical evidence on the block.
Read their press statement here:
https://www.accessnow.org/press-release/civil-society-asks-who-blocked-x-ta…
*### Cloudflare blog post on a global assessment of third-party connection
tampering*
In September 2024, Cloudflare published a blog post providing a global
assessment of third-party connection tampering:
https://blog.cloudflare.com/connection-tampering/
As part of this post, they provide case studies through which they compare
Cloudflare TCP connection anomalies with OONI reports of connection
tampering. Specifically, they compared anomalous Cloudflare TCP connection
data with relevant OONI data from our reports on connection tampering cases
in Tanzania and Ethiopia, and found that relevant Cloudflare data was
consistent with OONI data. This is very interesting because by publishing
data on TCP connection anomalies (
https://radar.cloudflare.com/security-and-attacks#tcp-resets-and-timeouts),
Cloudflare enable researchers to have stronger signals of connection
tampering when compared (and corroborated) with OONI data (and other
relevant datasets).
Learn more about the launch of Cloudflare Radar’s new dashboard on TCP
resets and timeouts here: https://blog.cloudflare.com/tcp-resets-timeouts/
*## Community activities### Workshop for human rights defenders in Nepal*
On 19th September 2024, OONI’s Elizaveta facilitated an online OONI
workshop for human rights defenders in Nepal. This workshop was hosted in
coordination with our new partner, Digital Rights Nepal (
https://ooni.org/partners/digital-rights-nepal/).
*### Quarterly OONI Partner Meeting*
On 20th September 2024, we hosted the quarterly OONI Partner Meeting via an
online video platform.
As part of this meeting, we presented and discussed the OONI training
calendar for October 2024 and November 2024, which will involve a series of
online OONI workshops that we will facilitate for our partners.
These workshops include:
* Introduction to internet censorship (9th October 2024)
* How to use OONI Probe (16th October 2024)
* OONI Run v2 demo (23rd October 2024)
* Maintaining/updating the Citizen Lab test lists (6th November 2024)
* OONI Explorer #1 (13th November 2024)
* OONI Explorer #2 (20th November 2024)
As part of these upcoming workshops, we aim to share relevant skills and
knowledge to enable our partners to participate in OONI censorship
measurement activities in their countries and regions. As an outcome, we
hope that our partners will be equipped to share such knowledge further
with their communities.
As part of our Quarterly Partner Meeting, we also discussed updates to our
partnership MoUs, plans for censorship monitoring during the upcoming 2025
elections around the world, as well as plans for other future partner
events.
*### Global Gathering 2024*
Between 27th-29th September 2024, OONI’s Elizaveta and Jessie traveled to
Portugal to attend the Global Gathering 2024. The detailed agenda of the
event is available here:
https://wiki.digitalrights.community/index.php?title=Global_Gathering_Agend…
As part of their participation, Elizaveta and Jessie:
Hosted an OONI booth, during which they provided a live demo of our
upcoming OONI Run v2 tool and shared OONI swag (27th and 29th September
2024)
Facilitated a discussion on rapid response (28th September 2024)
*### OONI Community Meeting*
On 24th September 2024, we hosted the monthly OONI Community Meeting on our
Slack channel (https://slack.ooni.org/).
As part of this meeting, we provided updates from the OONI team, and we
discussed the recent blocking of OONI Explorer in Russia, as well as the
(global) community’s need to measure the availability of more VPN services
and protocols.
*## Measurement coverage*
In September 2024, 56,049,250 OONI Probe measurements were collected from
3,182 networks in 176 countries around the world.
This information can also be found through our measurement stats on OONI
Explorer (see chart on “monthly coverage worldwide”):
https://explorer.ooni.org/
—-------------------------------------------------------------------------------------------------
*As a non-profit, we rely on donations and grants to defend a free and open
internet for all.You can support OONI’s work through a donation
(https://ooni.org/donate <https://ooni.org/donate>) or by getting OONI swag
(https://shop.ooni.org/ <https://shop.ooni.org/>). We thank our supporters
Jigsaw, Pantheon, Luminate, Amazon, DigitalOcean, Greenhost, Netlify,
Surfshark, and VPNCompare for supporting OONI’s work and mission.If you are
a company interested in supporting OONI, please refer to our Supporters
page for more information: https://ooni.org/about/supporters
<https://ooni.org/about/supporters>We also thank our funders for supporting
our work over the years: https://ooni.org/about/supporters#funders
<https://ooni.org/about/supporters#funders> *
Hi everyone!
We just published an interview with Chido Musodza, Program Associate, Community Engagement at our beloved Localization Lab <https://www.localizationlab.org/>: https://ooni.org/post/2024-interview-with-chido-musodza/
Many of our community members and partners are familiar with Localization Lab <https://ooni.org/partners/localization-lab/>’s work — thanks to their volunteers, OONI Probe is available in more than 20 languages, and OONI Explorer in more than 10.
Chido is one of the people, grace to whom this became possible, and many of those who worked on our translations likely have already met her.
In this interview, Chido shares why localization matters both for the products and the communities, how it empowers the development of minority languages and how it changes the digital space.
Please watch the interview (https://youtu.be/nyXBfI6VZyc), share your thoughts in our Slack <https://slack.ooni.org/> and join Localization Lab’s community <https://docs.google.com/forms/d/e/1FAIpQLSfgXL7UbC6eVk7YMg_gidFnBre3a6liYSn…> to support new translations!
Warmly,
Elizaveta
Hi all!
I (Elizaveta, Community Coordinator) and Jessie (OONI’s amazing Project Manager) are coming to the Global Gathering <https://wiki.digitalrights.community/index.php?title=Global_Gathering_2024> this year, and we will be hosting a booth, a circle and attending a couple of circles organised by our amazing partners <3
At the booth we will be hosting a demo of the upcoming OONI Run release, so please join us for this unique chance to get a peak and share feedback for the new features that we are going to share with everyone in the nearest weeks.
We will also have stickers and some other presents at the booth, so please make sure to come and say hi!
Here is the list of the activities we will definitely take part in at the GG:
* OONI's booth on 27th September from 13pm to 15pm. We will be demoing the new version of OONI Run at 13:40.
* Circle 10, 'Current blocking trends, how states in different countries do it' on 27th September organised by Roskomsvoboda <https://roskomsvoboda.org/>. We will definitely stop by to hear insights on the current state of internet censorship in different countries.
The pad will be updated with the agenda topics very soon: https://pad.riseup.net/p/GG-2024-Day1-Circle10c
* Circle 10, 'The How and Why of Rapid Response' on 28th September from 13:30 to 14:30 that we will co-host together with IODA <https://ioda.inetintel.cc.gatech.edu/>.
More detailed agenda for our circle on rapid response: https://pad.riseup.net/p/GG-2024-Day2-Circle10a
* OONI's booth on 29th September from 15.30pm to 17.30pm. We will start the demo of the updated OONI Run at 16:00.
If you are hosting any other circles and/or community events and you want OONI to join, please drop me a message :)
Looking forward to seeing some of you in the upcoming days!
Warmly,
Elizaveta
Hello,
Russia recently blocked access to one of our platforms, OONI Explorer: a
large open dataset on internet censorship worldwide (
https://explorer.ooni.org/).
Today we published a *report, documenting the blocking of OONI Explorer in
Russia* based on OONI data:
https://ooni.org/post/2024-russia-blocked-ooni-explorer/
On 11th September 2024, we received an email from Roskomnadzor, informing
us of their decision to block access to OONI Explorer. On the same day,
OONI data shows that ISPs in Russia started implementing the block.
While Roskomnadzor mentioned their intention to restrict access to the
Russian translation of our circumvention tool reachability measurements, in
practice, the restriction is far-reaching. The block restricts access to
all OONI data hosted on OONI Explorer.
On some networks in Russia, we are able to automatically confirm the
blocking of OONI Explorer based on fingerprints. For example, OONI data
shows that DNS resolution returns an IP that hosts a block page.
On most networks in Russia, access to OONI Explorer appears to be blocked
by means of TLS interference. Many measurements resulted in timeout errors
and connection reset errors right after the Client Hello message during the
TLS handshake.
While ISPs in Russia blocked access to OONI Explorer, they did not block
access to our main website (ooni.org), nor to our censorship measurement
app (OONI Probe) – as suggested by the fact that the overall OONI
measurement coverage from Russia seems quite stable.
It is still possible for people in Russia to download OONI data from the
OONI API (https://api.ooni.io/) or to fetch OONI data from our S3 bucket (
https://docs.ooni.org/data/).
We thank OONI Probe users in Russia for contributing measurements!
~ OONI team.
Hi everyone!
This is a reminder that the monthly OONI Community Meeting takes place tomorrow.
Please add any questions about internet censorship or OONI tools to this pad:
https://pad.riseup.net/p/ooni-community-meeting-keep
You are also very welcome to come and share news and updates on your projects from the past months.
Looking forward to seeing you all tomorrow in #ooni channel!
=> Where? OONI Slack channel: https://slack.ooni.org/
=> When? Tuesday, 24th September 2024 at 14:00 UTC (for 1 hour)
Warmly,
~ Elizaveta
Hello,
Today, in collaboration with Eurasian Digital Foundation and Internet
Freedom Kazakhstan (IFKZ), OONI co-published a *new research report
documenting TLS MITM attacks and the blocking of news media, human rights,
and circumvention tool sites in Kazakhstan*.
Read our report in:
* *English*: https://ooni.org/post/2024-kazakhstan-report/
* *Russian*: https://ooni.org/ru/post/2024-kazakhstan-report/
Our report shares censorship findings based on the analysis of OONI data
collected from Kazakhstan over the past year, as well as legal analysis and
interviews with a few media representatives.
Our analysis of OONI data from Kazakhstan reveals:
* *TLS Man-In-The-Middle (MITM) attacks*
* *Blocking of at least 17 news media websites*
* *Blocking of petition sites and of the Russian language edition of
Amnesty International's website*
* *Blocking of at least 73 circumvention tool websites*
The blocked news media websites include:
* Many Russian news media websites (such as the Russian TV Channel
Tsargrad, Sputnik and Pogrom, the 360 Russian satellite TV channel, and the
Ferghana Information Agency);
* A few Kyrgyz news media websites (Kloop and Centralasia.media);
* One international news website (Vice News).
OONI data shows the targeted blocking of amnesty.org.ru, www.change.org,
www.ipetitions.com, and egov.press. Meanwhile, Amnesty International’s
English language website was accessible in Kazakhstan, as were many other
international human rights websites (such as Human Rights Watch).
OONI data also shows the blocking of numerous censorship circumvention tool
websites, including those of NordVPN, ExpressVPN, ProtonVPN, OpenVPN,
TunnelBear, and Surfshark VPN. However, OONI data suggests that both Tor
and Psiphon VPN were reachable in Kazakhstan during the analysis period.
In almost all cases, the blocks appear to be implemented by means of *TLS
interference*, as OONI data shows that the TLS handshakes result in timeout
errors after the Client Hello message. This is observed uniformly on all
tested networks in Kazakhstan during the analysis period.
Notably, we documented the *use of the latest government-mandated root
certificate authority (CA) – and its use to emit 6 distinct intermediate
certificates – that were used to carry out TLS MITM attacks, targeting at
least 14 domains on at least 19 networks in Kazakhstan*. We found that
these intermediate certificates were even being used to perform MITM
attacks during periods of certificate invalidity.
Overall, as the timing and types of blocked URLs are consistent across
networks, ISPs in Kazakhstan likely implement blocks in a coordinated
manner. Coordination among ISPs is further suggested by the fact that we
found the same certificate used by 19 distinct ISPs to implement TLS MITM
attacks. These TLS MITM attacks raise concerns because such practices
weaken the online privacy and security of internet users in Kazakhstan.
Learn more through our report: https://ooni.org/post/2024-kazakhstan-report/
We also summarize some of the findings in these social media threads:
https://x.com/OpenObservatory/status/1836831876524527853,
https://mastodon.social/@ooni/113166013137593960
We thank OONI Probe users in Kazakhstan for contributing measurements,
supporting this study.
~ OONI team.