Pew research on investigative journalism and digital security

February 6, 2015 |

Today the Pew Research Centre published a very interesting report, titled Investigative Journalists and Digital Security: Perceptions of Vulnerability and Changes in Behavior (found here). The findings are based on  a survey of 671 investigative journalists and their experience with digital security.

Clearly there is a continuing concern about the US government’s program of surveilling data on the internet through the PRISM program not to mention other programs. For those with a less political and more privacy practitioner focus the interviewees were concerned about the lack of interest in and poor practices of their organisations in protecting their digital security. That is a common problem with organisations who, usually until it is too late, see implementation of proper privacy policies, protocols and training as a poor allocation in their budgets.  In that sense the attitude of  a media organisation differs little from organisations generally in the United States and Australia.

The analysis is found here.  In Pew’s view the Five key takeaways are:

1 About two-thirds (64%) believe that the U.S. government probably has collected data about their own phone calls, emails or online communications. This perception is especially prevalent among IRE journalists who cover national security, foreign affairs or the federal government. Fully 71% of this group say the government has likely collected this data. And eight-in-ten of all journalists surveyed express the belief that being a journalist increases the likelihood that their data will be collected by the U.S. government.

2 These investigative journalists do not put much stock in their internet service providers to keep their data secure. Just 2% have “a lot of confidence” their ISP can protect their data from being accessed by unauthorized parties, while 71% have “not much or no confidence at all.”

Nine-in-ten believe their ISP would share their data with the U.S. government as part of National Security Agency data gathering, while 97% believe their ISP would share their data if subpoenaed by the government.

3 News organizations get mixed reviews for their ability to protect the security of their employees’ communications. Among those who work for news organizations (589 of the 671 investigative journalists surveyed), half say their employer is not doing enough to protect journalists and their sources from surveillance and hacking, while about the same share (47%) says they are doing enough.

Just 21% say their organization has taken steps or implemented policies in the past year to protect journalists and their sources. Overall, fewer than half (41%) of IRE journalists have received training or instruction from outside sources about ways to protect themselves and their sources. And only about a quarter (26%) say they have spent at least some time researching what they can do personally to secure their communications.

4 Journalists have changed some of their practices in their pursuit of stories and in dealing with sources. Nearly half (49%) say they have at least somewhat changed the way they store or share sensitive documents in the past year, and 29% say the same about the way they communicate with other reporters, editors or producers.

5 There are areas where concerns about digital security have had less impact on journalists’ practices. Just 13% say concerns about surveillance and hacking have led them to not reach out to a particular source in the past year, and even fewer say concerns have led them to not pursue a particular story (3%) or to consider leaving investigative journalism (2%). Among reporters, less than a quarter currently use techniques such as turning off electronic devices when meeting sources (18%), avoiding the use of third-party email servers when communicating with sources (17%), or using “fake” or anonymous email and online accounts (14%).

Leave a Reply