The adoption of the new surveillance powers in the draft codes enables the authorities to access computers remotely. The NUJ and CIJ believe these powers should be the subject of primary legislation and should not be introduced via secondary legislation in a code of practice under the Regulation of Investigatory Powers Act 2000 (RIPA) which itself is not limited to terrorism and serious crime but covers all crimes....
Accessing computers or other devises allows the intelligence services to obtain vast amounts of information. It would mean the authorities would have control over targeted devices and access to any information stored including encrypted data and communications. This information could include documents, emails, diaries, contacts, photographs, internet messaging chat logs, and the location records on mobile equipment. It would also mean having powers to access anything typed into a device, including login details/passwords, internet browsing histories, other materials and communications. Draft documents and deleted files could also be accessed. In addition, the microphone, webcam and GPS-based locator technology could be turned on and items stored could be altered or deleted.
See proposed: <http://www.statewatch.org/news/2015/feb/uk-ho-draft-equipment-interference-code-of-practice.pdf>
Equipment Interference Code of Practice (pdf) and also: <http://www.statewatch.org/news/2015/feb/uk-computer-surveillance.htm>
New Code of Practice: "Equipment Interference" to give the intelligence and security agencies direct access to computers to by-pass encryption and to use "remote access" to "obtain information.. in pursuit of intelligence requirements" or to <http://www.statewatch.org/news/2015/feb/uk-computer-surveillance.htm>"remove or modify software" Statewatch) and: <http://www.statewatch.org/analyses/no-244-gchq-intercept-commissioner.pdf>GCHQ is authorised to “spy on the world” but the UK Interception of Communications Commissioner says this is OK as it is “lawful”