And @nationbuilder owes responses to @ICOnews per last week’s interim reports on its ongoing Cambridge Analytica/Facebook investigation. (Section 3.8.5 Democracy Disrupted? ico.org.uk/media/action-w…)
There are dozens of ways Kremlin could’ve purloined our voter analytics. We now know this could’ve included:
— hacking DNC network with malware
— exfiltrating voter registration servers
— infiltrating election machine vendors
— CambridgeAnalytica/SCL
— NationBuilder
— scraping FB
— hacking DNC network with malware
— exfiltrating voter registration servers
— infiltrating election machine vendors
— CambridgeAnalytica/SCL
— NationBuilder
— scraping FB
— knowing about unsecured AWS instances of like DeepRoot Analytics RNC data breach
— knowing about unsecured code repositories with sensitive credentials like AggregateIQ who built RIPON software for GOP/PACs
(These two possibilities are known thanks to @VickerySec of @UpGuard)
— knowing about unsecured code repositories with sensitive credentials like AggregateIQ who built RIPON software for GOP/PACs
(These two possibilities are known thanks to @VickerySec of @UpGuard)
I fear our democracy will remain vulnerable to foreign interference for as long as the US is a “wild west” of data-driven enterprises that enjoy unregulated, unaccountable access to voter registrations that get matched to data broker profiles on the open market.
In the meantime, Facebook should do the unthinkable and announce an immediate and voluntary moratorium on Custom Audiences, which allows any advertiser to upload our personal data to match to our FB profile to target us by name. It won’t. But it should.
Forensic evidence was found showing the Internet Research Agency’s imposter websites used Custom Audiences against Americans. I assume Cambridge Analytica used Custom Audiences extensively. Not much beyond weak certifications stops future abuse with data that’s already out there.
