Profile picture
Robᵉʳᵗ Graham 🤔 [will be at DEF CON] @ErrataRob
, 10 tweets, 2 min read Read on Twitter
I'm slowly reading the DoJ "Cyber-Digital Task Force Report", which has good and bad bits. One of the bad bits is this description of "intentional" violation of the CFAA (the anti-hacking law) -- it doesn't always work this way in practice.
It's the "mens rea" clause that part of almost all laws, such as differentiating between "manslaughter" (an accident) vs. "murder" (premeditated). So from the lawyer point of view, this is perfectly normal and reasonable.
The problem is that technical geeks disagree with lay people what "authorized" means. A techy person assumes that if a URL ending in "?articleId=23" is authorized, then so is a URL ending in "?articleId=24", so that editing the URL in your browser's address bar is not a crime.
Indeed, the techies who designed URLs and web browsers designed it this way so that you WOULD edit URLs this way, and that to "browse a website" means doing exactly this.
Yet, the average person does not have the technical capability to do this, and would never dream of editing a URL this way. They only have the ability to click with the mouse on links, from one website to the next, or from google results.
Their view of "authorized" is that if they cannot do it, due to ignorance of how computers work, then it's "unauthorized". Thus, if techies can do it, because of their knowledge, then it's still "unauthorized".
The mens rea "intentionally" clause doesn't help, because even if the techies sincerely believed they were authorized, it doesn't mater. What maters is whether a "reasonable person" (aka. "non techy") would have believed they were authorized.
There's good reason for this "reasonable person" standard in general, as criminals will always try to escape punishment by pretending about their "intentions", but for geeks, it's a real issue.
Writing a script to spider a website is considered some unholy black magic that of course a reasonable person would consider illegal, such as in the Schwartz and Auernheimer cases. Yet, google spiders your website daily, and is obviously "auhtorized" to do so.
The Aaron Swartz case is troubling because he had good reason to believe his access of the JSTOR computers was authorized, but legal system clearly wasn't going to agree with him, and was going to punish him severely.
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Robᵉʳᵗ Graham 🤔 [will be at DEF CON]
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @ErrataRob see all

Profile picture
1/ So I thought I'd write up a few notes on Trump's oval office address (transcript here). The reason I'm writing this is up is because Pelosi/Schumer derided Trump on the "facts" -- and then provided none of their own.
nytimes.com/2019/01/08/us/…
2/ First of all, I think the context is that Trump wants to declare a "state of emergency" to bypass congress. He's either trying to convince us, or test the waters to see if we'll accept it. We should not let him, this would be a horrible abuse of power, what despots do.
3/ There is legitimately a "humanitarian crisis" going on. As this Wikipedia article describes, there has been waves of refugees, including a lot of children, coming from the three countries immediately south of Mexico since 2014.
en.wikipedia.org/wiki/2014_Amer…
Read 26 tweets
Profile picture
1/ Well, to answer this, sign up for the phone company's family plans designed to allow you to track your children. It's hit or miss, sometimes very accurate, sometimes not.
2/ Modern phones and towers have multiple abilities to track your location. For one thing, because of speed-of-light delay, the tower must know your distance from the tower to within 100 meters.
3/ Next, towers know which directional antenna your signal arrives on. This gives them a 120° arc within which to locate you, the closer you are to the tower, the more accurate that is, of course.
Read 13 tweets
Profile picture
1/ In regards to my tweets today about "institutions" that make us great, let's talk about journalism and "both-sides-ism". Nobody likes it, but those who disagree with us are still reasonable people, the are multiple sides to every debate. This is why a free press is valuable.
2/ Let's take "anti-vaxxers" for a moment, which I assume you'll agree are "batshit crazy" and not "reasonable" in any fashion. Yet, we still have a "both sides" issue. Even if "vaccines cause autism" argument is garbage, we still debate whether governments can force vaccines.
3/ It's the same argument whether governments can force you to donate a kidney. Or force you to donate bone marrow (which is relatively harmless to the donor). Or force a woman to cary a baby to term.
Read 9 tweets

Related threads

Profile picture
Read the last paragraph here very carefully.

You know you ALSO catch if you're all set up and ready and waiting and watching for FOREIGN attempts to hack into state level voting systems?

You catch DOMESTIC attempts to hack in and tamper also.

justice.gov/opa/pr/departm…
There is now a Cyber Digital Task Force that watches state level voting registration/election related systems.

Of course, the discussed focus is for "foreign" threats, attempts to hack in from Russia, China, etc.
Well they're in position to spot ANY hacking attempt of these state level election systems. Which means they'll catch the DOMESTIC hackers too.
Read 5 tweets
Profile picture
DOJ released a report on computer crime recently, and I'm puzzled by a big question it raises: Does the CFAA only apply to Internet-connected computers? Here's a thread on why. The report is here: justice.gov/ag/page/file/1…
The report suggests that electronic voting machines usually are not, in DOJ's view, "protected computers" under the CFAA -- that hacking a voting machine isn't a CFAA crime. Here's the report language. /2
According to DOJ, the CFAA "only prohibits hacking computers that are connected to the Internet," unless other criteria are met (like fed government computers, presumably). But where is DOJ getting the idea that the CFAA usually only applies to net-connected machines? /3
Read 17 tweets
Profile picture
'It would be easier for a foreign country to invade America than rig an election.'

~ 46 million reasons Hillary’s election interference is a myth. ~

Another article by Daniel Greenfield @Sultanknish (text below) Please RT.
frontpagemag.com/fpm/270817/how…
'136,639,786 people voted in the 2016 election. 46 million of those votes were cast in swing states.

An estimated $2.65 billion was spent on the presidential race.'

⤵️
'The United States of America has the world’s biggest free and open elections.

And also the most expensive elections.

It would be easier for a foreign country to invade America than rig an election.'

⤵️
Read 38 tweets
Profile picture
HOW'D I MISS THIS?

Attorney General Sessions Announces Publication of Cyber-Digital Task Force Report

@drawandstrike @ThomasWictor @TheChiIIum @HNIJohnMiller @jihadaeon1 @rising_serpent @_ImperatorRex_ @Debradelai @LarrySchweikart

justice.gov/opa/pr/attorne…
Attorney General Jeff Sessions announced today the public release of a report produced by the Attorney General’s Cyber-Digital Task Force. The report provides a comprehensive assessment of the cyber-enabled threats confronting the Nation,
and catalogs the ways in which the Department of Justice combats those threats. Deputy Attorney General Rod Rosenstein formally issued the report in remarks delivered today at the Aspen Security Forum in Aspen, Colorado.
Read 19 tweets
Profile picture
“Public attribution of foreign influence operations can help to counter and mitigate the harm caused by foreign-government-sponsored disinformation,” Rosenstein said. “When people are aware of the true sponsor, they can make better-informed decisions.” washingtonpost.com/world/national…
“Cyber is the new terror”

— Dan Coats, July 19, 2018
Fake, misleading social media posts exploding globally, Oxford study finds... 2016 U.S. election was part of a global “phenomenon”. amp.mcclatchydc.com/news/nation-wo…
Read 6 tweets
Profile picture
1) This is my #Qanon thread for Q posts beginning Feb 18, 2018.

The theme for this series is: "For God And Country."

Q posts have been migrated to a website that can handle more traffic. They can be found here: qanonposts.com
2) There have been some changes in the last few days.
#Qanon posts on the 8chan #GreatAwakening site are not visible. One anon believes Q has locked the board, leaving them intact, but invisible. Q is responding to the anons who post on the 8chan research board.
3) #Qanon posted this on Sunday the 18th.

POTUS seems to be warning Barack Obama that he hasn't heard the last of the Iran deal.

Are Attorney General Sessions and FBI Director Chris Wray looking into where the money went?
Read 51 tweets

Trending hashtags

#data #MockingBirdMedia #eJPT #SOTU #TeamNutShellReport #advancednuclear #TheProgram #ThreatFusionCenter #DOJ #Mueller #Dem #MDC #POTUS #GPS #Jarrett #Hannity #TeamPatriot #Law #CTF #terrorism #Communism #seminar #AmericanPariah #ethics #DirtyCop

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member and get exclusive features!

Premium member ($3.00/month or $30.00/year)

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!