NEW @POGOBlog investigation out with @arstechnica about how industry influence at the FCC is compromising the security of our communications: arstechnica.com/features/2019/…

GET READY FOR A THREAD!
When major phone outages hit big cities including LA and DC in the early ‘90s, glitches in SS7, part of telephone software infrastructure, were to blame. But part of the supposed solution, a tech experts group chartered to advise the FCC called CSRIC, is now part of the problem.
As new innovation sped up, expertise within the FCC struggled to keep up and became more and more reliant on CSRIC for troubleshooting. But CSRIC’s membership is heavily skewed towards industry.
So the FCC was increasingly relying on a group of experts from the very companies the agency was supposed to be regulating to help it figure out how to set rules for new tech.
After @RepTedLieu let researchers track his phone via SS7 flaws for @60Minutes in 2016, the FCC turned to CSRIC yet again.
A VP at major telecom trade group CTIA was the lead editor on the CSRIC Working Group’s final report on the issue.
Emails POGO obtained via FOIA show he dismissed research about SS7 as hyperbolic and at times failed to incorporate edits from DHS experts.
Even though the working group quickly knew the technical fix, their final report didn’t recommend any actual rules, just non-binding best practices.
As an added bonus, the current leadership at the FCC doesn’t think his agency should play a major role in cybersecurity anyhow, despite its founding statute giving it authority to set rules related to security.
In a November letter to Sen. @RonWyden, @AjitPaiFCC said the FCC “plays a supporting role, as a partner with DHS, in identifying vulnerabilities and working with stakeholders to increase security and resiliency in communications network infrastructure.”
That lines up with common industry lobbying line, which former FCC Chairman (and former CTIA CEO) @tewheels says is basically a ploy to shift to oversight to agencies without the authority to set actual rules.
“The people and companies the FCC was charged with regulating wanted to see if they could get their jurisdiction moved to someone with less regulatory authority,”@tewheels told POGO.
If you want even more info about CSRIC, check out the investigation on POGO's site, which includes a side-bar focus on the group one former staffer called "The place to send issues you wanted to die.” pogo.org/investigation/…
And no matter where you read it, don't miss the fabulously spooky illustration from @cj_ostro

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Andrea Peterson

Andrea Peterson Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @kansasalps

Oct 19, 2021
Here's what it looks like when ransomware attacks victimize rural communities:
therecord.media/when-ransomwar…
I got into my hometown for a visit just as the County next door was the victim of a ransomware attack that paralyzed its systems and left some services offline for weeks—so I covered it on the ground, seeing how the local government and the community responded.
Westmoreland, Kansas is the seat of Pottawatomie County and home to around 750 of its 25,000 residents. It's an Oregon trail town, but in recent weeks it was the site of another modern migration—this one of data, stolen from the County’s computers by cybercriminals .
Read 15 tweets
Oct 16, 2021
It’s the anniversary of when a small band of people tried to start a revolution to end the horror of slavery in a raid on Harpers Ferry. This is mostly known as John Brown’s raid. But I want to talk about Osborne Perry Anderson, the raiding party’s sole Black survivor.
Anderson escaped the raid and even worked with pioneering Black female publisher and lawyer Mary Ann Shadd Cary to release a first-hand account of the event, which you can read here: archive.org/details/voicef…
Both Anderson and Shadd Cary, along with many other Black luminaries, were buried at Columbian Harmony Cemetery in Washington, DC.

Their original resting place is now the site of the Rhode Island Metro Stop.
Read 8 tweets
Oct 15, 2021
I woke up a little too early, so went roaming ImageImageImage
Encountered some ruins ImageImageImage
Made some friends, just in time for the sun to make her appearance ImageImageImage
Read 7 tweets
Aug 20, 2021
My first reported feature for @therecord_media is a complicated story about the community and compliance issues I encountered penetration testing mask policies at Hacker Summer Camp
therecord.media/fear-and-covid…
It’s not just an exploration of how well the masking rules were followed or enforced in Vegas, but my own identity as a hacker and how it compels me to use journalism to report on public safety issues—like mass travel and gatherings in a delta variant hotspot.
The Union that reps workers at the conference venues told me 146 members or their immediate families have died and 1,508 have been hospitalized due to COVID-19 since March 1, 2020.
Read 18 tweets

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(