Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture
@doctorow
Sep 18, 2020 13 tweets 4 min read Read on X
Andrey Bezrukov and Elena Vavilova were Russian spies who operated in the USA for 20 years (this is the basis for "The Americans"); they were caught in 2010. "Compromised," is the new memoir by Peter Strzok, the FBI agent who had their case.

hmhbooks.com/shop/books/Com…

1/
As @mattblaze writes, a throwaway detail in the book resolves a longstanding cryptographic mystery: that of a Cuban "numbers station" that operated for years, including a decade where it behaved very erratically (by numbers station standards).

mattblaze.org/blog/neinnines/

2/
Some background. Numbers stations - ratio stations in which people (or synthesized voices) read out strings of random numbers - are a means of messages for use with "one-time pads," a cryptographic tool that is, in theory, unbreakable.

3/
One-time pads are collections of random numbers used to encipher messages through simple operations: adding each byte of your message to the next number on the pad. If the pad is truly random, secret and never reused, the code can't be broken.

numbers-stations.com/articles/how-t…

4/
If your spies are sent abroad with a thick one-time pad, then you can simply broadcast your messages over the entire region in which they operate, and they can use their pads to decipher the messages, while your adversaries just get random numbers

5/
Numbers stations, like the powerful shortwave transmitter in Bauta, Cuba, were used to communicate with Soviet (and, later, Russian) spies in the US in this way.

6/
Though one-time pad messages can't be deciphered, it's still possible to leak information using numbers stations. If a radio station ceases operation every time a spy travels, then your adversary can match the station's operating schedule with suspects' itineraries.

7/
To prevent this "traffic analysis" attack, the station broadcasted dummy traffic (random numbers that WEREN'T encoded messages) every single day, even if the spies were not listening that day.

8/
However, for mysterious reasons - still not understood - the dummy traffic never contained the number nine ("nueve"). That made it easy to tell the real numbers station traffic from the dummy traffic, and from there, it was possible to derive the spies' travel schedules.

9/
Even with this glaring error, it took a DECADE for the FBI to get enough timing information to make their move. That was a whole decade in which the Cuban numbers station was making this weird, stupid blunder.

10/
One-time pads are incredibly powerful, but they're also super-awkward and unforgiving. An error as simple as pad re-use can blow them up, as happened with the notorious Venona affair:

nsa.gov/news-features/…

11/
As Blaze writes, "OTPs have long been a favorite of hucksters selling supposedly 'unbreakable' crypto. Remember this story next time someone tries to sell you their super-secure one-time-pad crypto. If actual Russian spies can't use it securely, chances are neither can you."

12/
Blaze was one of the researchers who followed - and recorded! - the Cuban numbers station, and noted the mysterious and telling absence of "nueve" in some of the traffic. He's posted a recording of the station to his site:

mattblaze.org/private/17435k…

eof/

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Cory Doctorow NONCONSENSUAL BLUE TICK

Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @doctorow

Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture
Dec 16, 2025
We are about to get a "post-American internet," because we are entering a post-American *era* and a post-American *world*. Some of that is Trump's doing, and some of that is down to his predecessors.

1/ Uncle Sam staring into a funhouse mirror that has made him painfully thin. The reflection is wearing a Trump wig and has orange skin. He stands atop a map of the world that stretches to infinity. In the background is a shantytown with the TRUMP logomark rising in the sky over it.
If you'd like an essay-formatted version of this thread to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

pluralistic.net/2025/12/16/k-s…

2/
When we think about the American century, we rightly focus on America's hard power - the invasions, military bases, arms exports, and CIA coups.

3/
Read 86 tweets
Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture
Dec 13, 2025
Look, I'm not trying to say that new technologies *never* raise gnarly new legal questions. But what I *am* saying is that a lot of the time, the "new legal challenges" raised by technology are somewhere between 95-100% bullshit.

1/ A modified FBI badge. It now reads 'Federal Wallet Investigators.' It is made out to 'Timothy J Shotspotter.' It is held in the three-fingered, gloved grip of a cartoon character. Around its edges, we see a cartoon room from a public domain Betty Boop cartoon.
If you'd like an essay-formatted version of this thread to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

pluralistic.net/2025/12/13/unc…

2/
It's ginned up by none-too-bright tech bros and their investors, and then swallowed by regulators and lawmakers who are either so credulous they'd lose a game of peek-a-boo, or (likely) in on the scam.

3/
Read 68 tweets
Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture
Dec 9, 2025
I have a weird fascination with early-stage Bill Gates, after his mother convinced a pal of hers - chairman of IBM's board of directors - to give her son the contract to provide the operating system for the new IBM PC.

1/ A 1960s ad for IBM mainframes, featuring a woman in an office chair seated at a console, surrounded by large processing and storage units. It has been modified. A man in a business suit, impatiently checking his watch, looms out from between two of the cabinets. His head has been replaced with the glaring red eye of HAL 9000 from Stanley Kubrick's '2001: A Space Odyssey.' The woman's head has been replaced with a hacker's hoodie. Both the woman and the man have been tinted red. Image: Cryteria (modified) https://commons.wikimedia.org/wiki/File:HAL9000.svg CC BY 3.0 https://creativecommon...
If you'd like an essay-formatted version of this thread to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

pluralistic.net/2025/12/09/tem…

2/
Gates and his pal Paul Allen tricked another programmer into selling them the rights to DOS, which they sold to IBM, setting Microsoft on the path to be one of the most profitable businesses in human history.

3/
Read 36 tweets
Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture
Nov 20, 2025
Well, this fucking *sucks*. A federal judge has decided that Meta is not a monopolist, and that its acquisitions of Instagram and Whatsapp were not an illegal bid to secure and maintain a monopoly:



1/ gizmodo.com/meta-learns-th…The classic Puck Magazine editorial cartoon entitled 'The King of All Commodities,' depicting John D Rockefeller as a man with grotesquely tiny body and a gigantic head, wearing a crown emblazoned with the names of the industrial concerns he owned. Rockefeller's head has been replaced with that of Mark Zuckerberg's metaverse avatar. The names of the industrial concerns have been replaced with the wordmarks for Scale AI, Instagram, Oculus and Whatsapp. The dollar-sign at the crown's pinnacle has been replaced with the Facebook 'f' logo. The chain around Rockefeller's neck sports the charm th...
If you'd like an essay-formatted version of this thread to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

pluralistic.net/2025/11/20/if-…

2/
This is particularly galling because Mark Zuckerberg repeatedly, explicitly declared that these mergers were undertaken *to reduce competition*, which is the only circumstance in which pro-monopoly economists and lawyers say that mergers should be blocked.

3/
Read 55 tweets
Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture
Nov 18, 2025
Gary K Wolf is the author of a fantastic 1981 novel called *Who Censored Roger Rabbit?* which Disney licensed and turned into an equally fantastic 1988 live action/animated hybrid movie called *Who Framed Roger Rabbit?*

1/ The final scene of Disneyland's 'Roger Rabbit's Toontown Spin,' in which Roger Rabbit is deploying a pair of portable holes; the holes have been replaced with copyright symbols, which are partially cropped. Image: Ken Lund (modified) https://www.flickr.com/photos/kenlund/16775732643/ CC BY-SA 2.0 https://creativecommons.org/licenses/by-sa/2.0/deed.en
If you'd like an essay-formatted version of this thread to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

pluralistic.net/2025/11/18/im-…

2/
But despite the commercial and critical acclaim of the movie, Disney hasn't made any feature-length sequels.

3/
Read 52 tweets
Cory Doctorow NONCONSENSUAL BLUE TICK Profile picture
Nov 8, 2025
A blockbuster Reuters report by Jeff Horwitz analyzes leaked internal documents that reveal that: 10% of Meta's gross revenue comes from ads for fraudulent goods and scams, and; the company knows it, and; they decided not to do anything about it, because...

1/ A tuxedoed figure dramatically shoveing greenish pigs into a tube, from whose other end vomits forth a torrent of packaged goods. He has the head of Mark Zuckerberg's 'metaverse' avatar. He stands upon an endless field of gold coins. The background is the intaglioed upper face of the engraving of Benjamin Franklin on a US$100 bill, roughed up to a dark and sinister hue.
If you'd like an essay-formatted version of this thread to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:

pluralistic.net/2025/11/08/fae…

2/
...The fines for facilitating this life-destroying fraud are far less than the expected revenue from helping to destroy its users' lives:



3/reuters.com/investigations…
Read 59 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

Send Email!

:(