I am no fan of the Daily or Sunday Heil, but they have been given this story to deflect from the Sue Ellen Braverman security breach story.
The bigger question is, how come all these Tories keep suffering such massive security breaches? A thread 1/
dailymail.co.uk/news/article-1…
The bigger question is, how come all these Tories keep suffering such massive security breaches? A thread 1/
dailymail.co.uk/news/article-1…
As a nation we are not amateurs at infosec, the boys and girls at GCHQ and the other services are very, very good at what they do, and the equipment they issue is very robust, heavily monitored, secured, updated and managed. So how is this happening? 2/
Ministers refuse to use GSI issued phones, and instead insist on using personal phones, which also support personal email, whatsapp and other off core network comms tools, you might ask why, and the answer in one word is corruption... 3/
Want to get a mate a PPE contract, do it off network, then when the scrutiny starts you can lose the phone and backups, you can't do that with a government issued phone...
Want to share confidential docs with an ERG headbanger with no security clearance, easy on personal kit! 4/
Want to share confidential docs with an ERG headbanger with no security clearance, easy on personal kit! 4/
The only reason to use personal phones is to avoid scrutiny, whether its under Freedom of Information act requests or covering up blatant illegality, you don't want your dirty laundry in the hands of the auditors so move it all off the core network! 5/
This is a gift to our enemies, once that document is on personal email from a large tech provider its open to attack by hackers, social engineering, 2FA spoofing etc. etc.
And with personal comms its trivial to get sent phishing emails and SMS and have the device compromised 6/
And with personal comms its trivial to get sent phishing emails and SMS and have the device compromised 6/
When it comes to security breaches in almost all cases its down to an MSF or Meat Sack Failure, not the tech, but the stupidity, arrogance, or corruption of the individual using the device. I've lost count of the number of breach investigations i've done which find its an MSF. 7/
We know from the work of @GoodLawProject that personal phones getting lost, destroyed, not backed up, etc. etc. is a common way to avoid scrutiny, we even saw it in the Wagatha Christie trial! Rarely does this happen by accident!... 8/
So why does it keep happening? Well the Tory governments have made this approach to infosec normal, and not the exception, and if you think its just Truss & Braverman doing this you're wrong. Its an endemic problem when you have a corrupt government. 9/
Which is why its denied, covered up and swept under the carpet, scrutiny, and shining a light on this kind of infosec bunglecuntery would open a huge can of worms for the Tories and the dodgy SPADs they rely on... 10/
And like all good threads this one goes upto 11, with thoughts and prayers for the teams at GCHQ who work so hard to prevent this stuff, and get stiffed by corrupt, inept, and stupid politicians... 11/ #SpinalTap
• • •
Missing some Tweet in this thread? You can try to
force a refresh
