General Discussion
Related: Editorials & Other Articles, Issue Forums, Alliance Forums, Region Forums"I found Bannon's tools. Federal authorities have it all now."
In todays holy shit moment. This cyber security firm shows how Cambridge Analytica data (data on millions of Americans) was left exposed and downloadable (think Russia.)I found Bannon's tools.
Facebook ad tools, scrapers, targeting scripts, etc.
Federal authorities have it all now.
Smoking gun evidence involving foreign influence in US elections.
Reports going up momentarily at:
https://www.upguard.com/breaches/aggregrate-iq-part-one
and
https://gizmodo.com/aggregateiq-created-cambridge-analyticas-election-softw-1824026565Link to tweet
Link to tweet
Link to tweet
Link to tweet
Link to tweet
Link to tweet
BigOleDummy
(2,268 posts).... please be true.
lagomorph777
(30,613 posts)I hope there's Trump DNA all over them.
Blue Owl
(50,288 posts)But hopefully the kind that will land him a few decades in the klink
AJT
(5,240 posts)interesting chatter at his site
seems legit
so far?
herding cats
(19,558 posts)He sits at his desk, littered with external hard drives storing terabytes of data, in his home office in Santa Rosa, Calif., where he scours the internet for data that shouldn't be accessible -- a phone number, a social security number, or credit card data -- sitting in databases that aren't password-protected for anyone to access
Using search engines for internet-connected devices, like Shodan, and tools that scan common ports where data typically live, Vickery can tick off hundreds of internet addresses and their ports for leaky databases, badly configured backup drives, and other inappropriately stored data.
It's a race to find accidentally exposed data before the bad guys do.
http://www.zdnet.com/article/chris-vickery-data-breach-hunter/
These are a few of the things he's been involved in: https://www.techdirt.com/blog/?tag=chris+vickery
Click the link and check out the depth of his work above. He knows what he's doing and he's among the best I know of in his field.
kpete
(71,965 posts)I knew nothing about him
lots of buzz though...
herding cats
(19,558 posts)What is covered in passing here is the debth of relationship between SCL Elections, Cambridge Analytica and AggregateIQ.
When I became research director for SCL [the parent company of Cambridge Analytica] we needed to rapidly expand our technical capacity and I reached out to a lot of people I had worked with in the past. That included Jeff Silvester, his former boss, who lived in Wylies home town [Silvester] then set up AIQ with his business partner, Zack Massingham, to work on SCL and later Cambridge Analytica projects. Essentially it was set up as a Canadian entity for people who wanted to work on SCL projects who didnt want to move to London. Thats how AIQ got started: originally to service SCL and Cambridge Analytica projects, said Wylie. Last March, when the Observer started asking questions about the connection between Cambridge Analytica and AIQ, the former removed SCL Canada and Massinghams phone number from its website and said that AIQ was a former IT contractor.
The additional information reported by Cadwalladr that SCL Elections, the parent company of Cambridge Analytica, owns AggregateIQs intellectual property in perpetuity helps to further make clear the significance of the Gitlab subdomains contents. While Cambridge Analytica may operate as an independent from, distinct from AggregateIQ, the working relationship appears to be much closer - as evidenced in the tale of an app, contained in the exposed repository.
https://www.upguard.com/breaches/aggregate-iq-part-one?hs_amp=true&__twitter_impression=true
There's more to come out on this I'm sure. This reads like it's the beginning in a larger report on the topic. Even if not, this is important information for the prosecutors investigating this matter.
Edit for clarity.
ancianita
(35,950 posts)Last edited Tue Mar 27, 2018, 10:32 AM - Edit history (1)
It's important context re all the security problems this country has.
Hortensis
(58,785 posts)evaluate this source. Exciting. Investigating must be like peeling an onion and running into nests and strings leading off to other onions with their own strings leading to....
mopinko
(70,023 posts)wouldnt it be sweet to see in crash and burn?
Lulu KC
(2,561 posts)is the model structure that explains the server communications between Trump Tower, Alfa Bank, and Spectrum Health
https://i.kinja-img.com/gawker-media/image/upload/s--tXDNut7c--/c_fit,fl_progressive,q_80,w_636/gaoxsmftmt34wwoyntap.png
dameatball
(7,395 posts)calimary
(81,127 posts)Connect the dots! Theres so much sinister connectivity throughout. None of these individual incidents happened in a vacuum. Or more accurately, in its own separate private little vacuum totally unconnected to anything or anybody.
And almost nobody involved (except maybe for young Barron Trump) is untainted or innocent or pure as driven snow.
dameatball
(7,395 posts)I always figured that had to do with money being moved around.
And this is just total speculation, like if I was reading novel at this point I would figure this is what happened, that the Trump towers server had the mast database. Spectrum dished the server out to US users, Alfa bank served out to Russian users, and spectrum and Alfa both synchronized to the trump tower server.
dameatball
(7,395 posts)BumRushDaShow
(128,527 posts)Behind Alfa, Spectrum came in 2nd for number of "lookups" on that server.
dameatball
(7,395 posts)BumRushDaShow
(128,527 posts)And of course Erik Prince is her brother.
peggysue2
(10,824 posts)Sounds positively Orwellian.
Well, if Mueller didn't have this info, he has it now. It's all piling up, all these damning details that the Trumpsters have insisted is a gigantic nothingburger.
Now? Looks more like a House of Cards.
BumRushDaShow
(128,527 posts)so I expect someone in the FBI has it and will document/review/validate and hand it over.
Volaris
(10,269 posts)peggysue2
(10,824 posts)Bannon was a primary arsonist. As the info rolls out on Cambridge Analytica, their military-grade psych-ops and all these foreign workers, Mercer's money to fund the enterprise, I don't see how it's possible for Bannon to skip. He was the hands on VP, directing the projects, warned about the illegalities and turning a deaf ear and eye.
He was going to change the world in his image. Instead, the world will eat him for breakfast.
Good! He can dry out in jail.
SergeStorms
(19,187 posts)is that somehow the KKKoch (pronounced, cock) brothers are involved as well.
Add Paul Ryan, Mitch McConnell, Devin Nunes, Dana Rohrabacher, and Mike Pence.......I'd convert to christianity immediately, and accept jebus as my lord and savior for the rest of my life.
I don't think the chances of that are very great though.
sprinkleeninow
(20,217 posts)Lulu KC
(2,561 posts)that this is good news, but must say I keep having a deja news feeling of wait, didn't we already know this? I'm trying to limit news time to 15 mins/day unless there are indictments (that's a festival day, can eat all I want) to help me keep things straighter in my head. It's not working yet.
I hear you.
grantcart
(53,061 posts)workinclasszero
(28,270 posts)I hope so.
BumRushDaShow
(128,527 posts)AIQ is a Canadian Company. It is starting to sound like Brexit was a test bed for what eventually happened here. And many were expressing concern as the Brexit mess played out and wondering what might happen here.
Article here - https://www.theguardian.com/uk-news/2018/mar/24/aggregateiq-data-firm-link-raises-leave-group-questions
workinclasszero
(28,270 posts)Sure enough looks like a Canadian company is involved in this Facebook/Cambridge Analytica hijacking of democracy.
BumRushDaShow
(128,527 posts)workinclasszero
(28,270 posts)When the democrats claw back control of the House this fall, there needs to be a massive investigation of Facebook, Cambridge Analytica, AggregateIQ, Mercer, Bannon and other people involved in this treason.
BumRushDaShow
(128,527 posts)And it seems that they eventually made a decision to go dirty after the shellacking they took in 2012.
workinclasszero
(28,270 posts)Thanks for all the info, much appreciated.
BumRushDaShow
(128,527 posts)old article from just before the election!
https://www.wired.com/2016/08/trump-cambridge-analytica/
FakeNoose
(32,597 posts)I was thinking these guys must be blowing smoke. If their software is so great, how come Ted Cruz isn't the Republican candidate? (And thank he wasn't but that's another story.) Clearly there's a lot more to winning an election than just analyzing numbers.
Wow, very scary stuff!
BumRushDaShow
(128,527 posts)that the 2 they worked for (Cruz & Carson) initially were really long shots and once Drumpf got the nod, they decided to go into a "Brexit" DEFCON mode, having gobs of money available via a multitude of PACs, and went for the dirty win.
Nitram
(22,768 posts)PearliePoo2
(7,768 posts)boil it down to: 'Data for Dummies'?
kpete
(71,965 posts)CabalPowered
(12,690 posts).. they've been using. But apparently they left the whole hen house unguarded through a very common misconfiguration of a popular developer tool. Apps, usernames, passwords, everything was essentially left open without a password. Or you could at least register on their tool website and gain access to everything. He didn't even have to hack anything. He just accessed it and grabbed it all.
Bottom line.. there is likely forensic evidence of multiple crimes that is not only admissible, but could be used in multiple investigations.
kpete
(71,965 posts)much appreciated
kp
PearliePoo2
(7,768 posts)linked back to "you know who".
As Dusty Springfield would sing, "Wishin and Hopin'".
Thanks CabalPowered!
FailureToCommunicate
(14,007 posts)Lulu KC
(2,561 posts)bigbrother05
(5,995 posts)Just like a TV cop show where an incriminating file is left on a desk while the cooperative detective goes to get coffee leaving the PI or reporter alone for a few minutes.
CA likely left it in "plain sight" IT-wise to minimize blowback if used by nefarious organizations. Can blame a careless user.
Just like leaving a gate wide open then claiming inflated value when items walk off.
blake2012
(1,294 posts)tinrobot
(10,887 posts)Open up a server with an obscure address, then pass the address to Russia. Nobody else notices the server, but the data finds its way to the desired place. Nobody else notices the server because it has an obscure name and gets lost in the vastness of the internet.
They can then claim they didn't give the info to Russia willingly. They were "hacked" and it was "stolen." Plausible deniability.
CabalPowered
(12,690 posts)These were the family jewels. You wouldn't have been able to discover this unless you navigated to the specific subdomain. It wasn't indexed by any search engine. He apparently tried the subdomain out of pure speculation, as it's a common developer tool.
bigbrother05
(5,995 posts)Something developers might know about, not just any casual internet user
Think I'll just leave this here for now
CabalPowered
(12,690 posts)It's a very common tool in developer circles. It simplifies code and project management. And it's also easy to screw up the install and forget to lock down a bunch of settings. They were lazy.
spanone
(135,795 posts)Leghorn21
(13,523 posts)Lulu KC
(2,561 posts)I wish my daughter would get interested in this because she'd probably be able to wade through it. Is this ^^^ related to this?
http://thehill.com/blogs/blog-briefing-room/news/380285-watchdog-accuses-cambridge-analytica-of-violating-us-election
BumRushDaShow
(128,527 posts)Apparently the guy who tweeted this works in the field of looking for data breaches and works for a company "UpGuard" that specializes in that.
@VickerySec
Data breach hunter. Director of Cyber Risk Research at UpGuard
His company found an open server from the Canadian company AIQ, and discovered that AIQ apparently created the "data manipulation tools" and "apps" (probably those directed to Facebook users) that Cambridge Analytica used to do what they did. And the Guardian confirmed that the parent company of Cambridge Analytica also "owns" the rights to the AIQ tools.
Lulu KC
(2,561 posts)BumRushDaShow
(128,527 posts)herding cats
(19,558 posts)I posted on it here. https://www.democraticunderground.com/?com=view_post&forum=1002&pid=10416717
This also seems to be some basis for investing how the RNC and Cruz ended up handing US voter data over to a foreign country to be analyzed.
Hekate
(90,564 posts)Good gods
SallyHemmings
(1,819 posts)The computer gurus rock!
neohippie
(1,142 posts)Please, let's hope that someone mirrors all of that data, before someone takes it all offline
this person is in a secured location.
Ligyron
(7,616 posts)K and R
ProfessorGAC
(64,875 posts). . .is a search warrant even needed? Do cops need a search warrant to access someone's FB page? I doubt it.
Thekaspervote
(32,715 posts)If Chris vickery has it, Im sure Mueller has it!
bucolic_frolic
(43,064 posts)the arrogance, hubris really, is astounding
vkkv
(3,384 posts)Credit card companies must be SO JEALOUS !!
nolabels
(13,133 posts)The creeps knew how to hide it but lacked the redundancy of having many other financial institutions double checking on their security thus leaving ports unguarded for someone like this to accidentally find them. The term 'Leave no stone unturned' has meaning
xor
(1,204 posts)and I'm not sure what crosses over the lines of normal election targeting, collection of data, etc...