Apply More Shame to Facebook

Okay, so without much media attention, YouTube was just fined $170 million for children’s privacy violations. Hello Google? WTH? This was a settlement by the way between Google and the Federal Trade Commission.

But what about Facebook and protecting our data? We have heard and read items about how casual Facebook is with out data. But hold on, there is more.

Primer: Cambridge Analytica was a cyber spy network with political operations and twisted tactics.

In part:

The company at the centre of the Facebook data breach boasted of using honey traps, fake news campaigns and operations with ex-spies to swing election campaigns around the world, a new investigation reveals.

Executives from Cambridge Analytica spoke to undercover reporters from Channel 4 News about the dark arts used by the company to help clients, which included entrapping rival candidates in fake bribery stings and hiring prostitutes to seduce them.

In one exchange, the company chief executive, Alexander Nix, is recorded telling reporters: “It sounds a dreadful thing to say, but these are things that don’t necessarily need to be true as long as they’re believed.” More here.

Meanwhile:

Techcrunch: Hundreds of millions of phone numbers linked to Facebook accounts have been found online.

The exposed server contained more than 419 million records over several databases on users across geographies, including 133 million records on U.S.-based Facebook users, 18 million records of users in the U.K., and another with more than 50 million records on users in Vietnam.

But because the server wasn’t protected with a password, anyone could find and access the database.

Each record contained a user’s unique Facebook ID and the phone number listed on the account. A user’s Facebook ID is typically a long, unique and public number associated with their account, which can be easily used to discern an account’s username.

But phone numbers have not been public in more than a year since Facebook restricted access to users’ phone numbers.

TechCrunch verified a number of records in the database by matching a known Facebook user’s phone number against their listed Facebook ID. We also checked other records by matching phone numbers against Facebook’s own password reset feature, which can be used to partially reveal a user’s phone number linked to their account.

Some of the records also had the user’s name, gender and location by country.

fb 3 2

This is the latest security lapse involving Facebook data after a string of incidents since the Cambridge Analytica scandal, which saw more than 80 million profiles scraped to help identify swing voters in the 2016 U.S. presidential election.

Since then the company has seen several high-profile scraping incidents, including at Instagram, which recently admitted to having profile data scraped in bulk.

This latest incident exposed millions of users’ phone numbers just from their Facebook IDs, putting them at risk of spam calls and SIM-swapping attacks, which relies on tricking cell carriers into giving a person’s phone number to an attacker. With someone else’s phone number, an attacker can force-reset the password on any internet account associated with that number.

Sanyam Jain, a security researcher and member of the GDI Foundation, found the database and contacted TechCrunch after he was unable to find the owner. After a review of the data, neither could we. But after we contacted the web host, the database was pulled offline.

Jain said he found profiles with phone numbers associated with several celebrities.

Facebook spokesperson Jay Nancarrow said the data had been scraped before Facebook cut off access to user phone numbers.

“This data set is old and appears to have information obtained before we made changes last year to remove people’s ability to find others using their phone numbers,” the spokesperson said. “The data set has been taken down and we have seen no evidence that Facebook accounts were compromised.”

But questions remain as to exactly who scraped the data, when it was scraped from Facebook and why.

Facebook has long restricted developers‘ access to user phone numbers. The company also made it more difficult to search for friends’ phone numbers. But the data appeared to be loaded into the exposed database at the end of last month — though that doesn’t necessarily mean the data is new.

This latest data exposure is the most recent example of data stored online and publicly without a password. Although often tied to human error rather than a malicious breach, data exposures nevertheless represent an emerging security problem.

In recent months, financial giant First American left data exposed, as did MoviePass and the Senate Democrats.

Feds Prepare States for Foreign Voting Interference

The Democrats have really lost their argument against voter ID if they are being fully candid about foreign interference. It is without question that several cities and states are victims of ransomware and Florida is especially concerned. Remember that a foreign actor, where clues point to Russia were able to gain access to voter registration databases and it stands to reason China will attempt the same.

Continually, the Democrats say that the Trump administration is virtually doing nothing to protect the election system. Read on as the Democrats know the mission and actions of the Cyber division of the Department of Homeland Security.

Image result for foreign hackers us voting systems photo
As Reuters reports:

The U.S. government plans to launch a program in roughly one month that narrowly focuses on protecting voter registration databases and systems ahead of the 2020 presidential election.

These systems, which are widely used to validate the eligibility of voters before they cast ballots, were compromised in 2016 by Russian hackers seeking to collect information. Intelligence officials are concerned that foreign hackers in 2020 not only will target the databases but attempt to manipulate, disrupt or destroy the data, according to current and former U.S. officials.

“We assess these systems as high risk,” said a senior U.S. official, because they are one of the few pieces of election technology regularly connected to the Internet.

The Cybersecurity Infrastructure Security Agency, or CISA, a division of the Homeland Security Department, fears the databases could be targeted by ransomware, a type of virus that has crippled city computer networks across the United States, including recently in Texas, Baltimore and Atlanta.

“Recent history has shown that state and county governments and those who support them are targets for ransomware attacks,” said Christopher Krebs, CISA’s director. “That is why we are working alongside election officials and their private sector partners to help protect their databases and respond to possible ransomware attacks.”

A ransomware attack typically locks an infected computer system until payment, usually in the form of cryptocurrency, is sent to the hacker.

The effort to counter ransomware-style cyberattacks aimed at the election runs parallel to a larger intelligence community directive to determine the most likely vectors of digital attack in the November 2020 election, according to current and former U.S. officials.

“It is imperative that states and municipalities limit the availability of information about electoral systems or administrative processes and secure their websites and databases that could be exploited,” the FBI said in a statement, supporting the Homeland Security initiative.

CISA’s program will reach out to state election officials to prepare for such a ransomware scenario. It will provide educational material, remote computer penetration testing, and vulnerability scans as well as a list of recommendations on how to prevent and recover from ransomware.

These guidelines, however, will not offer advice on whether a state should ultimately pay or refuse to pay ransom to a hacker if one of its systems is already infected.

“Our thought is we don’t want the states to have to be in that situation,” said a Homeland Security official. “We’re focused on preventing it from happening.”

Over the last two years, cyber criminals and nation state hacking groups have used ransomware to extort victims and create chaos. In one incident in 2017, which has since been attributed to Russian hackers, a ransomware virus was used to mask a data deletion technique, rendering victim computers totally unusable.

That attack, dubbed “NotPetya,” went on to damage global corporations, including FedEx and Maersk, which had offices in Ukraine where the malware first spread.

The threat is concerning because of its potential impact on voting results, experts say.

“A pre-election undetected attack could tamper with voter lists, creating huge confusion and delays, disenfranchisement, and at large enough scale could compromise the validity of the election,” said John Sebes, chief technology officer of the ESET Institute, an election technology policy think tank.

The databases are also “particularly susceptible to this kind of attack because local jurisdictions and states actively add, remove, and change the data year-round,” said Maurice Turner, a senior technologist with the Center for Democracy and Technology. “If the malicious actor doesn’t provide the key, the data is lost forever unless the victim has a recent backup.”

Nationwide, the local governments that store and update voter registration data are typically ill-equipped to defend themselves against elite hackers.

State election officials told Reuters they have improved their cyber defenses since 2016, including in some cases preparing backups for voter registration databases in case of an attack. But there is no common standard for how often local governments should create backups, said a senior Homeland Security official.

“We have to remember that this threat to our democracy will not go away, and concern about ransomware attacks on voter registration databases is one clear example,” said Vermont Secretary of State Jim Condos. “We’re sure the threat is far from over.”

 

CBP Long Beach Chinese Weapons Seizure

Three separate shipments, parts were intercepted in recent weeks, according to law enforcement sources familiar with the matter, and were packed in their own cargo containers on three separate ships that were also carrying household items, apparel, toys, industrial machinery and other imports.

With a Domestic Value of over $378,000 the seized items were found in violation of the Chinese Arms Embargo

LOS ANGELES — U.S. Customs and Border Protection (CBP) at Los Angeles/Long Beach Seaport in coordination with the Machinery Center of Excellence and Expertise (CEE), and the Bureau of Alcohol, Tobacco, Firearms and Explosives (ATF), intercepted and seized 52,601 firearms parts in violation of the Chinese Arms Embargo. The seized items described as sights, stocks, muzzles, brakes, buffer kits, and grips which arrived in three shipments from China, had a combined domestic value of $378,225.00.

CBP officers referred the items to ATF investigators, who confirmed that the firearm parts were in violation of the Arms Export Control Act and International Traffic in Arms Regulations (ITAR), 27 CFR 447.52.

“This seizure is an exceptional example of CBP officers and import specialists vigilance, commitment and keen focus in enforcing complex arms embargo regulations,” said Carlos C. Martel, CBP Director of Field Operations in Los Angeles. “The Chinese Arms Embargo is just one of the hundreds of regulations CBP enforces, ensuring the safety and security of our country.”

Federal regulations impose importation restrictions to certain countries to which the United States maintains an arms embargo, and one of such countries is China.

“We work closely with our strategic partners to ensure import compliance while maintaining the highest standards of security at our nation’s largest seaport,” remarked LaFonda Sutton-Burke, CBP Port Director of the LA/Long Beach Seaport. “This interception underscores the successful collaboration between CBP officers, import specialists and ATF investigators.” In fiscal year (FY) 2018, Office of Field Operations (OFO) seized 266,279 firearms, firearm parts, ammunition, fireworks and explosives at 328 ports of entry throughout the United States. These interceptions represent an increase of 18.4 percent from the previous year.

***

Gotta wonder what led to this. Consider if this is related.  Just 2 months ago…

When federal agents raided the Southern California home of US Customs and Border Protection supervisor Wei “George” Xu in February, they seized an arsenal of more than 250 weapons, including nearly three dozen illegal machine guns, according to court records.

Image result for Wei "George" Xu arrested photo

“Weapons of war,” a prosecutor would later call them.
Xu, 56, was arrested and charged with dealing firearms without a license. He has pleaded not guilty.
But guns are not the reason the veteran officer has been held without bond since his arrest four months ago.
Instead, the Chinese-born naturalized US citizen has remained behind bars amid concerns about his secret-level security clearance and what prosecutors described as “highly suspicious” contacts with Chinese consular officials in Los Angeles.
Prosecutors are also examining the apparent gulf between Xu’s estimated $120,000-to-$130,000 salary as a federal law enforcement officer and his “luxurious lifestyle,” in which he drove a Maserati, went on big game hunting trips to Africa and had approximately $1.4 million in the bank, according to court records. The cache of weapons recovered from Xu’s house was estimated to be worth more than $200,000, according to prosecutors. Additionally, prosecutors allege that Xu and his wife failed to report several years of income from a rental property they’ve owned since 2015.
Xu’s defense attorney, Mark Werksman, said in court papers that his client has lived in the United States for three decades, has no previous criminal record, and, because his passport was seized as part of the investigation, has no ability to travel outside the country.
The lawyer was unsuccessful, however, in his attempt to convince a federal judge at a hearing last month that Xu could be trusted to show up for trial if he was released. The hearing marked the third time Xu’s request for bond was denied.
Annamartine Salick, deputy chief of the Terrorism and Export Crime Section of the US Attorney’s office in Los Angeles and the lead prosecutor on the case against Xu, declined comment.
In a court filing, she cited Xu’s “litany of lies and contempt for the rule of law” as among the reasons he should be denied bond.
Jack Weiss, a former federal prosecutor in Los Angeles who now runs an investigative firm, said the allegations against Xu are especially troubling given his role in law enforcement.
“This is someone you would never want in a position of authority in the US government,” Weiss said. “I imagine there is going to be some kind of internal review as to how it is that he was wearing a badge.”
Born in China, Xu came to the United States on a student visa in the late 1980s. He became a naturalized citizen in 1999. In 2004, following stints in the private sector as an engineer and entrepreneur, he was hired by Customs and Border Protection — a job requiring a secret-level security clearance subject to periodic renewals.
Prior to his arrest in February, Xu worked as a watch commander for CBP at the ports of Los Angeles and Long Beach.
Jaime Ruiz, a spokesman for US Customs and Border Protection, said Xu is now on “indefinite suspension.”
According to prosecutors, Xu repeatedly made false statements and concealed information when he filled out questionnaires for his security clearance under penalty of perjury.
Among other things, prosecutors said, Xu failed to disclose his ownership of two companies that do business with China and his “extensive business contacts with Chinese nationals.”
Agents say they found evidence of a bank account in China in the trash outside Xu’s home and recovered two copies of Chinese passports, bearing the name Wei Xu but featuring photos of other people, from Xu’s desk.
Salick argued at one of Xu’s detention hearings that she’d been told by CBP officers that if Xu falsely claimed to have lost his own passport, he could pretend to be one of the Chinese citizens bearing his name, provide that man’s biographical information to the Chinese consulate, and would likely be issued travel documents to return to China.
Following Xu’s arrest, investigators learned of his “long-standing contact with members of the Consulate General of the People’s Republic of China in Los Angeles,” according to court records.
Agents seized emails, texts and phone records showing that Xu had been communicating with consular officials since at least 2013, according to court records. He was invited to events hosted by the consulate in 2017 and 2018, the records state, and agents reviewed images on his cell phone “appearing to show” that Xu and his wife attended the events.
Attempts to reach Chinese consular officials in Los Angeles were not immediately successful.
Werksman downplayed his client’s purported wealth in a brief interview with CNN, saying, for example, that the Maserati was leased. He said Xu’s companies exported forklift parts and generated limited income. He said the Chinese bank account authorities discovered was opened 20 years ago and contained the relatively meager sum of $1,700.
He also dismissed any intrigue surrounding Xu’s ties to China.
He said in a court filing that the photocopies of passports seized from his office were placed there by co-workers playing a prank on Xu, whose duties include overseeing entry and exit of Chinese vessels in San Pedro, and who was at one point investigating two men who had the same — very common — first and last name that he did.
He said Xu’s contact with consular officials was related to his work at the port, in which he sometimes contacted the consulate about crewmembers on Chinese ships who were seeking asylum in the United States.
“There’s nothing nefarious about it,” he told CNN.
It was while investigating Xu regarding his security clearance that agents discovered his alleged involvement in the illegal gun trade.
In the summer of 2017, FBI agents say they retrieved a spreadsheet listing online accounts and login information from the trash outside Xu’s home. Two of the accounts pertained to a website that acts as a marketplace for private gun sales.
An undercover agent with the Bureau of Alcohol, Tobacco, Firearms and Explosives began corresponding with Xu and eventually purchased four guns.
In one transaction in July, Xu showed up in a 2016 Maserati with an assault rifle in the trunk, according to prosecutors.
The undercover agent commented on the black sedan before giving Xu $1,600 cash for the rifle.
“I’m like you, playboy,” Xu allegedly responded.
Following another deal, in which Xu allegedly sold the agent a rifle and five high-capacity magazines for $2,100, the CBP officer quipped, “We are like drug dealers,” according to a search warrant affidavit.
Werksman described his client as a “nerdy engineer” who collected firearms as a hobby and had no intention of becoming a gun dealer.
“He comes home from work, goes out to the garage and tinkers with guns,” the lawyer said. “He wasn’t going to hurt anyone.”
You can be sure that the drugs https://1canadianantibiotics.com/buy-doxycyclyne-online/ you are buying were stored in a right way because physical pharmacies are regulated by the governmental authorities, which means they offer only authentic over-the-counter and prescription medications;
You do not violate the laws of your nation, because the import of drugs from international drugstores is often prohibited by the legislation of many countries including the US.

About Those NK Miniature Warheads

Primer: North Korea could now have as many as 60 nuclear warheads in its inventory. The new number is more than double the maximum estimate of 20 to 25 weapons by Siegfried Hecker, former director of the Los Alamos National Laboratory and now a professor at Stanford University. Hecker was the last American scientist to visit North Korea’s nuclear weapons complex, in late 2010. Most estimates of the size of the North’s inventory have been far more conservative, generally in the range of 12 to 15 to 20.
Image result for north korea nuclear warheads photo

Japan defense white paper to concede North Korea has miniaturized nuclear warheads, report says

Reuters, Kyodo

Japan has upgraded its estimate of North Korea’s nuclear weapons capability in an upcoming annual defense white paper, saying it seems Pyongyang has already achieved the miniaturization of warheads, the Yomiuri newspaper said in an unsourced report Wednesday.

That compares with the assessment in last year’s report in which the government said it was possible North Korea had achieved miniaturization, the daily said without citing sources.

The report, to be approved at a Cabinet meeting in mid-September, will maintain the assessment that North Korea’s military activities pose a “serious and imminent threat,” the Yomiuri said.

South Korea’s 2018 defense white paper, released in January, reported that North Korea’s ability to miniaturize nuclear weapons “appears to have reached a considerable level.”

According to South Korean media reports late last year, the South Korean intelligence agency told lawmakers that North Korea had continued to miniaturize nuclear warheads even after the Singapore summit between U.S. President Donald Trump and North Korean leader Kim Jong Un in June 2018.

At that time, North Korea committed “to work toward complete denuclearization of the Korean Peninsula” and destroyed some tunnels and buildings at its Punggye-ri nuclear test site.

But a second Trump-Kim meeting in February collapsed without an agreement, and North Korea has since resumed missile tests.

American officials have concluded for years that North Korea had likely produced miniaturized nuclear warheads. A leaked report by the Defense Intelligence Agency in 2017 concluded that North Korea had successfully produced a miniaturized nuclear warhead that can fit inside its missiles, according to The Washington Post.

In last year’s defense white paper, Japan said “miniaturizing a nuclear weapon small enough to be mounted on a ballistic missile requires a considerably high degree of technological capacity,” and that “it is possible that North Korea has achieved the miniaturization of nuclear weapons and has developed nuclear warheads.”

Also Wednesday, North Korea voiced its eagerness via its state-run media to continue developing and testing new weapons while accusing the United States of seeking confrontation through joint military drills with the South.

“There can be no constructive dialogue while confrontation is fueled,” the Rodong Sinmun, the mouthpiece of the ruling Workers’ Party of Korea, said. “We have to develop, test and deploy powerful physical means essential for national defense.”

The remarks by North Korea’s most influential newspaper came a day after the United States and South Korea ended their joint military exercise that started Aug. 5. Pyongyang has denounced such drills as a rehearsal for an invasion.

North Korea has repeatedly launched projectiles, including what appeared to be short-range ballistic missiles, off its east coast since July 25, in protest against the latest U.S.-South Korea joint military exercise.

The moves came despite Trump’s revelation earlier this month that he received what he called a “beautiful” letter from Kim. Trump said Kim expressed his desire in the letter to hold more summit talks following the end of the military drill.

North Korea is scheduled to convene the second session of its top legislative body this year on Aug. 29. All eyes are on whether Kim will make a speech at the legislature to announce his policy of how to proceed with denuclearization negotiations with the United States.

At their June 30 meeting at the inter-Korean truce village of Panmunjeom, Trump and Kim agreed that Washington and Pyongyang would resume stalled denuclearization talks within weeks, but they have yet to take place.

President Trump, As Long as You are Declassifying…

Providing declassification authority to AG William Barr on all things Russia investigation is a great thing. Patriotic Americans need to understand all the abuses of power that were applied by Democrat operatives since your nomination.

Then as long as there is the matter of Israel and Iran that continues to fester and maintain a political as well as militant component, there are at least two suggestions noted below that will for sure be favorable to your foreign policy and will likely have some positive outcomes for domestic policy.

Let’s go back to 2016 and 2017 shall we? Congressman Louis Gohmert of Texas was part of a hearing where then Eric Holder was the witness. At one point, Gohmert demanded that Holder declassify and release the Holyland Foundation trial documents. ALL OF THEM. tic toc…

Since then, Gohmert is still ringing the bell. He continues to plea for more attention to the Muslim Brotherhood and CAIR so that a legitimate status can be attached to black list those organizations.

So as long as Congresswomen Ilhan Omar and Rashida Tlaib continue the path to attack Israel, consider Gohmert’s presentations.

In both House floor presentations, Congressman Gohmert lays out a cogent argument and rightly so. You can bet that ‘The Squad’ and Speaker Pelosi would certainly feel the political pain. The media? Yes, popcorn ready.

Now, on the Iran component. To remind the reader, there was once a DEA mission called Operation Cassandra. This was a multiple agency investigation with major opportunities to indict so many both at home and abroad. This mission to continue to completion was killed by President Obama because it would have complicated the Obama/Kerry quest to see the JCPOA through to the end. Frankly, Operation Cassandra had many piece parts including Bowe Bergdahl and the Afghanistan thing. Then should also take a long look at Bruce Ohr at the DoJ and his work assignments at the time.

January 7th, 2018 Operation Cassandra Is Awan Contra - YouTube (in full disclosure, I have done several interviews with former DEA Special Agent, Derek Maltz on Operation Cassandra)

For some basic details on Operation Cassandra, note below in part:

In its determination to secure a nuclear deal with Iran, the Obama administration derailed an ambitious law enforcement campaign targeting drug trafficking by the Iranian-backed terrorist group Hezbollah, even as it was funneling cocaine into the United States, according to a POLITICO investigation.

The campaign, dubbed Project Cassandra, was launched in 2008 after the Drug Enforcement Administration amassed evidence that Hezbollah had transformed itself from a Middle East-focused military and political organization into an international crime syndicate that some investigators believed was collecting $1 billion a year from drug and weapons trafficking, money laundering and other criminal activities.

Over the next eight years, agents working out of a top-secret DEA facility in Chantilly, Virginia, used wiretaps, undercover operations and informants to map Hezbollah’s illicit networks, with the help of 30 U.S. and foreign security agencies.

They followed cocaine shipments, some from Latin America to West Africa and on to Europe and the Middle East, and others through Venezuela and Mexico to the United States. They tracked the river of dirty cash as it was laundered by, among other tactics, buying American used cars and shipping them to Africa. And with the help of some key cooperating witnesses, the agents traced the conspiracy, they believed, to the innermost circle of Hezbollah and its state sponsors in Iran.

They followed cocaine shipments, tracked a river of dirty cash, and traced what they believed to be the innermost circle of Hezbollah and its state sponsors in Iran.

But as Project Cassandra reached higher into the hierarchy of the conspiracy, Obama administration officials threw an increasingly insurmountable series of roadblocks in its way, according to interviews with dozens of participants who in many cases spoke for the first time about events shrouded in secrecy, and a review of government documents and court records. When Project Cassandra leaders sought approval for some significant investigations, prosecutions, arrests and financial sanctions, officials at the Justice and Treasury departments delayed, hindered or rejected their requests.

Pros of Buying Drugs at https://canadianbestpills.com/buy-tadapox-online-cheap/ Brick-and-Mortar Pharmacies
When it comes to buying drugs at physical drugstores, you may enjoy a number of privileges such as the ones listed below:
You can always be sure that you are dealing with a certified service provider whose products are licensed and effective posing no risks to your health;
You have a chance to consult a certified pharmacist to get exactly what you need without any risk of getting a wrong product;

The Justice Department declined requests by Project Cassandra and other authorities to file criminal charges against major players such as Hezbollah’s high-profile envoy to Iran, a Lebanese bank that allegedly laundered billions in alleged drug profits, and a central player in a U.S.-based cell of the Iranian paramilitary Quds force. And the State Department rejected requests to lure high-value targets to countries where they could be arrested.

Of course there is more Mr. President. However, if you order release of just these two files in full on a well timed schedule it will play well in your favor and be an excellent counter-measure against the Pelosi lead House, the media, restoring some law and order and give a huge lift to John Bolton and Mike Pompeo’s good work.