Deleted tweet detection is currently running at reduced
capacity due to changes to the Twitter API. Some tweets that have been
deleted by the tweet author may not be labeled as deleted in the PolitiTweet
interface.
Showing page 138 of 2161.
Eric Geller @ericgeller
The hearing has ended. — PolitiTweet.org
Eric Geller @ericgeller
Ossoff: So you couldn’t get permission to implement MDM? Zatko: “I had the authorization. I couldn't get the real information [to implement it], b/c people were misrepresenting to the executive team" & execs were misrepresenting to board (sharing only "good and incorrect" news). — PolitiTweet.org
Eric Geller @ericgeller
Ossoff: Why couldn’t you implement a requirement to regularly update employee devices? Zatko: “There was a culture of not reporting bad results up, only reporting good results up, because that was the internal incentive structure.” — PolitiTweet.org
Eric Geller @ericgeller
Zatko: Twitter has "a culture where the company needs a crisis to operate and is driven by crises." Those crises "didn’t afford time or focus, from what I saw, to do the basic security hygiene." — PolitiTweet.org
Eric Geller @ericgeller
Jon Ossoff: Why would the company not choose to mitigate risk with basic patching requirements? Zatko: "I didn’t see any financial incentives at the top levels that would then give prioritization to such efforts. In fact, I saw incentives counter to that." — PolitiTweet.org
Eric Geller @ericgeller
@b_fung @emptywheel yup — PolitiTweet.org
Eric Geller @ericgeller
Have you listened to our new @HothTakes episode about #Andor yet? I'd love to know what you think of our hopes and predictions — and whether we missed anything that you're excited to see from the show. https://t.co/ktB7BDwRgO — PolitiTweet.org
Eric Geller @ericgeller
Zatko: “There was not an easy ability for me to find which engineers had logged into which systems and what and why they had accessed.” — PolitiTweet.org
Eric Geller @ericgeller
John Kennedy: Is it true that half of engineers at Twitter have access to accounts? Zatko: Yes. Kennedy: And if an engineer goes into someone’s account, Twitter won’t know about it? Zatko: “It would be difficult to find the logs showing that, is my understanding, correct.” — PolitiTweet.org
Eric Geller @ericgeller
@gregotto share some examples! — PolitiTweet.org
Eric Geller @ericgeller
@heathdwilliams omg — PolitiTweet.org
Eric Geller @ericgeller
Amy Klobuchar: Would federal privacy legislation be helpful? Zatko: It would be helpful to give active employees whistleblower protections. — PolitiTweet.org
Eric Geller @ericgeller
Lee: Can Twitter track the data that employees access or share? Zatko: “We found that to be very difficult. ... It was a lack of basic, fundamental tools and access control." — PolitiTweet.org
Eric Geller @ericgeller
Lee: “It seems to me that the Twitter CEO is more concerned with increasing influence and profits from foreign countries than with protecting user data from foreign spies or hackers.” — PolitiTweet.org
Eric Geller @ericgeller
Lee: “Twitter has seemingly turned a blind eye, rather deliberately, to some pretty significant security risks.” — PolitiTweet.org
Eric Geller @ericgeller
Mike Lee: What did Twitter’s board do after its chief privacy officer disclosed that the company lacked proper employee data access restrictions? Zatko: This wasn’t the first time they’d been informed, and they didn’t do anything. — PolitiTweet.org
Eric Geller @ericgeller
Dianne Feinstein: How was Twitter able to get away with this after the consent decree? Zatko: “There were a lot of evaluations and examinations which were interview questions. So essentially, the organization was allowed to grade their own homework.” — PolitiTweet.org
Eric Geller @ericgeller
Zatko: “This fundamental lack of logging inside Twitter is a remnant of being so far behind on their infrastructure and the engineering and the engineers not being given the ability to put things in place to modernize.” — PolitiTweet.org
Eric Geller @ericgeller
3. Zatko says a senior engineer told him that Twitter didn't have good logging capabilities. Thousands of failed attempts to access internal systems happened every week and weren't investigated. — PolitiTweet.org
Eric Geller @ericgeller
2. Zatko reiterated his claim from the whistleblower complaint that, as of when he left, Twitter didn't develop and test code in a testing environment. They did it on live systems. "This is an oddity. This is an exception to the norm." — PolitiTweet.org
Eric Geller @ericgeller
A couple interesting comments I missed while writing just now: 1. Zatko told Durbin that the FTC "is a little over their head" when it comes to enforcing privacy/security orders like the 2011 consent decrees. "They're left letting the companies grade their own homework." — PolitiTweet.org
Eric Geller @ericgeller
Peiter Zatko has begun his opening statement. He says Twitter was "over a decade behind industry security standards" when he joined the company. Not sure what metrics he's basing that on, though. — PolitiTweet.org
Eric Geller @ericgeller
Grassley: The 2011 consent decree "was intended to protect Twitter users’ personal information. As Congress considers federal data privacy legislation, I think it's very important that we draw on these revelations about how Twitter views its obligations with federal regulators." — PolitiTweet.org
Eric Geller @ericgeller
Grassley: “I'm concerned that for almost 10 years, the Federal Trade Commission didn't know or didn't take strong enough action to ensure Twitter complied with the consent decree" that the FTC imposed in 2011. — PolitiTweet.org
Eric Geller @ericgeller
Senate Judiciary ranking member Chuck Grassley: "I for one want people to know that I love using Twitter." Same. — PolitiTweet.org
Eric Geller @ericgeller
Durbin references 2020 account takeover crisis. “What if, next time, it isn't two teenagers trying to pull off a crypto scam? Imagine if it's a malicious hacker or a hostile foreign government breaking into the president's Twitter account" or falsely alleging a terror attack? — PolitiTweet.org
Eric Geller @ericgeller
Senate Judiciary Chair Dick Durbin is delivering his opening statement. According to Zatko's disclosures, the vault of Twitter’s sensitive data “is wide open,” Durbin says. “And that vault contains a lot more information about you than you can imagine.” — PolitiTweet.org
Eric Geller @ericgeller
The Senate Judiciary Committee is starting its hearing with Twitter whistleblower Peiter Zatko (@dotMudge): https://t.co/L7ULrAqWmp @rebeccamkern, @magmill95, and I will be covering the hearing. Here's @BrendanBordelon on why not to get your hopes up: https://t.co/BZtcfPmlki — PolitiTweet.org
Eric Geller @ericgeller
Derailed by Right-Wing Conspiracy Theories: A Tech/Cyber Hearing Story — PolitiTweet.org
Tonya Riley @TonyaJoRiley
Welp. Today’s Twitter hearing is gonna be fun! https://t.co/VT7sgcUqL8
Eric Geller @ericgeller
What I love about this headline (h/t @fka_tabs) is that it's unclear if the bizarre tradition dating back centuries is the message to the bees or the idea of the monarchy. https://t.co/RQuzrqne7q — PolitiTweet.org
