Government
Did Twitter ignore basic security measures? A cybersecurity expert explains a whistleblower’s claims
Former Twitter security chief alleges in a whistleblower complaint gross security malpractice, with many employees having access to the social media platform’s…
Share this:
Twitter’s former security chief, Peiter “Mudge” Zatko, filed a whistleblower complaint with the Securities and Exchange Commission in July 2022, accusing the microblogging platform company of serious security failings. The accusations amplified the ongoing drama of Twitter’s potential sale to Elon Musk.
Zatko spent decades as an ethical hacker, private researcher, government adviser and executive at some of the most prominent internet companies and government offices. He is practically a legend in the cybersecurity industry. Because of his reputation, when he speaks, people and governments normally listen – which underscores the seriousness of his complaint against Twitter.
As a former cybersecurity industry practitioner and current cybersecurity researcher, I believe that Zatko’s most damning accusations center around Twitter’s alleged failure to have a solid cybersecurity plan to protect user data, deploy internal controls to guard against insider threats and ensure the company’s systems were current and properly updated.
Zatko also alleged that Twitter executives were less than forthcoming about cybersecurity incidents on the platform when briefing both regulators and the company’s board of directors. He claimed that Twitter prioritized user growth over reducing spam and other unwanted content that poisoned the platform and detracted from the user experience. His complaint also expressed concerns about the company’s business practices.
Alleged security failures
Zatko’s allegations paint a disturbing picture of not only the state of Twitter’s cybersecurity as a social media platform, but also the security consciousness of Twitter as a company. Both points are relevant given Twitter’s position in global communications and the ongoing struggle against online extremism and disinformation.
Perhaps the most significant of Zatko’s allegations is his claim that nearly half of Twitter’s employees have direct access to user data and Twitter’s source code. Time-tested cybersecurity practices don’t allow so many people with this level of “root” or “privileged” permission to access sensitive systems and data. If true, this means that Twitter could be ripe for exploitation either from within or by outside adversaries assisted by people on the inside who may not have been properly vetted.
Zatko also alleges that Twitter’s data centers may not be as secure, resilient or reliable as the company claims. He estimated that nearly half of Twitter’s 500,000 servers around the world lack basic security controls such as running up-to-date and vendor-supported software or encrypting the user data stored on them. He also noted that the company’s lack of a robust business continuity plan means that should several of its data centers fail due to a cyber incident or other disaster, it could lead to an “existential company ending event.”
These are just some of the claims made in Zatko’s complaint. If his allegations are true, Twitter has failed Cybersecurity 101.
Concerns over foreign government interference
Zatko’s allegations might also present a national security concern. Twitter has been used to spread disinformation and propaganda in recent years during global events like the pandemic and national elections.
For example, Zatko’s report stated that the Indian government forced Twitter to hire government agents, who would have access to vast amounts of Twitter’s sensitive data. In response, India’s at-times hostile neighbor Pakistan accused India of trying to infiltrate the security system of Twitter “in an effort to curb fundamental freedoms.”
Given Twitter’s global footprint as a communications platform, other nations such as Russia and China could require the company to hire its own government agents as a condition of allowing the company to operate in their country. Zatko’s allegations about Twitter’s internal security raise the possibility of criminals, activists, hostile governments or their supporters seeking to exploit Twitter’s systems and user data by recruiting or blackmailing its employees may well present a national security concern.
Worse, Twitter’s own information about its users, their interests and who they follow and interact with on the platform could facilitate targeting for disinformation campaigns, blackmail or other nefarious purposes. Such foreign targeting of prominent companies and their employees has been a major counterintelligence worry in the national security community for decades.
Fallout
Whatever the outcome of Zatko’s complaint in Congress, the SEC or other federal agencies, it already is part of Musk’s latest legal filings as he tries to back out of his purchase of Twitter.
Ideally, in light of these disclosures, Twitter will take corrective action to improve the company’s cybersecurity systems and practices. A good first step the company could take is reviewing and limiting who has root access to its systems, source code and user data to the minimum number necessary. The company should also ensure that its production systems are kept current and that it is effectively prepared to contend with any type of emergency situation without significantly disrupting its global operations.
From a broader perspective, Zatko’s complaint underscores the critical and sometimes uncomfortable role cybersecurity plays in modern organizations. Cybersecurity professionals like Zatko understand that no company or government agency likes publicity for cybersecurity problems. They tend to think long and hard about whether and how to raise cybersecurity concerns like these – and what the potential ramifications might be. In this case, Zatko says his disclosures reflect “the job he was hired to do” as head of security for a social media platform that he says “is critical to democracy.”
For companies like Twitter, bad cybersecurity news often results in a public relations nightmare that could affect share price and their standing in the marketplace, not to mention attract the interest of regulators and lawmakers. For governments, such revelations can lead to a lack of trust in the institutions created to serve society, in addition to potentially creating distracting political noise.
Unfortunately, how cybersecurity problems are discovered, disclosed and handled remains a difficult and sometimes controversial process, with no easy solution both for cybersecurity professionals and today’s organizations.
Richard Forno has received research funding related to cybersecurity from the National Science Foundation (NSF) and the Department of Defense (DOD) during his academic career, and sits on the advisory board of BlindHash, a cybersecurity startup focusing on remedying the password problem.
congress extremism pandemic spread india russia china
Government
Low Iron Levels In Blood Could Trigger Long COVID: Study
Low Iron Levels In Blood Could Trigger Long COVID: Study
Authored by Amie Dahnke via The Epoch Times (emphasis ours),
People with inadequate…
Share this:
Authored by Amie Dahnke via The Epoch Times (emphasis ours),
People with inadequate iron levels in their blood due to a COVID-19 infection could be at greater risk of long COVID.
A new study indicates that problems with iron levels in the bloodstream likely trigger chronic inflammation and other conditions associated with the post-COVID phenomenon. The findings, published on March 1 in Nature Immunology, could offer new ways to treat or prevent the condition.
Long COVID Patients Have Low Iron Levels
Researchers at the University of Cambridge pinpointed low iron as a potential link to long-COVID symptoms thanks to a study they initiated shortly after the start of the pandemic. They recruited people who tested positive for the virus to provide blood samples for analysis over a year, which allowed the researchers to look for post-infection changes in the blood. The researchers looked at 214 samples and found that 45 percent of patients reported symptoms of long COVID that lasted between three and 10 months.
In analyzing the blood samples, the research team noticed that people experiencing long COVID had low iron levels, contributing to anemia and low red blood cell production, just two weeks after they were diagnosed with COVID-19. This was true for patients regardless of age, sex, or the initial severity of their infection.
According to one of the study co-authors, the removal of iron from the bloodstream is a natural process and defense mechanism of the body.
But it can jeopardize a person’s recovery.
“When the body has an infection, it responds by removing iron from the bloodstream. This protects us from potentially lethal bacteria that capture the iron in the bloodstream and grow rapidly. It’s an evolutionary response that redistributes iron in the body, and the blood plasma becomes an iron desert,” University of Oxford professor Hal Drakesmith said in a press release. “However, if this goes on for a long time, there is less iron for red blood cells, so oxygen is transported less efficiently affecting metabolism and energy production, and for white blood cells, which need iron to work properly. The protective mechanism ends up becoming a problem.”
The research team believes that consistently low iron levels could explain why individuals with long COVID continue to experience fatigue and difficulty exercising. As such, the researchers suggested iron supplementation to help regulate and prevent the often debilitating symptoms associated with long COVID.
“It isn’t necessarily the case that individuals don’t have enough iron in their body, it’s just that it’s trapped in the wrong place,” Aimee Hanson, a postdoctoral researcher at the University of Cambridge who worked on the study, said in the press release. “What we need is a way to remobilize the iron and pull it back into the bloodstream, where it becomes more useful to the red blood cells.”
The research team pointed out that iron supplementation isn’t always straightforward. Achieving the right level of iron varies from person to person. Too much iron can cause stomach issues, ranging from constipation, nausea, and abdominal pain to gastritis and gastric lesions.
1 in 5 Still Affected by Long COVID
COVID-19 has affected nearly 40 percent of Americans, with one in five of those still suffering from symptoms of long COVID, according to the U.S. Centers for Disease Control and Prevention (CDC). Long COVID is marked by health issues that continue at least four weeks after an individual was initially diagnosed with COVID-19. Symptoms can last for days, weeks, months, or years and may include fatigue, cough or chest pain, headache, brain fog, depression or anxiety, digestive issues, and joint or muscle pain.
Government
Walmart joins Costco in sharing key pricing news
The massive retailers have both shared information that some retailers keep very close to the vest.
Share this:
As we head toward a presidential election, the presumed candidates for both parties will look for issues that rally undecided voters.
The economy will be a key issue, with Democrats pointing to job creation and lowering prices while Republicans will cite the layoffs at Big Tech companies, high housing prices, and of course, sticky inflation.
The covid pandemic created a perfect storm for inflation and higher prices. It became harder to get many items because people getting sick slowed down, or even stopped, production at some factories.
Related: Popular mall retailer shuts down abruptly after bankruptcy filing
It was also a period where demand increased while shipping, trucking and delivery systems were all strained or thrown out of whack. The combination led to product shortages and higher prices.
You might have gone to the grocery store and not been able to buy your favorite paper towel brand or find toilet paper at all. That happened partly because of the supply chain and partly due to increased demand, but at the end of the day, it led to higher prices, which some consumers blamed on President Joe Biden's administration.
Biden, of course, was blamed for the price increases, but as inflation has dropped and grocery prices have fallen, few companies have been up front about it. That's probably not a political choice in most cases. Instead, some companies have chosen to lower prices more slowly than they raised them.
However, two major retailers, Walmart (WMT) and Costco, have been very honest about inflation. Walmart Chief Executive Doug McMillon's most recent comments validate what Biden's administration has been saying about the state of the economy. And they contrast with the economic picture being painted by Republicans who support their presumptive nominee, Donald Trump.
Image source: Joe Raedle/Getty Images
Walmart sees lower prices
McMillon does not talk about lower prices to make a political statement. He's communicating with customers and potential customers through the analysts who cover the company's quarterly-earnings calls.
During Walmart's fiscal-fourth-quarter-earnings call, McMillon was clear that prices are going down.
"I'm excited about the omnichannel net promoter score trends the team is driving. Across countries, we continue to see a customer that's resilient but looking for value. As always, we're working hard to deliver that for them, including through our rollbacks on food pricing in Walmart U.S. Those were up significantly in Q4 versus last year, following a big increase in Q3," he said.
He was specific about where the chain has seen prices go down.
"Our general merchandise prices are lower than a year ago and even two years ago in some categories, which means our customers are finding value in areas like apparel and hard lines," he said. "In food, prices are lower than a year ago in places like eggs, apples, and deli snacks, but higher in other places like asparagus and blackberries."
McMillon said that in other areas prices were still up but have been falling.
"Dry grocery and consumables categories like paper goods and cleaning supplies are up mid-single digits versus last year and high teens versus two years ago. Private-brand penetration is up in many of the countries where we operate, including the United States," he said.
Costco sees almost no inflation impact
McMillon avoided the word inflation in his comments. Costco (COST) Chief Financial Officer Richard Galanti, who steps down on March 15, has been very transparent on the topic.
The CFO commented on inflation during his company's fiscal-first-quarter-earnings call.
"Most recently, in the last fourth-quarter discussion, we had estimated that year-over-year inflation was in the 1% to 2% range. Our estimate for the quarter just ended, that inflation was in the 0% to 1% range," he said.
Galanti made clear that inflation (and even deflation) varied by category.
"A bigger deflation in some big and bulky items like furniture sets due to lower freight costs year over year, as well as on things like domestics, bulky lower-priced items, again, where the freight cost is significant. Some deflationary items were as much as 20% to 30% and, again, mostly freight-related," he added.
bankruptcy pandemic trumpGovernment
Walmart has really good news for shoppers (and Joe Biden)
The giant retailer joins Costco in making a statement that has political overtones, even if that’s not the intent.
Share this:
As we head toward a presidential election, the presumed candidates for both parties will look for issues that rally undecided voters.
The economy will be a key issue, with Democrats pointing to job creation and lowering prices while Republicans will cite the layoffs at Big Tech companies, high housing prices, and of course, sticky inflation.
The covid pandemic created a perfect storm for inflation and higher prices. It became harder to get many items because people getting sick slowed down, or even stopped, production at some factories.
Related: Popular mall retailer shuts down abruptly after bankruptcy filing
It was also a period where demand increased while shipping, trucking and delivery systems were all strained or thrown out of whack. The combination led to product shortages and higher prices.
You might have gone to the grocery store and not been able to buy your favorite paper towel brand or find toilet paper at all. That happened partly because of the supply chain and partly due to increased demand, but at the end of the day, it led to higher prices, which some consumers blamed on President Joe Biden's administration.
Biden, of course, was blamed for the price increases, but as inflation has dropped and grocery prices have fallen, few companies have been up front about it. That's probably not a political choice in most cases. Instead, some companies have chosen to lower prices more slowly than they raised them.
However, two major retailers, Walmart (WMT) and Costco, have been very honest about inflation. Walmart Chief Executive Doug McMillon's most recent comments validate what Biden's administration has been saying about the state of the economy. And they contrast with the economic picture being painted by Republicans who support their presumptive nominee, Donald Trump.
Image source: Joe Raedle/Getty Images
Walmart sees lower prices
McMillon does not talk about lower prices to make a political statement. He's communicating with customers and potential customers through the analysts who cover the company's quarterly-earnings calls.
During Walmart's fiscal-fourth-quarter-earnings call, McMillon was clear that prices are going down.
"I'm excited about the omnichannel net promoter score trends the team is driving. Across countries, we continue to see a customer that's resilient but looking for value. As always, we're working hard to deliver that for them, including through our rollbacks on food pricing in Walmart U.S. Those were up significantly in Q4 versus last year, following a big increase in Q3," he said.
He was specific about where the chain has seen prices go down.
"Our general merchandise prices are lower than a year ago and even two years ago in some categories, which means our customers are finding value in areas like apparel and hard lines," he said. "In food, prices are lower than a year ago in places like eggs, apples, and deli snacks, but higher in other places like asparagus and blackberries."
McMillon said that in other areas prices were still up but have been falling.
"Dry grocery and consumables categories like paper goods and cleaning supplies are up mid-single digits versus last year and high teens versus two years ago. Private-brand penetration is up in many of the countries where we operate, including the United States," he said.
Costco sees almost no inflation impact
McMillon avoided the word inflation in his comments. Costco (COST) Chief Financial Officer Richard Galanti, who steps down on March 15, has been very transparent on the topic.
The CFO commented on inflation during his company's fiscal-first-quarter-earnings call.
"Most recently, in the last fourth-quarter discussion, we had estimated that year-over-year inflation was in the 1% to 2% range. Our estimate for the quarter just ended, that inflation was in the 0% to 1% range," he said.
Galanti made clear that inflation (and even deflation) varied by category.
"A bigger deflation in some big and bulky items like furniture sets due to lower freight costs year over year, as well as on things like domestics, bulky lower-priced items, again, where the freight cost is significant. Some deflationary items were as much as 20% to 30% and, again, mostly freight-related," he added.
bankruptcy pandemic trump
Walmart launches clever answer to Target’s new membership program
EyePoint poaches medical chief from Apellis; Sandoz CFO, longtime BioNTech exec to retire
The Coming Of The Police State In America
When Military Rule Supplants Democracy
Catastrophic Risk: Investing and Business Implications
Dropping Like a Stone: ON RRP Take‑up in the Second Half of 2023
Where Is R‑Star and the End of the Refi Boom: The Top 5 Posts of 2023
The Digest #187
Redefining Poverty: Towards a Transpartisan Approach
Gather ’round the crystal ball: A multi-commodity outlook from PDAC 2024
-
Uncategorized2 weeks agoAll Of The Elements Are In Place For An Economic Crisis Of Staggering Proportions
-
Uncategorized1 month agoCathie Wood sells a major tech stock (again)
-
Uncategorized3 weeks agoCalifornia Counties Could Be Forced To Pay $300 Million To Cover COVID-Era Program
-
Uncategorized2 weeks agoApparel Retailer Express Moving Toward Bankruptcy
-
Uncategorized3 weeks agoIndustrial Production Decreased 0.1% in January
-
International1 day ago
Walmart launches clever answer to Target’s new membership program
-
Uncategorized3 weeks agoRFK Jr: The Wuhan Cover-Up & The Rise Of The Biowarfare-Industrial Complex
-
International2 days ago
EyePoint poaches medical chief from Apellis; Sandoz CFO, longtime BioNTech exec to retire