2016 Postmortem
Related: About this forumNo data was "stolen"
Per the vendor, NGP VAN, no data was stolen. Just a bunch of users that don't understand how how queries work.
Per the vendor:
"First, a one page-style report containing summary data on a list was saved out of VoteBuilder by one Sanders user. This is what some people have referred to as the export from VoteBuilder. As noted below, users were unable to export lists of people."
"On Wednesday morning, there was a release of VAN code. Unfortunately, it contained a bug. For a brief window, the voter data that is always searchable across campaigns in VoteBuilder included client scores it should not have, on a specific part of the VAN system. So for voters that a user already had access to, that user was able to search by and view (but not export or save or act on) some attributes that came from another campaign."
http://blog.ngpvan.com/news/data-security-and-privacy
joshcryer
(62,276 posts)The money quote:
http://blog.ngpvan.com/news/data-security-and-privacy
It also appears that Drapkin suppressed two folders after the database company became aware of the breach.
http://www.msnbc.com/msnbc/documents-show-sanders-staffers-breached-clinton-voter-data
We need to fire Drapkin as well.
notadmblnd
(23,720 posts)joshcryer
(62,276 posts)notadmblnd
(23,720 posts)joshcryer
(62,276 posts)Data director of the campaign. I don't know why he's not fired.
notadmblnd
(23,720 posts)ok, thanks.
joshcryer
(62,276 posts)notadmblnd
(23,720 posts)have you seen this?
http://www.democraticunderground.com/128084631
notadmblnd
(23,720 posts)I forgot to give you the darn link.
http://www.democraticunderground.com/128084631
VanillaRhapsody
(21,115 posts)Utter hogwash....it was saved....audit trails..
angrychair
(8,702 posts)The vendor, the engineers that control the application and reported their findings, from a link from their own website stated:
"So for voters that a user already had access to, that user was able to search by and view (but not export or save or act on) some attributes that came from another campaign."
Again, the link: http://blog.ngpvan.com/news/data-security-and-privacy
Its easier to seek an agenda than the truth.
VanillaRhapsody
(21,115 posts)You just accept that shit as fact......and where did that come from.....the criminal himself!
Team Sanders is defending this....even trying to blame it on others.....its total bullshit....and yet they keep trying to "catapult" that propaganda.. .
joshcryer
(62,276 posts)phleshdef
(11,936 posts)You have no clue how those things work or what they really mean
VanillaRhapsody
(21,115 posts)I know exactly what server logs are....
Bonobo
(29,257 posts)That made me laugh out loud.
phleshdef
(11,936 posts)Because that the only thing they have contributed to threads on this all day long. They've been called out for their blatant ignorance on the topic of how software like this works and they either danced around it around off with their tail tucked between their legs.
PowerToThePeople
(9,610 posts)The business of supplying misinformation.
phleshdef
(11,936 posts)And I got a feeling you just tried to bullshit me. You've been getting your ass handed to you and thread after thread today in regards to this issue. You made it abundantly clear that you have no clue what you're talking about
VanillaRhapsody
(21,115 posts)My ass handed to ME!!!-'
Right 10+ yrs and a degree.....and I know nothing!!!!'
phleshdef
(11,936 posts)I have 15 years of experience and a Bachelor of Science in Computer Information Systems. I've got your number on this. Face it, I know what I'm talking about and you don't and it's apparent to anyone with half a brain.
VanillaRhapsody
(21,115 posts)By the way B.S. in Information Tech. And an A.S. in Programming to be exact....in case you want to continue questioning mine!
phleshdef
(11,936 posts)And that's all that matters to me. My credibility is so superior to yours that if you did question mine I would ignore it because it isn't worth my consideration
VanillaRhapsody
(21,115 posts)You made the claim against my knowledge....
Your "credibility..."
Now who sounds like a 10 year old?
Grow up...
phleshdef
(11,936 posts)You have completely failed to backup any of your accusations. You can put me on ignore or you're going to have to deal with it
VanillaRhapsody
(21,115 posts)What accusations? Who have I accused?
A server log is a log file (or several files) automatically created and maintained by a server consisting of a list of activities it performed. A typical example is a web server log which maintains a history of page requests.
phleshdef
(11,936 posts)regarding this issue in general
VanillaRhapsody
(21,115 posts)In detail please....
phleshdef
(11,936 posts)... with plenty of detail that you have willfully ignored. I'm not going to dance for you I'm not your monkey
VanillaRhapsody
(21,115 posts)Whats stopping you?
Just as I anticipated.
phleshdef
(11,936 posts)VanillaRhapsody
(21,115 posts)News to me...
phleshdef
(11,936 posts)notadmblnd
(23,720 posts)Because an IT company would definitely frown upon one of it's employees spending their entire day posting on a discussion board and improperly using the company's assets.
VanillaRhapsody
(21,115 posts)Youd be surprised.
notadmblnd
(23,720 posts)VanillaRhapsody
(21,115 posts)pangaia
(24,324 posts)In fact I have three degrees.
angrychair
(8,702 posts)Really? Do tell. I've been in IT for over 20 years, what do you do?
VanillaRhapsody
(21,115 posts)Who cares...then you know what server logs are...
I wasnt the one to question anyones creds. Now was I?
Read the thread....
angrychair
(8,702 posts)I also know that logs of database queries and accesses would not be in a a Windows server application log or security log. Doesn't work that way.
"Server log" can be used generically by mistake. What log file are you talking about?
grasswire
(50,130 posts)crickets
LOL
Scootaloo
(25,699 posts)vorgan24
(50 posts)Per the vender, NGP VAN, data could have been retained.
Per the vendor:
"We are confident at this point that no campaigns have access to or have retained any voter file data of any other clients; with one possible exception, one of the presidential campaigns."
"Our team removed access to the affected data, and determined that only one campaign took actions that could possibly have led to it retaining data to which it should not have had access."
Lets keep things honest. They are saying that best case senario, no one got any data that they shouldn't have. But the fact that a data breach occurs shows that this isn't a best case senario, and that realistically their is a chance that someone got ahold of data that they were not legally entitled to.
Hepburn
(21,054 posts)Nice try, but no cigar.
vorgan24
(50 posts)I don't see why you are so defensive about the subject - The statement from them says that their is a possibility that someone made off with data.
Could have is quite a bit different then 'none' as this topic is suggesting. Perhaps you could point this out to the topic maker as well, in the interest of honesty?
angrychair
(8,702 posts)"Data" referred to in this release is generic. In the database world everything is "Data".
"Data" as in "information" or data as in "reference materials" or "data" as in "actual material". Unless you understand IT and follow their statement carefully, what they mean may seem unclear.
virtualobserver
(8,760 posts)notadmblnd
(23,720 posts)Oh, he might be able to use the google too.
virtualobserver
(8,760 posts)he is just playing political games;
notadmblnd
(23,720 posts)frylock
(34,825 posts)riversedge
(70,243 posts)rsedge (12,987 posts)
10. This is the type of data that the Sanders camp assessed....
....
.....What was accessed
Two senior Democrats familiar with the program and the investigation told CNN that the Sanders campaign accessed turnout projections for Iowa caucuses and the New Hampshire primary, a key piece of strategy the Clinton campaign has been working on with modeling and analytics.
The Sanders team, which consisted of four people, ran multiple searches in Iowa, New Hampshire, Nevada, South Carolina and about 10 March states, including Florida and Colorado. In Iowa and New Hampshire, the Clinton campaign has ranked voters on a scale of 1-100 for turnout, enthusiasm and support, the senior Democrats said. The Sanders campaign ran two searches: "Show me all the Clinton people rated higher than 60" and "Show me all the people rated less than 30." This would be a key way of knowing who Sanders should target in the final weeks before voting: Ignore those above 60, while focus on those below 30, because they are looking for a Clinton alternative and might be open to Sanders.
The investigation into what information was lifted should only take a few days as there are audit logs and trails of the activity, which took place beginning around 10:40 a.m. and lasting for about 40 minutes, the senior Democrats said.
They added that the Clinton campaign views this as a big deal but will not say so publicly because it will fan the flames of liberal groups trying to fight with the DNC.
In a statement released Friday afternoon, the Clinton campaign called for the Sanders campaign and the DNC to "work expeditiously to ensure that our data is not in the Sanders campaign's account and that the Sanders campaign only have access to their own data."................
http://www.cnn.com/2015/12/18/politics/bernie-sanders-campaign-dnc-suspension/index.html
angrychair
(8,702 posts)I'll take the word of the actual admins of the database before listening to media hacks that have zero IT experience.
notadmblnd
(23,720 posts)nt
in_cog_ni_to
(41,600 posts)It's hard work thinking of ways to take down the so-called "Democratic" Party!
PEACE
LOVE
BERNIE
notadmblnd
(23,720 posts)You'll ruin their celebration and shatter their world.
fredamae
(4,458 posts)campaign spokespeople getting a bit frisky and quick.
And I am also going to guess that this information will Not be on CorpoMedia.
http://talkingpointsmemo.com/livewire/hillary-campaign-responds-dnc-data-breach
libdem4life
(13,877 posts)Just kidding, y'all. We've got to Kumbaya here pretty soon...please...Iowa awaits our offerings ... and lawsuits and duels aren't on the proverbial menu.
Kalidurga
(14,177 posts)Oh sorry never mind that was camp Hillary.
notadmblnd
(23,720 posts)it happened in 2008 and a big deal wasn't made out of it. So, are you saying HRC did this to Obama? Her campaign- who Debra Wasserman-Schultz was co chair of- inappropriately accessed Obama's files in 2008?
Kalidurga
(14,177 posts)Her making a stink is gonna backfire on her big time.
notadmblnd
(23,720 posts)do you know of any links I can use if I assert this? Because I'm certain it'll be pounced on by HRC supporters and be torn to shreds if I post something without documentation.
Kalidurga
(14,177 posts)Starting at item number 23 things get interesting.
http://www.politico.com/f/?id=00000151-b72f-d1ae-add5-f76f14db0001
notadmblnd
(23,720 posts)pnwmom
(108,980 posts)actively searched Obama's data and downloaded same.
Please let me know the item numbers I missed.
pnwmom
(108,980 posts)pnwmom
(108,980 posts)Kalidurga
(14,177 posts)pnwmom
(108,980 posts)that someone from her campaign was searching through Obama's or saving Obama's data. Did I miss that?
Kalidurga
(14,177 posts)24) Before the Bug could be resolved, several staff members of the Campaign
accessed and viewed Confidential Information (the Disclosed Information) that had been
disclosed to the DNC by the 2016 campaign of Democratic presidential candidate Hillary
Clinton (the Competing Campaign).
pnwmom
(108,980 posts)but the deliberate searching, the production of lists, and downloading and saving wasn't an accident -- and they're not claiming that it was.
Kalidurga
(14,177 posts)arcane1
(38,613 posts)Meetello
(36 posts)Those are your words. Your interpretation and wishes.
angrychair
(8,702 posts)Per the vendor:
"First, a one page-style report containing summary data on a list was saved out of VoteBuilder by one Sanders user. This is what some people have referred to as the export from VoteBuilder. As noted below, users were unable to export lists of people."
"On Wednesday morning, there was a release of VAN code. Unfortunately, it contained a bug. For a brief window, the voter data that is always searchable across campaigns in VoteBuilder included client scores it should not have, on a specific part of the VAN system. So for voters that a user already had access to, that user was able to search by and view (but not export or save or act on) some attributes that came from another campaign."
These are not my words but a press release from the application owner and database admins of NGP VAN. What part of that is confusing?
leftofcool
(19,460 posts)What about all the stuff they downloaded into folders called "targets."? You must have missed the new information.