2016 Postmortem
Related: About this forumThe "Honey Pot" Theory.
Josh Uretsky is no political newbie. I met Josh in 2007 when he was a Campaign Co-Chair for Barack Obama's campaign where he ran the voter data operations. Josh graduated from UC-Berkeley in 1998 with a degree in bio-engineering, focusing on computer science and genetics. He worked as a C++ programmer at Mystic Wave Productions and InfoUse. He instructed staffers and volunteers on the use of the NGP-VAN system.
So why would he access this data, and how was it possible? These are very good questions, but I think these should be answered as well.
- With over 8 years of experience using this data system, he knew full well that his actions would be documented by the system. So why would he do it?
- Josh and Team Sanders reported the same flaw to the DNC/Vendor back in October. What was done about this issue in the time since this initial reporting?
- At what point did the DNC/Vendor inform the Clinton Campaign of the flaw discovered in October?
- How many times, and for how long, was the Clinton Campaign's data made available to other campaigns?
- Did this flaw work both ways? Did the Clinton Campaign have (not yet saying accessed) the same access to the Sanders Campaign data?
- Did the DNC/Vendor know about the flaw this time? If so, did they warn the campaigns that were using the system of the flaw?
The last question is the big one since reports indicate that the Vendor alerted the DNC within an hour of the first query. This means somebody was aware and watching for improper access which begs the further question...
- Was the Vender/DNC leaving this flaw open and monitor access instead of fixing it when it was first reported by Josh and the Sanders Campaign? Or more concisely...
- Was the Vendor/DNC operating a "Honey Pot" in the hopes that Josh would check back to see if the Vendor ever fixed the flaw with the intention to use this as impetus to handicap the Sanders Campaign?
It does not take 3 months to fix such a flaw, a point proven by how swiftly this story broke, and how quickly the DNC/Vendor was able to fix it and cut the Sanders Campaign from access it's own data.
I smell a Honey Pot.
leftofcool
(19,460 posts)boston bean
(36,222 posts)They were using a different database, not the VAN database.
So, all this we've been having the same issues with THIS database is a flat out untruth.
DURHAM D
(32,610 posts)boston bean
(36,222 posts)works nice if you can say you found this flaw in THIS very same database months ago, ergo the DNC is incompetent... But it's not true, they did not find this flaw in the VAN database in Oct.
DURHAM D
(32,610 posts)is based on a lie.
NurseJackie
(42,862 posts)... and was promptly accused of being a liar.
Bernie's fans aren't helping their "case". (Just observing, not "concerned".)
boston bean
(36,222 posts)MohRokTah
(15,429 posts)DURHAM D
(32,610 posts)- Josh and Team Sanders reported the same flaw to the DNC/Vendor back in October.
I heard on my tv last night that this is not true. Other than a BS staff member making the claim do you have a source for this?
Thanks
Blue State Bandit
(2,122 posts)"First, this is not the first time that the vendor hired by the DNC to run the voter file program, NGP VAN, has allowed serious failures to occur. On more than one occasion, they have dropped the firewall between the data of competing Democratic campaigns. That is dangerous incompetence. It was our campaign months ago that alerted the DNC to the fact that campaign data was being made available to other campaigns. At that time our campaign did not run to the media, relying instead on assurances from the vendor that the problem would be resolved. Unfortunately, the other day, the vendor once again dropped the firewall between the campaigns for some data."
Jeff Weaver, Bernie Sanders 2016 Campaign Manager
DURHAM D
(32,610 posts)Blue State Bandit
(2,122 posts)DURHAM D
(32,610 posts)with a bogus premise, built on it, and are still trying to defend it.
Done
Blue State Bandit
(2,122 posts)And all you had to say was "Big Fat Lie". This is not some lowly staffer. This is the head of Bernie's national campaign. Screaming "Liar" at your computer screen does not make you right.
boston bean
(36,222 posts)The campaign manager is a liar.
DURHAM D
(32,610 posts)wrote your OP. Weaver is a Big Fat Liar.
More importantly he lied to Bernie in that he did not tell him about the data theft when they got caught and Bernie, unfortunately, had to learn about it more than 24 hours later from DWS.
For that Weaver should be fired. Period. Bernie can not trust him.
Blue State Bandit
(2,122 posts)I posed questions in my OP. Maybe you should hold off on demanding I 'provide proof" for my questions until you can provide proof for your declarative statements.
emulatorloo
(44,131 posts)and the problem was resolved. It was not VAN. This was in his phone interview with Steve Kornaki, right after Jeff Weaver's press conference.
I saw it live, There is vid on the net somewhere you can probably find with a Google.
ON EDIT: Here's a link to vid:
http://talkingpointsmemo.com/livewire/josh-uretsky-clinton-data-breach
> He says this is the first time VAN made this mistake.
> He says prior time was not VAN, but another database.
Like you i recognize Josh is a professional, so I take him at his word.
Blue State Bandit
(2,122 posts)"...if somebody left the front door open for the 5th time, this was not the first time-this was the first time that VAN made a mistake like this"
VAN is the platform, NGP is the vendor. Josh does not clear NPG of the prior incident.
tazkcmo
(7,300 posts)I heard on my TV that hrc dodged sniper fire with her daughter at her side.
sufrommich
(22,871 posts)admitting that the Sanders campaign fucked up.
Blue State Bandit
(2,122 posts)But the fact remains, this has been an ongoing issue with the NGP-VAN system. This was not a one time fluke.
JaneyVee
(19,877 posts)It sure looks like they exploited the flaw though: http://www.scribd.com/mobile/doc/293643104/Sanders-Campaign-Audit-Sheet-1
Renew Deal
(81,866 posts)http://blog.ngpvan.com/news/data-security-and-privacy
On Wednesday morning, there was a release of VAN code. Unfortunately, it contained a bug. For a brief window, the voter data that is always searchable across campaigns in VoteBuilder included client scores it should not have, on a specific part of the VAN system.
http://www.democraticunderground.com/?com=view_post&forum=1251&pid=911109
BlueCheese
(2,522 posts)... says that by far the mostly likely explanation is that he was after data that he shouldn't have access to.
You see someone in a ski mask leaving a house with a broken window, holding a bunch of expensive items-- maybe, maybe, it's the homeowner who needed it and lost his keys. But very doubtful.
NuclearDem
(16,184 posts)Best case, he tried to make a point to the vendor by deliberately tripping runtimes designed to alert them and the DNC about unauthorized access, and he got the expected response. The DNC may have gone overboard in light of the concerns about the vendor's record, but instead of working with them, Sanders completely botched the response.
Worst case, he was an opportunistic thief who thought "but the keys were in the ignition" sufficed for an excuse.
mmonk
(52,589 posts)outraged their data was exposed by the DNC and it's contractor enough.
DURHAM D
(32,610 posts)They were outraged but decided yesterday to speak to the press on background only.
They were waiting for proof that the info was destroyed/returned.
Meanwhile some of BS staff decided to trumpet the airways with their bogus outrage. Bernie's staff withheld the info from him for more than 24 hours. They have not served him well and he deserves better. Now he knows he is surrounded by people he can not trust.
mmonk
(52,589 posts)DURHAM D
(32,610 posts)were blaming the victim.
mmonk
(52,589 posts)to the press and announcing their shutting off the campaign's data in violation of their own protocol agreement. But that's just me.
DURHAM D
(32,610 posts)The DNC press release did not come out until after Weaver had started his presser.
Blue State Bandit
(2,122 posts)so...
DURHAM D
(32,610 posts)the question of who went to the press first.
Blue State Bandit
(2,122 posts)DSW screwed this up bad. She's made it impossible to settle amicably, and accusations from the Clinton Campaign and the DNC "on background" -otherwise known as anonymously- of "theft", and "systemic" actions before knowing what happened is doing nothing but stoking the flames.
tammywammy
(26,582 posts)I can't imagine he'd support looking into other campaigns data.
Blue State Bandit
(2,122 posts)in the event of a full investigation.
DURHAM D
(32,610 posts)Again, BS deserves better.
tazkcmo
(7,300 posts)The Clinton's leave a trail of slime just like a slug and have for 25 years. The scandals and appearances impropriety are well documented and just as numerous and continue to grow and will continue to grow. They have a proven track record of unethical decisions and actions while Sanders has a proven track record of consistent integrity but it's Sanders who is the Evil Mastermind.
A full, independent investigation (The Clintons are used to these as they're always in one) will reveal collusion between the
dnc and hrc.
GoneFishin
(5,217 posts)tazkcmo
(7,300 posts)The perfect place to find snakes.
boston bean
(36,222 posts)and did this for close to an hour.
Why do I need to be angry at the DNC who was unaware of the flaw.
The contractor made a mistake. That doesn't mean what was done was OK.
Blue State Bandit
(2,122 posts)"They not only viewed it, but they exported it and they downloaded it," Wasserman Schultz told CNN's Wolf Blitzer.
"So for voters that a user already had access to, that user was able to search by and view (but not export or save or act on) some attributes that came from another campaign." - NGPVAN Blog
You might want to understand "what was done" before accusing people.
boston bean
(36,222 posts)Beyond simply reviewing the data, the logs show the Sanders staffers took deliberate steps to harvest and store the information. According to the logs, the Sanders staff created from scratch no fewer than 24 listsconsisting entirely of data pulled down from the Clinton campaigns databaseand saved them to their personal folders.
http://time.com/4155185/bernie-sanders-hillary-clinton-data/
Blue State Bandit
(2,122 posts)My facts came from the vendor. Check the link.
"So for voters that a user already had access to, that user was able to search by and view (but not export or save or act on) some attributes that came from another campaign."
Betty Karlson
(7,231 posts)pulling one dishonest stunt after the other. The coronation committee is turning very ugly in its desperation. Must have something to do with Ann Selzer's poll.
mhatrw
(10,786 posts)The Clinton campaign does not need a security flaw to access the data gathered by the Sanders campaign. Both the DNC and the owners of NGP-VAN work for Clinton.
They introduced a security breach into the system and then sat back just waiting to incriminate Sanders if anybody in Sanders' staff tried to investigate the security breach by perusing data they should not have had access to.
It's Ratfucking 101 and it's so transparent that Clinton will probably end up invoking 9/11 to explain it.