Twitter Whistleblower Accuses Social Media Giant of Covering Up ‘Extreme’ Security Deficiencies

CC0 / / Twitter logo
Twitter logo - Sputnik International, 1920, 23.08.2022
Subscribe
The popular American social media platform is already facing legal pressure, with Tesla and SpaceX CEO Elon Musk subpoenaing the company’s founder Jack Dorsey over a botched buyout deal in the spring which failed to materialize.
Peiter Zatko, the high-profile ex-hacker hired by Twitter to lead the company’s security operations in late 2020, has filed a massive whistleblower disclosure accusing the company of overlooking “extreme, egregious deficiencies” in its anti-hacking defenses, a virtually non-existent battle against spam, systematic double-dealing and rapacious corporate greed.
Zatko, 51, known in the industry as ‘Mudge’, was fired by Twitter in January, with the company initially providing no information as to why he was let go, and then saying he was ousted due to “poor performance and leadership.”
In his redacted complaint, sent to Congress and federal agencies in July and uploaded in PDF form by the Washington Post on Tuesday, the programmer accused company officials of utterly and recklessly mismanaging the platform.
“During Mudge’s employment, he uncovered extreme, egregious deficiencies by Twitter in every area of his mandate including…user privacy, digital and physical security, and platform integrity/content moderation” constituting “extensive legal violations,” the complaint said.
The whistleblower alleges that the company as a whole, CEO Parag Agrawal and other senior executives and members of the board of directors have spent more than a decade engaging in “extensive, repeated, uninterrupted violations of the Federal Trade Commission Act by making false and misleading statements to users and the FTC about, inter alia, the Twitter platform’s security, privacy, and integrity.”
A picture taken on September 4, 2019 shows the logo of the US social networking website Twitter, displayed on a smart-phone screen, in Lille, northern France.  - Sputnik International, 1920, 20.08.2022
Americas
‘Let Freedom Ring’: Florida GOP Candidate Banned From Twitter After Calling to Legalize Hunting Feds
Additionally, Zatko accuses Twitter of violating federal corporate watchdog rules on auditing requirements, “fraudulent and material misrepresentations in communications with the Board of Directors and investors, constituting securities law violations,” and “negligence and even complicity with respect to efforts by foreign governments to infiltrate, control, exploit, surveil and/or censor the company’s platform, staff and operations.”
According to the complaint, Zatko prepared a comprehensive report on the company’s security, privacy and integrity problems for the board of directors in early 2021, but was instructed not to send it. Later the same year, he reportedly “witnessed senior executives engaging in deceitful and/or misleading communications affecting Board members, users and shareholders.”
Zatko accused Agrawal of instructing him to provide security-related documents which “both of them knew to be false and misleading,” and charged the CEO with lying about the security officer’s efforts to rectify fraud before his termination.
The disclosure included what Zatko’s lawyers characterized as a “recent example of misrepresentation by Twitter” related to Elon Musk’s attempted takeover of the company. After a query by Musk regarding the company’s anti-spam policy, and its claim that less than five percent of users were spam bots, Agrawal assured the businessman that the company considers spam bots harmful and is “strongly incentivized to detect and remove as much spam as we possibly can, every single day.”
“Agrawal’s tweet was a lie. In fact, Agrawal knows very well that Twitter executives are not incentivized to accurately ‘detect’ or report total spam bots on the platform,” the complaint noted, providing a technical explanation for why this was not the case.
Zatko characterized Musk’s suspicions as being “on target,” alleging that “senior executives earn bonuses not for cutting spam, but for growing MDAU [Monetizable Daily Active Users]. In fact, Twitter created the MDAU metric precisely to avoid having to honestly answer the very questions Mr. Musk raised.”
Twitter CEO Jack Dorsey testifies before the Senate Intelligence Committee hearing on 'Foreign Influence Operations and Their Use of Social Media Platforms' on Capitol Hill, Wednesday, Sept. 5, 2018, in Washington - Sputnik International, 1920, 22.08.2022
Americas
Elon Musk Subpoenas Twitter Founder Jack Dorsey for October Trial Over Botched Buyout
The complaint also characterized Twitter as a leaky sieve of a company constantly suffering security incidents. “In 2020 alone, Twitter had more than 40 security incidents, 70% of which were access control-related. These included 20 incidents defined as breaches; all but two of which were access control related,” the document said.
Zatko also provided an extensive series of other problems, from a bungling board and a CEO disengaged from security matters, to a lack of support, perverse bonus payout schemes, failures to block hateful terms and slurs from ad targeting, lack of computer backup systems, deficient moderation, unlicensed machine learning materials in core algorithms, misleading regulators in some countries, and suspected “penetration by foreign intelligence and threats to democracy.”
The latter included allegations by the whistleblower that the Indian government had made demands for the company to hire government agents, as well as claims of dependence on revenues coming from Chinese entities, and complaints about the company’s consent to Russian information laws.
Furthermore, the complaint cited “specific information from a US government source that one or more particular company employees were working on behalf of another particular foreign intelligence agency.”
Twitter has long been accused of systemic bias against pro-Trump conservatives, free speech activists and certain foreign governments. The social media giant censored a story on incriminating materials contained on Hunter Biden’s laptop during the 2020 election, and banned the former president from the platform following the January 6, 2021 Capitol riots. Russian, Venezuelan, and Iranian government and media accounts have been targeted for deletion and censorship, with many slapped with notices about their “state-affiliated” status, and their posts moderated with occasional “Know the Facts” and “violation of Twitter rules” notices related to supposed “misinformation.”
Twitter on the front of the New York Stock Exchange (NYSE) in New York - Sputnik International, 1920, 11.08.2022
Americas
Twitter Says Activating Policy to Tackle Misinformation Ahead of 2022 US Midterm Elections
Newsfeed
0
To participate in the discussion
log in or register
loader
Chats
Заголовок открываемого материала