Logo

American Security Council Foundation

Back to main site

Alan W. Dowd is a Senior Fellow with the American Security Council Foundation, where he writes on the full range of topics relating to national defense, foreign policy and international security. Dowd’s commentaries and essays have appeared in Policy Review, Parameters, Military Officer, The American Legion Magazine, The Journal of Diplomacy and International Relations, The Claremont Review of Books, World Politics Review, The Wall Street Journal Europe, The Jerusalem Post, The Financial Times Deutschland, The Washington Times, The Baltimore Sun, The Washington Examiner, The Detroit News, The Sacramento Bee, The Vancouver Sun, The National Post, The Landing Zone, Current, The World & I, The American Enterprise, Fraser Forum, American Outlook, The American and the online editions of Weekly Standard, National Review and American Interest. Beyond his work in opinion journalism, Dowd has served as an adjunct professor and university lecturer; congressional aide; and administrator, researcher and writer at leading think tanks, including the Hudson Institute, Sagamore Institute and Fraser Institute. An award-winning writer, Dowd has been interviewed by Fox News Channel, Cox News Service, The Washington Times, The National Post, the Australian Broadcasting Corporation and numerous radio programs across North America. In addition, his work has been quoted by and/or reprinted in The Guardian, CBS News, BBC News and the Council on Foreign Relations. Dowd holds degrees from Butler University and Indiana University. Follow him at twitter.com/alanwdowd.

ASCF News

Scott Tilley is a Senior Fellow at the American Security Council Foundation, where he writes the “Technical Power” column, focusing on the societal and national security implications of advanced technology in cybersecurity, space, and foreign relations.

He is an emeritus professor at the Florida Institute of Technology. Previously, he was with the University of California, Riverside, Carnegie Mellon University’s Software Engineering Institute, and IBM. His research and teaching were in the areas of computer science, software & systems engineering, educational technology, the design of communication, and business information systems.

He is president and founder of the Center for Technology & Society, president and co-founder of Big Data Florida, past president of INCOSE Space Coast, and a Space Coast Writers’ Guild Fellow.

He has authored over 150 academic papers and has published 28 books (technical and non-technical), most recently Systems Analysis & Design (Cengage, 2020), SPACE (Anthology Alliance, 2019), and Technical Justice (CTS Press, 2019). He wrote the “Technology Today” column for FLORIDA TODAY from 2010 to 2018.

He is a popular public speaker, having delivered numerous keynote presentations and “Tech Talks” for a general audience. Recent examples include the role of big data in the space program, a four-part series on machine learning, and a four-part series on fake news.

He holds a Ph.D. in computer science from the University of Victoria (1995).

Contact him at stilley@cts.today.

Twitter Was Notified at Least 1 Chinese Spy Was on Company’s Payroll, Whistleblower Testifies

Tuesday, September 13, 2022

Categories: ASCF News Emerging Threats

Comments: 0

Source: https://www.theepochtimes.com/twitter-was-notified-at-least-1-chinese-spy-was-on-companys-payroll-whistleblower-testifies_4727528.html

https://www.theepochtimes.com/twitter-was-notified-at-least-1-chinese-spy-was-on-companys-payroll-whistleblower-testifies_4727528.html

Peiter “Mudge” Zatko, former head of security at Twitter, testifies before the Senate Judiciary Committee on data security at Twitter, on Capitol Hill in Washington on Sept. 13, 2022. (Kevin Dietsch/Getty Images)

The former head of security at Twitter was told earlier this year by the U.S. government that there was at least one agent of China’s top intelligence agency, the Ministry of State Security (MSS), working as an employee at the company.

This was one of the revelations made by Peiter “Mudge” Zatko, a whistleblower who served as Twitter’s head of security for about 14 months before being fired earlier this year, during testimony before a Senate Judiciary Committee hearing on Sept. 13.

Ranking Member Sen. Chuck Grassley (R-Iowa) asked Zatko: “In your disclosure, you mentioned that the FBI notified Twitter that one of their employees was suspected of being a Chinese foreign asset. Were you and others at Twitter at all surprised by that?”

Zatko replied that he was notified of this information about a week before he was dismissed.

“The corporate security physical security team had been contacted and told that there was at least one agent of the MSS, which is one of China’s intelligence services, on the payroll inside Twitter,” he said.

Zatko’s testimony expanded upon a raft of allegations of widespread security failings that could harm users of the platform, shareholders, and U.S. national security set out in a complaint to federal regulators in July. Twitter has labeled Zatko’s claims as a “false narrative.”

The whistleblower testified that when he raised his concerns about foreign agents at Twitter to an executive, they were dismissed.

“When I said, ‘I am confident that we have a foreign agent,’ [the executive’s] response was, ‘Well since we already have one, what does it matter if we have more; let’s keep growing the office,'” he recalled during the hearing.

Zatko said that Twitter would be a “goldmine” for any foreign intelligence agency that was able to place an operative inside.

If you place somebody on Twitter … as we know has happened, it would be very difficult for Twitter to find them. They will probably be able to stay there for a long period of time, and gain significant information to provide back on either targeting people or on information as to Twitter’s decisions and discussions and … the direction of the company.”

Zatko is a respected former “white hat” hacker who’s previously worked for Google, payments firm Stripe, and the U.S. Department of Defense. He was hired in 2020 by then-Twitter CEO Jack Dorsey in the aftermath of a major hack that hijacked dozens of high-profile accounts to promote a bitcoin scam.

Chinese Sales
Zatko’s complaint also alleges that Twitter was becoming dependent on sales to Chinese entities, even though the platform is blocked in China, raising the risk that such entities could then access the data of Chinese users who had circumvented the communist regime’s censorship firewall.

“Twitter executives knew that accepting Chinese money risked endangering users in China,” the 84-page complaint said.

Over the years, the Chinese regime has arrested, harassed, and jailed citizens for circumventing its firewall to use and post messages on Twitter.

“They didn’t know what people they were putting at risk. Or what information they were even giving to the government, which made me concerned that they hadn’t thought through the problem in the first place—that they were putting their users at risk,” Zatko said at the hearing.

He summarized the executives’ response to his concerns as: “We’re already in bed. It would be problematic if we lost that revenue stream. So figure out a way to make people comfortable with it.”

Leadership Failings
Senior leadership’s dismissals of Zatko’s warnings and concerns became a common theme, according to the whistleblower.

Twitter’s leadership chose to ignore repeated warnings from Zatko of “fundamental” cybersecurity problems, and misled its board, shareholders, and the public about them because it was incentivized to “prioritize profits over security,” Zatko said.

“What I discovered when I joined Twitter [in November 2020] was that this enormously influential company was over a decade behind industry security standards.”

The data security problems at Twitter, according to Zatko, stem from two basic issues: “They don’t know what data they have, where it lives, or where it came from. And so unsurprisingly, they can’t protect it. And this leads to the second problem, which is the employees then have to have too much access to too much data and too many systems.”

To illustrate the second point, Zatko said that about half of Twitter employees have access to the Twitter account of Sen. Chuck Grassley (R-Iowa), the committee’s ranking member.

“The company’s cybersecurity failures make it vulnerable to exploitation, causing real harm to real people,” Zatko said.

“When an influential media platform can be compromised by teenagers, thieves, and spies, and the company repeatedly creates security problems on their own, this is a big deal for all of us.”

Among his claims, Zatko said Twitter misled regulators about compliance with a 2011 Federal Trade Commission order over the improper handling of user data.

Since then, Twitter has made “little meaningful progress on basic security, integrity and privacy systems,” Zatko’s complaint said.

The testimony came as the San Francisco-based company is locked in a legal battle with tech billionaire Elon Musk after the Tesla CEO pulled out of a $44 billion deal to buy the social media platform over its lack of transparency regarding the number of bot and spam accounts on the platform.

Twitter sued Musk for terminating the deal, while Musk countersued, accusing Twitter of fraud. The trial is set for next month in a Delaware court.

The Epoch Times has reached out to Twitter for comment.

Comments RSS feed for comments on this page

There are no comments yet. Be the first to add a comment by using the form below.