Here's a good tip from a FB poster

"Regarding phone calls to the DNC, call their cash donation line instead. That number is 877-336-7200. Calling this number forces live staff to deal with you, and keeps them from getting a donation call at the same time. You can use the call to tell them why you are refusing to donate. Let them know that you won't donate another dime until they get rid of Debbie Wasserman-Schultz as DNC chair. They will take notes. They guy who took my message even seemed embarrassed and seemed to agree.

Call now, operators standing by."

Good on you.

Maybe put this info in a post of its own???????

Guess their cash donation site is only good M-F.
I just called, and the got the recording.

Two months ago there was a different leak. That one was fixed. Then this one happened.

during what the vendor claimed was system maintenance.

And that the "window" was only open for a short period of time.

Please provide a link.

and to do that the tech had to disable the firewall, and he(she) forgot to re-enable it. he firewall was down for about 46 minutes. I'll see if I can find a link to that info.

In October?

We don't know if they literally did nothing, but they didn't fix the hole.

Options run from them thinking they fixed the hole to "oops, I ran the old procedure" to doing nothing.

In any case, the company should be held responsible.

Can be fixed a variety of ways, but we don't know what they did to fix it. If anything.

if it is just something silly like a firewall being down, then the fix is incredibly simple and should have been fixed within a few hours. Why those datasets even reside in the same place is extremely suspect. If the data is that crucial, there are numerous ways to secure it so that it would be impossible for another campaign to access it. The vendor should be fired immediately.

they apparently were updating the system while still allowing users to access it. And their permission system was effectively disabled during the update, allowing everyone to access everything.

So, pretty trivial to prevent (ex. shut off user access during updates), or a better design that segregates data better.

As you say, massive incompetence that should result in immediate termination of the contract.

moreover, the upgrade should have been conducted during off-hours to minimize downtime to their clients. Fucking amateur hour.

This is a cheap-ass company that built a voter registration system 20 years ago - probably in Visual Basic 6.

Like most neophytes they didn't use real authentication but probably set up their own internal login system.

Having worked for several government and international companies that work with trust, there is no fuckin' way that a little home-grown company can handle true authentication/authorization without relying on the OS.

Just like Hil's "private" email server (operated by the same f-ups), there was no real security.

I run robots all the time to scan for available data. If it is open to public access, I will probably touch it and download what looks interesting.

If the DLC/DNC wanted to be secure and private they should have spent a few more mega-$s doing it with people that know what they're doing, rather than DWS's nephew!

"It’s a monopoly that’s been created and forced down the throats of all Democrats,” John Phillips, co-founder of the non-partisan political data firm Aristotle, told POLITICO. "Monopolies are notorious for overcharging their customers, screwing their customers. That’s what’s been going on on the Democratic side for quite some time."

Rival vendors like Aristotle have been the most outspoken critics of the current Democratic setup, which gives the nearly 20-year old company NGP VAN sole distribution rights to the party’s valuable voter file. That database includes voting history, address and contact information for registered voters, which both the Clinton and Sanders campaign rent and then supplement with their own collection of information.

Central to the NGP VAN business model is a supposedly secure firewall that keeps any information that one campaign collects away from a rival political player. But that security system was exposed this week, NGP VAN admitted, because of a software error.

The DNC should go after the vendor and not the Sanders campaign. They have no right to "prevent"a competition and this will not fare well for Clinton. Seems DWS is her Titanic.

Nothing rocket science here.

Even if it were a "new" breach, even less than careful Administrative staff would do this if only to safeguard their own ass. The multiple layers of security incompetence this involved is hard to even grasp how a company like this would even be allowed to touch confidential data.

The fact that blame is being misdirected is kind of sleazy.

Considering that part of the reason that Clinton lost ground and ultimately lost to Obama was the idea that unfair tactics were being played should give pause. The DNC may well hurt the Clinton campaign.

Glad to hear from someone who knows the ins and outs.

KNR

"There seems to be a lot of concern over the 4 different email addresses that accessed the data, and whether or not it was downloaded, etc. I'm having a hard time seeing why this is very important."

You may be correct, he may have been creating a new user with different access rights to see if people with lower security settings could access it as well. Its also possible(but much less likely unless he was a complete idiot) that he was trying to hide his accessing the data by using an account not linked to him(very implausible though, since the data was also accessed by his account).

And he claimed that he knew their activities could be traced - probably from the last breach.

This could turn very ugly for Clinton if they have email addresses/IP addresses of who breached the Sanders data last October. Today, the Sanders campaign called for the audit being expanded to last October's breach. It's pretty tough for the DNC to ignore that under the scrutiny of the media. It could really blow up in the Clinton campaign's face if a member of their staff gets caught doing that last October because they didn't come clean.

DWS isn't going to let anyone touch her, and the vendor used to work for Hillary as well, so it is very unlikely data that implicates her campaign will ever see the light of day...unless someone managed to grab the log files during one of the breaches.

I'm sure they do have the info, I just wouldn't put it past them to scrub that info of any Clinton staffer's emails before releasing it. I don't think the Sanders campaign has direct access to that data, so there would be no way to verify its validity.

I saw some email addresses in article including the fake new one Josh created

that this was ALLOWED to continue until innocent transgressions could be intentionally used to hinder Sanders. The DETERMINATION of DWS and the DNC to STEER this whole cycle leaves NO doubt they'd stoop to any shady doings.

This flaw would most likely have been occurring every time the vendor did a similar change to the system, which means by the time the Sanders campaign pointed it out it probably had occurred many times without notice. Yet 24 hours after the latest incident this happens. That means they knew about the flaw, knew they hadn't fixed it, and were watching very closely.

Here insert HRC's horsey, snorting laugh.

everything clean.

But they should have a backup .... (but that'll probably be missing too)

He already established he had access to more data than he should have. He needed to establish who else had access to this data.

This whole deal is dirty, and DWS's attack on Sanders rather than the s/w vendor is enough proof for me she's been hellbent on sabotaging Sanders all along.

Obviously, from their reactions, they put a fair amount of effort into this data. Much more than one field or one file. And they've referenced multiple files in the articles. Voters, campaign contacts, etc.

So he likely had his people checking the various fields and files that were exposed - getting samples of each - screen shots, sample reports, sample downloads, etc to map out the full exposure/breach. And the only logical place to store that would be on the campaign computers being used - not the vendor's machine.

I feel for the guy who got fired because I would have done the same thing (except gone after O'Malley's data instead - avoiding Clinton to help keep my nose clean - which would suffice to prove the problem if his campaign has data on there ...)

access. The faulty vendor did.

where they had access to some parts and no access to other parts.

But it sounds like it was a pretty major breach - like they could go nearly anywhere or many places and see nearly anything or a lot of things.

Maybe they did and it's not being reported.
If that is the case then this will conclusively show that this is a ratfuck.
The fact that Sanders has filed a suit means that there will be discovery involved....

All 29 of O'Malley's voters were compromised.


As someone who has developed and managed complex database platforms for a quarter of a century, there is some bullsh/t masquerading as expertise in this thread.

And way to take a piss on O'Malley.

Several posters seem quite knowledgeable and the tech community largely agrees.
Explain what is bullshit.

Obviously, the DNC are not too sharp on the security issues

thing when you report a problem "It can't happen" and nothing is EVER done unless the customer takes the time and gives the vendor evidence that it happened. Then they MIGHT look at it and believe the customer.

Sanders reported the problem in October and nothing happened. I think the vendor kept denying it, maybe because they wanted to, maybe because the leak was supposed to be there, who knows only them.

And gained full control remotely. They basically had to hang a knife over Chrysler to get them to do something about it, before some real bad guys got any ideas.

It is typically the responsibility of the user to demonstrate the software problem with screen shots, reports, data examples, etc - as much real evidence as possible/reasonable. We don't support needle-in-the-haystack fishing expeditions. Evidence helps pin the software problem down faster. You don't do that to be mean or lazy. You have to do it to stay in business - to work efficiently in a competitive market.

According to the Sanders folks today, they know they took a hit last October. So it looks like they were making sure they could pin down how they took that hit this time. I do not blame this person they fired at all from what I've heard so far. If he was gathering evidence so that the campaign could go back at the vendor to prove the problem, he was doing his job. And the only way for him to do that since he always had access to his own data would be with someone else's data. And then he could infer that the other campaigns could have similar access to his campaign's data.

I tried to touch on this in my OP, but you said it better.

Or I should say, used to be in QA. Back when they had such a thing.

Now it's farmed out to India, with no quality. Let the customers be the alpha testers.

Industry's gone to shit being"competitive".

.... it was a security issue in a very sensitive area. Regardless of their intent, it was stupid and unprofessional to do what they did. They should not have done any investigation unless explicitly requested by the vendor to do so.

In order to escalate the issue they had only to report it to the Clinton campaign and then both go to the vendor and the dnc together . It would have gotten the attention it needed.

My boss says "What did we lose? To who? How did this happen?"

Me: "Oh, I don't have a clue. I phoned the software vendor right away and he just shut things down. We have little proof of anything."

My Boss "So if we suffer damages and want to sue our vendor, what evidence do we have?"

Me: "My testimony and a couple of the other folks that we had a general problem but we don't have any specifics .. so pretty tough to sue with that"

Not a proud moment. Your duty is to protect the data of outfit you're working for. You get some facts quickly before someone pulls the plug or covers their tracks. Who is logged in if possible, logs of access, if possible, screen shots, stuff that can define the extent of the problem.

Do nothing and just call the software vendor? Not me. I get what I can quickly first so the software vendor can't cover his tracks.

If they didn't get that stuff, the software vendor could have said "oh, it was just a 30 second glitch while we patched something - nothing to worry about (sucker)"

.... "use the breach to fish around in our competitor's database. Do some searches just to see whaat you can find, how bad this is, and what they might be able go see in our database." That would have been stupid and unethical.

And it was stupid and unethical for bernie's operative to do so.

It would have been much better to report the security hole to both the dnc and clinton's team. Let them know that their data is exposed and that you know that they know that your data is exposed. That would have been the smart way to play it. It would have gotten the attention it needed right away and there would have been no "appearance of missconduct".

when he hacked into flight controls during a flight after Boeing and gov't agencies kept ignoring his warnings about the huge security risk they were taking by not separating the entertainment systems from the flight control systems.

Why not just say "they are in the bag for Clinton" and leave it at that?

That line makes the whole post a piece of worthless propaganda rather then a bit of technical information.

I was hoping you could teach me something but my loss I shouldn't give some people the benefit of the doubt.

You'll find none of those words say "they are in the bag for Clinton" or anything similar.

and that is the response? How fucking embarrassing. If its too long to fit on a bumper sticker it doesn’t count.

in the way of the narrative train?

The Sanders Campaign thinks they are in the bag for Clinton, which makes the data they receive from them untrustworthy in their eyes, which would be a reason they would want to see what information was available on their own. Plus if the breach was unfixed for months, someones going to try to cover their ass, which again makes reports from them unreliable. My feelings on the DNC are irrelevant to my previous comment, I'm showing how it would be perceived though the lens of the Sanders campaign.

The system apparently has all the individual campaigns' data AND all the DNC datasets separated very superficially from each other. Simple permissions settings shouldn't be all that's required to make the candidates' data directly accessible to their competition, should they? The thing is, I'm no IT wonk, but even I would think that the entire setup was very poorly designed in the first place. I would have expected each campaign to secure their own proprietary database separately, at locations (physical or virtual )of their own choosing, with at least 2 separate sets so if the building explodes one night, the data would still be accessible. It makes absolutely no sense to me that the DNC's contractor apparently holds the only set of keys to every campaigns' own data. Is this as sloppy as it looks to me or am I misunderstanding what seems to be going on?

It looks like your assumptions are probably correct. Obviously I don't have access to the back end of the system, but my guess just by seeing the front is that all the data is most likely housed in one place, and the only thing really separating who gets what are the database queries. Its very insecure even without the huge hole they left in it. I'm thinking most people with a technical background could get access to all the data very easily even with the current exploit patched.

I would imagine that each campaign would keep a copy of their own data, so I think the data Sanders is fighting for are the DNC voters who have yet to be contacted by any campaign, either that or they willingly gave their data without keeping it for themselves(which would make very little sense).

Depending on the amount of data, they should be running backups every night at the very least. With this much, I'd say hourly, and the backups would go to different regions in case a server farm goes down, its accessible from multiple locations. And having all the data in one place as the vendor did, is ridiculous.

The vendor storing competing campaigns data in the same place like this is just shoddy.

I'm a little stunned that my non-tech guesswork seems to have been fairly close to the mark. If I were one of the candidates, I'd be contemplating a lawsuit against the vendor at the very least. Clinton's IT folk seem curiously inept at their jobs.

Maybe she and DWS really do believe that data involves a cloth.

so stating this widespread observation is not "propaganda", any more than pointing out that
STU TREVELYAN (CEO, NGP VAN) worked both in the 1992 Clinton-Gore "War Room," and then in the
Clinton White House.

hopefully not because that's your only strong suit

Last edited Fri Dec 18, 2015, 06:40 PM - Edit history (1)

Someone was fired so it is hardly a my bad as you paint it. I also see a lot of hypocrisy from Bernie supporters who show up every day to tell us how bad Clinton behaves. You might want to concentrate on cleaning your own house before commenting on another's.

Yes, someone was fired, but people get fired for "my bads" as you put it every day. And as I said, 4 accounts and 25 searches means nothing. Querying the database 25 times would be very easy to do without even knowing you were getting that kind of data. Only once you look at the actual results, would it become clear. I'm sure more than one person would be pulling lists from that database for their campaign, so I'm surprised it was only 4 accounts and not more.

The firing was probably because after it was reported, the data was accessed again. But I couldn't say I wouldn't have done the same. If the problem was still ongoing months after I'd reported it, I'd go look again too, if for any reason, just to see if things didn't get worse. But as I said, if they do find out he used the data in other ways, then his firing was completely justified. If it was the former, then he was just taking one for the team.

This had occurred before, and was never fixed. The DNC even stated they reported it previously.

and both of them run through an assessment. That way they could each ensure the other side didn't permanently get data.

For example, Clinton person adds a fake new entry, Sanders person searches for it and sees if he can read it.

But I have no idea how practical that would actually be.

But he probably doesn't know the counterpart or how trustworthy that person is, or if the Clinton campaign was aware of the issue. Giving them that info could be helpful, but more likely they might just download the entire data set use it for themselves. Plus going to another campaign and not the DNC themselves seems like a major breach of protocol.

No, it isn't practical and I wanted to explain why, but if I came off sounding rude or anything in my reply, that was not my intention and I apologize.

Btw, great OP.

K and R.

Your assessment is spot on.

I think it was entirely prudent of the Sanders campaign to fire the individuals who accessed the data. Further, I think it shows great integrity on the part of the campaign - rather than try and rationalize the situation, they took immediate and decisive action.

The HNC, on the other hand, is thoroughly inept and corrupt.

So now, if I call up a name to make a phone call, and there is information there that I did not enter, what do I do? Do I assume that someone from the campaign I'm working for has entered the data or is it data from another campaign because the vendor took down the firewall? Is there any liability on my part just by looking at the data?

It will say something like this:

"Warning! This network and associated computer and information systems are the Property of the Democratic National Committee. This system is for the use of authorized users only. Any other use is a violation of Title 18 United States Code Section 1030, and is subject to criminal penalties and civil damages. Individuals using this computer system without authority, or in excess of their authority, are subject to having all of their activities on this system monitored and recorded by systems personnel. In the course of monitoring individuals improperly using this system, or in the course of system maintenance, the activities of authorized users may also be monitored. Anyone using this system expressly consents to such monitoring and is advised that if such monitoring reveals possible criminal activity, system personnel may provide the evidence of such monitoring to law enforcement officials."

Do you see such a message?

In any case, what you describe would be NOT be considered "in excess of your authority" because you are using the system for approved purposes. The problem lies with the person who allowed the wrong information to be displayed to you.

if you are working for Bernie's campaign? I thought all Bernie campaign staff and volunteers were locked out until this issue could be resolved.

If you use Votebuilder, you know that the data is being updated constantly. It is updated as people walk and call. If Bernie's campaign still has access, why the lawsuit?

There are multiple campaigns in many states with access to Votebuilder.

My question was generic, how to recognize that any notations on individual voters were made by someone from the campaign for which you are calling and not because some firewall was down. For example, there could be a notation that a voter was called previously and the results of that call.

The last time I used it was for the Quinn campaign in Illinois.

I don't know how you would tell who entered the data. Every time you turn in a call or walk sheet, the data on that sheet is used to update the software. Someone from the campaign does the updating, most likely, in your case, a field organizer who is in charge of that part of the campaign. Not everyone has the ability to access and update the software. As a campaign worker, someone entered your info into the database, giving you access to that part of the list that pertains to your campaign and the specific work you are doing.

I don't think you have to worry about some firewall being down. I think if you saw any unauthorized data, you would be able to figure it out. Turn in your data. Ask your campaign or office manager who is entering the data. I think they can answer your questions. If there is a problem with the software, they will tell someone from VAN about the problem.

I think there will be many questions like yours in the coming days. I am sure there will be field reps for VAN who will help your campaign and answer questions.

Since you are using this software, you know how useful it is to campaigns. I hate to see all this speculation and sneering on DU.

I'm not an analyst, but I work for a data security company and I agree, as well.

your analysis sounds on point.



Well done

PS: DOes the DNC keep credit card info in this data base?

Now if only someone at Sanders HQ was reading this. I hear there is a job opening recently became available...

You get MY vote.

Bernie, you need this guy, but you'll have to pay him more than $15/hr

Sanders supporters on DU should send the campaign earmarked contributions -- to be used only to hire you.

Thanks for the informative OP!

I offered to volunteer IT services to the campaign a few times, but they never got in touch with me. I'm sure they have a good pool of talent for those kinds of things. As of this morning, they haven't posted a job opening on their site for that position, but I'd give my right arm to actually be inside the Sanders campaign.

I've been a member here a long time, but I don't post nearly enough for anyone to recognize my username or anything, so I'm thinking using DU contributions to get me the job would be about as successful as DWS's attempt to derail Sanders.

I think you are correct, but I also think there might more of a political perspective in play than one might think. This announcement broke quietly yesterday but ballooned into a fireball this afternoon. Friday afternoon. The Sanders campaign has a lot of work to do before the Iowa and New Hampshires caucuses, and the inability to access their data grinds that work to a halt. You probably know how close these races are, and you probably also know a win or a loss in either or both states will be very influential to Bernie Sanders' destiny.

So while many are so focused on the technicalities of this event, I am more interested in the repercussions of the denial of data to Sanders this close to those elections. How will they even work this weekend without that info?

I find the timing very suspect, and if it were truly that important the DNC would have remedied the situation when the Sanders campaign first reported it three months ago. Waiting until today for a leak to the press to explode election conversation is not in my opinion a coincidence.

And for anyone to make horrendous accusations against Sanders integrity is mindblowing to me. Disagreeing with him on issues and electing to vote for someone else - fine. Challenging his integrity - not fine without absolute proof of the premise.

This is a signal things are going to get extremely vicious from this point on.

Sam

I tried to stay away from the political component in my OP and just look at things from the view point of an IT professional. I agree with what you say though, the timing is incredibly suspect, and the way it was handled by the DNC was misguided at best, and at worst malicious.

I wonder how long they'll deny them access to that data. DFA is coming out swinging for Bernie right now, and every day they don't have that data is a day that hundreds of thousands of grassroots organizers are ineffective.

Here you go: It is effectively a death penalty for the campaign. Kind of a big decision for DNC to make.

You're welcome.

That was a fairly thoughtful analysis. Well reasoned.

and kept accidentally typing GRANT ALL ON *.* TO 'allusers@'world';

jeez, this ain't rocket science, you have to wipe the pizza crumbs off sometime?

Those keys are just right next to each other...happens to me all the time!

My impression is that the door was left open on purpose to allow HRC access to Bernie's info. When the Bernie campaign found the open door in October they were blown off with yeah we will fix that. Well it never got closed so Bernie's guy went in to data log the extent of the open door and have proof. When the DNC realized this could look bad for them leaving the door open they attempted to say it was Bernie's fault that he went through the open door. This reinforces my notions of HRC being corrupt due to all involved with the DNC are people that once worked for her or her husband. I support Bernie so I know I'm biased but this is what I see.

And given the vendors missteps I wouldn't rule it out, but you leave the door open for one campaign and not the others, so it doesn't make much sense that they wouldn't do that unless they were either lazy or incompetent. But maybe they left it open just to create some dirt on Bernie's campaign.

that both campaigns had access to all the data, and the Clinton campaign also accessed Sanders' data. But they have only noticed that the Sanders campaign was looking at forbidden data. I have no doubt that, if this was available to all of them, the Clinton campaign also got data from Sanders.

And probably part of the reason the DNC caved so quickly. An audit of the system by a third party would show if the DNC turned a blind eye to it in Clinton's case.

allow HRC team access to Sanders data. Common sense would tend to imply that is exactly why the DNC caved so quickly in response to the lawsuit.

Jessum chrissum the fired guy said so right on msnnc with kornacki.

I don't think I saw that interview, but if you have some info about the database I'd love to hear it. It might change my analysis if the database was structured differently than what my current understanding is.

Of months ago was a different database. Not the one being discussed in the media today ie the VAN database.

I don't think that changes much of my intial assumption. It sounds like two databases with the same flaw, which is very common in situations like this. My guess is the vendor patched one but not the other...still negligent, and the Sanders team still probably wanted to test to make sure the data was safe, regardless of which database was in use.

In regards to this event. Makes it seem like there was an issue with this one database for months. When in fact there wasn't.

Like we told them about many months ago when in fact they did not tell them about any issues with this particular database that they downloaded records and then saved as files.

The vendor knows their systems. If a bug or flaw is pointed out that is in several different places, the vendor should know this and apply the fix universally. It isn't the Sanders campaigns job to point it out on every database. They showed the flaw, the vendor failed to fix it, end of story.

And from an architecture standpoint, if the vendor did their job right to begin with, they'd only need to correct the flaw in one place to fix it across the board.

Originally NGP handled donors, call lists, and quarterly fundraising reports.

Over the years they purchased stand-alone products like a broadcast email system and a web hosting system, and then linked them with poorly-designed but functional user interfaces.

The VAN was a much later separate product which was integrated into NGP's "turn-key" campaign system.

Yes, ideally from an architecture standpoint, they should be able to apply one fix which applies everwhere. But my guess is that the back ends of NPG's "turn-key integrated" system are still separate databases designed over the years by separate software development teams.

Concerning the security breach in October, I tend to believe what NGP CEO Stu Trevelyan said in his posted apology to the DNC, Clinton campaign, and Sanders campaign - “it wasn’t actually within the VAN VoteBuilder system, it was another system.” However, he carefully does not identify which piece of the NGP turnkey system was breached.

Your first statement is the key: "The vendor knows their systems." One cannot expect campaign staffers, even seasoned IT managers, to know the back-end design of someone else's software.

it has always been the van data base that is the problem

great op btw