Andrew 🌻 Brandt 🐇<p>Last night I attended the <a href="https://infosec.exchange/tags/Boulder" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Boulder</span></a> BVSD school district's District Accountability Committee meeting. I am the representative to my kids' high school at the DAC, that advises the school board on policy matters. It's a commitment I made to staying involved in local school operations, regardless of the outcome of the election last year.</p><p>The DAC is considering updates to policies surrounding the searches of and interrogations of students on school grounds. The DAC policy subcommittee made several positive changes that strengthen the protections this policy gives to students, who under these kind of circumstances are obviously in a power-imbalance situation.</p><p>But there was one change that I couldn't abide, and when I brought it up, it started a nearly hourlong debate in which many other DAC representatives chimed in with their own concerns.</p><p>The change was to give schools the permission to search students' mobile devices and laptops. It was a one-line insertion into an existing policy that gives school officials permission to search student lockers. </p><p>I made the point that phones/laptops often contain highly sensitive, personal information that falls outside the scope of any legitimate investigation, and that the language was overbroad and failed to take into account the need for student data privacy and limiting the scope of the search, and raises significant civil rights issues.</p><p>Another DAC member raised the issue that the policy seems to lay the responsibility for students maintaining the security of their devices on the students, even when an adult has access to those devices, which seemed weirdly out of sync.</p><p>Yet another DAC member was concerned that there was no guidance about how such searches would be conducted, and under what circumstances. Doesn't changing a policy like this lead to potential 'fishing expeditions' on specious evidence or even just allegations of misbehavior without evidence? </p><p>In the end, the DAC thought this policy would sail through and be passed along to the BVSD board for their approval next week. I think the policy needs significant rework and there's no way the board should pass it in its current form. I will speak at the school board meeting next week to get that point across, because the way it looks right now, I would not want my name connected to this policy.</p><p><a href="https://infosec.exchange/tags/COpolitics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>COpolitics</span></a> <a href="https://infosec.exchange/tags/BVSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BVSD</span></a> <a href="https://infosec.exchange/tags/SchoolBoard" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SchoolBoard</span></a> <a href="https://infosec.exchange/tags/policy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>policy</span></a> <a href="https://infosec.exchange/tags/electmorehackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>electmorehackers</span></a> <a href="https://infosec.exchange/tags/4thAmendment" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>4thAmendment</span></a> <a href="https://infosec.exchange/tags/PolicyHackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PolicyHackers</span></a> <a href="https://infosec.exchange/tags/education" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>education</span></a> <a href="https://infosec.exchange/tags/USPol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>USPol</span></a></p>
lingo.lol is one of the many independent Mastodon servers you can use to participate in the fediverse.
A place for linguists, philologists, and other lovers of languages.
Administered by:
Server stats:
69active users
lingo.lol: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.1
#electmorehackers
0 posts · 0 participants · 0 posts today
Andrew 🌻 Brandt 🐇<p><span class="h-card" translate="no"><a href="https://mastodon.social/@dangillmor" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>dangillmor</span></a></span> ...which is just another reason we should <a href="https://infosec.exchange/tags/ElectMoreHackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ElectMoreHackers</span></a> so we have legislators who have the technical chops to build some consumer protection policy with teeth!</p>
Andrew 🌻 Brandt 🐇<p>The Aspen Tech Policy Hub is organizing some training in how hackers can engage in tech policy by learning how to speak and write effectively to communicate with lawmakers. They're calling it "The Cyber Civil Defense Policy Training Series"</p><p>The first one starts next Tuesday.</p><p>Sign up for one, or all three, here: <a href="https://aspenpolicyacademy.org/short-courses#cybersecurityseries" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">aspenpolicyacademy.org/short-c</span><span class="invisible">ourses#cybersecurityseries</span></a></p><p><a href="https://infosec.exchange/tags/ElectMoreHackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ElectMoreHackers</span></a> <a href="https://infosec.exchange/tags/TechPolicy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechPolicy</span></a> <a href="https://infosec.exchange/tags/Policy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Policy</span></a> <a href="https://infosec.exchange/tags/engage" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>engage</span></a> <a href="https://infosec.exchange/tags/engagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>engagement</span></a> <a href="https://infosec.exchange/tags/fightforthefuture" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>fightforthefuture</span></a> <a href="https://infosec.exchange/tags/AspenTech" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AspenTech</span></a> <a href="https://infosec.exchange/tags/AspenTechPolicyHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AspenTechPolicyHub</span></a></p>
Elect More Hackers#USPol #politics #introduction
Andrew Brandt<p>Exciting news, <a href="https://toot.bldrweb.org/tags/hackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hackers</span></a>: the <a href="https://toot.bldrweb.org/tags/KamalaHarris" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KamalaHarris</span></a> campaign will be hosting a reception to support her candidacy at <a href="https://toot.bldrweb.org/tags/Defcon" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Defcon</span></a> on August 8.</p><p>If you're interested in protecting our democracy and supporting a candidate who understands what a future looks like that hasn't been captured by corporate tech interests, I encourage you to join me in donating and attending this special event.</p><p>The donation link is <a href="https://secure.kamalaharris.com/a/mid-a-bvf" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">secure.kamalaharris.com/a/mid-</span><span class="invisible">a-bvf</span></a></p><p><a href="https://toot.bldrweb.org/tags/ElectMoreHackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ElectMoreHackers</span></a> <a href="https://toot.bldrweb.org/tags/COpolitics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>COpolitics</span></a> <a href="https://toot.bldrweb.org/tags/politics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>politics</span></a> <a href="https://toot.bldrweb.org/tags/USPol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>USPol</span></a> <a href="https://toot.bldrweb.org/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacking</span></a> <a href="https://toot.bldrweb.org/tags/cyberspace" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cyberspace</span></a></p>
Andrew Brandt<p>Last October, while in the home stretch of an off-year campaign for elected office, a political candidate's inbox received a series of email-borne attacks. <span class="h-card" translate="no"><a href="https://infosec.exchange/@SophosXOps" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>SophosXOps</span></a></span> investigated both the business email compromise (BEC) and the phishing emails the candidate received. </p><p><a href="https://news.sophos.com/en-us/2024/06/13/election-phishing-campaign/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">news.sophos.com/en-us/2024/06/</span><span class="invisible">13/election-phishing-campaign/</span></a></p><p><a href="https://toot.bldrweb.org/tags/politics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>politics</span></a> <a href="https://toot.bldrweb.org/tags/COpolitics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>COpolitics</span></a> <a href="https://toot.bldrweb.org/tags/phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>phishing</span></a> <a href="https://toot.bldrweb.org/tags/spam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>spam</span></a> <a href="https://toot.bldrweb.org/tags/BEC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BEC</span></a> <a href="https://toot.bldrweb.org/tags/BVSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BVSD</span></a> <a href="https://toot.bldrweb.org/tags/SchoolBoard" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SchoolBoard</span></a> <a href="https://toot.bldrweb.org/tags/ElectMoreHackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ElectMoreHackers</span></a></p>
Andrew 🌻 Brandt 🐇<p>I'm actually astonished at how bad the answers were from this Colorado state senator Mark Baisley (2nd from left, so-called "freedom senator") to questions on this panel about <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> and <a href="https://infosec.exchange/tags/elections" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>elections</span></a>.</p><p>When asked about the risks to lower or local/downballot candidates were minimal (wrong!), and when asked how political parties or candidates should protect voter roll data, he answered "obfuscation, security through obfuscation" (I guess he's unfamiliar with the baseline security principle of "there's no security through obscurity.")</p><p>We desperately need more people to run for office who know what they're talking about. This was just embarrassing. </p><p><a href="https://infosec.exchange/tags/COPolitics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>COPolitics</span></a> <a href="https://infosec.exchange/tags/ElectMoreHackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ElectMoreHackers</span></a></p>
Andrew 🌻 Brandt 🐇<p>I'm at Google in <a href="https://infosec.exchange/tags/Boulder" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Boulder</span></a> attending the Defending Digital Campaigns summit, with a lot of folks discussing how politicians and political campaigns are targets for cybercrime and a whole host of other threats. Jena Griswold just spoke about all the problems elections officials face. <a href="https://infosec.exchange/tags/COPolitics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>COPolitics</span></a> <a href="https://infosec.exchange/tags/Colorado" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Colorado</span></a> <a href="https://infosec.exchange/tags/ElectMoreHackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ElectMoreHackers</span></a></p>
Luke T. Shumaker<p>I'm a fan of <span class="h-card" translate="no"><a href="https://social.treehouse.systems/@egallager" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>egallager</span></a></span> live-tooting the NH legislature, even though I don't think I've ever even been to <a href="https://fosstodon.org/tags/NewHampshire" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NewHampshire</span></a> (I follow him because I'd met him at <a href="https://fosstodon.org/tags/LibrePlanet" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LibrePlanet</span></a>). Anyone know of other legislators who live-toot (hopefully in <a href="https://fosstodon.org/tags/Colorado" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Colorado</span></a> <a href="https://fosstodon.org/tags/COPolitics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>COPolitics</span></a>)? <a href="https://fosstodon.org/tags/ElectMoreHackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ElectMoreHackers</span></a></p>
Andrew 🌻 Brandt 🐇A long post about the end of my campaign and derision I have received, and some uplifting and slightly sappy views about hackers and politics
Andrew Brandt<p>Why you need an infosec analyst on your <a href="https://toot.bldrweb.org/tags/SchoolBoard" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SchoolBoard</span></a>: I received two scam emails this past weekend on an account I use for my candidacy and alerted my fellow candidates. </p><p>The scams were fairly rudimentary "iTunes gift card" fraud, but the attackers did look for and use the names of other candidates and one actual board member in their scam emails.</p><p>I had heard that politicians get hit with a larger-than-average volume of <a href="https://toot.bldrweb.org/tags/malspam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>malspam</span></a> but this was a new one for me. Also, totally hamfisted, using UTC+3 time zone and a Russia-based webmail provider. Try harder next time, losers!</p><p><a href="https://toot.bldrweb.org/tags/ElectMoreHackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ElectMoreHackers</span></a></p>
Andrew Brandt<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@adamshostack" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>adamshostack</span></a></span> ..aaaand I've just received word that my petitions were accepted, and my name will appear on the November 7, 2023 ballot!</p><p><a href="https://toot.bldrweb.org/tags/ElectMoreHackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ElectMoreHackers</span></a></p>
Andrew Brandt<p><span class="h-card" translate="no"><a href="https://mastodon.online/@evangreer" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>evangreer</span></a></span> All the more reason we need to <a href="https://toot.bldrweb.org/tags/ElectMoreHackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ElectMoreHackers</span></a> ✅</p>
TrendingLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload