• Menu
  • Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar

Before Header

  • About Us
  • Lexicon
  • Contact Us
  • Our Store
  • ↑
  • ↓
  • ←
  • →

Balloon Juice

Come for the politics, stay for the snark.

Whatever happens next week, the fight doesn’t end.

Putin must be throwing ketchup at the walls.

I’m pretty sure there’s only one Jack Smith.

This really is a full service blog.

Is it irresponsible to speculate? It is irresponsible not to.

Cole is on a roll !

There is no compromise when it comes to body autonomy. You either have it or you don’t.

Motto for the House: Flip 5 and lose none.

I like you, you’re my kind of trouble.

The revolution will be supervised.

Damn right I heard that as a threat.

Come on, man.

You can’t attract Republican voters. You can only out organize them.

The words do not have to be perfect.

Joe Lieberman disappointingly reemerged to remind us that he’s still alive.

Not all heroes wear capes.

Sadly, there is no cure for stupid.

Red lights blinking on democracy’s dashboard

They traffic in fear. it is their only currency. if we are fearful, they are winning.

Jesus, Mary, & Joseph how is that election even close?

Stamping your little feets and demanding that they see how important you are? Not working anymore.

Bad news for Ron DeSantis is great news for America.

There are consequences to being an arrogant, sullen prick.

Jack be nimble, jack be quick, hurry up and indict this prick.

Mobile Menu

  • Winnable House Races
  • Donate with Venmo, Zelle & PayPal
  • Site Feedback
  • War in Ukraine
  • Submit Photos to On the Road
  • Politics
  • On The Road
  • Open Threads
  • Topics
  • Balloon Juice 2023 Pet Calendar (coming soon)
  • COVID-19 Coronavirus
  • Authors
  • About Us
  • Contact Us
  • Lexicon
  • Our Store
  • Politics
  • Open Threads
  • War in Ukraine
  • Garden Chats
  • On The Road
  • 2021-22 Fundraising!
You are here: Home / Politics / Information Warfare / Amateurs Take Down Disinformation Network

Amateurs Take Down Disinformation Network

by Cheryl Rofer|  December 27, 201911:27 am| 45 Comments

This post is in: Information Warfare, Your Place Is In The Resistance

FacebookTweetEmail

On Twitter, one of the people I follow and interact with is Steffan Watkins, who follows ships and airplanes. Many sites follow ships and airplanes, and Steffan follows those sites to make sense out of who and what are going where. For example, Steffan knew a government plane was on its way long before we were told that President Trump was in Afghanistan.

He has recently been debunking stories about Russian ships and submarines off the east coast of the United States. This is a perennial story and is sometimes even true! Just as American ships and submarines do, Russian ships travel in many places in international waters. What they don’t do is dock at Mar-a-Lago.

Some of those stories come from real reporters who don’t understand what’s going on and repeat a version of something that is true but trivial. Sometimes their stories are based on dodgy websites that deliver deliberate disinformation, laundered through repetition and rumor.

Steffan doggedly checks out those news stories and sets them straight. That usually means that he debunks them, but occasionally he says yes, that Russian ship is off the coast in international waters on a normal patrol. Not once has he found the more sensational stories to be supported.

That’s what he was doing a couple of weeks ago and found a website that consistently was producing junk news stories and stealing stuff from other sites. They also advertised Trump merchandise.

Another news aggregator has popped up (#LibertyFocus) stripping the by-lines and dates from the writing they steal. The public risk is, they can post completely fictional content, among the true content they stole from other news orgs.#disinformationhttps://t.co/OEXCuUlJTh

— Steffan Watkins (@steffanwatkins) December 1, 2019

That intrigued a couple of Israeli hackers, Noam Rotem and Ran Locar, who decided to check the website out. That link has all the detail for the more computer-savvy among us. Here’s their bottom line:

We found a network of dozens of websites operated by an affiliate marketer. Some of the websites pushed pro-Trump/anti-Clinton fake-news meant to use patriotism in order to sell unofficial Trump merch to Trump supporters. The technical aspects of the operation allowed us full visibility into not only the operators, but also the unwitting customers.

Many of the web addresses were registered by the same person, identified as Jackson Lin, through a company called Extreme Wisdom. Another company linked to some of the sites is Alabama company Click Wu LLC. They have been spending hundreds of thousands of dollars for advertising on Facebook. The pages have been taken down from Facebook.

Although Rotem and Locar say the motivation is money, it could be that or disinformation or both. It’s part of the stream of junk that flows through social media. It’s particularly  encouraging that a bunch of amateurs exposed it. Now I’d like to see a bigger news operation take it up.

For the rest of us? Be careful what you share or retweet. Know your sources.

Watergirl is doing some diagnostics. Between them and the problems currently infecting the site, I may not be able to comment. I’ll stick around for a bit.

FacebookTweetEmail
Previous Post: « Friday Morning Open Thread: Post-Holiday Binges
Next Post: He’ll Kill Again »

Reader Interactions

45Comments

  1. 1.

    TaMara (HFG)

    December 27, 2019 at 11:34 am

    Just testing things out and seeing if I can comment.

    I’ve always said, if I have no morals or dignity, I’d make a fortune off of selling merchandise to Trump/GOP supporters. An easier mark has never been made

     

    ETA: Success! Although I am thinking of using this “repair BJ” time to take a week long break from all social media. We’ll see how long I last.

  2. 2.

    Yutsano

    December 27, 2019 at 11:35 am

    Speaking of diagnostics, I still can’t open the site on Firefox mobile on Android. I can open it in the Samsung browser so there’s some kind of weirdness going on there.

  3. 3.

    Bill Arnold

    December 27, 2019 at 11:37 am

    More of this, please. :-) (To the “amateurs”)
    This terminology (bold) was new to me (and to google, at least in English):

    Luckily, and following the cyber-necrophilia rule to a T, the bucket was open, and exposed thousands of files conveniently organized by the websites they serve, in a total of 146 directories. Before you start crying “Is that all?” – it’s not the only bucket we found.

  4. 4.

    Spanky

    December 27, 2019 at 11:40 am

    @TaMara (HFG): It’s a good bet that when you meet a person who made a great fortune  you’ll find morals sorely lacking.

    Haven’t gotten a 502 error since early this am. Taking that as a good sign.

  5. 5.

    schrodingers_cat

    December 27, 2019 at 11:49 am

    How did they do this? I have been wondering how to tackle the networks of hate that BJP has nurtured and is using like its Radio Rwanda.

  6. 6.

    Another Scott

    December 27, 2019 at 11:51 am

    Thanks Cheryl. I suspect that we’re going to have to continue to depend on amateurs and specialists who run their own sites to get information like this out – the big news sites seemingly don’t have the ability or interest to do these types of important investigations.

    One of my ever-present tabs is Krebs on Security. It’s quite eye-opening the things he posts about. For instance: It’s way to[o] easy to get a .GOV domain name.

    Too much of the internet infrastructure is still based on trust without effective verification. Bad actors take advantage of that to create things that damage our economy and our democratic systems. We need to do much more to fix these issues, and we can’t continue to rely on volunteers to do it.

    Cheers,
    Scott.

  7. 7.

    Rob

    December 27, 2019 at 11:55 am

    Thank you, Cheryl. I will email a link to this post to some friends.

    I second Another Scott re Krebs on Security. In fact, I need to visit that site more often.

    Did the 502 monster swallow this comment? I shall soon see.

    eta: Success, I avoided the monster.

  8. 8.

    Gin & Tonic

    December 27, 2019 at 12:04 pm

    @schrodingers_cat: I’ve gone quickly through the linked article. None of what they did is sophisticated, but you have to have some knowledge of the Web ecosystem. It helps that pretty much everything they were tracking was set up by people with either no knowledge of or no interest in basic operational security. Any person with a year or two of experience could do this.

  9. 9.

    Yutsano

    December 27, 2019 at 12:04 pm

    @Another Scott: I’m too lazy to look right now, but I wonder if the Swift on Security Twitter handle still exists.

  10. 10.

    Gin & Tonic

    December 27, 2019 at 12:06 pm

    @Another Scott: Most of the Internet’s infrastructure is also based on technology that’s 30 years old and was designed for something completely different.

  11. 11.

    Cheryl Rofer

    December 27, 2019 at 12:06 pm

    Thanks to the computer-savvy among us who are deciphering that article. It looks like it gives complete instructions, but I’m not the best person to interpret it.

  12. 12.

    Gin & Tonic

    December 27, 2019 at 12:07 pm

    @Yutsano: Yes, it does. I follow it. S/he is very good.

  13. 13.

    ellenr

    December 27, 2019 at 12:17 pm

    @Yutsano: This is what I use, on multiple Android devices.  TMobile and internet connections from various providers.  Maybe it’s a IP issue???  Rarely had a problem over this period, just a few times site has been down for a few minutes.

  14. 14.

    ThresherK

    December 27, 2019 at 12:18 pm

    “LibertyFocus”.

    Will I live long enough for “liberty” to be a respectable word again?

    (WNBA excepted. Okay, Jeep excepted as well.)

  15. 15.

    Yarrow

    December 27, 2019 at 12:26 pm

    Thanks, Cheryl. I’ve seen other people doing this sort of work for the last several years. We are all susceptible to disinformation and propaganda. We need much better education here about how that stuff works. At least the word “disinformation” is starting to get some attention. I’ll take that as a good sign, although it’s even easy to manipulate that.

  16. 16.

    mrmoshpotato

    December 27, 2019 at 12:29 pm

    @ThresherK: Liberty Mutual NOT excepted.  To hell with those commercials.  That emu needs to kick some asses and not take names.

  17. 17.

    joel hanes

    December 27, 2019 at 12:33 pm

    @Yutsano:

    I still can’t open the site on Firefox mobile

    Might help if you describe exactly what the browser does when you make an attempt that fails.

  18. 18.

    WaterGirl

    December 27, 2019 at 12:43 pm

    @Spanky: I took the liberty of removing your empty quote box. It occurred to me too late that you might have had a secret white-on-white message in there that could only be seen by highlighting the empty space!  rut roh.

  19. 19.

    WaterGirl

    December 27, 2019 at 12:45 pm

    @Yutsano: Can you say more about what’s happening?

  20. 20.

    mrmoshpotato

    December 27, 2019 at 12:52 pm

    @WaterGirl

    All Your Base Are Belong To Us

  21. 21.

    WaterGirl

    December 27, 2019 at 12:58 pm

    @mrmoshpotato: hahaha

  22. 22.

    The Golux

    December 27, 2019 at 1:01 pm

    @mrmoshpotato:

    Liberty Mutual NOT excepted.

    Terrific rates, though.  We just switched to them and cut our auto premium by almost 50%.

  23. 23.

    mrmoshpotato

    December 27, 2019 at 1:06 pm

    @The Golux: And got a free emu?

  24. 24.

    The Golux

    December 27, 2019 at 1:09 pm

    @WaterGirl: Speaking of site issues, one glitch I’ve encountered is that if I paste some text in visual mode and then enclose it in a blockquote, I cannot type below the blockquote unless I switch to text mode and enter text there.  (I assume that if there were some preexisting text below the blockquote, the problem would not arise.)

  25. 25.

    mrmoshpotato

    December 27, 2019 at 1:12 pm

    @The Golux: What I’ve done to get around that is make another empty block below, then delete it.

    ETA – your workaround seems to work too.

  26. 26.

    Yutsano

    December 27, 2019 at 1:19 pm

    @WaterGirl: I just tried it. All that happens is it shows a blank page. Like nothing refreshed. It’s been doing that since the Christmas meltdown.

  27. 27.

    WaterGirl

    December 27, 2019 at 1:30 pm

    @The Golux: Yeah, that’s apparently the way a lot of core editor’s work, and I worried about that a bit before rollout until I realized all you have to do is hit return twice and you are popped out of the block quote.  Then you can continue typing outside the block quote box.

    Let me know if that works for you?  Or if it doesn’t?

  28. 28.

    WaterGirl

    December 27, 2019 at 1:33 pm

    @Yutsano: Hmm.  Guessing you have already tried clearing your cache in that browser?

    So you literally get a white page of nothingness?  Or just the banner but nothing else?  Can you get a screen capture and send it to me?  Either by email to WaterGirl or though Report A Problem  under Site Feedback, which let’s you attach files.  thanks.

  29. 29.

    Roger Moore

    December 27, 2019 at 1:37 pm

    @TaMara (HFG):

    I’ve always said, if I have no morals or dignity, I’d make a fortune off of selling merchandise to Trump/GOP supporters. An easier mark has never been made

    This is an essential point about today’s GOP base: they’re a self-selected pool of marks waiting to be fleeced by every conman who comes along.  The whole right wing media operation is funded by ads from every kind of scammer under the sun.

  30. 30.

    The Golux

    December 27, 2019 at 1:41 pm

    @WaterGirl: Both the double enter and having preexisting text below the blockquote enable the cursor below.

  31. 31.

    WaterGirl

    December 27, 2019 at 1:46 pm

    @The Golux: Success?  I didn’t mention the “always make sure you  add a return or something BEFORE you select the text for blockquote” option because i sometimes forget to do that. :-)

    If you haven’t done that, the double return works every time.

  32. 32.

    BruceFromOhio

    December 27, 2019 at 2:14 pm

    @The Golux: encountered same, if I plan on using a blockquote i put four or five newlines in before pasting in the second or third line.

  33. 33.

    BruceFromOhio

    December 27, 2019 at 2:19 pm

     

  34. 34.

    BruceFromOhio

    December 27, 2019 at 2:22 pm

    @Roger Moore: This. Money to be made if you don’t have a conscience!

  35. 35.

    J R in WV

    December 27, 2019 at 3:06 pm

    Another great expert and security professional is Bruce Schneier, who I’ve followed for so many years that now it’s decades. Here’s his site, which by now contains a huge store of how to do it, and how NOT to do it advice on everything cyber-secure.

  36. 36.

    WaterGirl

    December 27, 2019 at 3:07 pm

    @BruceFromOhio: If there is a secret message in there, it’s very secret! :-)

  37. 37.

    Yutsano

    December 27, 2019 at 3:08 pm

    @WaterGirl: Stupid me didn’t think to clear out the history! I’m all good now. Thank you for the inspiration!

  38. 38.

    WaterGirl

    December 27, 2019 at 3:09 pm

    @Yutsano: Happy dance!

  39. 39.

    WaterGirl

    December 27, 2019 at 3:12 pm

    @Yutsano: The worst thing for the site is for people to not report problems.

    The site should never be disappearing comments for no reason, for example.  So whatever is happening, I need to know about it in order to get to the bottom of what’s going on.

    So I’m glad I happened to be here when you mentioned it.  thanks

  40. 40.

    Villago Delenda Est

    December 27, 2019 at 3:20 pm

    One of the hilarious things about this is that these grifters are basically stealing from Donald’s official vendors, Donald isn’t getting his cut.

  41. 41.

    mrmoshpotato

    December 27, 2019 at 3:23 pm

    @Villago Delenda Est: Sad!  Nah, fuck ’em!

  42. 42.

    VOR

    December 27, 2019 at 3:48 pm

    @Roger Moore: There is a famous article by Rick Perlstein about how much of today’s conservative infrastructure arose out of multi-level marketing.

  43. 43.

    terben

    December 27, 2019 at 6:33 pm

    I look at this site on a daily basis and have done so for several years. I don’t post often. I’m using a laptop with Windows 10 running Firefox.  I occasionally use an iPhone/iOS/Safari. I think that I must have been lucky because yesterday was my first 502 error. Are some platform/browser combinations less prone to glitches?

  44. 44.

    Steeplejack

    December 27, 2019 at 9:10 pm

    @terben:

    There doesn’t seem to be a discernible pattern yet.

  45. 45.

    Ruckus

    December 27, 2019 at 11:10 pm

    50 yrs ago it was normal for a US warship, in international waters to be followed by a Russian naval ship. I’ve watched them when we sailed in the north Atlantic. If we were to refuel they would go much farther away, to avoid any possible collision. Also so as to not get involved if the two ships refueling did hit each other. Which has never happened before, no sir, never once did two ships, sailing along side each other in not all that calm of water, hooked up with steel cables and 10 inch pressurized fuel lines, have any kind of an issue and collide. No steering was ever lost during a refueling….

    No sir that never happened…….

    I also have a bridge for sale in case anyone is interested……

Comments are closed.

Primary Sidebar

Recent Comments

  • Viva BrisVegas on Cold Grey Dawn Open Thread: Mitt Romney Exits, Stage Right (Sep 22, 2023 @ 3:56am)
  • Jay on War for Ukraine Day 575: President Zelenskyy Met With Congress (Sep 22, 2023 @ 3:50am)
  • Msb on Cold Grey Dawn Open Thread: Mitt Romney Exits, Stage Right (Sep 22, 2023 @ 3:50am)
  • Odie Hugh Manatee on Cold Grey Dawn Open Thread: Mitt Romney Exits, Stage Right (Sep 22, 2023 @ 3:46am)
  • Citizen Alan on Cold Grey Dawn Open Thread: Mitt Romney Exits, Stage Right (Sep 22, 2023 @ 3:35am)

🎈Keep Balloon Juice Ad Free

Become a Balloon Juice Patreon
Donate with Venmo, Zelle or PayPal

Balloon Juice Posts

View by Topic
View by Author
View by Month & Year
View by Past Author

Featuring

Medium Cool
Artists in Our Midst
Authors in Our Midst
We All Need A Little Kindness
What Has Biden Done for You Lately?

Balloon Juice Meetups!

All Meetups
Talk of Meetups – Meetup Planning

Fundraising 2023-24

Wis*Dems Supreme Court + SD-8

Calling All Jackals

Site Feedback
Nominate a Rotating Tag
Submit Photos to On the Road
Balloon Juice Mailing List Signup
Balloon Juice Anniversary (All Links)
Balloon Juice Anniversary (All Posts)

Twitter / Spoutible

Balloon Juice (Spoutible)
WaterGirl (Spoutible)
TaMara (Spoutible)
John Cole
DougJ (aka NYT Pitchbot)
Betty Cracker
Tom Levenson
TaMara
David Anderson
Major Major Major Major
ActualCitizensUnited

Join the Fight!

Join the Fight Signup Form
All Join the Fight Posts

Balloon Juice for Ukraine

Donate

Cole & Friends Learn Español

Introductory Post
Cole & Friends Learn Español

Site Footer

Come for the politics, stay for the snark.

  • Facebook
  • RSS
  • Twitter
  • YouTube
  • Comment Policy
  • Our Authors
  • Blogroll
  • Our Artists
  • Privacy Policy

Copyright © 2023 Dev Balloon Juice · All Rights Reserved · Powered by BizBudding Inc

Share this ArticleLike this article? Email it to a friend!

Email sent!