{"id":514,"date":"2012-07-18T14:47:58","date_gmt":"2012-07-18T14:47:58","guid":{"rendered":"https:\/\/trouble.org\/?p=514"},"modified":"2012-07-18T14:59:25","modified_gmt":"2012-07-18T14:59:25","slug":"the-magic-number-is-now-130","status":"publish","type":"post","link":"https:\/\/trouble.org\/?p=514","title":{"rendered":"&#8230;the magic number is now 130"},"content":{"rendered":"<p>Hmm; Facebook is really, really important in WA. \u00a0The\u00a0<a href=\"http:\/\/seattletimes.nwsource.com\/html\/localnews\/2018708620_apusvoterregistrationfacebook.html\">AP reported<\/a>\u00a0that &#8220;Wash. to unveil voter registration on Facebook.&#8221; \u00a0On the face of it, sure, why not? \u00a0Then you see some of the details.<\/p>\n<p><em>Once it&#8217;s live, Facebook users can click on the application within the secretary of state&#8217;s Facebook page. They&#8217;ll need to agree to let Facebook access their information, which will be used to prefill their name and date of birth in the voter registration form. Users will still need to provide a driver&#8217;s license or state ID card number to continue.<\/em><\/p>\n<p>It certainly appears that the secretary of state&#8217;s office is unaware that driver&#8217;s license #&#8217;s are not effective means of ensuring someone is really who they say they are. \u00a0You see, WA state driver&#8217;s licenses and state ID&#8217;s numbers are not random; here&#8217;s\u00a0<a href=\"http:\/\/www.dogberrypatch.com\/archives\/washington-driver-license-numbers-decoded\/\">how they&#8217;re generated<\/a>. \u00a0 And here&#8217;s a\u00a0<a href=\"http:\/\/www.highprogrammer.com\/cgi-bin\/uniqueid\/dl_wa\">2nd link<\/a>\u00a0with a little program that, given a person&#8217;s name and DOB, will generate the corresponding driver&#8217;s license #.<\/p>\n<p>Remember, Facebook supplies the DOB &amp; name, so\u00a0if you walk up to anyone&#8217;s computer with an open facebook page you could register them to any physical address you&#8217;d like to send it to. \u00a0\u00a0This is of particular note in WA state, since we&#8217;ve turned into a <strong>completely postal-service run voting state<\/strong> \u2013 so via Facebook you could potentially hijack a whole bunch of people&#8217;s votes \u2013 and certainly unregistered voters would never know unless they tried to register at a later date.<\/p>\n<p>And it&#8217;s not just leaving your page open&#8230; consider the millions of people in WA with Facebook accounts. \u00a0There are numerous ways to attain their passwords \u2013 a few:<\/p>\n<ol>\n<li>Keylogging software \u2013 this is extremely popular already, and used to steal such things as credit card information, passwords, etc.<\/li>\n<li>Viruses and various web malware (one of the<a href=\"http:\/\/press.pandasecurity.com\/news\/in-january-50-percent-of-computers-worldwide-were-infected-with-some-type-of-computer-threat\/\">\u00a0leading antivirus vendors<\/a>\u00a0estimates about 50% infection rates); a virus that infects your computer can easily steal session information that allows folks to logon automatically (e.g. When you save your Facebook login\/password so you don&#8217;t have to type the darn thing over and over again<\/li>\n<li>Breaking into individual&#8217;s computers. \u00a0No perhaps even more incentive to actually target people&#8217;s computers<\/li>\n<li>Breaking into Facebook \u2013 time and again big company computers are hit, losing hundreds of thousands to millions of passwords. \u00a0Yahoo just lost 450,000, android and phandroid forums were also hacked for another close a 1M more, Linkedin was hit the other day, and more just keep happening. \u00a0Now you can register en masse with your largesse<\/li>\n<li>Phishing \u2013 a very effect attack sent by email to lure people to login to what seems to be a legitimate site (e.g. Banks, email accounts, etc.) but is actually a lure to capture your password<\/li>\n<li>Password guessing \u2013 why go to all the trouble above, just guess. \u00a0A simple analysis of the passwords on yahoo showed the top 10 passwords were\u00a0123456, password, welcome, ninja, abc123, 123456789, 12345678, sunshine, princess, &amp; qwerty \u2013 why should Facebook users be any different?<\/li>\n<li>Heck, interviewing for a job \u2013 the current fad with employers is to demand your Facebook password<\/li>\n<\/ol>\n<p>Register your kid, your partner, who cares who gets to vote as long as there are more of them? \u00a0With <a href=\"http:\/\/www.sos.wa.gov\/elections\/vrdb\/VRDBFaq.aspx\">over 20% of the populace<\/a> not registered, that&#8217;s a lot of missed votes out there.<\/p>\n<p>This is serious business. \u00a0I&#8217;ll just say our current governor won her prior election by 129 votes. \u00a0How many Facebook accounts is that?<\/p>\n<p>^..^<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Hmm; Facebook is really, really important in WA. \u00a0The\u00a0AP reported\u00a0that &#8220;Wash. to unveil voter registration on Facebook.&#8221; \u00a0On the face of it, sure, why not? \u00a0Then you see some of the details. Once it&#8217;s live, Facebook users can click on the application within the secretary of state&#8217;s Facebook page. They&#8217;ll need to agree to let [&hellip;]<\/p>\n","protected":false},"author":44,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[80,4,122],"tags":[123,124,125,332],"class_list":["post-514","post","type-post","status-publish","format-standard","hentry","category-government","category-security","category-voting","tag-fraud","tag-stupid-ideas","tag-votes","tag-voting"],"_links":{"self":[{"href":"https:\/\/trouble.org\/index.php?rest_route=\/wp\/v2\/posts\/514","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/trouble.org\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/trouble.org\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/trouble.org\/index.php?rest_route=\/wp\/v2\/users\/44"}],"replies":[{"embeddable":true,"href":"https:\/\/trouble.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=514"}],"version-history":[{"count":5,"href":"https:\/\/trouble.org\/index.php?rest_route=\/wp\/v2\/posts\/514\/revisions"}],"predecessor-version":[{"id":518,"href":"https:\/\/trouble.org\/index.php?rest_route=\/wp\/v2\/posts\/514\/revisions\/518"}],"wp:attachment":[{"href":"https:\/\/trouble.org\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=514"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/trouble.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=514"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/trouble.org\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=514"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}