Category Archives: Security

Red Means Dead: U.S. Political Affiliation Correlated to Disease

The U.S. Center for Disease Control (CDC) has published data showing a large political party is killing its members like a primitive cult drinking Jel Sert’s Flavor Aid. Can you guess which one? Here is a clue from ABC.

“…the 10 states with the highest vaccination rates all voted for Biden in 2020, while nine of the 10 states with the lowest vaccination rates [did not].”

It really begs the question for who in the security industry did not vote for the party that stood for national safety and preserving life, given the other one actively opposed basic security.

The ABC goes on to say there was a vast discrepancy between red and blue beliefs as death correlated to political regions. Notably, the differences were measured in “access to adequate healthcare, and the disproportionate impact of the virus on communities of color.”

People taking drinking the red stuff experienced less healthcare, more racism.

And again, given our industry is supposed to care about information integrity, we have to wonder who voted for America having a national security breach of this magnitude.

…vaccination rates and receptivity to mitigation measures have also been influenced by factors including misinformation.

Can someone ethically be a security professional who goes on Fox news to whinge about stopping breaches (that have marginal likelihood and severity) while voting for a party that attacks the country en masse (killing literally millions)?

Once a vaccine was widely available the death rates shot up nearly 40% in “red” states. This is basically a United States security dashboard where user groups who refuse baseline precautions on political grounds alone are going permanently offline at an alarming rate.

Speaking of misinformation, Jel Sert’s official grape Flavor Aid page says its primary ingredient on the left side is sugar made from cornstarch (Dextrose), yet the nutrition label doesn’t list sugar at all on the right side.

Source: Jel Sert

Very strange, given that dextrose powder has about 4 calories per gram just like table sugar (sucrose) and quickly raises blood glucose levels. This 4 gram package mixed with water gives 16 calories of sugar and basically nothing else (including attempts to hide the sugar as vitamin C).

Dextrose is said to lead directly to weight gain, diabetes and heart disease if you believe the science in a large-scale study from April 2014 in JAMA Internal Medicine. Such warnings about the dangers of dextrose were echoed again in 2017 by BMJ OpenHeart. So how can a sugar product have a prominent list that doesn’t include sugar?

[FDA requirement to put on a nutrition facts list] added sugars include sugars that are added during the processing of foods (such as sucrose or dextrose)… For most Americans, the main sources of added sugars are sugar-sweetened beverages…

Again speaking of misinformation, Elon Musk originally said in early 2020 that COVID19 would be gone by April, and then in late 2020 that he did not believe in safety measures and would not get a vaccine. Two years later he has both gotten the vaccine and twice been tested positive for COVID-19.

If this sounds like misinformation from a prominent political voice in America, it gets even worse. News reports say he used his bully pulpit to convince people their lives didn’t matter.

…he spent months criticizing public health measures aimed at curbing the spread of the coronavirus, promoting misinformation about COVID-19 such as insisting it wasn’t very deadly, and baselessly casting doubt on the effectiveness of vaccines.

In fact, Elon Musk said in the most political way he would move his entire operations to a “red” state after California said it was applying pandemic precautions (as well as investigating racism) to protect his workers from abuse and death.

This is unfortunately consistent with him also telling the public lies about transportation safety, allegedly profiting from cutting corners in the low-quality deceptive Teslas that caused hundreds of preventable deaths… perhaps making it the Flavor Aid of cars.

All food for thought.

“The Russians have no imagination”

As I’ve been saying over and over again here (mostly to offset the officials who over-optimistically state Russia can learn or adapt from mistakes) we’re looking at a paper bear going to war in Ukraine.

A dictatorship that destroys imagination and criminalizes innovation, there is little to no chance its troops being trained in how to learn and adapt to any immediate challenge (with the exception of looting and stealing).

The Atlantic now writes this in very exact language from the front lines of war in Ukraine.

He said he had spent much of the past few weeks in the trenches northwest of Kyiv. “The Russians have no imagination,” he said. “They would shell our positions, attack in large formations, and when their assaults failed, do it all over again. Meanwhile, the Ukrainians would raid the Russian lines in small groups night after night, wearing them down.”

It’s proof of both why technology augmentation works so well (human intelligence) and why technology automation is a disaster (human replacement).

“The Russians don’t empower their soldiers,” Zagorodnyuk explained. “They tell their soldiers to go from Point A to Point B, and only when they get to Point B will they be told where to go next, and junior soldiers are rarely told the reason they are performing any task. This centralized command and control can work, but only when events go according to plan. When the plan doesn’t hold together, their centralized method collapses. No one can adapt, and you get things like 40-mile-long traffic jams outside Kyiv.”

This is not to underestimate the suffering caused by Russia.

Just like Nazi Germany, totally ignorant dis-empowered soldiers can commit some of the worst war crimes imaginable and untold destruction of humanity. Even as they fail and falter, plans falling apart, men intent on doing harm can lash out relentlessly and try to take others down with them.

And just like Nazi Germany the war was lost very early, at least by 1942, but they kept fighting anyway for years and committing genocide. Nobody knows what happens next. Things could get worse before they get better. I didn’t even think Russia would invade because to do so is so incredibly stupid and self-defeating. That was my mistake, and I’ve since learned that the Kremlin is even dumber than I had imagined.

“In the world of Fox News, an African name alone is disqualifying.”

The idea of a worse future due to AI is rooted in understanding how automation of bad things happened in the past (e.g. philosophy, politics, economics), and how that will mean even more bad things ahead.

Ifeoma Ajunwa has written an amazing article giving exactly the kind of example we all should study.

He points out what any intelligent human operator would key in on: known qualifications.

…as Sen. Amy Klobuchar helpfully shared on the first day of hearings for Judge Jackson’s confirmation, the nominee has more judicial experience than “four people who are already on the Supreme Court.”

And before that, he points out what un-intelligent (e.g. dumb robot) operators get stuck on: fear based on the unfamiliar or unknown (e.g. racism).

If there were any doubt that this social discrimination still exists, just consider the minimally veiled racist remarks Tucker Carlson made about Judge Jackson’s African name while questioning her credentials. “So, is Ketanji Brown Jackson—a name that even Joe Biden has trouble pronouncing—one of the top legal minds in the entire country?” he asked. In the world of Fox News, an African name alone is disqualifying.

So true. So well said.

But it gets even better. Ifeoma links his analysis to a history of systemic racism in America.

In 2004, Marianne Bertrand and Sendhil Mullainathan published a now-famous field experiment they conducted to test racial discrimination in hiring. They responded with fictitious résumés to help-wanted ads in Boston and Chicago newspapers. They assigned each résumé either a very African American–sounding name (think Lakisha and Jamal) or a very White-sounding name (think Emily or Greg). One result: In general, résumés with White (read European) names received 50 percent more callbacks for interviews. Bertrand and Mullainathan also found that the amount of discrimination was the same across occupations and industries.

The employers did not know for certain that the job applicants were Black Americans—they were making the conclusion based on how they perceived the name.

How our brains perceive a name can be actively manipulated by “deliberately misleading” partisan extremists like Tucker “gas chamber” Carlson.

For weeks, Fox News host Tucker Carlson’s prime-time show has featured racist attacks…

The fact that an alleged asset of foreign military intelligence (Russia) can poison information so openly in America is disappointing on its own, of course. Even worse is when automation technology gives them far more impact.

Fox “news” is basically this:

…open-ended endorsement of white supremacist ideology…

Recognize that Fox is a past form of automation and therefore foreshadowing of the ugly side to AI. The ability to move racism faster and wider, to create more harm more quickly than before, will be the outcome of “open-ended” use of technology for hate.

Google Chrome CVE-2022-1096 Emergency Patch

Shortly after announcing a CRITICAL security patch for CVE-2022-0971 Google is at it once again, dropping a HIGH security patch as an emergency yesterday.

Google is aware that an exploit for CVE-2022-1096 exists in the wild.

There is only one CVE listed in the update announcement, which hints towards a higher severity than just HIGH not to mention exploits exist in the wild.

The Stable channel has been updated to 99.0.4844.84… This update includes 1 security fix.

It also follows news of attribution for an exploit circulating at the start of 2022, which claims North Korea hunted Americans on Google Chrome with CVE-2022-0609 to steal crypto coin and intelligence.