SlideShare a Scribd company logo

Practical Influence Operations, presentation at Sofwerx Dec 2018

Download as PPTX, PDF
bodaceacat
bodaceacat

Presentation on practical responses to misinformation as part of hybrid warfare, including the use of infosec frameworks to frame attacks and responses.

Technology
1 of 41
Bodacea Light Industries, 2018 Practical Influence Operations Sara-Jayne “SJ” Terp December 2018 1
Bodacea Light Industries, 2018 Offense Where we are today 2
Bodacea Light Industries, 2018 Definitions 3
Bodacea Light Industries, 2018 Misinformation 4
Bodacea Light Industries, 2018 Social Engineering 5 ion of people into performing actions or divulging
Bodacea Light Industries, 2018 At Scale 6 Facebook group total_shares interactions Facebook.com/Blacktivists 103,767,792 6,182,835 Facebook.com/Txrebels 102,950,151 3,453,143 Facebook.Com/MuslimAmerica 71,355,895 2,128,875 Facebook.Com/Patriototus 51,139,860 4,438,745 Facebook.Com/Secured.Borders 5,600,136 1,592,771 Facebook.Com/Lgtbun 5,187,494 1,262,386
Bodacea Light Industries, 2018 Impact of misinformation 7
Bodacea Light Industries, 2018 Individuals: fake events 8
Bodacea Light Industries, 2018 Communities: diverted crisis efforts 9
Bodacea Light Industries, 2018 Nationstates: Qanon campaigns 10 “Action: continuous barrage of memes. All SM platforms Hashtags: #HRCvideo #releasethevideo #maga #QAnon Use top trending hashtags along with your posts. Share and retweet as much as possible”
Bodacea Light Industries, 2018 How big is this 11
Bodacea Light Industries, 2018 Targeting your brain 12
Bodacea Light Industries, 2018 Targeting groups 13
Bodacea Light Industries, 2018 Targeting all social sites 14
Bodacea Light Industries, 2018 Targeting everyone 15
Bodacea Light Industries, 2018 Actors, Motivations • State/nonstate actors • Entrepreneurs • Grassroots groups • Private influencers 16
Bodacea Light Industries, 2018 Defense “Isn’t it just like spam?” 17
Bodacea Light Industries, 2018 This isn’t too different to infosec 18
Bodacea Light Industries, 2018 Detect 19
Bodacea Light Industries, 2018 Sources 20
Bodacea Light Industries, 2018 Artefacts: Content 21 • Co-occurring hashtags • Correlated text • URLs • Stories
Bodacea Light Industries, 2018 Stories 22
Bodacea Light Industries, 2018 Artefacts: Context 23 • Known botnets/trolls • Previous rumours • friends/followers • retweets/likes • Metadata (e.g. DNS)
Bodacea Light Industries, 2018 Money 24
Bodacea Light Industries, 2018 Respond 25
Bodacea Light Industries, 2018 Individual: report trolls/botnets 26 “Twitter (reportedly) suspended over 70 million accounts” “Facebook created a human crisis team after algorithms failed it”
Bodacea Light Industries, 2018 Individual: report fraud 27
Bodacea Light Industries, 2018 Individual: block 28
Bodacea Light Industries, 2018 Platforms • Remove non-human traffic • Rate-limit / shadowban trolls • Remove pages from ad exchanges • Remove non-human traffic from ad exchanges 29
Bodacea Light Industries, 2018 Community: Engage 30
Bodacea Light Industries, 2018 Individual: Repair 31
Bodacea Light Industries, 2018 Community • Parody-based counter-campaigns (e.g. riffs on “Q”) • SEO-hack misinformation sites • Dogpile onto misinformation hashtags • Divert followers (typosquat trolls, spoof messaging etc) • Identify and engage with affected individuals • Educate, verify, bring into the light 32
Bodacea Light Industries, 2018 Adaptations The game is changing all the time 33
Bodacea Light Industries, 2018 Attacks are adapting all the time 34
Bodacea Light Industries, 2018 Offense: Potentials for Next • Algorithms + humans attack algorithms + humans • Shift from trolls to ‘nudging’ existing human communities (‘useful idiots’) • Subtle attacks, e.g. ’low-and-slows’, ‘pop-up’, etc • Massively multi-channel attacks • More commercial targets • A well-established part of hybrid warfare 35
Bodacea Light Industries, 2018 (Please) stop being passive 36
Bodacea Light Industries, 2018 Defence: Potential for next • Strategic and tactical collaboration • Trusted third-party sharing on fake news sites / botnets • Misinformation version of ATT&CK, SANS20 frameworks • Algorithms + humans counter algorithms + humans • Thinking the unthinkable • “Countermeasures and self-defense actions” 37
Bodacea Light Industries, 2018 My current work: Anti-Fraud 38
Bodacea Light Industries, 2018 My Hobby: Infrastructure 39
Bodacea Light Industries, 2018 Your part: don’t fight the last war 40
Bodacea Light Industries, 2018 Thank you SJ Terp @bodaceacat 41

Recommended

The social graph Call
The social graph CallThe social graph Call
The social graph CallYoni Yadgaran, CFA
 
Facebook comes of age?
Facebook comes of age?Facebook comes of age?
Facebook comes of age?
Martin Thomas
 
Corporate social media communication - EPHEC - 26/11/2018
Corporate social media communication - EPHEC - 26/11/2018Corporate social media communication - EPHEC - 26/11/2018
Corporate social media communication - EPHEC - 26/11/2018
Denys Malengreau
 
Web 2.0 and Social Media
Web 2.0 and Social MediaWeb 2.0 and Social Media
Web 2.0 and Social Media
NFN Labs
 
Sjterp ds_of_misinfo_feb_2019
Sjterp ds_of_misinfo_feb_2019Sjterp ds_of_misinfo_feb_2019
Sjterp ds_of_misinfo_feb_2019
bodaceacat
 
South By South Best 2018
South By South Best 2018 South By South Best 2018
South By South Best 2018
James Quinlan
 
Social Media, Periklis Vanikiotis, Boussias Comm.
Social Media, Periklis Vanikiotis, Boussias Comm.Social Media, Periklis Vanikiotis, Boussias Comm.
Social Media, Periklis Vanikiotis, Boussias Comm.
Christos Latos
 
Gimmicks to Game Changers
Gimmicks to Game Changers Gimmicks to Game Changers
Gimmicks to Game Changers
Martin Thomas
 

Recommended

The social graph Call
The social graph CallThe social graph Call
The social graph CallYoni Yadgaran, CFA
 
Facebook comes of age?
Facebook comes of age?Facebook comes of age?
Facebook comes of age?
Martin Thomas
 
Corporate social media communication - EPHEC - 26/11/2018
Corporate social media communication - EPHEC - 26/11/2018Corporate social media communication - EPHEC - 26/11/2018
Corporate social media communication - EPHEC - 26/11/2018
Denys Malengreau
 
Web 2.0 and Social Media
Web 2.0 and Social MediaWeb 2.0 and Social Media
Web 2.0 and Social Media
NFN Labs
 
Sjterp ds_of_misinfo_feb_2019
Sjterp ds_of_misinfo_feb_2019Sjterp ds_of_misinfo_feb_2019
Sjterp ds_of_misinfo_feb_2019
bodaceacat
 
South By South Best 2018
South By South Best 2018 South By South Best 2018
South By South Best 2018
James Quinlan
 
Social Media, Periklis Vanikiotis, Boussias Comm.
Social Media, Periklis Vanikiotis, Boussias Comm.Social Media, Periklis Vanikiotis, Boussias Comm.
Social Media, Periklis Vanikiotis, Boussias Comm.
Christos Latos
 
Gimmicks to Game Changers
Gimmicks to Game Changers Gimmicks to Game Changers
Gimmicks to Game Changers
Martin Thomas
 
Socialnomics: ICOR Presentation
Socialnomics: ICOR PresentationSocialnomics: ICOR Presentation
Socialnomics: ICOR Presentation
Crystal Vilkaitis
 
Socialnomics
SocialnomicsSocialnomics
Socialnomics
Tisha Silvers
 
Loveland Chamber Cyber Chat
Loveland Chamber Cyber ChatLoveland Chamber Cyber Chat
Loveland Chamber Cyber ChatCrystal Vilkaitis
 
MIMA Summit Social Marketing 101 presentation
MIMA Summit Social Marketing 101 presentationMIMA Summit Social Marketing 101 presentation
MIMA Summit Social Marketing 101 presentation
Nathan Wright
 
The Impact of Social Media on Organizations
The Impact of Social Media on OrganizationsThe Impact of Social Media on Organizations
The Impact of Social Media on Organizations
vitiellogroup
 
Trend summary 2022
Trend summary 2022Trend summary 2022
Trend summary 2022
Ezra Eeman
 
Social Media Trends 2023 @ Social Media Breakfast Minnesota
Social Media Trends 2023 @ Social Media Breakfast MinnesotaSocial Media Trends 2023 @ Social Media Breakfast Minnesota
Social Media Trends 2023 @ Social Media Breakfast Minnesota
Arik Hanson
 
Social Media Strategies (July 2011) at Seattle's School of Visual Concepts
Social Media Strategies (July 2011) at Seattle's School of Visual ConceptsSocial Media Strategies (July 2011) at Seattle's School of Visual Concepts
Social Media Strategies (July 2011) at Seattle's School of Visual Concepts
social3i
 
Addressing post-truth - GSK - 10/05/2019
Addressing post-truth - GSK - 10/05/2019Addressing post-truth - GSK - 10/05/2019
Addressing post-truth - GSK - 10/05/2019
Denys Malengreau
 
Introduction To Social Media MBA Class At Webster University
Introduction To Social Media MBA Class At Webster UniversityIntroduction To Social Media MBA Class At Webster University
Introduction To Social Media MBA Class At Webster University
Collin Condray
 
Presentation Slides For 5 28 Breakfast
Presentation Slides For 5 28 BreakfastPresentation Slides For 5 28 Breakfast
Presentation Slides For 5 28 Breakfast
Sales Strategy and Innovation Delivery
 
Socialnomics | Workshop
Socialnomics | WorkshopSocialnomics | Workshop
Socialnomics | Workshop
Crystal Vilkaitis
 
Linktree - Creator Report 2022 -_EN.pdf
Linktree - Creator Report 2022 -_EN.pdfLinktree - Creator Report 2022 -_EN.pdf
Linktree - Creator Report 2022 -_EN.pdf
Poppy Rodham
 
Socialmediainthedigitalmediamix
SocialmediainthedigitalmediamixSocialmediainthedigitalmediamix
Socialmediainthedigitalmediamixtonita131313
 
Cultural & Organisational Challenge of Social Media
Cultural & Organisational Challenge of Social MediaCultural & Organisational Challenge of Social Media
Cultural & Organisational Challenge of Social Media
Martin Thomas
 
Rhodri davies technology and future challenges facing charities
Rhodri davies technology and future challenges facing charitiesRhodri davies technology and future challenges facing charities
Rhodri davies technology and future challenges facing charities
rhoddavies1
 
Crump Digital Age Final
Crump Digital Age FinalCrump Digital Age Final
Crump Digital Age Final
Razorfish
 
By the people for the people
By the people for the people By the people for the people
By the people for the peoplePinny Gniwisch
 
Horizon scanning for charities and civil society
Horizon scanning for charities and civil societyHorizon scanning for charities and civil society
Horizon scanning for charities and civil society
rhoddavies1
 
Keynote: Six Hidden Opportunities for Social Media Integration
Keynote: Six Hidden Opportunities for Social Media IntegrationKeynote: Six Hidden Opportunities for Social Media Integration
Keynote: Six Hidden Opportunities for Social Media Integration
MediaPost
 
CansecWest2019: Infosec Frameworks for Misinformation
CansecWest2019: Infosec Frameworks for MisinformationCansecWest2019: Infosec Frameworks for Misinformation
CansecWest2019: Infosec Frameworks for Misinformation
bodaceacat
 
2019 11 terp_breuer_disclosure_master
2019 11 terp_breuer_disclosure_master2019 11 terp_breuer_disclosure_master
2019 11 terp_breuer_disclosure_master
bodaceacat
 

More Related Content

Similar to Practical Influence Operations, presentation at Sofwerx Dec 2018

Socialnomics: ICOR Presentation
Socialnomics: ICOR PresentationSocialnomics: ICOR Presentation
Socialnomics: ICOR Presentation
Crystal Vilkaitis
 
Socialnomics
SocialnomicsSocialnomics
Socialnomics
Tisha Silvers
 
MIMA Summit Social Marketing 101 presentation
MIMA Summit Social Marketing 101 presentationMIMA Summit Social Marketing 101 presentation
MIMA Summit Social Marketing 101 presentation
Nathan Wright
 
The Impact of Social Media on Organizations
The Impact of Social Media on OrganizationsThe Impact of Social Media on Organizations
The Impact of Social Media on Organizations
vitiellogroup
 
Trend summary 2022
Trend summary 2022Trend summary 2022
Trend summary 2022
Ezra Eeman
 
Social Media Trends 2023 @ Social Media Breakfast Minnesota
Social Media Trends 2023 @ Social Media Breakfast MinnesotaSocial Media Trends 2023 @ Social Media Breakfast Minnesota
Social Media Trends 2023 @ Social Media Breakfast Minnesota
Arik Hanson
 
Social Media Strategies (July 2011) at Seattle's School of Visual Concepts
Social Media Strategies (July 2011) at Seattle's School of Visual ConceptsSocial Media Strategies (July 2011) at Seattle's School of Visual Concepts
Social Media Strategies (July 2011) at Seattle's School of Visual Concepts
social3i
 
Addressing post-truth - GSK - 10/05/2019
Addressing post-truth - GSK - 10/05/2019Addressing post-truth - GSK - 10/05/2019
Addressing post-truth - GSK - 10/05/2019
Denys Malengreau
 
Introduction To Social Media MBA Class At Webster University
Introduction To Social Media MBA Class At Webster UniversityIntroduction To Social Media MBA Class At Webster University
Introduction To Social Media MBA Class At Webster University
Collin Condray
 
Presentation Slides For 5 28 Breakfast
Presentation Slides For 5 28 BreakfastPresentation Slides For 5 28 Breakfast
Presentation Slides For 5 28 Breakfast
Sales Strategy and Innovation Delivery
 
Socialnomics | Workshop
Socialnomics | WorkshopSocialnomics | Workshop
Socialnomics | Workshop
Crystal Vilkaitis
 
Linktree - Creator Report 2022 -_EN.pdf
Linktree - Creator Report 2022 -_EN.pdfLinktree - Creator Report 2022 -_EN.pdf
Linktree - Creator Report 2022 -_EN.pdf
Poppy Rodham
 
Socialmediainthedigitalmediamix
SocialmediainthedigitalmediamixSocialmediainthedigitalmediamix
Socialmediainthedigitalmediamixtonita131313
 
Cultural & Organisational Challenge of Social Media
Cultural & Organisational Challenge of Social MediaCultural & Organisational Challenge of Social Media
Cultural & Organisational Challenge of Social Media
Martin Thomas
 
Rhodri davies technology and future challenges facing charities
Rhodri davies technology and future challenges facing charitiesRhodri davies technology and future challenges facing charities
Rhodri davies technology and future challenges facing charities
rhoddavies1
 
Crump Digital Age Final
Crump Digital Age FinalCrump Digital Age Final
Crump Digital Age Final
Razorfish
 
By the people for the people
By the people for the people By the people for the people
By the people for the peoplePinny Gniwisch
 
Horizon scanning for charities and civil society
Horizon scanning for charities and civil societyHorizon scanning for charities and civil society
Horizon scanning for charities and civil society
rhoddavies1
 
Keynote: Six Hidden Opportunities for Social Media Integration
Keynote: Six Hidden Opportunities for Social Media IntegrationKeynote: Six Hidden Opportunities for Social Media Integration
Keynote: Six Hidden Opportunities for Social Media Integration
MediaPost
 

Similar to Practical Influence Operations, presentation at Sofwerx Dec 2018 (20)

Socialnomics: ICOR Presentation
Socialnomics: ICOR PresentationSocialnomics: ICOR Presentation
Socialnomics: ICOR Presentation
 
Socialnomics
SocialnomicsSocialnomics
Socialnomics
 
Loveland Chamber Cyber Chat
Loveland Chamber Cyber ChatLoveland Chamber Cyber Chat
Loveland Chamber Cyber Chat
 
MIMA Summit Social Marketing 101 presentation
MIMA Summit Social Marketing 101 presentationMIMA Summit Social Marketing 101 presentation
MIMA Summit Social Marketing 101 presentation
 
The Impact of Social Media on Organizations
The Impact of Social Media on OrganizationsThe Impact of Social Media on Organizations
The Impact of Social Media on Organizations
 
Trend summary 2022
Trend summary 2022Trend summary 2022
Trend summary 2022
 
Social Media Trends 2023 @ Social Media Breakfast Minnesota
Social Media Trends 2023 @ Social Media Breakfast MinnesotaSocial Media Trends 2023 @ Social Media Breakfast Minnesota
Social Media Trends 2023 @ Social Media Breakfast Minnesota
 
Social Media Strategies (July 2011) at Seattle's School of Visual Concepts
Social Media Strategies (July 2011) at Seattle's School of Visual ConceptsSocial Media Strategies (July 2011) at Seattle's School of Visual Concepts
Social Media Strategies (July 2011) at Seattle's School of Visual Concepts
 
Addressing post-truth - GSK - 10/05/2019
Addressing post-truth - GSK - 10/05/2019Addressing post-truth - GSK - 10/05/2019
Addressing post-truth - GSK - 10/05/2019
 
Introduction To Social Media MBA Class At Webster University
Introduction To Social Media MBA Class At Webster UniversityIntroduction To Social Media MBA Class At Webster University
Introduction To Social Media MBA Class At Webster University
 
Presentation Slides For 5 28 Breakfast
Presentation Slides For 5 28 BreakfastPresentation Slides For 5 28 Breakfast
Presentation Slides For 5 28 Breakfast
 
Socialnomics | Workshop
Socialnomics | WorkshopSocialnomics | Workshop
Socialnomics | Workshop
 
Linktree - Creator Report 2022 -_EN.pdf
Linktree - Creator Report 2022 -_EN.pdfLinktree - Creator Report 2022 -_EN.pdf
Linktree - Creator Report 2022 -_EN.pdf
 
Socialmediainthedigitalmediamix
SocialmediainthedigitalmediamixSocialmediainthedigitalmediamix
Socialmediainthedigitalmediamix
 
Cultural & Organisational Challenge of Social Media
Cultural & Organisational Challenge of Social MediaCultural & Organisational Challenge of Social Media
Cultural & Organisational Challenge of Social Media
 
Rhodri davies technology and future challenges facing charities
Rhodri davies technology and future challenges facing charitiesRhodri davies technology and future challenges facing charities
Rhodri davies technology and future challenges facing charities
 
Crump Digital Age Final
Crump Digital Age FinalCrump Digital Age Final
Crump Digital Age Final
 
By the people for the people
By the people for the people By the people for the people
By the people for the people
 
Horizon scanning for charities and civil society
Horizon scanning for charities and civil societyHorizon scanning for charities and civil society
Horizon scanning for charities and civil society
 
Keynote: Six Hidden Opportunities for Social Media Integration
Keynote: Six Hidden Opportunities for Social Media IntegrationKeynote: Six Hidden Opportunities for Social Media Integration
Keynote: Six Hidden Opportunities for Social Media Integration
 

More from bodaceacat

CansecWest2019: Infosec Frameworks for Misinformation
CansecWest2019: Infosec Frameworks for MisinformationCansecWest2019: Infosec Frameworks for Misinformation
CansecWest2019: Infosec Frameworks for Misinformation
bodaceacat
 
2019 11 terp_breuer_disclosure_master
2019 11 terp_breuer_disclosure_master2019 11 terp_breuer_disclosure_master
2019 11 terp_breuer_disclosure_master
bodaceacat
 
Terp breuer misinfosecframeworks_cansecwest2019
Terp breuer misinfosecframeworks_cansecwest2019Terp breuer misinfosecframeworks_cansecwest2019
Terp breuer misinfosecframeworks_cansecwest2019
bodaceacat
 
Misinfosec frameworks Cansecwest 2019
Misinfosec frameworks Cansecwest 2019Misinfosec frameworks Cansecwest 2019
Misinfosec frameworks Cansecwest 2019
bodaceacat
 
Session 10 handling bigger data
Session 10 handling bigger dataSession 10 handling bigger data
Session 10 handling bigger data
bodaceacat
 
Session 09 learning relationships.pptx
Session 09 learning relationships.pptxSession 09 learning relationships.pptx
Session 09 learning relationships.pptx
bodaceacat
 
Session 08 geospatial data
Session 08 geospatial dataSession 08 geospatial data
Session 08 geospatial data
bodaceacat
 
Session 07 text data.pptx
Session 07 text data.pptxSession 07 text data.pptx
Session 07 text data.pptx
bodaceacat
 
Session 06 machine learning.pptx
Session 06 machine learning.pptxSession 06 machine learning.pptx
Session 06 machine learning.pptx
bodaceacat
 
Session 05 cleaning and exploring
Session 05 cleaning and exploringSession 05 cleaning and exploring
Session 05 cleaning and exploring
bodaceacat
 
Session 04 communicating results
Session 04 communicating resultsSession 04 communicating results
Session 04 communicating results
bodaceacat
 
Session 03 acquiring data
Session 03 acquiring dataSession 03 acquiring data
Session 03 acquiring data
bodaceacat
 
Session 02 python basics
Session 02 python basicsSession 02 python basics
Session 02 python basics
bodaceacat
 
Session 01 designing and scoping a data science project
Session 01 designing and scoping a data science projectSession 01 designing and scoping a data science project
Session 01 designing and scoping a data science project
bodaceacat
 
Gp technologybuilds july2011
Gp technologybuilds july2011Gp technologybuilds july2011
Gp technologybuilds july2011
bodaceacat
 
Gp technologybuilds july2011
Gp technologybuilds july2011Gp technologybuilds july2011
Gp technologybuilds july2011
bodaceacat
 
Ardrone represent
Ardrone representArdrone represent
Ardrone representbodaceacat
 
Global pulse app connection manager
Global pulse app connection managerGlobal pulse app connection manager
Global pulse app connection managerbodaceacat
 
Un Pulse Camp - Humanitarian Innovation
Un Pulse Camp - Humanitarian InnovationUn Pulse Camp - Humanitarian Innovation
Un Pulse Camp - Humanitarian Innovation
bodaceacat
 
Blue light services
Blue light servicesBlue light services
Blue light services
bodaceacat
 

More from bodaceacat (20)

CansecWest2019: Infosec Frameworks for Misinformation
CansecWest2019: Infosec Frameworks for MisinformationCansecWest2019: Infosec Frameworks for Misinformation
CansecWest2019: Infosec Frameworks for Misinformation
 
2019 11 terp_breuer_disclosure_master
2019 11 terp_breuer_disclosure_master2019 11 terp_breuer_disclosure_master
2019 11 terp_breuer_disclosure_master
 
Terp breuer misinfosecframeworks_cansecwest2019
Terp breuer misinfosecframeworks_cansecwest2019Terp breuer misinfosecframeworks_cansecwest2019
Terp breuer misinfosecframeworks_cansecwest2019
 
Misinfosec frameworks Cansecwest 2019
Misinfosec frameworks Cansecwest 2019Misinfosec frameworks Cansecwest 2019
Misinfosec frameworks Cansecwest 2019
 
Session 10 handling bigger data
Session 10 handling bigger dataSession 10 handling bigger data
Session 10 handling bigger data
 
Session 09 learning relationships.pptx
Session 09 learning relationships.pptxSession 09 learning relationships.pptx
Session 09 learning relationships.pptx
 
Session 08 geospatial data
Session 08 geospatial dataSession 08 geospatial data
Session 08 geospatial data
 
Session 07 text data.pptx
Session 07 text data.pptxSession 07 text data.pptx
Session 07 text data.pptx
 
Session 06 machine learning.pptx
Session 06 machine learning.pptxSession 06 machine learning.pptx
Session 06 machine learning.pptx
 
Session 05 cleaning and exploring
Session 05 cleaning and exploringSession 05 cleaning and exploring
Session 05 cleaning and exploring
 
Session 04 communicating results
Session 04 communicating resultsSession 04 communicating results
Session 04 communicating results
 
Session 03 acquiring data
Session 03 acquiring dataSession 03 acquiring data
Session 03 acquiring data
 
Session 02 python basics
Session 02 python basicsSession 02 python basics
Session 02 python basics
 
Session 01 designing and scoping a data science project
Session 01 designing and scoping a data science projectSession 01 designing and scoping a data science project
Session 01 designing and scoping a data science project
 
Gp technologybuilds july2011
Gp technologybuilds july2011Gp technologybuilds july2011
Gp technologybuilds july2011
 
Gp technologybuilds july2011
Gp technologybuilds july2011Gp technologybuilds july2011
Gp technologybuilds july2011
 
Ardrone represent
Ardrone representArdrone represent
Ardrone represent
 
Global pulse app connection manager
Global pulse app connection managerGlobal pulse app connection manager
Global pulse app connection manager
 
Un Pulse Camp - Humanitarian Innovation
Un Pulse Camp - Humanitarian InnovationUn Pulse Camp - Humanitarian Innovation
Un Pulse Camp - Humanitarian Innovation
 
Blue light services
Blue light servicesBlue light services
Blue light services
 

Recently uploaded

State of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 previewState of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
Prayukth K V
 
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
Product School
 
PHP Frameworks: I want to break free (IPC Berlin 2024)
PHP Frameworks: I want to break free (IPC Berlin 2024)PHP Frameworks: I want to break free (IPC Berlin 2024)
PHP Frameworks: I want to break free (IPC Berlin 2024)
Ralf Eggert
 
Assuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyesAssuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyes
ThousandEyes
 
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdf
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdfSAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdf
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdf
Peter Spielvogel
 
FIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdfFIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance
 
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdfFIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance
 
Generative AI Deep Dive: Advancing from Proof of Concept to Production
Generative AI Deep Dive: Advancing from Proof of Concept to ProductionGenerative AI Deep Dive: Advancing from Proof of Concept to Production
Generative AI Deep Dive: Advancing from Proof of Concept to Production
Aggregage
 
PCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase TeamPCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase Team
ControlCase
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
DianaGray10
 
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
James Anderson
 
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdfFIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
FIDO Alliance
 
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Ramesh Iyer
 
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdfFIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
OnBoard
 
UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3
DianaGray10
 
Le nuove frontiere dell'AI nell'RPA con UiPath Autopilot™
Le nuove frontiere dell'AI nell'RPA con UiPath Autopilot™Le nuove frontiere dell'AI nell'RPA con UiPath Autopilot™
Le nuove frontiere dell'AI nell'RPA con UiPath Autopilot™
UiPathCommunity
 
Accelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish CachingAccelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish Caching
Thijs Feryn
 
Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?
Nexer Digital
 
When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...
Elena Simperl
 

Recently uploaded (20)

State of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 previewState of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
 
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
 
PHP Frameworks: I want to break free (IPC Berlin 2024)
PHP Frameworks: I want to break free (IPC Berlin 2024)PHP Frameworks: I want to break free (IPC Berlin 2024)
PHP Frameworks: I want to break free (IPC Berlin 2024)
 
Assuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyesAssuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyes
 
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdf
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdfSAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdf
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdf
 
FIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdfFIDO Alliance Osaka Seminar: Overview.pdf
FIDO Alliance Osaka Seminar: Overview.pdf
 
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdfFIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
 
Generative AI Deep Dive: Advancing from Proof of Concept to Production
Generative AI Deep Dive: Advancing from Proof of Concept to ProductionGenerative AI Deep Dive: Advancing from Proof of Concept to Production
Generative AI Deep Dive: Advancing from Proof of Concept to Production
 
PCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase TeamPCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase Team
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
 
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
 
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdfFIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
 
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
 
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdfFIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
 
UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3
 
Le nuove frontiere dell'AI nell'RPA con UiPath Autopilot™
Le nuove frontiere dell'AI nell'RPA con UiPath Autopilot™Le nuove frontiere dell'AI nell'RPA con UiPath Autopilot™
Le nuove frontiere dell'AI nell'RPA con UiPath Autopilot™
 
Accelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish CachingAccelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish Caching
 
Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?
 
When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...When stars align: studies in data quality, knowledge graphs, and machine lear...
When stars align: studies in data quality, knowledge graphs, and machine lear...
 

Practical Influence Operations, presentation at Sofwerx Dec 2018

Editor's Notes

  1. You’ve already heard a lot today about misinformation. I’ll just add a little to that.
  2. Misinformation is deliberately false information. One example is the “fake news” sites above, containing misinformation that’s used to gain advertising money, with clickbait tweets that bring people to them. Some of these currently contain the typical aliens and healthcure material, but many are political and trading on strong emotions like fear and useful divisions in society. Image: screenshot of http://www.sawthis.one/ 2018-07-08
  3. “A type of confidence trick for the purpose of information gathering, fraud, or system access, it differs from a traditional "con" in that it is often one of many steps in a more complex fraud scheme.” Source: wikipedia
  4. Online misinformation is huge. A few hundred trolls and thousands of bots can affect millions of people at a time. This is the scale that nationstate-run groups and pages, dedicated to creating division and confusion, typically work at. Here are some of the Russian-owned Facebook groups shown to Congress: these high volumes of shares and interactions might include a lot of botnet activity, but are still not insignificant.
  5. Misinformation is also moving from online to offline. Several times now, misinformation actors have sent invites to opposing groups to demonstrate at the same time in the same place. https://twitter.com/JuliaDavisNews/status/994704834577215495 https://twitter.com/donie/status/957246815056908288
  6. Misinformation is information that’s deliberately false (actually that’s disinformation, but “misinformation” as a term won). The smallest form of online misinformation is ‘joke’ viral content, for example in every disaster there’s someone who puts up an image of a shark in the street. Image: http://www.politifact.com/truth-o-meter/statements/2017/aug/28/blog-posting/there-are-no-sharks-swimming-streets-houston-or-an/ and pretty much any major US disaster
  7. And then, if you look, you can find organising pages for campaigns. Here are two Qanon “meme war organising page”. Qanon is a major group, but is just one of many. Note that this is from March/April, and has a specific date on it, targetting a specific event.
  8. Familiarity backfire effect Memory traces Emotions = stronger traces Here are some common brain vulnerabilities. My favourites are the familiarity backfire effect, where if you repeat a message with a negative in it, people remember the message without the negative, and that when people read, they take false information in as true before rejecting it - and in that fraction of a second, build other assertions off the false information, even if they *know* the original information is false.
  9. This is targetting groups. This is one of the congress adverts set
  10. This stuff is everywhere online: the expected places (FB, twitter, reddit, eventbrite, medium etc) but also comment streams, payment and event sites.
  11. Social media buys reach and scale. 100 good bots = long game; 10000 ba ones = short but effective You can also use other advertising techniques, and things like that familiarity backfire. Botnets are very useful for this, and very cheap, at about $150 for a difficult-to-find “aged” set, to a few dollars per thousand for Russian recent bots. Buy the bots, use any of the handy online guides to set them up messaging or retweeting etc, or use some simple pattern matching or AI to make them harder to find.
  12. One big weakness for attackers is that they have to tell you about themselves. They leave a lot of “artefacts” - ways to find them. botsentinal.com
  13. Here are some of them, including hashtags, URLs, adverts. A simple media search with twitter, tweetdeck etc will find a lot of these. On the right are the artifacts tracked as part of the Canadian elections.
  14. There’s also a lot of content in fact check sites(Snopes etc); if you have the resources, then it’s also possible to pay someone to go look at an area being discussed. Sometimes misinformation propagation is more subtle. These are a good place to look for that too.
  15. Here are some of them, including hashtags, URLs, adverts. A simple media search with twitter, tweetdeck etc will find a lot of these. On the right are the artifacts tracked as part of the Canadian elections.
  16. You *can* report to platforms. So far this has been pretty underwhelming, but if we did it at scale, it could be interesting. What would be good in an ideal system includes: Realtime botnet removal Realtime troll dampening Etc But that’s not where we are, so here’s some others.
  17. Two things: advertising works by putting adverts into slots on pages. We can track unlabelled political ads, we can see the fakenews pages and pages associated with them, and we can see botnets going to pages to drive up their ad revenue. For communities, you can report ads on fake pages to brands.
  18. And as an individual, there are still things you can do. One of these is to work with other people to block misinformation sources and channels. Many anti-harassment apps can be repurposed for this.
  19. My favourite communities are the Lithuanian elves. Formed as an anonymous online group. They fight back every day against Russian misinformation, using a combination of humour and facts. It seems to be working. Other cool things to do include overwhelming misinformation hashtags with other content, and hacking search terms to make disambiguation pages appear above misinformation sites. Another group that’s got some traction is VOST (Virtual Operation Support Team), a team that supports responders in disasters: VOST Panama also used humour and “fake stamps” to counter misinformation, and helped me run a deployment on this during Hurricane Irma (when people also reported misinformation to Fema and Buzzfeed).
  20. You can also help in rebuilding damaged communities: this is The Commons Project, that uses a combination of bots, humans and peace techniques for this.
  21. Image: SANS sliding scale of cyber security
  22. This is a mock-up of the Global Disinformation Index
  23. I’m leading a team working on writing a misinformation equivalent to the ATT&CK TTP framework.
  24. There are still a lot of bots out there, but tactics, techniques and procedures are changing rapidly: we’re starting to see an early-infosec-style split into script-kiddie style crude botnets and more carefully crafted responsive bots. image: https://medium.com/@MediaManipulation/tracking-disinformation-by-reading-metadata-320ece1ae79b