Comment by guywithahat
8 days ago
I mean the article is paywalled but it sounds like this is isolated to their site-displayed twitter feed; basically the site was hosted by cloudflare and you could insert your own fake tweets into what was recorded on the site (but not on the actual DOGE twitter feed). I don't think any data was actually compromised
I can't speak to any data that may or may not be compromised, but this isn't about inserting fake tweets. Anything in their "government org chart" can be edited unauthenticated.
Yeah, it's just tremendously embarrassing. These are supposed to be the tech geniuses who can parse 50 years of accumulated legacy code and find all the government waste? In 3 weeks?
Data science and websites are different beasts.
I'm not yet sure whether they are even doing data science.
Anecdote time (pinch of salt required):
A relative of mine studying accounting went to the Doge site to see the "audit" and "analytics" records that some acquaintance arguing with her said "see the doge site!" for the proof.
What she found when visiting the site was no "audit" at all, but instead a word count of how often objectional terms appear in legislation or government sites. (DEI? Trans? LGBTQ?).
Being in the analytics/data engineering space myself, I was pretty amused to hear that was the quality of "analytics" being done.
Wasn't "word count" the "hello world" example for Hadoop big data back in 2013?
Some of the "data science" people I've met certainly believed that they could architect entire software systems just because they understood how to structure data in databases.
Surely technical competence is strongly correlated across the two beasts.