Whaleoil Redux 2011 – The Labour party website story

In June I released the details of several months of investigation into the Labour party website which was left wide open with no security.

I started by releasing the minutes of a meeting of Labour North. In those minutes it revealed that Labour planned to use the resources of?parliamentary?services to campaign, and the attendence of an ALP strategist to assist.

Then I released an email that Labour party General Secretary Chris Flatt sent to members once they realised what was about to happen to them. They were in full damage control mode. They spun and ?lied from?the?get go. I already had and still have all their data. There was no system vulnerability and no hacking. It had taken me several months of analysis to be ready for this week and I was going to make them lie and prove they lied.

I posted several videos during this story, usually to lead into the next stage.

But I was under attack from the leftwing, sho started the smears almost immediately. I reminded them of their own words about Wikileaks, not that they cared. It seems that it was more important to smear the messenger rather than wonder at the parlous state of Labour’s information security.

Then it got serious. The Labour party threatened me. It is ironic now given the amount of posts they?have?written about John Key and Bradley Ambrose. Even more ironic as I did nothing illegal.

I responded to Chris Flatt in typical Whale fashion:

Dear Chris

In response to your letter of 12 June 2011, I will show the same compassion to private individuals as Labour showed when using?The Hollowmen.

The exception will be that I will do it in full public view not hiding behind the privilege of parliament.

Then I started to drip feed information about Labour’s credit card donations. This information was in the clear for anyone with mild interest to gather up. I was pretty interested and so I did. Initially I was sceptical that these were production system transaction but then as I scanned through them I found the proof I needed.

Cactus Kate had donated to the Labour party as a result of a sledge on Trevor Mallard. But the real result was that I now had all of Labour’s credit cards transactions taken from their website.

Just to mix it up I released the information I had gathered about ALP consultant Sandy Rippingale. Trevor Mallard had run a massive, defamatory attack on political consultants int eh preceding week and yet we now had evidence that Labour too used consultants. The leaks form the website were proving what many already knew, that Labour lies, cheats and does everything that they accuse others of doing.

Labour and their proxies try to blame me for the information being made public. I tell people to complain to the Privacy Commissioner. Labour said they were going to yet for some reason I?haven’t heard a squeak out of them in more than 6 months.

Donors to the Labour Party have every right to be angry, but not with me.? The Labour Party failed in their duty of care to protect your information, not me.? If anything I have done a great service to highlight the Labour Party?s inadequacies in their security of information.

I would advise all Labour Party members to?complain to the Privacy Commissioner Marie Shroff?for a full investigation, and to ensure the Labour Party has appropriate systems in place to protect any information you provide in the future.

I am now openly mocking Labour. It is hard not to when they blatantly lie about simple details.

What I can tell you is that Labour continues to tell lies. They claim?they are contacting more than 18,000 donors. There aren?t that many, there are only 452. Labour can?t be trusted to keep your data secure and they certainly can?t be trusted to tell the truth.

One thing Labour have failed to understand is that I have known about and planned this story fro a couple of months. I float teasers to see how they react. They have choices, they can tell the truth or they can lie. I predict to my friends and confidants who have helped me with this information (none are in political parties) that they will lie. I?have?war-gamed each possibly issue. So far Labour is proving me right, they are liying and I am showing them they have.

I post another teaser video:

I have to admit this now but I was having fun, but mostly that was because of the way the Labour party were reacting.

Suddenly though Labour and their proxies, including John Pagani start getting into the media accusing me of hacking and other illegal behaviour. I let it run for a couple of days then I post the video of how I did it. Again their lies are exposed for all to see. Every step of the way Labour has lied about salient details and every step of the way I have proved their lies. As I said I war-gamed every aspect of this story so that I could predict how they would react and so I could be prepared for their attacks. They wrongly thought I couldn’t prove how I did it because they took down the sites. I had kept telling people from the get go that I had been in there for months. That I had prepared and one of my preparations was a video to show how I did it:

Labour says they are appealing to the Privacy Commissioner. Funny thing is I?haven’t heard a word from them. Is this another Labour lie?

Malcolm Harbrow has a go at The Standard and he isn’t happy about it either.

Then Greg Presland, the third rate flea lawyer from West Auckland, craps his pants and emails me. I publish his email as it is my policy to publish all correspondence of this type. He stupidly insists that I publish his email in it’s entirety including his email address, phone numbers and website.

Then I show how labour had left passwords in the clear in the code of their website. Passwords to their credit card processing provider. Once again Labour has lied to people, once again I knew they would and prove it.

Labour again writes to me, this time they are begging. They make demands of me and I respond with my own set of demands.

It all started with the “Let’s Not” campaign website, now I am using that site to openly mock Labour:

One of the things that has never adequately been answered nor investigated is the use of?parliamentary?staffers to process financial transactions. We already had seen that labour planned to use Parliamentary Services resources in campaigning and the leaks from their website showed that parliamentary staffers were active in processing financial transactions. This is one of the reasons why I constantly call for the opening up of parliamentary services to the Official Information Act.

The story is by now not only mainstream in New Zealand but it has also gone global. Labour have had two weeks of embarrassment, lies and subterfuge as they try to weasel out the predicament they are in. So far none of their attacks on me have any merit or substance. But I am not finished yet with them.

The information contained on their site showed collusion with the NZEI, Sue Moroney and the Labour party. Labour had harvested more than 18,000 email addresses and personal details from an NZEI petition to the government. They kept those details and stored them on an unsecure server.

I published an email from the NZEI to those 18,000 where they lie about the connection between Labour and the NZEI. Unfortunately for Paul Goulter I also have an email from Chris Flatt to those same people outlining a slightly different story.

LAbour and the NZEI then concoct a story for the media but again instead of telling the truth they lie. Again I prove the lie. They are all slow learners. The damage is now running into its second week.

The supporter database software, logs and email trails show that Labour is tracking where its emails end up. They have spent nearly two weeks moaning about privacy and yet they track emails just like Blue State Digital do.

Labour are now starting to feel heat from mainstream media sick of their lies. They are now full out lying about where they got the NZEI mails from. Labour now stand accused of the very thing they were pointing the finger at me for.

Then Phil Goff lied. Not a subtle lie, an outright full blown false-hood. Again I prove he has lied. Labour keeps giving the story legs by lying. Each time they do I produce documents to prove it. I am now simply reacting to each of their lies, drip feeding the truth.

Phil Goff has decided then to continue to lie, to tell even bigger whoppers, but then I guess at this stage he was being closely managed by parliaments biggest liar of all, Trevor Mallard.

All along I have followed my own rules. I never ask a question unless I already know the answer. Labour still haven’t worked that out. I continue to be gob-smacked that they haven’t conducted an audit of just exactly what I have.

The NZEI claimed that they were non-political but on their website they have documents that outline attacks against National MPs. It makes their excuses for the harvested emails rather hollow.

The final chapter in the whole Labour website saga was when a couple of hackers around the country contacted me to tell me that Labour?affiliates?were recruiting someone to have a go at my website. It never happened.

With this story I outlined fully exactly how I obtained the data, at every step I published documents or proof to show how labour, Phil Goff and the NZEI lied about various aspects of the scandal. At the very least though I showed that Labour were?lackadaisical?about internet security, treated the privacy of their donors, members and contacts with the flimsiest of security and that if they couldn’t run a website then they surely couldn’t be trusted to run the country. I ahd also proved that when in a corner Phil Goff will lie. This would come back to haunt him in coming months.