1
00:00:00,360 --> 00:00:02,800
Speaker 1: It turns out that both Niko Lawless and christ Bishop

2
00:00:02,800 --> 00:00:05,119
Speaker 1: have also been doing the same thing as Erica Stanford

3
00:00:05,519 --> 00:00:08,480
Speaker 1: and using their personal email accounts for the government communications

4
00:00:08,480 --> 00:00:10,239
Speaker 1: they're not supposed to. Obviously, it's a breach of the

5
00:00:10,240 --> 00:00:14,720
Speaker 1: Cabinet manual. Nadia Yousef is a data security expert with

6
00:00:14,840 --> 00:00:18,600
Speaker 1: the SISO lensing with US. Now. Hey, Nadia, hi, how

7
00:00:18,640 --> 00:00:20,959
Speaker 1: are you? I'm very well, thank you. How unsafe is this?

8
00:00:21,000 --> 00:00:22,360
Speaker 1: How much is the stressing you out?

9
00:00:23,840 --> 00:00:26,119
Speaker 2: Well? This is I think this is really interesting and

10
00:00:26,160 --> 00:00:28,520
Speaker 2: we saw a lot of talk about this obviously in

11
00:00:28,600 --> 00:00:30,760
Speaker 2: Hillary Clinton's campaign as well. You know, there's a lot

12
00:00:30,800 --> 00:00:33,360
Speaker 2: of talk about Gmail, and I think what's really important

13
00:00:33,360 --> 00:00:36,320
Speaker 2: to address is that web mail providers like Gmail and

14
00:00:36,320 --> 00:00:39,720
Speaker 2: Outlook aren't actually insecure services. If you use them with

15
00:00:39,800 --> 00:00:43,720
Speaker 2: a strong and unique password and multi factor authentication, it's

16
00:00:43,800 --> 00:00:48,320
Speaker 2: just not the best mechanism for you know, government information

17
00:00:48,400 --> 00:00:49,640
Speaker 2: to be shared through.

18
00:00:50,000 --> 00:00:52,360
Speaker 1: I thought that they didn't have end to end encryption

19
00:00:52,440 --> 00:00:54,160
Speaker 1: and that that was material to this whole thing.

20
00:00:55,600 --> 00:00:58,000
Speaker 2: What happens in the back end is you know, a

21
00:00:58,040 --> 00:01:00,720
Speaker 2: little bit a little bit different for for everything. But

22
00:01:00,760 --> 00:01:04,679
Speaker 2: the really important the reason that these organizations have it

23
00:01:04,800 --> 00:01:07,720
Speaker 2: teams that provide you know, their own internal networks and

24
00:01:07,760 --> 00:01:09,720
Speaker 2: things like that, is so that they can keep control

25
00:01:09,880 --> 00:01:13,520
Speaker 2: of these documents and they can understand who's accessing them.

26
00:01:13,760 --> 00:01:16,320
Speaker 2: They can make sure that all users have good, strong

27
00:01:16,360 --> 00:01:19,720
Speaker 2: passwords and multi factor set up as well, so you know,

28
00:01:19,880 --> 00:01:23,120
Speaker 2: organizations like this have control over these kinds of documents

29
00:01:23,200 --> 00:01:25,680
Speaker 2: and an audit trail when they're kept on their own system,

30
00:01:26,440 --> 00:01:28,800
Speaker 2: which is why they don't all use their personal email.

31
00:01:28,959 --> 00:01:31,959
Speaker 1: I see now, Nadia. So for me, as just a

32
00:01:32,000 --> 00:01:34,360
Speaker 1: punter out there, I thought that WhatsApp was the most

33
00:01:34,400 --> 00:01:36,080
Speaker 1: secure and if you were going to send you know,

34
00:01:36,480 --> 00:01:39,000
Speaker 1: dodgy texts at dodgy messages, you want to use the

35
00:01:39,040 --> 00:01:42,160
Speaker 1: WhatsApp are not the Gmail? Have I been completely misled

36
00:01:42,160 --> 00:01:42,720
Speaker 1: this whole time?

37
00:01:43,920 --> 00:01:47,559
Speaker 2: I would say that they're all third party provided services,

38
00:01:48,360 --> 00:01:50,920
Speaker 2: and we've seen over the last few years that you know,

39
00:01:51,080 --> 00:01:53,360
Speaker 2: lots of different services have been compromised at lots of

40
00:01:53,400 --> 00:01:56,080
Speaker 2: different times. So I would say nothing is infallible and

41
00:01:56,120 --> 00:01:58,040
Speaker 2: once it's being sent over the Internet, it should be

42
00:01:58,080 --> 00:02:02,080
Speaker 2: considered that way. And say that long, strong and unique passwords,

43
00:02:02,120 --> 00:02:03,480
Speaker 2: and it's something we talk about all the time and

44
00:02:03,520 --> 00:02:06,400
Speaker 2: everyone's absolutely sick of hearing it, but they are the

45
00:02:06,440 --> 00:02:08,960
Speaker 2: silver bullet with multi factor, that's the thing that will

46
00:02:09,000 --> 00:02:10,920
Speaker 2: keep you most secure of anything.

47
00:02:11,280 --> 00:02:14,040
Speaker 1: Nadia, thank you very much. Nadia Usef Siso, Len's country

48
00:02:14,040 --> 00:02:17,440
Speaker 1: manager and data security expert. Hang on toch Heeather, wasn't

49
00:02:17,520 --> 00:02:19,520
Speaker 1: Nikola Willis on the record last night on your show

50
00:02:19,600 --> 00:02:21,799
Speaker 1: saying she doesn't really send emails. Yes, she was, Chris,

51
00:02:21,800 --> 00:02:23,960
Speaker 1: but we've already talked about that. She has gone back

52
00:02:23,960 --> 00:02:27,560
Speaker 1: and realized she did send one email, just the one

53
00:02:28,520 --> 00:02:30,799
Speaker 1: from the work account to the private account, in order

54
00:02:30,880 --> 00:02:35,160
Speaker 1: to print it in the hotel room. That's what happened there.

55
00:02:35,880 --> 00:02:39,080
Speaker 1: For more from Heather Duplessy Allen Drive, listen live to

56
00:02:39,120 --> 00:02:42,160
Speaker 1: news talks. It'd be from four pm weekdays, or follow

57
00:02:42,200 --> 00:02:43,919
Speaker 1: the podcast on iHeartRadio.