Bofa on Insecurity

Share this post

Controversial US infosec firm Cloudflare is providing potentially sanctions-busting services to Myanmar’s military junta

bofa.substack.com

Controversial US infosec firm Cloudflare is providing potentially sanctions-busting services to Myanmar’s military junta

Sugondese separatist Bofa
Mar 11, 2021
Share this post

Controversial US infosec firm Cloudflare is providing potentially sanctions-busting services to Myanmar’s military junta

bofa.substack.com

Following a cyberattack on the Myanmar Investment Commission website leading to the release of thousands of confidential documents on the whistleblowing website Distributed Denial of Secrets, the illegitimate military-controlled Myanmar Government is planning to shut down MyCo and other e-government initiatives, in a belated attempt to stop more data leaks and hacks, Bofa on Insecurity can reveal.

Twitter avatar for @FreeExpressMm
Free Express Myanmar @FreeExpressMm
Big attack on #RightToInformation in #Myanmar. MyCo (online database of company information) was one of few recent positive steps to promote #transparency. Military's first step to hiding💰, restoring business cronies, and reviving corporate #corruption? #WhatsHappeninglnMyanmar
Twitter avatar for @mmlawyerau
Sai @mmlawyerau
Confirmed that online company registry system MyCo will be scrapped and an entirely paper-based system would be restored. Other e-government initiatives are also expected to be scrapped soon. The junta trying to stop more data leaks and hacking. #WhatsHapppeningInMyanmar
6:31 PM ∙ Mar 4, 2021
5Likes8Retweets

MyCo, an online company registry, was an initiative supported by the World Bank, Asian Development Bank, the Japan Fund for Poverty Reduction and the Deutsche Gesellschaft für Internationale Zusammenarbeit to enable more financial transparency in Myanmar.

In what is a likely violation of current US Treasury sanctions, the terrorist Junta also appears to be using the services of controversial US security company Cloudflare to protect themselves from more leaks, with at least five government websites geo-blocked to make them inaccessible outside Myanmar to keep international financial scrutiny and hacktivists out:

  • cbm.gov.mm - Central Bank of Myanmar

  • commerce.gov.mm - Ministry of Commerce

  • tourism.gov.mm - Ministry of Hotels and Tourism

  • mrtv.gov.mm - “state” (military) operated TV station

  • fda.gov.mm - Food and Drug Administration

Cloudflare Access Denied Error seen when trying to access the Central Bank of Myanmar website from outside Myanmar

What is the criminal Junta trying to hide? And why is Matthew Prince’s company known for courting other controversial clients, including neo-nazi website Daily Stormer, social networking site Gab and the 8chan message board helping them do it?

Twitter avatar for @walone4
Wa Lone @walone4
According to IMF, Myanmar central bank has $6.7 billion foreign currency reserves. The U.S. controlled $1 billion, but still no clear the plight of approximate $5.7 billions - Credit: Justice for Myanmar Feb 15 report #WhatsHappeningInMyanmar
9:37 PM ∙ Mar 4, 2021
193Likes175Retweets

In a statement provided to Bofa on Insecurity, the activist group Justice for Myanmar has said:

It is indefensible that Cloudflare is not only profiting from the Myanmar military, who are responsible for atrocities and grand corruption, but are now assisting the military to cover up their crimes. We are appalled that Cloudflare tools are being used to hide information essential to hold the Myanmar military to account and dismantle the military cartel. For instance, Cloudflare tools are now blocking access to the Central Bank of Myanmar site, while the military brazenly tries to consolidate control over the banking system through arrests and intimidation. Billions in foreign reserves that belong to the people of Myanmar remain unaccounted for, yet Cloudflare is providing security for the war criminals leading the illegal junta? It is time that Cloudflare finally cut all ties with the Myanmar military and stand with the people of Myanmar.

When asked for comment, hacktivist @donk_enby who has previously released a complete scrape of MyCo as part of the Distributed Denial of Secrets Myanmar Financials release said:

Activists and journalists in Myanmar wishing to scrutinize the Junta's activities by visiting those websites can no longer do so while protecting their anonymity using a VPN or a service like Tor. Without being able to conceal their real IP address and location, any visitor to the website flagged for suspicious activity can be tracked down, arrested, or worse. With more than 50 people killed, and thousands arrested since the start of the coup, this is putting people's lives at risk.

We have not bothered reaching out for a comment from Cloudflare. Ethical hackers do not talk to unethical infosec companies that do business with genocidal war criminals and nazis. Also, Matthew Prince already blocked me on Twitter. :(

Bofa Deez Nutz (she/her), Cyber Jihad Operative, Anonymous (we/us)

Twitter avatar for @RealOGAnonymous
Anonymous @RealOGAnonymous
just picturing a room full of military staring at anonymous tweets and frantically fixing an array of printers constantly jamming as they shit out thousands of pages of documents before they set the servers on fire donk's twitter avatar on a giant projector
9:30 PM ∙ Mar 4, 2021
82Likes5Retweets
Share this post

Controversial US infosec firm Cloudflare is providing potentially sanctions-busting services to Myanmar’s military junta

bofa.substack.com
TopNew

No posts

Ready for more?

© 2023 Kopimi
Privacy ∙ Terms ∙ Collection notice
Start WritingGet the app
Substack is the home for great writing