US under a major cyberattack

Post by **Philip** » Thu Dec 17, 2020 8:15 pm

What do you think about the cyberattack that is affecting the US government right now? This seems like a huge breach, according to CISA parts of this attack have been ongoing since March, and it "poses a grave risk" to federal government agencies, critical infrastructure, as well as local governments and private organizations.

https://www.speedguide.net/news/us-unde ... ssian-7409

Easto · Post by **Easto** » Fri Dec 18, 2020 11:29 am

To me it sounds like it's probably even worse than they're letting on. I was really surprised when they said it had been going on this long. Pretty scary stuff. They obviously got more than just names and phone numbers. I'm not even sure the government will let us know how bad it may have been.

Post by **Philip** » Fri Dec 18, 2020 11:43 am

It likely also involves many corporations.

MadDoctor · Post by **MadDoctor** » Sun Dec 20, 2020 4:17 pm

Looking at my logs and firewall logs (don't go sideways with me on the number of logs I have) it would appear they hacked into my .GIF folder. Good for them. There are so many bug and virus in there that they will be forever cleaning their computer(s) for the next 5+ years.

Poor slobs......

Post by **Philip** » Wed Jun 09, 2021 7:58 am

It is a rather large target area. SolarWinds has over 30,000 clients, and many of them automatically installed updates containing a malicious code that was introduced without anyone's knowledge. Maybe it should've been caught early on, rather than going on for months though.

Post by **YeOldeStonecat** » Wed Jun 09, 2021 3:59 pm

When this happened (back last year)...I said "2021 is going to be a VERY bad year for breaches.

....just released a week ago, some agency noted that 47 major defense related companies were breached so far this year from mis-use of fire eye tools.
Doesn't matter what you have for firewalls or other security best practices, FireEye tools cut through the like a hot knife through butter.

David · Post by **David** » Wed Jul 07, 2021 10:50 am

Yikes!!

Norm · Post by **Norm** » Wed Jul 07, 2021 4:10 pm

Two words come to mind.
Complacency and ridiculous

So easy to defend against, yet so many don't follow simple rules no matter what. Playing Russian Roulette with potentially devastating consequences

How hard would it be to have a service running looking for any encryption about to take place, and stop it while sending a message to confirm before continue. (I know, that's a simplistic way of putting it)
Many other solutions to the problem I'm sure.

Looks good on those who pretend to be "security "EXPERTS""

Maybe it's impossible to count on the average office Joe, but come on, IT specialists should have made this impossible long ago,

David · Post by **David** » Thu Jul 08, 2021 9:53 am

The word is diligence. The complacency comes from automation, it is assumed that the computer is remedying the situation itself. The caretakers are asleep at the switch.

I agree heartily that it would seem easy to mitigate, however the black hats are a clever lot in hiding their intrusions and managing to avoid the "three tries and your locked out" scenario,

MadDoctor · Post by **MadDoctor** » Fri Jul 09, 2021 10:55 pm

Norm wrote:Two words come to mind.
Complacency and ridiculous. IT specialists should have made this impossible long ago,

The man speaks the truth. I worked in IT with the Federal government for 30+ years. Miss-management of funds and political priorities screwed the pooch back when I was at a keyboard. Today the same thing is happening without anything learned from the past. Ack.

g0qu2021 · Post by **g0qu2021** » Thu Jul 22, 2021 3:40 pm

MadDoctor wrote:The man speaks the truth. I worked in IT with the Federal government for 30+ years. Miss-management of funds and political priorities screwed the pooch back when I was at a keyboard. Today the same thing is happening without anything learned from the past. Ack.

True but you have to realise that it's all hype and crap, the bug in Microsoft's exchange was fixed in most UNIX boxes week's before they even noticed an issue in Windows, so it's very much the case that they where probably notified of the vulnerability and then sat on it and did sweet FA whilst every bad apple and vandal and miscreant downloaded it to go to town and have a rave up on everyone else's property.

As for Mismanaged funds and screwing the pooch has anyone ever explained to them who's property they're all using whilst they're slagging off the Russians and the Chinese?

TCP/IP - The Communist Parties / Intellectual Property - UNIX is of course UNIQ and no, not just made in the USA.

But this is whilst they sanction 1.4 Billion Social party members who live largely off there own production and community spirit and tell them they cant have Semi-Conductors and then they wonder why the Chinese are calling them a bully and threatening to take away all semi-conductor production full stop.

g0qu2021 · Post by **g0qu2021** » Thu Jul 22, 2021 4:14 pm

First they went off and got Racist in the Middle East...
Then they went off and got Racist with a load of Russians..
Now they want to be Racist to a load of the Chinese.

I agree with China's assessment "Unsophisticated & largely uneducated patronising Barbarians!"

MadDoctor · Post by **MadDoctor** » Fri Jul 23, 2021 10:02 pm

g0qu2021 wrote:True… but you have to realise that it's all hype and crap.

The word ”True” from my post is correct. After that… your anger blurred everything else you posted. Would you (please) back off the stick up your butt and make me want to understand. Your anger blurs my attention.

g0qu2021 · Post by **g0qu2021** » Tue Jul 27, 2021 4:50 pm

MadDoctor wrote:The word ”True” from my post is correct. After that… your anger blurred everything else you posted. Would you (please) back off the stick up your butt and make me want to understand. Your anger blurs my attention.

Then allow me to specify something that will not be said in anger, but will be easy for you to digest..

This is "De Oppresso Libre" the US Military - and this is there Level 1 NSA approved digital signage player.

https://en.wikipedia.org/wiki/HAIPE
https://info.publicintelligence.net/NSA-HAIPE.pdf

This device retails for £6'950 to £7'000 and upwards for any prospective buyer to deploy on there network - it's sold exclusively by the Military!

Included in it's unique algorithms is the FireFly Protocol (EFF) PSO and Swarming Technology...

:lol:

Now let me introduce you to the "Retail" version of the exact same product... Which sell's commercial **RETAIL** for the huge sum of £38.91 and is built on the exact same design!

https://buy.advantech.eu/Compact-Comput ... 22010.htm?

An just so you know.. It's made in China - the RK3399 (FIREFLY) algorithm was made by a Chinese developer announced by ARM at Mobile World Congress in February 2016, and it features six 64 bit CPUs...

Rockchip (Fuzhou Rockchip Electronics Co., Ltd) It has offices in Shanghai, Beijing, Shenzhen, Hangzhou and Hong Kong.

MadDoctor · Post by **MadDoctor** » Tue Jul 27, 2021 5:46 pm

g0qu2021 wrote:Then allow me to specify something that will not be said in anger

Thank you. The words you typed are logical. Not said in anger. Welcome to Speedguide.