info
Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
SolarWinds Hack Broader and Deeper Than First Reported
12 views
Skip to first unread message
B1ackwater
Dec 18, 2020, 12:55:13 AM12/18/20
to
It now appears that MANY crutical govt agencies, banking
and finance entities and large corporate enetites have been
affected by the hack involving a "poisoned" version of the
SolarWinds network-management/monitoring program.
At present Russia is blamed, but frankly this seems more
a Chinese sort of thing.
The main hacks exploited the (many) flaws in Microsoft 365
and enabled detailed monitoring of messages/mails being
exchanged within and between agencies. The hack was
apparently in place as early as March, only revealed just
now.
Of course the SolarWinds top people dumped almost
$300 million in stock just before the problem was
revealed. Oh well, so long as Hunter got a cut they
will be OK ...... :-)
I wonder if Trump's firing of the Homeland cybersecurity
chief a week ago had less to do with elections and more
to do with SolarWinds ? This is a MAJOR hack of VITAL
entities - and nobody noticed a thing.
And why isn't Bill Gates in jail for foisting his hack-friendly
crapware on the universe ? MS products are a national
security risk at every level.
In any case, RAPID and MAJOR reactions are absolutely
required. Can govt DO that, especially during a change in
regimes ??? We are now vulnerable to serious cyberwar
damages.
SolarWinds was supposed to let you dump 90% of your
I.T. people and make it so a few punks could manage
worldwide govt/corporate networks by remote control.
No WONDER it was targeted. SolarWinds (and there
are competitors) was the yellow brick road to absolutely
EVERYWHERE.
and finance entities and large corporate enetites have been
affected by the hack involving a "poisoned" version of the
SolarWinds network-management/monitoring program.
At present Russia is blamed, but frankly this seems more
a Chinese sort of thing.
The main hacks exploited the (many) flaws in Microsoft 365
and enabled detailed monitoring of messages/mails being
exchanged within and between agencies. The hack was
apparently in place as early as March, only revealed just
now.
Of course the SolarWinds top people dumped almost
$300 million in stock just before the problem was
revealed. Oh well, so long as Hunter got a cut they
will be OK ...... :-)
I wonder if Trump's firing of the Homeland cybersecurity
chief a week ago had less to do with elections and more
to do with SolarWinds ? This is a MAJOR hack of VITAL
entities - and nobody noticed a thing.
And why isn't Bill Gates in jail for foisting his hack-friendly
crapware on the universe ? MS products are a national
security risk at every level.
In any case, RAPID and MAJOR reactions are absolutely
required. Can govt DO that, especially during a change in
regimes ??? We are now vulnerable to serious cyberwar
damages.
SolarWinds was supposed to let you dump 90% of your
I.T. people and make it so a few punks could manage
worldwide govt/corporate networks by remote control.
No WONDER it was targeted. SolarWinds (and there
are competitors) was the yellow brick road to absolutely
EVERYWHERE.
max headroom
Dec 18, 2020, 1:00:18 AM12/18/20
to
It is a Trump virus.
B1ackwater
Dec 18, 2020, 11:44:45 PM12/18/20
to
What it reallly IS is a giant stain on "Homeland Security".
They allowed SolarWinds on everything, they used MS
products widely - despite knowing it's the most hacker-
friendly stuff out there. In short they provided both the
growth medium and the infection conduit without ever
checking a goddamned thing. This softwaree was not
meant for Ma Perkins laptop, but for THE most senstive
financial//military infrastructure in existence.
And as I said, SolarWinds is not the only conduit-ware
out there. Why would Russia/China/NK/Iran/whomever
stop with only ONE product ? If they could slip it past
SolarWinds/Homeland then infect every similar kind
of utility-ware out there too. Going after the supply chain
is a clever and insidious approach. Even Unix/Linux
is not immune to that - a couple of years ago Linux
Mint distros were contaminated and nobody noticed
it for a few weeks.
>
>
>https://i.imgflip.com/1ae3xy.jpg
>
>https://akm-img-a-in.tosshub.com/indiatoday/images/story/201707/trump647_071917011611.jpg
>
B1ackwater
Dec 18, 2020, 11:55:34 PM12/18/20
to
On Fri, 18 Dec 2020 08:04:42 -0700, Winston_Smith
<inv...@butterfly.net> wrote:
>On Fri, 18 Dec 2020 00:55:06 -0500, B1ackwater wrote:
>
>>And why isn't Bill Gates in jail for foisting his hack-friendly
>>crapware on the universe ? MS products are a national
>>security risk at every level.
>
>Back when dinosaurs still ruled the earth there was a lot of usenet
>traffic about Windows having back doors for the government. Don't hold
>me to the exact version but I recall we are talking about Win98.
I came across some of those myself peeking inside Win2k.
They didn't even do a good job of hiding it back then. Likely
they started with NT - of which W2k was just a version with
a nicer GUI.
>I wanted to follow some things people wrote for myself. I searched the
>main executable and sure enough among the jumble of symbols and random
>numbers and letters of machine code rendered in at text editor, there
>was "NSAKEY" set off from the rest of the jumble of code.
Yep ! :-)
>Proves nothing in itself but highly unlikely something like that would
>come out of the thousand monkeys at a thousand typewriters that is a
>code compiler if you are expecting readable English.
>
>In the flurry some of the press claimed that to get an export licence
>for software, any software, the government demanded a backdoor.
>
>True or not, your call.
IMHO the US Govt gets backdoors in there with or without
anybodys approval. If it's software that's very broadly used
or likely to be used in big govt/biz operations they WILL have
spooks working there to make sure a little extra is added to
the code.
And OTHER entities can do the same thing.
How many lines of code in SolarWinds ? Windows/W365 ???
NOBODY really understands how it all works. Big team
projects and it's thus easy for anybody to slip in something
that nobody will notice as being malware.
And they clearly DID.
<inv...@butterfly.net> wrote:
>On Fri, 18 Dec 2020 00:55:06 -0500, B1ackwater wrote:
>
>>And why isn't Bill Gates in jail for foisting his hack-friendly
>>crapware on the universe ? MS products are a national
>>security risk at every level.
>
>traffic about Windows having back doors for the government. Don't hold
>me to the exact version but I recall we are talking about Win98.
I came across some of those myself peeking inside Win2k.
They didn't even do a good job of hiding it back then. Likely
they started with NT - of which W2k was just a version with
a nicer GUI.
>I wanted to follow some things people wrote for myself. I searched the
>main executable and sure enough among the jumble of symbols and random
>numbers and letters of machine code rendered in at text editor, there
>was "NSAKEY" set off from the rest of the jumble of code.
Yep ! :-)
>Proves nothing in itself but highly unlikely something like that would
>come out of the thousand monkeys at a thousand typewriters that is a
>code compiler if you are expecting readable English.
>
>In the flurry some of the press claimed that to get an export licence
>for software, any software, the government demanded a backdoor.
>
>True or not, your call.
IMHO the US Govt gets backdoors in there with or without
anybodys approval. If it's software that's very broadly used
or likely to be used in big govt/biz operations they WILL have
spooks working there to make sure a little extra is added to
the code.
And OTHER entities can do the same thing.
How many lines of code in SolarWinds ? Windows/W365 ???
NOBODY really understands how it all works. Big team
projects and it's thus easy for anybody to slip in something
that nobody will notice as being malware.
And they clearly DID.
B1ackwater
Dec 19, 2020, 12:00:47 AM12/19/20
to
On Fri, 18 Dec 2020 08:15:51 -0700, Winston_Smith
>connections between high level Dems and China is long. As is the
>compatibility of US socialism and social justice ideas with China's
>version of Communism.
>
>That makes it almost certain Russia will be the bad guy and China is a
>great trading partner.
Russia remains the Great Paraiah ... but the expertise and
hacker-power balance is now firmly in Chinas domain.
This operation required great patience and an eye for the
insidious and ACCESS. Russia is more 'tricks' or blunt
instruments. No, this was China.
Oh well, scapegoats are useful. Russia will be blamed so
Biden can go back to business as usual with China.
>>At present Russia is blamed, but frankly this seems more
>>a Chinese sort of thing.
>
>Russia, Russia, Russia is an anti-Trump mantra. The list of friendly
>>a Chinese sort of thing.
>
>connections between high level Dems and China is long. As is the
>compatibility of US socialism and social justice ideas with China's
>version of Communism.
>
>That makes it almost certain Russia will be the bad guy and China is a
>great trading partner.
Russia remains the Great Paraiah ... but the expertise and
hacker-power balance is now firmly in Chinas domain.
This operation required great patience and an eye for the
insidious and ACCESS. Russia is more 'tricks' or blunt
instruments. No, this was China.
Oh well, scapegoats are useful. Russia will be blamed so
Biden can go back to business as usual with China.
0 new messages