Russia strikes again

ThomasFremont said:

GrundleStiltzkin said:

ThomasFremont said:

GrundleStiltzkin said:

ThomasFremont said:

Swaye said:

ThomasFremont said:

GrundleStiltzkin said:

ThomasFremont said:

If you read the article you’d see they’re using legit credentials to get by security. This isn’t a brute force hack, but rather a social engineering operation. They’re working American citizen assets.

Poont of clarification, the article does not say the Russians have American moles or double-agents or whatever.

Correct. But the usage of legit credentials to avoid detection implies that the leak is at the personal level. They’re targeting individual employees. Whether they are cooperating/collaborating or just left their laptop open is anyone’s guess. But the idea of a GRU spy trying to get the lower wage employees to cooperate is scarier than the notion that they can hack an air-gapped system.

It's standard phishing to credential theft I'd bet.

Possibly. But any system worth a shit has more than an email/password credential. Basic 2-factor means they phished credentials and THEN got to the phone where the verification code generates in order to get in. This means personal contact.

You're throwing some conjecture over top of what was reported.

Oh I’m speculating about it, no denying that. How they did it is not that big of a deal. What we? are gonna do about it is.

That.

I was cheering like every other GOOD American when we! took out the centrifuges with Stuxnet. But even then I was worrying what might be coming back at us.

Turn off the lights in America for 1 week and the shit will get real. Do lasting damage to a few critical systems and it could spiral into chaos. Infrastructure was the one thing Trump was selling that I was buying, and it ain’t happening any time soon (or ever).

ThomasFremont said:

GrundleStiltzkin said:

ThomasFremont said:

GrundleStiltzkin said:

ThomasFremont said:

GrundleStiltzkin said:

ThomasFremont said:

Swaye said:

ThomasFremont said:

GrundleStiltzkin said:

ThomasFremont said:

If you read the article you’d see they’re using legit credentials to get by security. This isn’t a brute force hack, but rather a social engineering operation. They’re working American citizen assets.

Poont of clarification, the article does not say the Russians have American moles or double-agents or whatever.

Correct. But the usage of legit credentials to avoid detection implies that the leak is at the personal level. They’re targeting individual employees. Whether they are cooperating/collaborating or just left their laptop open is anyone’s guess. But the idea of a GRU spy trying to get the lower wage employees to cooperate is scarier than the notion that they can hack an air-gapped system.

It's standard phishing to credential theft I'd bet.

Possibly. But any system worth a shit has more than an email/password credential. Basic 2-factor means they phished credentials and THEN got to the phone where the verification code generates in order to get in. This means personal contact.

You're throwing some conjecture over top of what was reported.

Oh I’m speculating about it, no denying that. How they did it is not that big of a deal. What we? are gonna do about it is.

That.

I was cheering like every other GOOD American when we! took out the centrifuges with Stuxnet. But even then I was worrying what might be coming back at us.

Turn off the lights in America for 1 week and the shit will get real. Do lasting damage to a few critical systems and it could spiral into chaos. Infrastructure was the one thing Trump was selling that I was buying, and it ain’t happening any time soon (or ever).

Straight up casus belli, g

Russia will hack us and then we will invade Iran while we are full of rage. Lather, rinse, repeat.

Pitchfork51 said:

Tommy might be worse than hondo