Us? Pwn SolarWinds? With our reputation? Russian spy chief makes laughable denial of supply chain attack
A Russian spymaster has denied that his agency carried out the infamous SolarWinds supply chain attack in a public relations move worthy of the Internet Research Agency. Sergei Naryshkin, head of the SVR spy agency, made his denial in a BBC interview broadcast on Tuesday. "I'd be flattered to hear such an assessment of the …
Tuesday 18th May 2021 18:13 GMT Eclectic Man
To quote Mandy Rice-Davies
"Well, he would, wouldn't he?"
To admit to having hacked into US computer systems would be to effectively admit to having committed an act of war. The USA and the UK, and, in fact no country around would ever admit to hacking into another country's computer systems.
Tuesday 18th May 2021 19:10 GMT alain williams
Trust is not, unfortunately, binary
I would love it if were as simple as Martin Gardner’s Two Tribes: one side always tells the truth, the other always lies.
Reality is more complicated. Even our side lies, I would like to believe that they lie less that the others. It is not just Boris & Trump, but also our security services, various other agencies and what the press says. Sometimes it is to gain advantage over the other lot, sometimes to cover up their blunders & incompetence.
I probably over optimistically flatter myself that, with a bit of work, I can see what is true & what is false.
I'm talking above about politics, those at corporations also lie as well.
Wednesday 19th May 2021 06:29 GMT lglethal
Re: Trust is not, unfortunately, binary
Determining the difference between Truth and Lies in politics is easy. If it came out of a politicians mouth - it's a lie.
If by some unforeseen miracle it turns out they were telling the truth, it just means that they misunderstood the briefing paper they were given and so thought they were lying and therefore told the truth by accident.
I still think we should follow the Terry Pratchett code - as soon as a politician is elected, they get put in jail. They'll be commiting a crime eventually, we may as well get the punishment in in advance...
Tuesday 18th May 2021 19:11 GMT Pascal Monett
So, it's not the Russkies because of something the NSA did a decade ago
Yeah. Perfectly logical argument there. Nothing to say to that, apparently.
But, by that logic, it's the Russkies because Klaus Fuchs gave Soviet Russia all the data on atomic bombs they needed to make one, sparing them years of research and tons of money.
Come on Naryshkin, you bloody well know that the information not made public does not exonerate you.
We're not talking about Huawei motherboards, we're talking about high-level spy stuff. The US is not going to say how it knows because that's classified.
Huawei motherboards are not classified. They are available to the public. If any one of them had indeed been suspiciously modified, we'd have a pic by now.
We don't, so that's bullshit.
You, however, have no such validation. You're just spreading bullshit as well.
Tuesday 18th May 2021 19:50 GMT Anonymous Coward
Snowden merely confirmed what we already suspected/knew
SolarWinds wasn't a hack, it was careless software engineering that allowed opportunists to insert code into repositories that were assumed secure but were anything but. Its an embarrassing incident but not a particularly sophisticated one. As for who did it, our only grounds for saying "It was the Russians" is that we currently don't like them and as the SVR fellow pointed out the attack could have been done by anyone, including the NSA.
I have faith that state actors are a bit more sophisticated than to take full advantage of an obvious oversight. If nothing else they'd suspect a trap -- if its too easy there must be a catch. They'd also want something that's both subtle and deniable. So it doesn't come as a surprise that the recommended random number generation algorithm isn't that random or that the recommended parameters for an elliptic curve algorithm turn out to be ones that are surprisingly weak. This is the kind of intellectual arms race that I'd associate with three letter agencies and their Russian equivalents.
Tuesday 18th May 2021 21:52 GMT Anonymous Coward
Have you seen proof?
I believe him! He's an HONEST spy chief, unlike those evil, cheating, devious, underhand spy masters the evil, cheating, devious, underhand Western Imperialist government employ on a daily basis!
p.s. our Soviet... our Russian authorities have just announced the two arch-enemies of the State of the peace-loving Russia: the US of A, and their little Satan puppet friend, Czech Republic! Long live the Comrade-President Putin! Long live Victorious Russia! Death to America and their little Satan-puppet henchmen, Czech or otherwise!
Wednesday 19th May 2021 03:40 GMT Danny Boyd
Re: Have you seen proof?
Slightly wrong interpretation: not "death to', just GTFO.
And I'd still prefer to see the evidence, not rants. "the Turla malware crew, which is thought to have links to SVR sister agency the FSB, might have been involved" is no evidence. "Thought to have links", "might have been involved" is speculation, not evidence.
Turn on your critical thinking, people!
Wednesday 19th May 2021 06:28 GMT PTW
Wednesday 19th May 2021 08:31 GMT Anonymous Coward
Re: Have you seen proof?
you'd prefer to see the evidence, but it's not about whodunnit, it's about public's perception of who's behind this, and this battle has already been won. Whatever the Russians say about it, whatever non-evidence of non-involvement they provide, they'll be laughed out, because people realize they have no tools to verify any claims or any evidence from anybody, even if such 'evidence' were ever publicly made available by any side of this little side show.
But I'm very confused about the purpose of his declaration, he surely couldn't have done it to brighten the image of Russia in the west. You hear any spy denial, you'll snigger, let alone a Russian spy, who's one of 'them' after all. But, likewise, I don't see how it would play to Russian audience. That large part that blindly believes in the Putin system, never mind how precarious, don't care about denials, if anything, they'd say: davai, tell them we did it and see them squirm! And the other part, still able to apply the power of critical thinking of what is going on in and with Russia, are probably as convinced it was the Russian job, as anyone in the west (btw, despite the obvious 'cui bono', I'm not saying it _was_ a Russian job, just that's what most people believe anyway). But even this minority that concedes it was probably a Russian job, will feel a little proud that yeah, Russia has become the archetypal 'red menace' again, but hey, at least we showed them and they're scared of us (again). So what's the point of this spymaster's public appearance anyway, if it's not going to chance anybody's mind? Distraction?
Tuesday 18th May 2021 23:32 GMT BloggsyMaloan
It's always the 'enemy', the other side, the baddies, whodunnit.
In a New Orleans hotel, a year after '911' (always thought that was a Porsche) and the US response, I was reading a local newspaper. A page that stuck in my mind included two stories covering the latest war news.
Story 1 was about despicable Iraqis who sent 18 year old children to fight and be killed.
Story 2 was about brave 18 year old US soldiers who'd been killed in Iraq while fighting for their country.
I had to read both stories at least a couple of times to make sure I hadn't misunderstood.
The same stories, translated and with a couple of global search-and-replaces to swap the nationalities, could easily have been syndicated to Iraqi newspapers.
It's always the other side that does the bad stuff, as patriotic citizens know.
One conclusion is that warmongering, power-seeking, egotistical political and military 'leaders' of most countries have more in common with each other than with their own citizens, whose minds they seek to control and whose bodies they sacrifice in their war games and desperation to be remembered as 'great leaders'.
Just like the pigs in Animal Farm using a cause against bad things to increase personal power until, eventually, they can do the same bad things.
Spying and disinformation are what the baddies do. 'Intelligence' and openness are what we use.
Wednesday 19th May 2021 03:41 GMT Irony Deficient
Soviet Russia was well practised in two disciplines of military thought …
… known as dezinformatsiya and maskirovka. Neither term translates well into English […]
The first term, дезинформация, translates quite well into English “disinformation”. The second term, маскировка, is a noun formed from the verb маскировать ; since the -ировать suffix is used to form verbs from loanwords, my guess is that маскировать is a calque of German maskieren, which would make маскировка roughly translatable as English “masking”.
Wednesday 19th May 2021 11:25 GMT olekrf
> As Stanford Internet Observatory's research manager Renee DiResta explained at last year's Black Hat conference: "Russia simply wants to divide people along existing social fissures, so they only have to reaffirm what their targets already believe."
> "Russians are not trying to tell a story," explained DiResta in her 2020 talk, "They are simply dividing the population of the adversary."
Let's assume this is correct, what would the logical countermeasure for someone realizing this be?
1) Blame the Russians and increase the divide
2) Reach out across the existing social fissure to mitigate the attack
The most effective choice of the two above is pretty obvious. If the obvious countermeasure is not implemented ...
Wednesday 19th May 2021 11:39 GMT Ordinary Donkey