webhead • User • The Register Forums

US Treasury, Dept of Commerce hacks linked to SolarWinds IT monitoring software supply-chain attack

Friday 18th December 2020 23:35 GMT webhead

fwiw, locally, we had voter fraud related to a candidate mayor, a social worker harvesting ballots, and (personally) a (dead) family in law voted. But, in all those, the count was not sufficient to sway anything.

0 0

Putin to Trump: Let's collude to stop election hacking

Tuesday 29th September 2020 15:00 GMT webhead

Re: Formal agreement

lol. funny, but, some of you really didn't read the article to the end. There were large credits from previous years. Millionaires and billionaires do have teams of exports to avoid US taxes. Just ask Bezos, Pelosi, Schumer, Musk, etc. Companies like Exxon, Apple, etc also play the game.

Hate the game, but, don't hate the player. Thank your politicians for that game.

0 0

Chinese database details 2.4 million influential people, their kids, addresses, and how to press their buttons

Monday 21st September 2020 18:34 GMT webhead

That 2.4 million count is a very small sample of the US population considering the many hacks from China over the past decade.

0 0

Passengers ride free on SF Muni subway after ransomware infects network, demands $73k

Monday 28th November 2016 08:41 GMT webhead

Re: Design failure

Simply due to some domain admins still thinking that it's fine to put everything in the same domain. Face palm

0 0

Sad reality: It's cheaper to get hacked than build strong IT defenses

Monday 26th September 2016 13:33 GMT webhead

Not all hacks are caused by state magicians. Most are accomplished due to poor security hygiene. You don't need top shelf software. Imho, you need the boots on the ground to do the care and feeding of the beast.

0 0

Read the damning dossier on the security stupidity that let China ransack OPM's systems

Monday 12th September 2016 13:25 GMT webhead

Re: What on earth was going on over there? (offtopic)

Security thru obscurity is good. ? Lol. I would tend to agree with your statement about her server but heard only that the data was turned over and not the system files. Considering the state department mail system was having drama, I do wonder why not the private system. Perhaps, she was simply smart /lucky enough to not click on phish.

0 0

Monday 12th September 2016 13:16 GMT webhead

Re: The real news

The cio was new and hired after the hackers were inside the house. I saw published memo that she was improving the situation. I really thing it was more of case of not enough staff to keep up with the infrastructure care, feeding, maintenance and protection than simply amount of salary. Especially, considering the news about issues at nasa.

0 0

Ted Cruz knows where you live – if you downloaded his app

Monday 2nd May 2016 13:21 GMT webhead

I had it demonstrated to me personally about how folks could download the data from hillary website. It was just name, age, address type of stuff. Simply, each individual record would be displayed to any anonymous person volunteering to call voters, but some slight tweets allowed you to get it in bulk.

0 0

SANS man lists five security things you're not doing but should

Monday 11th April 2016 13:14 GMT webhead

Re: admin priv - tip of the iceberg of least privilege

And keep domain admins on the core enterprise servers only. They should not even logon to the member servers. Give them normal user accounts and a jump server when they need to elevate.

Popping domain admins are how your domain is owned.

0 0

Hospital servers in crosshairs of new ransomware strain

Monday 4th April 2016 14:59 GMT webhead

Re: Dear elRegitor commentators

The article does say jboss vulnerability. It's not os specfic.

If the servers are not maintained and public facing, then expect to be breached sooner than later.

0 0

Monday 4th April 2016 14:59 GMT webhead

Re: New strain of ransomware targeting servers?

Jboss runs on a few different os and in this case, it is a vulnerability when the server is neglected enough (not patched). Then the attacker uses various methods to get sufficient domain admin credentials to move lateraly, and deploy the malware .

0 0

NSA data centre brings 300 million daily security scares to its Utah home

Monday 29th February 2016 20:48 GMT webhead

Re: Get rid of 70% of these hits

With that much attention, perhaps, create a few honey net too ;)

Hmm, I wonder if the NSA would be offering to sink hole/divert/host some of that inbound traffic. ;)

0 0

IRS: Er, those 100,000 tax records illegally accessed? Make that over 700,000

Monday 29th February 2016 16:06 GMT webhead

If I read the article correctly, fraudsters were able to scam the irs system by using personal identifiable information of the account holder. That means to me that unhappiness should be pointed that we have 700k+ with compromised pii, and that with added transcripts from the irs, it adds an additional pii on this 700k+, and to me, means the 700k+ has much higher chance of credit issues and worse.

0 0

Hacked OPM won't cough up documents on mega-breach – claim

Friday 15th January 2016 15:22 GMT webhead

Re: no sense whatsoever.

Lol, in the context of this article, her statement does make sense.

0 0

Claimed DigiNotar hacker: I have access to four more CAs

Tuesday 13th September 2011 09:00 GMT webhead

Why not Israel, Britain, US, or other state-sponsered agency?

Iran - snoop on possible communicaitons between Iran citizens and anti-Iran groups.

Israel - snoop on possible communications between Iran agents and anti-Israel groups. (for example: Hamas).

US - snoop on possible communications between Iran agents and anti-US groups.

etc

I am not saying that Iran is innocent, but, they are not the only ones that can benefit from reading emails/traffic between points in Iran and the rest of the internet.

Who knows.. maybe, its some 'blown egos' from that stuxnet malware.

0 0

Topics

Special Features

Vendor Voice

Resources

User topics

Article topics

Posts by webhead