Posts by pc-fluesterer.info

The pricipal culprit: Proprietary prducts with backdoors

Yes, you could make life easy and blame attacks on not employing MFA.

But if you use network gear riddled with backdoors for the three-letter-agencies, you are lost. Anyone remember the US-Telcos case?

The only fundamental solution is the migration to FOSS on all levels from network gear to the back office servers.

Denmark and Estonia both have built their Civil Services completely on FOSS. Ransomware attacks are plain unknown.

Name names

Where sat the weakness exploited? Cisco, Citrix, ... Micro$oft, Oracle, ...? Anyway a proprietary product, amirite?

So to prevent a recurrence will they consider migration to FOSS as in Denmark or Estonia?

The answer is: NO, for a variety of reasons. :-(

Lessons learned?

So, what ramifications will follow?

None, of course.

Perhaps a bit of user training, because a user was the culprit, no?

But I bet that they will continue using M$ and other closed-source sh.t, buggy and riddled with backdoors.

Consider migration to FOSS? Oh, nooo!

Before that could happen the hell freezes over.

Oh well.

The real source of all trouble

All proprietary products, regardless weather from China or the US, are riddled with backdoors. A "good" backdoor doesn't exist, because every backdoor will be found by rogue exploiters at some point in time. The only valid protection would be by FOSS. That’s all.

Why are officials allowed WhatsApp in the first place?

Nothing to see here - move on please.

And what about US-gear?

Nice talk about foreign gear. But what about US? Cisco, Citrix and the rest of the gang? They are riddled with backdoors as well. "Forgotten" hardcoded admin credentials and the like. Remember: the Chinese attacks against US telcos exploited backdoors in place for the government.

There is no "good" backdoor!

Proprietary (closed-source) products cannot be trusted, regardless of their origin.

The only tolerably secure solution is FOSS. And even that has limitations as we all know.

"we've lost a little more faith in the internet"

s/the internet/Citrix/

Seriously - they did label that thing "Colossus"?

https://en.wikipedia.org/wiki/Colossus:_The_Forbin_Project

... not to mention the BACKDOORS implanted deliberately!

Each and very US company will have received a NSL, take that for granted.

There are by far too many "forgotten" hardcoded admin credentials and other faults clearly intended as backdoors.

But to address this issue is clearly off-limits.

Hey, you! These backdoors were meant for the NSA only!

Nothing to add.

SolarWinds - I heard that name before

If only I could recall where ... <eg>

Trusted? TRUSTED?

"Google Authenticator is a ... trusted multifactor authentication ..."

What?

I for one would NEVER trust Google nor Microsoft, not at 2FA, nowhere.

For 2FA I use Aegis which is a FOSS TOTP App. The second choice would be FreeOTP, FOSS as well.

"no malicious code was FOUND in its systems"

well ...

Just don't make a NAS reachable from the open internet.

Just don't. That's a no-go. It is called NAS not IAS. NETWORK attached storage, not INTERNET attached storage. The latter we call cloud nowadays, and that is hard enough to protect.

"Flaw"? Works as designed!

Move on, nothing to see here.

Smoke grenade

All this fuzz is made as a sham fight in order to distract public attention from the role iMessage played (and plays?) for zero-click infection with Pegasus and others.

Darn! Again a backdoor disclosed ...

US design? Oh well. No further questions.

OAuth is broken by design

Yes, a single sign-in is convenient. But it is inherently unsafe, too. I for one would never use it.

I use a password manager which automatically inputs my credentials into the appropriate website or application, and I use 2FA (TOTP) where ever possible.

And the role of the Chocolate Factory?

I see gmail and protonmail addresses used by the cyber gangsters.

At Protonmail they immediately delete accounts reported as abuse. BTDT.

And gmail? Reaction to abuse reports: Nil, nought, zero. :-(

Will they ever learn?

Will any of the victims draw the obvious conclusion? Ransomware attacks rely on design faults and programming errors in M$ products. If the victims (and the to-be victims) wanted to protect themselves in the future, they could and should turn to FOSS.

Will they ever learn?

AD is not inevitable!

https://alternativeto.net/software/microsoft-active-directory/

"let the barbarians in through the gate"

The name of the founder of Microsoft was "Gates", not "gate", wasn't it?

AI is a plain mock attack

Ransomware to 90% is not enabled by security holes in the sense of programming errors. Ransomware is enabled by design faults deep in M$' thinking. Most of ransomware comes with SPAM an the user has to contribute:

Open the SPAM (ok, take that for granted);

open the attachment (that's already questionable);

allow macros! (¹);

give the admin's password! (²)

(¹) How on earth can it be that a document (text, spreadsheet, presentation) sent by mail can contain macros so powerful that they can damage the OS severely? How on earth can it be that macros in an email attachment can be enabled at all?

(²) Following best practice, no user should™ have administrative rights, neither by knowing an admin's password nor by by normal working with administrative rights. But the latter happens way too often. Why? Because M$' products are "more comfy" with administrative rights - a design fault. Anyone remember Windows XP? That was effectively unusable with restricted user rights. The situation has since improved a little bit, but not enough by far.

Here is a happy and satisfied user

I for one use LMDE since version 2. LMDE 4 was quite good, LMDE 5 really grown-up. Looking forward to LMDE 6!

Will it offer an in-place upgrade such as Mint does?

Only thing I dislike is Cinnamon. I prefer Mate since the beginning, which I just installed additionally. So I use Mate plus Cairo-Dock.

Crypto is for crims an gamblers anyway, so what?

nothing to be seen here.

In other words: Best practice

All that FBI advice boils down to one single sentence: Adhere to best practice.

If it looks "too good to be true", ...

nothing to add.