Friendly forums for passionate Dems!
More than 94 million posts since 2001
Home Latest Greatest Videos Forums Hide ads Join up!
Home Latest Greatest
Videos Forums Help
Hide ads Join up!
Latest Discussions»General Discussion»CISA just issued a rare e...
Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News Editorials & Other Articles General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search

General Discussion

Related: Editorials & Other Articles, Issue Forums, Alliance Forums, Region Forums

Nevilledog

(55,080 posts) Mon Dec 14, 2020, 02:02 AM Dec 2020

CISA just issued a rare emergency directive



Tweet text:
Dustin Volz
@dnvolz
New: CISA just issued a rare emergency directive instructing federal civilian agencies to review their networks and immediately power down SolarWinds products, saying the hack "poses unacceptable risks to the security of federal networks." https://wsj.com/articles/agencies-hacked-in-foreign-cyber-espionage-campaign-11607897866
Image




Tweet text:
Cybersecurity and Infrastructure Security Agency
@CISAgov
JUST RELEASED: Emergency Directive 21-01 calls on all federal civilian agencies to review their networks for indicators of compromise and disconnect or power down SolarWinds Orion products immediately. Read more: http://cisa.gov/news/2020/12/13/cisa-issues-emergency-directive-mitigate-compromise-solarwinds-orion-network
10:03 PM · Dec 13, 2020
22 replies, 3149 views
22 replies = new reply since forum marked as read
Highlight: NoneDon't highlight anything 5 newestHighlight 5 most recent replies
CISA just issued a rare emergency directive (Original Post) Nevilledog Dec 2020 OP
Trump jpak Dec 2020 #1
This message was self-deleted by its author jpak Dec 2020 #2
You know tomorrow the wingnuts are going to say this proves that the election was hacked, right? mr_lebowski Dec 2020 #3
Ok. I looked up NTIA for those of us acronym challenged... Captain Zero Dec 2020 #10
Thanks. abqtommy Dec 2020 #20
Kick dalton99a Dec 2020 #4
Great post. That cartoon is copyrighted 2018. nt Roisin Ni Fiachra Dec 2020 #21
In my perfect world Christopher Krebs would have announced this BEFORE the hack Brother Buzz Dec 2020 #5
JHFC ! nt DURHAM D Dec 2020 #6
Indeed. My Pet Orangutan Dec 2020 #12
This is some fucked up shit LearnedHand Dec 2020 #7
This looks serious. honest.abe Dec 2020 #8
Its major Sgent Dec 2020 #11
'Every single desktop, laptop and server'. Jesus. My Pet Orangutan Dec 2020 #14
"Microsoft" and "highly sophisticated" are like "tinker toys" and "F18 Hornet". Hermit-The-Prog Dec 2020 #13
Visual Basic My Pet Orangutan Dec 2020 #17
VB is the VD of computing. Wouldn't surprise me if it was involved. Hermit-The-Prog Dec 2020 #18
if this happened under Biden the GOP would be screaming bloody murder TomDaisy Dec 2020 #9
I saw a movie where a guy tried to shut down a computer progree Dec 2020 #15
How much was trump's cut? Hermit-The-Prog Dec 2020 #16
Always an appropriate question. Dark n Stormy Knight Dec 2020 #19
Another Information Source Best_man23 Dec 2020 #22

Response to Nevilledog (Original post)

jpak This message was self-deleted by its author.

 

mr_lebowski

(33,643 posts)
3. You know tomorrow the wingnuts are going to say this proves that the election was hacked, right?
Reply to Nevilledog (Original post)
Mon Dec 14, 2020, 02:10 AM
Dec 2020

ALL ACROSS their media infrastructure starting in the AM tomorrow, it will be a full court press ... can't move forward until this is ZOMG INVESTIGATED!!!1!!

Also they'll claim it 'proves' that 'CISA doesn't know what they're doing'.

As an aside, I don't think it's a coincidence this news dropped today.

Captain Zero

(8,905 posts)
10. Ok. I looked up NTIA for those of us acronym challenged...
Reply to mr_lebowski (Reply #3)
Mon Dec 14, 2020, 04:37 AM
Dec 2020

The National Telecommunications and Information Administration is an agency of the United States Department of Commerce that serves as the President's principal adviser on telecommunications policies ... Wikipedia

Brother Buzz

(39,899 posts)
5. In my perfect world Christopher Krebs would have announced this BEFORE the hack
Reply to Nevilledog (Original post)
Mon Dec 14, 2020, 02:15 AM
Dec 2020

I'm just saying

 

honest.abe

(9,238 posts)
8. This looks serious.
Reply to Nevilledog (Original post)
Mon Dec 14, 2020, 03:37 AM
Dec 2020
The hack involves the NTIA's office software, Microsoft's Office 365. Staff emails at the agency were monitored by the hackers for months, sources said.

The hackers are "highly sophisticated" and have been able to trick the Microsoft platform's authentication controls, according to a person familiar with the incident, who spoke on condition of anonymity because they were not allowed to speak to the press.

https://news.trust.org/item/20201213175137-8vsfr

Sgent

(5,858 posts)
11. Its major
Reply to honest.abe (Reply #8)
Mon Dec 14, 2020, 04:47 AM
Dec 2020

SolarWinds (the compromised vendor) is an enterprise management software for computers used by >400 of the Fortune 500, Treasury, Commerce, and all five military branches. Software that is incorporated into SW was compromised, and SW then signed it and the SW software was then installed on every single desktop, laptop and server in the organization. The SW software in managed environments will usually have admin rights, and would be able to access any information on the computers. The installed software also allowed the hackers to access the computers and upload / download additional software and data.

The only redeeming quality is this wasn't a burn it all down hack, it was an infiltrate and gather info -- meaning its probably not automated and the Russians would be limited due to manpower.

My Pet Orangutan

(12,598 posts)
14. 'Every single desktop, laptop and server'. Jesus.
Reply to Sgent (Reply #11)
Mon Dec 14, 2020, 04:56 AM
Dec 2020

If it had been a burn it down hack, welcome to WWIV.

progree

(12,977 posts)
15. I saw a movie where a guy tried to shut down a computer
Reply to Nevilledog (Original post)
Mon Dec 14, 2020, 04:56 AM
Dec 2020

"that's something I cannot allow to happen"

Best_man23

(5,268 posts)
22. Another Information Source
Reply to Nevilledog (Original post)
Mon Dec 14, 2020, 09:14 AM
Dec 2020

The SANS Institute's Internet Storm Center tracks ongoing virus and malware, and had the SolarWinds story on its main page. The ISC content is highly technical, but they do their best to make the information as easily digestible as possible. They have scheduled a webcast for 5 PM EST today.

https://isc.sans.edu/?_ga=2.220397464.1677938191.1607951488-1686481652.1594861345

Reply to this discussion
Latest Discussions»General Discussion»CISA just issued a rare e...
Home | Latest Discussions | Greatest Discussions | Latest Videos | All Forums

About | Copyright | Privacy | Terms of service | Contact

In Memoriam

© 2001 - 2026 Democratic Underground, LLC. Thank you for visiting.