Hackers Attempt to Hold Capitol Hill Data for Ransom
Source: The Intercept
May 10 2016, 5:04 p.m.
The House is under attack by hackers hoping to infiltrate congressional computers, encrypt their contents, and then force users to pay a ransom to get their access back.
In the past 48 hours, the House Information Security Office has seen an increase of attacks on the House Network using third party, web-based mail applications such as YahooMail, Gmail, the Houses Technology Service Desk wrote in an email to House staffers on April 30.
According to the email obtained by The Intercept, the hacked emails impersonate familiar people and invite staffers to download an attachment laced with malwarewhats known as a phishing attack.
When a user clicks on the link in the attack e-mail, the malware encrypts all files on that computer, including shared files, making them unusable until a ransom is paid, the email said.
Snip
Read more: https://theintercept.com/2016/05/10/hackers-attempt-to-hold-capitol-hill-data-for-ransom/
tomm2thumbs
(13,297 posts)"Access to both YahooMail and Google Cloud services hosted by Googles appspot.com appear to be completely blocked on the Houses network, according to Ted Henderson, a former Hill staffer and founder of two social-network applications designed for Capitol Hill communication: Cloakroom and Capitol Bells.
Henderson says his several thousand users cannot post to the social networks inside the House office buildings. The way Cloakroom works, youre normally able to log-in either anonymously simply by using Capitol Hill Wi-Fi or with your staff email address.
This is the first time Ive seen this happen at a scale like this in five years, Henderson wrote The Intercept in an email."
scscholar
(2,902 posts)to hire an outside expert? This is sad security.
LiberalArkie
(15,708 posts)them. Hillarys thing was that State would not pay for a Blackberry server. Rice and someone else who were SOS bought servers and had them installed at state behind the firewall. Hillary would not buy it and have to keep the server at work.
tk2kewl
(18,133 posts)KeepItReal
(7,769 posts)The sitting Secretary of State wants you to set up a email server in her house for her personal domain "ClintonEmail.com" and link it to her Blackberry so she can avoid using her secure, State Department-issued email?
The whole idea smacks of off-the-books shadiness.
Have at it, "outside expert".
ps: It would be fine if it was for just personal communications that you don't wanna do on the State Department email network (no security risks if your personal emails get hacked), but she used it for State business, also.
FailureToCommunicate
(14,012 posts)Thank you!
KeepItReal
(7,769 posts)I've done that kind of email provisioning for my own small businesses.
It's just not smart to do this home-based email server and personal Blackberry scheme when you have security clearances and Freedom of Information Act requests to be in compliance with.
I still think someone should have raised a red flag the first time they got a work-related email from hillarysblackberry@ClintonEmail.com (or whatever the actual username was).
Unfortunately, everyone at work went along with that mess.
scscholar
(2,902 posts)what she intended to use it for? It's just a mail server. I setup my first one twenty-six years ago for a college. I had no way of knowing that email would later be used to subvert Title IX. Am I to blame for that?
Skittles
(153,142 posts)therefore, it had to be VERY BAD INDEED
KeepItReal
(7,769 posts)Which means he knew EXACTLY how the system was being used.
It wasn't a setup, verify the email works, and move on to another assignment.
That guy got a position in State Department I.T. as a political appointee after he set up her email communications.
More shadiness.
Pagliano was responsible for setting up the now-infamous private server in the basement of the Clinton's home in Chappaqua, New York. He has since become a key witness in the FBI inquiry into the handling of sensitive material on that server and has been granted immunity by the Justice Department in exchange for his cooperation.
Its hard to believe that an IT staffer who set up Hillary Clintons reckless email server never sent or received a single work-related email in the four years he worked at the State Department," the RNC's Deputy Communications Director, Raj Shah, said in a statement to ABC News. "Such records might shed light on his role in setting up Clintons server, and why he was granted immunity by the FBI. But it seems that his emails were either destroyed or never turned over, adding yet another layer to the secrecy surrounding his role.
http://abcnews.go.com/Politics/emails-found-hillary-clintons-senior-staffer-state-department/story?id=38989504