You mean 'Disaster Recovery' plans?Remote monitoring. Connected to the internet, any executive anywhere can get up to the second status reports, etc. The bottom line is this, though. We don't really have a good way to actually fight off a ransomware attack short of making sure to have good backups of unencrypted data and proven restore procedures.To run a pipeline system I'm not sure what software they were using, but may guess would be a DCS, which shouldn't be connected to the internet, or hackable. If it was connected they deserved to be hacked.
Distributed control system - Wikipedia
en.wikipedia.org
FECKLESS. Describes the Xiden administration perfectly.
Feeble or ineffective.
Spiritless; weak; useless; worthless.
Colonial Pipeline did pay ransom to hackers, sources now say
Colonial Pipeline paid the ransomware group that carried out a crippling cyberattack, two sources familiar with the matter told CNN on Thursday.www.cnn.com
Stupid Russians probably could have gotten a lot more than $5m (crime pays!!).
Maybe they have even richer chumps lined up for their next ransomware attack?
Who was president when Solar Winds was hacked? ANSWER: DONALD JENIUS TRUMP.
1. Who was president when the Russians hit Colonial with ransomware, and PAID the $5m? ANS: JOE BIDENFECKLESS. Describes the Xiden administration perfectly.
Feeble or ineffective.
Spiritless; weak; useless; worthless.
Colonial Pipeline did pay ransom to hackers, sources now say
Colonial Pipeline paid the ransomware group that carried out a crippling cyberattack, two sources familiar with the matter told CNN on Thursday.
Stupid Russians probably could have gotten a lot more than $5m (crime pays!!).
Maybe they have even richer chumps lined up for their next ransomware attack?
How quickly you blame Biden for the Putin's attack on American energy.
Donald Trump gutted the Cyber Security force to pay for his Wall. Trump also failed to do anything about the massive Russian hacking of government computers last year. Donald Trump spent 4 years giving the Russians unlimited access to hacking American computers, and then denied it was even happening.
Now that Trump's failures to protect the USA from Russian hackers has surfaced since he was voted out of office, the Putin propaganda machine and the Republicans are working hand in hand to use this to discredit Joe Biden.
Trump and Putin, working together, to destroy the USA, again.
2. Stop lying about Trump, you TDS moron. The USSC said the wall funding was legal.
3. The Federal government hired "Solar Winds" to secure their computer systems. The Russians just ate "solar wind's" lunch. Trump did not hire "solar winds" they were hired by the deep state idiots.
The "solar winds" hack showed the US how the Russian government could hack the US and the US didn't even know it. The Russian computer experts were just smarter than the US computer experts. That make me very concerned.SolarWinds - Wikipedia
4. LOL!! Xiden is the president not Trump. Xiden is working with Putin, not Trump. Damn you're stupid.
Americans still lead the world in technical expertise - but when profit is their only motive, security loses out.
I just read the wiki version of the solar winds hack. My God, WTF are they doing in DC? You can't read that and come away with any thoughts other than the Russians are the NFL, and DC are the JV team (as BO used to say).
Its not my field, but it seems that the CEOs are focusing on "firewalls", which reminds me of the Maginot Line.
1. My thoughts are to make a hack-proof OS, UNIX, LINUX, APPLE's, or a new one.
2. If an OS can't be made hack-proof the use "hard wired - unhackable" thumb-drive "keys" with passwords and strict limits on administer privileges.
3. If the US can't stop Russian hackers....not good.
Solarwinds, and just about all the companies involved are private companies. The federal government has not say in how they run their security.
For the most part private companies don't want to spend the money to make their systems secure proactively. They'd rather save money, then when it hits the fan they'll react....too late!
That's just stupid and lazy. They get scammed by faux "security" companies like "Solarwinds" who say their firewalls are secure. Dumbasses.To run a pipeline system I'm not sure what software they were using, but may guess would be a DCS, which shouldn't be connected to the internet, or hackable. If it was connected they deserved to be hacked.
Distributed control system - Wikipedia
Nowadays most end-users want to be able to connect to control systems remotely from their office PCs or from home.
So companies insist that control systems be connected at least to the office network and usually to the internet.
They also like to have automated systems monitoring and alerting...usually using Solarwinds.....
Yeah, but your post seems to have double standards.
Don't you remember when the MSM asked Trump if he had any responsibility for this or that, and then when he said "no", that soundbite was played and replayed. Xiden doesn't get a pass on anything because Trump didn't get a pass on anything. That is how we avoid a double-standard.
Yup. I've done them too, and quickly realized they were not full, complete tests. IOW, they might kick over to the DR site and run some tests, but they didn't literally run the process through from start to finish and make sure the entire environment worked properly. No one could tell an executive how long it would actually take to be at full functionality after a disaster.You mean 'Disaster Recovery' plans?Remote monitoring. Connected to the internet, any executive anywhere can get up to the second status reports, etc. The bottom line is this, though. We don't really have a good way to actually fight off a ransomware attack short of making sure to have good backups of unencrypted data and proven restore procedures.To run a pipeline system I'm not sure what software they were using, but may guess would be a DCS, which shouldn't be connected to the internet, or hackable. If it was connected they deserved to be hacked.
Distributed control system - Wikipedia
Everyone has them on paper, but nobody wants to foot the bill for a realistic disaster recovery capability.
I've been in dozens of disaster recovery tests...they're a joke.
Go ahead and show me where Trump was blamed for ransomware attack or a private corporation.
1. Who was president when the Russians hit Colonial with ransomware, and PAID the $5m? ANS: JOE BIDENFECKLESS. Describes the Xiden administration perfectly.
Feeble or ineffective.
Spiritless; weak; useless; worthless.
Colonial Pipeline did pay ransom to hackers, sources now say
Colonial Pipeline paid the ransomware group that carried out a crippling cyberattack, two sources familiar with the matter told CNN on Thursday.
Stupid Russians probably could have gotten a lot more than $5m (crime pays!!).
Maybe they have even richer chumps lined up for their next ransomware attack?
How quickly you blame Biden for the Putin's attack on American energy.
Donald Trump gutted the Cyber Security force to pay for his Wall. Trump also failed to do anything about the massive Russian hacking of government computers last year. Donald Trump spent 4 years giving the Russians unlimited access to hacking American computers, and then denied it was even happening.
Now that Trump's failures to protect the USA from Russian hackers has surfaced since he was voted out of office, the Putin propaganda machine and the Republicans are working hand in hand to use this to discredit Joe Biden.
Trump and Putin, working together, to destroy the USA, again.
2. Stop lying about Trump, you TDS moron. The USSC said the wall funding was legal.
3. The Federal government hired "Solar Winds" to secure their computer systems. The Russians just ate "solar wind's" lunch. Trump did not hire "solar winds" they were hired by the deep state idiots.
The "solar winds" hack showed the US how the Russian government could hack the US and the US didn't even know it. The Russian computer experts were just smarter than the US computer experts. That make me very concerned.SolarWinds - Wikipedia
4. LOL!! Xiden is the president not Trump. Xiden is working with Putin, not Trump. Damn you're stupid.
Americans still lead the world in technical expertise - but when profit is their only motive, security loses out.
I just read the wiki version of the solar winds hack. My God, WTF are they doing in DC? You can't read that and come away with any thoughts other than the Russians are the NFL, and DC are the JV team (as BO used to say).
Its not my field, but it seems that the CEOs are focusing on "firewalls", which reminds me of the Maginot Line.
1. My thoughts are to make a hack-proof OS, UNIX, LINUX, APPLE's, or a new one.
2. If an OS can't be made hack-proof the use "hard wired - unhackable" thumb-drive "keys" with passwords and strict limits on administer privileges.
3. If the US can't stop Russian hackers....not good.
Solarwinds, and just about all the companies involved are private companies. The federal government has not say in how they run their security.
For the most part private companies don't want to spend the money to make their systems secure proactively. They'd rather save money, then when it hits the fan they'll react....too late!
You really need to read the links I post before replying.
Solar Winds was a computer security company from Houston, like McAfee, who the Feds hired to protect the Federal computers from hacks, epic fail.
Read the wiki summary of solar winds.
What do you say when private companies and government entities spend the money and hire computer security "experts" and they still get hacked by smarter Russians?
All the DR tests I've been part of have been disasters in and of themselves. The facility's equipment is always in decrepit condition - I've spent most of the DR tests troubleshooting the equipment - then arguing with the techs to get it replaced.Yup. I've done them too, and quickly realized they were not full, complete tests. IOW, they might kick over to the DR site and run some tests, but they didn't literally run the process through from start to finish and make sure the entire environment worked properly. No one could tell an executive how long it would actually take to be at full functionality after a disaster.You mean 'Disaster Recovery' plans?Remote monitoring. Connected to the internet, any executive anywhere can get up to the second status reports, etc. The bottom line is this, though. We don't really have a good way to actually fight off a ransomware attack short of making sure to have good backups of unencrypted data and proven restore procedures.To run a pipeline system I'm not sure what software they were using, but may guess would be a DCS, which shouldn't be connected to the internet, or hackable. If it was connected they deserved to be hacked.
Distributed control system - Wikipedia
Everyone has them on paper, but nobody wants to foot the bill for a realistic disaster recovery capability.
I've been in dozens of disaster recovery tests...they're a joke.
Talking about DR testing, when I worked for Circuit City, we were putting in automated dialers for their ESP call center. During production testing with live calls, suddenly a rep from the company that made the dialers rushed into the room proclaiming loudly, "I didn't do it, I didn't do it". Behind him ambled a Circuit City tech with a smile on his face. He had unilaterally decided to test the recoverability of the dialers (OS/2 servers, BTW) by unplugging one from power while it was running.
FYI:That's just stupid and lazy. They get scammed by faux "security" companies like "Solarwinds" who say their firewalls are secure. Dumbasses.To run a pipeline system I'm not sure what software they were using, but may guess would be a DCS, which shouldn't be connected to the internet, or hackable. If it was connected they deserved to be hacked.
Distributed control system - Wikipedia
Nowadays most end-users want to be able to connect to control systems remotely from their office PCs or from home.
So companies insist that control systems be connected at least to the office network and usually to the internet.
They also like to have automated systems monitoring and alerting...usually using Solarwinds.....
1. Who was president when the Russians hit Colonial with ransomware, and PAID the $5m? ANS: JOE BIDENFECKLESS. Describes the Xiden administration perfectly.
Feeble or ineffective.
Spiritless; weak; useless; worthless.
Colonial Pipeline did pay ransom to hackers, sources now say
Colonial Pipeline paid the ransomware group that carried out a crippling cyberattack, two sources familiar with the matter told CNN on Thursday.
Stupid Russians probably could have gotten a lot more than $5m (crime pays!!).
Maybe they have even richer chumps lined up for their next ransomware attack?
How quickly you blame Biden for the Putin's attack on American energy.
Donald Trump gutted the Cyber Security force to pay for his Wall. Trump also failed to do anything about the massive Russian hacking of government computers last year. Donald Trump spent 4 years giving the Russians unlimited access to hacking American computers, and then denied it was even happening.
Now that Trump's failures to protect the USA from Russian hackers has surfaced since he was voted out of office, the Putin propaganda machine and the Republicans are working hand in hand to use this to discredit Joe Biden.
Trump and Putin, working together, to destroy the USA, again.
2. Stop lying about Trump, you TDS moron. The USSC said the wall funding was legal.
3. The Federal government hired "Solar Winds" to secure their computer systems. The Russians just ate "solar wind's" lunch. Trump did not hire "solar winds" they were hired by the deep state idiots.
The "solar winds" hack showed the US how the Russian government could hack the US and the US didn't even know it. The Russian computer experts were just smarter than the US computer experts. That make me very concerned.SolarWinds - Wikipedia
4. LOL!! Xiden is the president not Trump. Xiden is working with Putin, not Trump. Damn you're stupid.
Americans still lead the world in technical expertise - but when profit is their only motive, security loses out.
I just read the wiki version of the solar winds hack. My God, WTF are they doing in DC? You can't read that and come away with any thoughts other than the Russians are the NFL, and DC are the JV team (as BO used to say).
Its not my field, but it seems that the CEOs are focusing on "firewalls", which reminds me of the Maginot Line.
1. My thoughts are to make a hack-proof OS, UNIX, LINUX, APPLE's, or a new one.
2. If an OS can't be made hack-proof the use "hard wired - unhackable" thumb-drive "keys" with passwords and strict limits on administer privileges.
3. If the US can't stop Russian hackers....not good.
Solarwinds, and just about all the companies involved are private companies. The federal government has not say in how they run their security.
For the most part private companies don't want to spend the money to make their systems secure proactively. They'd rather save money, then when it hits the fan they'll react....too late!
You really need to read the links I post before replying.
Solar Winds was a computer security company from Houston, like McAfee, who the Feds hired to protect the Federal computers from hacks, epic fail.
Read the wiki summary of solar winds.
What do you say when private companies and government entities spend the money and hire computer security "experts" and they still get hacked by smarter Russians?
Solarwinds is monitoring and alerting software. Not anti-malware or security software.
I don't need to read about it on wikipedia, I've been using Solarwinds Orion for almost 15 years.
The Russian hack of Solarwinds was done by embedding malware in the Solarwind's agent which gets installed on all PCs (usually servers) that are being monitored by the Solarwinds server.
It was the responsibility of Solarwinds, a private company, to insure that their agents were free of malware before distributing it to their customers.
Installing updated agents is a routine task that Solarwinds tells it's customers to do regularly. Fortunately, I lazy and didn't upgrade the agents in my company for a very long time, so I saved my company from the hack.
Stick to topics that you know...but then you wouldn't be posting much would you!
Whatever US computer security companies are doing, just isn't working. The Russians hack just about everything they want to. IMHO the US needs a paradigm shift in computer security competency. The Russians look very capable, and the US looks like chumps.FYI:That's just stupid and lazy. They get scammed by faux "security" companies like "Solarwinds" who say their firewalls are secure. Dumbasses.To run a pipeline system I'm not sure what software they were using, but may guess would be a DCS, which shouldn't be connected to the internet, or hackable. If it was connected they deserved to be hacked.
Distributed control system - Wikipedia
Nowadays most end-users want to be able to connect to control systems remotely from their office PCs or from home.
So companies insist that control systems be connected at least to the office network and usually to the internet.
They also like to have automated systems monitoring and alerting...usually using Solarwinds.....
Solarwinds doesn't produce firewalls, they produce monitoring and network/systems/application management software (along with an assortment of IT Professional Utilities) and other than the recent security flaw on their Orion platform their software has been pretty solid.
"It ain’t what you don’t know that gets you into trouble. It’s what you know for sure that just ain’t so." -- Donald G. Reinertsen
If the key did not work, that will encourage future victims not to pay. So I'm sort of surprised.
>If the key did not work, that will encourage future victims not to pay. So I'm sort of surprised.
gizmodo.com
So the key was not very useful. I'm not sure what that means. Was it somewhat useful?>If the key did not work, that will encourage future victims not to pay. So I'm sort of surprised.
Yeah, I was surprised to read it. Poetic justice, if accurate. Here's one link...
Colonial Pipeline Reportedly Paid Hackers $5 Million for Decryption Key That Wasn't Very Useful
About a week ago, Colonial Pipeline paid the ransomware group DarkSide approximately $5 million in exchange for a data decryption key that didn’t really
I don't blame the Pipe Line Co. for paying. I understand that it does encourage the ransomware people to strike again; however, both the short term and long term effects have to be considered.
