marvin martian
Diamond Member
Good lord, you dems are such warmongers. Blows my fucking mind.Hospitals and schools have been getting hit like this for yearsSadly, the hack reportedly exploited a known hole in an outdated version of MS Exchange software...Totally agree with every word in your post. "Firewalls" are apparently wat too porous.That's a complete mischaracterization of the situation which is far more complex than one might believe looking on the surface.Whatever US computer security companies are doing, just isn't working. The Russians hack just about everything they want to. IMHO the US needs a paradigm shift in computer security competency. The Russians look very capable, and the US looks like chumps.FYI:That's just stupid and lazy. They get scammed by faux "security" companies like "Solarwinds" who say their firewalls are secure. Dumbasses.To run a pipeline system I'm not sure what software they were using, but may guess would be a DCS, which shouldn't be connected to the internet, or hackable. If it was connected they deserved to be hacked.How about a federal law requiring that critical production systems NOT be connected to the internet in any way.
Despite what everyone seems to think, all computers do not have to have an internet connection.
Distributed control system - Wikipedia
en.wikipedia.org
Nowadays most end-users want to be able to connect to control systems remotely from their office PCs or from home.
So companies insist that control systems be connected at least to the office network and usually to the internet.
They also like to have automated systems monitoring and alerting...usually using Solarwinds.....
Solarwinds doesn't produce firewalls, they produce monitoring and network/systems/application management software (along with an assortment of IT Professional Utilities) and other than the recent security flaw on their Orion platform their software has been pretty solid.
"It ain’t what you don’t know that gets you into trouble. It’s what you know for sure that just ain’t so." -- Donald G. Reinertsen
Just to begin with, we're (the good guys) are in a situation where we have to defend against constantly evolving threats coming at us 24x7x365 from all over the globe where the bad guys only need to get lucky once to breach and they can attack many targets at once for little to no cost, while the good guys have to spend tremendous amounts of time, effort and capital to defend.
Leading US Companies specializing in cybersecurity solutions are (for the most part) solid companies (as are many foreign companies in the space), it's just that they're in a space where the battlefield is never the same from day to day and the enemies are coming from all sides and getting more sophisticated every day.
That said, the "battlefield" is NOT in our favor, so we need to pull a stratagem out of our hat.
My recommendation would be a new "bulletproof" OS.
Failing that, a good OS with a "bullet-proof" keyed administrator tool, not just a PW, but a physical thumb-drive key that can't be duplicated so no one but the admin can do hackable things.
Just like driving a car, we need some new physical device to keep remote hackers out.
Colonial Pipeline using vulnerable, outdated version of Microsoft Exchange: report
Colonial Pipeline may have been using an outdated version of Microsoft Exchange when it was targeted by a ransomware attack late last week.www.foxbusiness.com
My company's OnPremise Exchange server got hit by a malware attack about a month ago. It didn't affect anything other than shutting down that server.
I doubt that this was done thru any Exchange server vulnerability...sounds like a whole lot of people are scramblin' to cover their asses!!!!
This however was state sanctioned most likely and there needs to be a price paid
The DemoKKKrats have never met a war they didn't LOVE.