So Im reading this now that Solar Winds updates have been delivering payloads since june or july. Solar winds having crazy levels of access to interior infrastructures.
Im not sure what this is saying, it sounds like what fireye isnt saying outwardly is their toolset was stolen prior to that and that was how they were able to circumvent the solarwinds security infrastructure, as solar winds relied on fireye? Anybody come across any good detail on solar winds impacted software? Like if you downloaded the free subnet calculator, will they be taking your google home account too? Imma be pretty pissed if they mess with my google play playlists. I wonder if the disruptions with office365 and the weird spam filter changes lately are related to cleanup prior to publication. We are a tiny company and got withing a hair of pulling the trigger on various solarwinds offerings over the years. Thats with tiny company tiny budgets. I cant imagine CTO voicemails going down around the world today, depending on budget, you hand the keys over to solarwinds, and by design, each key you hand over makes sense to spend a little more and hand over another key. How would you even begin to clean up your organization when your systems that would provide you your forensics are the systems that did the damage? Is this just mediahype and more russia russia russia, or is this as big of a deal as it seems On Mon, Dec 14, 2020 at 9:01 AM dave <[email protected]> wrote: > DA HUMANITY!! > > > On 12/14/20 8:58 AM, Ken Hohhof wrote: > > I had a customer this morning complaining she couldn’t “sign on” to the > Internet. I mentioned that Google had an outage this morning, but she > responded that she doesn’t use any Google services. Of course her email > was from a Gmail address. > > > > > > *From:* AF <[email protected]> <[email protected]> *On Behalf > Of *Mike Hammett > *Sent:* Monday, December 14, 2020 6:54 AM > *To:* AnimalFarm Microwave Users Group <[email protected]> <[email protected]> > *Subject:* Re: [AFMUG] Fireye > > > > "I know I'm next, they're coming after my google home mini and my netflix > account." > > > > > > aaaaannnndddd Google is broken this morning. > > > > > > ----- > Mike Hammett > Intelligent Computing Solutions <http://www.ics-il.com/> > <https://www.facebook.com/ICSIL> > <https://plus.google.com/+IntelligentComputingSolutionsDeKalb> > <https://www.linkedin.com/company/intelligent-computing-solutions> > <https://twitter.com/ICSIL> > Midwest Internet Exchange <http://www.midwest-ix.com/> > <https://www.facebook.com/mdwestix> > <https://www.linkedin.com/company/midwest-internet-exchange> > <https://twitter.com/mdwestix> > The Brothers WISP <http://www.thebrotherswisp.com/> > <https://www.facebook.com/thebrotherswisp> > > > <https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg> > ------------------------------ > > *From: *"Steve Jones" <[email protected]> > *To: *"AnimalFarm Microwave Users Group" <[email protected]> > *Sent: *Sunday, December 13, 2020 9:57:21 PM > *Subject: *Re: [AFMUG] Fireye > > Nope, per fireye, the toolset had to be released because of it being > stolen, was not "in the wild" > > > > Going to get really interesting to see what comes of this, two federal > agencies just happen to get hit shortly after. You can do plenty when you > know how you would have otherwise been caught. > > > > And that's all fireye admits to having been breached. I'm gonna go ahead > and not take their word on it definitively having been russia either. > Convenient timing after iran specifically has stated they're going to > retaliate for the dead scientist. China will probably confirm this shortly > > > > Pretty sure this is far from over and pretty sure this company is just the > first to go public. > > > > I know I'm next, they're coming after my google home mini and my netflix > account. > > > > On Sun, Dec 13, 2020, 9:10 PM Ken Hohhof <[email protected]> wrote: > > Not saying you are wrong. > > > > But I think I read somewhere that the Fireye tools that were stolen were a > collection of malware already in the wild that they used for testing of > client networks. So it was stuff already available, just neatly packaged. > > > > The guys who really f’d up were the “Equation Group” (cough, cough, NSA) > who lost novel and very powerful hacking tools like Eternal Blue to the > Shadow Brokers group. > > > > *From:* AF <[email protected]> *On Behalf Of *Steve Jones > *Sent:* Sunday, December 13, 2020 8:45 PM > *To:* AnimalFarm Microwave Users Group <[email protected]> > *Subject:* [AFMUG] Fireye > > > > These guys F'd up beyond belief. > > > > Inept as jaime would say > > -- > AF mailing list > [email protected] > http://af.afmug.com/mailman/listinfo/af_af.afmug.com > > > -- > AF mailing list > [email protected] > http://af.afmug.com/mailman/listinfo/af_af.afmug.com > > > > > -- > AF mailing list > [email protected] > http://af.afmug.com/mailman/listinfo/af_af.afmug.com >
-- AF mailing list [email protected] http://af.afmug.com/mailman/listinfo/af_af.afmug.com
