'Vigilante Hackers' Strike Routers In Russia and Iran, Reports Motherboard (vice.com) 121
An anonymous reader quotes Motherboard:
On Friday, a group of hackers targeted computer infrastructure in Russia and Iran, impacting internet service providers, data centres, and in turn some websites. "We were tired of attacks from government-backed hackers on the United States and other countries," someone in control of an email address left in the note told Motherboard Saturday... "We simply wanted to send a message...." In addition to disabling the equipment, the hackers left a note on affected machines, according to screenshots and photographs shared on social media: "Don't mess with our elections," along with an image of an American flag...
In a blog post Friday, cybersecurity firm Kaspersky said the attack was exploiting a vulnerability in a piece of software called Cisco Smart Install Client. Using computer search engine Shodan, Talos (which is part of Cisco) said in its own blog post on Thursday it found 168,000 systems potentially exposed by the software. Talos also wrote it observed hackers exploiting the vulnerability to target critical infrastructure, and that some of the attacks are believed to be from nation-state actors...
Reuters reported that Iran's IT Minister Mohammad Javad Azari-Jahromi said the attack mainly impacted Europe, India, and the U.S.... The hackers said they did scan many countries for the vulnerable systems, including the U.K., U.S., and Canada, but only "attacked" Russia and Iran, perhaps referring to the post of an American flag and their message. They claimed to have fixed the Cisco issue on exposed devices in the US and UK "to prevent further attacks... As a result of our efforts, there are almost no vulnerable devices left in many major countries," they claimed in an email.
Their image of the American flag was a black-and-white drawing done with ASCII art.
In a blog post Friday, cybersecurity firm Kaspersky said the attack was exploiting a vulnerability in a piece of software called Cisco Smart Install Client. Using computer search engine Shodan, Talos (which is part of Cisco) said in its own blog post on Thursday it found 168,000 systems potentially exposed by the software. Talos also wrote it observed hackers exploiting the vulnerability to target critical infrastructure, and that some of the attacks are believed to be from nation-state actors...
Reuters reported that Iran's IT Minister Mohammad Javad Azari-Jahromi said the attack mainly impacted Europe, India, and the U.S.... The hackers said they did scan many countries for the vulnerable systems, including the U.K., U.S., and Canada, but only "attacked" Russia and Iran, perhaps referring to the post of an American flag and their message. They claimed to have fixed the Cisco issue on exposed devices in the US and UK "to prevent further attacks... As a result of our efforts, there are almost no vulnerable devices left in many major countries," they claimed in an email.
Their image of the American flag was a black-and-white drawing done with ASCII art.
Undecided (Score:4, Insightful)
Re:Undecided (Score:5, Insightful)
Part of me wants to cheer and the other part says things like this aren't helping.
The second part of you is correct. These actions are counter-productive. Russia and Iran both have closed paranoid cultures that play up their victimhood at the hands of the West. But that belief is not monolithic, and there are factions in both countries that want more openness, tolerance, and trust in the international system. These vigilante actions weaken these people while strengthening the paranoid hardliners.
In fact, these actions play so smoothly into the hands of the hardliners, that we shouldn't dismiss the possibility that it is a false flag operation.
Re: (Score:1, Insightful)
Part of me wants to cheer and the other part says things like this aren't helping.
The second part of you is correct. These actions are counter-productive. Russia and Iran both have closed paranoid cultures that play up their victimhood at the hands of the West.
Government ordered cyber offensives designed to change the leadership of a country are an act of war.
Acts of war cannot be ignored. That alone is a reason Trump should be impeached, since he is not doing his damn job. (If anyone can point to a real plan to stop this shit from happening again, or even serious progress...?)
Now, do vigilante actions help? Probably not, since the scale is likely only big enough to be used internally as propaganda. A response, if given must cause enough pain that the aggress
Re:Undecided (Score:5, Insightful)
Government ordered cyber offensives designed to change the leadership of a country are an act of war.
Espionage and covert activities are a normal part of government relations. Saying Russian ads on Facebook are an "act of war" is absurd.
Acts of war cannot be ignored.
Why not?
That alone is a reason Trump should be impeached, since he is not doing his damn job.
Declaring war is a congressional responsibility.
If anyone can point to a real plan to stop this shit from happening again, or even serious progress...?
Here's my plan: Improve education in America so we have fewer people stupid enough to believe nonsense posted on Facebook.
Re: Undecided (Score:2)
Education IS propaganda. Depending on content, it's bad or dood propaganda.
What you are saying is that we should counteract it with good propaganda, and, as ever, I nominate myself to determine what is good or bad.
Re: Undecided (Score:1)
In a world where we have kindergarten teachers taking their classes out to join anti gun protests, and universities are holding classes on how to "eliminate whiteness," it's hard to argue that there isn't a propaganda component of American education.
Re: (Score:2)
The parents are the parents. It is naturally their call, not the teachers'.
Re: (Score:2)
Government ordered cyber offensives designed to change the leadership of a country are an act of war.
Espionage and covert activities are a normal part of government relations. Saying Russian ads on Facebook are an "act of war" is absurd.
This is a red herring. Espionage might be a side effect of the present situation, given that some efforts were made to use secure russian communications to keep the US intelligence community from knowing what was being communicated between Russia and the Trump White house Source: http://www.businessinsider.com... [businessinsider.com] But it isn't legal, and those caught are punished.
But yeah - saying Russian ads on Facebook are the source of the concept of "Acts of war", and that we dumbass 'Murricans are only thinking of t
ShanghaiBill, what you said seems reasonable. (Score:3)
I'm surprised that other responses to your comment were so negative and so hostile.
Hostile people: Be leaders. Don't be destructive. Use logic, not anger.
Re: (Score:2)
I'm surprised that other responses to your comment were so negative and so hostile.
Two of the responses were hostile, and were most likely written by the same AC. I don't think his comments were directed at anything I said, but rather at me personally. I seem to have attracted my own private little AC troll who follows me from discussion to discussion to fling insults, like "Trump-supporting-Nazi" (I didn't vote for Trump) and "treasonous faggot" (I am heterosexual). I actually find the attention to be quite flattering.
Re:Undecided (Score:4)
And how long are we supposed to wait for Russia, NK, Iran, or other similar countries to become more open?
As long as it takes. What is the alternative? War?
As bad as they are, Russia, NK, and Iran are indeed becoming more open. A generation ago, all three were worse, at least for their own people.
The world seems to assume that the US is powerless to stop other countries from conducting cyber attacks on the US.
We are far from powerless, but our responses should be intelligent, proportionate, and carefully targeted. The main focus should be on making our own systems less vulnerable, rather than attacking others.
Re: (Score:1)
I really hope that the increased propaganda and trolling from Russia is indeed a sign of the Kreml's fear of actual Russian people starting to open up after all the shit that has happened between the West and their country in the last century. But unfortunately to the rest of the world, that doesn't have eyes in Russia it only makes it look like the Cold War is back. Or maybe it has never stopped and is getting more support again.
Re: (Score:2)
As a Canadian, I'd say "paranoid culture that plays up their victimhood" narrative perfectly describes the post-9/11 USA.
Re: (Score:2)
Hit the nail on the head, did he?
Re: (Score:2)
Speaking of false flags...
Doing them a favor. (Score:3, Interesting)
This little circle-jerk just closed off viable attack vectors that could have been used in a real defense situation.
Retaliation in 3...2....1.....
Re: (Score:1)
Re:Vigilante ? More like the NSA. (Score:5, Interesting)
That's also why this is highly unlikely to be NSA. The folks doing intelligence work for government intelligence agencies don't fuck around like this. They go for the throat, and they go hard.
And it's not like it's limited to US. In fact, one of the biggest complaints of FBI doing investigations of Russian for profit hackers was that almost every one they reported on to Russian authorities ended up being recruited for their intelligence apparatus.
Re: Vigilante ? More like the NSA. (Score:1)
Thank you for joining the Russians Not Pretending To Be Other Nationalities Club.
We welcome new members.
Re: (Score:3)
I have read your rambling wall-o'-text 3 times.
It made no more sense the third time than it did either of the first two. Which is to say, little or none.
Some review of grammar and punctuation might enable you to *communicate* rather than merely *express*. Seriously.
Re: (Score:2, Offtopic)
The Slashdot message centre informed me that there was a response to my post, but I see this isn't the case.
Re: (Score:2)
Whoever modded this Off-Topic is a fucking moron.
Re: (Score:2)
The trolls have lots of mod points and get vindictive these days. You just have to shrug, ignore the mod totals you get (because they don't mean shit), and move on.
Re: (Score:1)
ignore the mod totals you get because they don't mean shit
Just like all of your comments.
Hey, what goes around, comes around!
Case in point! Oh well.
Re: (Score:2)
Proof reading would Indicate I give a fuck, rather than just having fun, except for the Puerto Rico bit, which I will repeat https://www.youtube.com/watch?... [youtube.com], Australia Puerto Rico volume 2, just more profitable, fuck off.
Re: (Score:2)
Hope these script kiddies have somebody to taste their food and open their mail for them. Assuming anything of worth was actually touched. If not, meh....
Re:Vigilante ? More like the NSA. (Score:5, Interesting)
Don't kid yourselves, the baddest motherfuckers in the world of computers are employed by governments.
. . . when "The Pros" hack into a system . . . they don't tell anyone about it.
. . . when "The Schmoes" hack into a system . . .they brag about it on Facebook.
One of the oldest rules in the book is that you never let your enemy know that you have compromised them. That way, they will continue to expose valuable information that you can exploit.
If you leave behind an email stating, "You've been hacked!" . . . that's game over for that exploit.
There used to be an ancient joke that "spooky folks" would pass around, that went something like:
"Did you hear the story of the greatest spy coup of all time . . . ?"
"No . . . you didn't . . . and you never will."
Re: (Score:2)
Valid targets now (Score:1)
hope russia targets them for execution they are now valid combatants
Re: (Score:1, Troll)
Says who? Any script kiddy in the west that gets a website down is immediately refered to as "Russian state hacker", so don't be surprised when the Russians react the same.
'Vigilante Hackers'? (Score:2)
Re: (Score:2)
> to not accept that so many Americans willingly voted for the current president is hiding the head in the sand.
I prefer to think that is was mostly a choice for the lesser evil.
Dear TLAs and Trump (Score:2)
Wouldn't it be nice if you could be pro-active for once and tell the router makers about all the holes you exploit?
My bad. I understand your job is to fuck the other guy, even if the other guy can fuck us the same way.
Re:Dear TLAs and Trump (Score:4, Informative)
Wouldn't it be nice if you could be pro-active for once and tell the router makers about all the holes you exploit?
Stupid, the router makers already know about the holes. They're just too languid in their response time to issue a patch. And even worse, admins and infrastructure managers are too slow to apply those patches and replace unpatchable (too old) machines.
They lost.. (Score:1)
Useful idiots (Score:1)
ASCII art (Score:4, Insightful)
What really troubles me about this is the choice of image format used to save the screenshot of the ASCII art. Why are people still using JPEG for non-photographic images in 2018?
Re: (Score:2)
Don't get me started about the current abuse of animated GIFs. Sometimes I view a page where there's a 50MB animated GIF instead of a 2MB video. People are insane and those making those technical decisions should lose their job.
Re: (Score:1)
Fuck off with this neocon BS on a tech site .. (Score:2)
How'd they get Cisco routers? (Score:2)
Sounds like CIA to me... (Score:2)
Vigilante hackers (or nation-state in disguise, with famed reputation of being behind the vast majority of cyberhacks of nation-states.)
Re: (Score:3)
Ehhh, not entirely true. You could burn one set of exploits to to test response patterns, especially if you had other unknown hooks in both the systems you hit and at least some of the systems doing the cleanup. That requires you to have an entirely unrelated chain ready to go for part 2 of course. Course, this is relatively unlikely to be the case if a bunch of amateurs are behind it.