Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror

Submission + - Russian military was behind 'NotPetya' cyberattack in Ukraine, CIA concludes (washingtonpost.com)

schwit1 writes: The CIA has attributed to Russian military hackers a cyberattack that crippled computers in Ukraine last year, an effort to disrupt that country’s financial system amid its ongoing war with separatists loyal to the Kremlin.

The June 2017 attack, delivered through a mock ransomware virus dubbed NotPetya, wiped data from the computers of banks, energy firms, senior government officials and an airport.

The GRU military spy agency created NotPetya, the CIA concluded with “high confidence” in November, according to classified reports cited by U.S. intelligence officials.

The hackers used what is known as a “watering hole” attack. They infected a website to which they knew their targets would navigate — in this case, a Ukrainian site that delivered updates for tax and accounting software programs.

In a twist, the attackers used malware that appeared to be ransomware — a technique that encrypts victims’ data and decrypts it only if a ransom is paid, to make it appear as though criminal hackers or some group other than a nation state were the culprits.

For many days, people were classifying NotPetya as an actual ransomware. It took a few days for people to understand what it was doing — that it was permanently wiping data

Comment Re:Of course (Score 1) 1009

Yup. And the "free market" is anything but. If we truly had a free market, we wouldn't have so many regulations that are specifically created as a form of protection racket.

People clamor for more Gov. The Gov creates more problems in the form of a solution. People claim the Gov isn't doing enough, and double-down. Problems get exactly worse.

Pain is supposed to mean "don't do that". Unfortunately, the populous aren't interpreting the signals properly, if at all!

Comment Re:This will impeach Trump (Score 1) 225

It's classic Democrat Party diversion. The ultimate form of projection. Whatever they accuse others of doing, it's to hide and divert the fact they're doing exact that.

This really two-fold. Protecting Hillary Clinton (Uranium One deal), and the FBI that protected her, and via extension, the Democrat party.

Comment Re:Of course (Score 1) 1009

I'm not opposed to minimum wage (and frankly I wish we'd just tie it to inflation so we don't need to constantly adjust it

I agree 100% with this, but not for the reasons you're aware of. In the US we have a nation debt of over 20 TRILLION. If we tied the minimum wage of inflation, that would cause a recursive (feedback) loop. You see, automation and robotics inherently is a deflationary pressure on the economy, because it keeps humans out of picture as un/der employed. Now, the Feds have to "print" (it's all electronic), money to be redistributed back to those un/der employed so they can pump the money back into the ownership class of those that hold land, intellectual property, and automated technologies in perpetuity. The profits are then re-invested in further automation. Rinse, lather, repeat. There's a reason the disparity in wealth has grown exponentially for the top 1% and beyond.

These uber wealthy exasperate the problem worse by buying congress off. The strongest stench of corruption you can imagine!!!

Welcome to a new era, where neo-feudalism becomes not just an American, but a global phenomenon. Where a society of haves and have-nots becomes the norm. And yet again, proves that a middle-class is but an abortion in human history, doomed to never be repeated.

Comment Re: Of course (Score 0) 1009

There's a reason villas are walled; and depending on in what nation, armed to keep the unwanted out. Their function is popular in parts of South America, specifically in nations were the income disparity is the greatest. Overtime, culturally, they've become quite popular in California and among other parts of America of the wealthy elite. Now, it's more form over function, but, you get the idea.

Comment Re:Windows Server (Score 1) 136

Yeah, "WTF" was my initial reaction too. Again, maybe it's for GPO enforcement. Anyways, i'll test later with the Get-SpeculationControlSettings PS command after I found a client that has the latest BIOS available. If both Meltdown and Spectre are fully patched, well, you now have your answer :). Otherwise, plug in the reg values, reboot, and re-run the command to validate.

I'm fairly confident BTW, that the reg values are a requirement for server, but not for client. Let me know if you can confirm either way.

Comment Re:Legal authority to pry them open (Score 1) 441

It will go to SCOTUS. Encryption, and the knowledge to unlock the data is in your head; it's an extension of the mind. The Gov can can attempt to crack it all they want, so long as it's not a part of **you, or in your possession. But they can't make you violate the 5th.

**at some point, we will have cybernetics embedded in the human brain. Augmented enhancements. Being that hardware is a part of you, does that give the Gov right to hack your brain to get the knowledge.

This is why I've always held the paradigm that encryption is an EXTENSION OF THE MIND!

Comment Steam In-Home Streaming (Score 1) 100

If this is anything like Steam's In-Home Streaming, I hope they actually allow me to source source/destination IPs into the clients. I've got a powerful machine in a remote location that I can only get to via a dial-up SSH VPN session. Because of the difference in subnet, Steam In-Home Streaming wont auto discover the machine at the other end.

I'm all for making this "auto-magic" for the end-user, but having advanced options would be extremely helpful for when the magic doesn't work.

Comment Windows Server (Score 4, Informative) 136

Remember,

For Windows Server, you will need to also set the following three registry keys to enable post patch install. With Windows Home/pro, it's already enabled after installation.

For Windows Server.

reg add "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management" /v FeatureSettingsOverride /t REG_DWORD /d 0 /f

reg add "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management" /v FeatureSettingsOverrideMask /t REG_DWORD /d 3 /f

reg add "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Virtualization" /v MinVmVersionForCpuBasedMitigations /t REG_SZ /d "1.0" /f

To Validate status, you can run the PowerShell command Get-SpeculationControlSettings.

If Windows 10 or Server 2016, you can skip the first step.

1. Set-ExecutionPolicy Bypass
2. Install-Module SpeculationControl
3. Get-SpeculationControlSettings
You will now see results.
4. Set-ExecutionPolicy Restricted (to protect the system via securing powershell again)

Good luck. Be sure to apply BIOS updates when and if applicable to stave off Spectre

Slashdot Top Deals

ASCII a stupid question, you get an EBCDIC answer.

Working...