#security - December 2020 | Slack Archive

btaiabout 5 years ago

this is so scary… many of us use many third party software hosted on our servers and some with privileged access. Think prometheus images, log agents, etc. which many of us always assume its safe because it’s coming from a safe source. these hackers got their malware into solarwind’s build process which can very much happen to any of our trusted vendors/images if we’re unlucky.
https://arstechnica.com/information-technology/2020/12/18000-organizations-downloaded-backdoor-planted-by-cozy-bear-hackers/

Maciek Strömichabout 5 years ago(edited)

https://www.zdnet.com/article/academics-turn-ram-into-wifi-cards-to-steal-data-from-air-gapped-systems/ it only took 3 years to go from 4000b/s using hdd lights to extract the data with some malware installed on the system to malwareless extraction at speeds around 100b/s

Andrew Rothabout 5 years ago

https://thenewstack.io/solarwinds-the-worlds-biggest-security-failure-and-open-sources-better-answer/