- My Forums
- Tiger Rant
- LSU Recruiting
- SEC Rant
- Saints Talk
- Pelicans Talk
- More Sports Board
- Fantasy Sports
- Golf Board
- Soccer Board
- O-T Lounge
- Tech Board
- Home/Garden Board
- Outdoor Board
- Health/Fitness Board
- Movie/TV Board
- Book Board
- Music Board
- Political Talk
- Money Talk
- Fark Board
- Gaming Board
- Travel Board
- Food/Drink Board
- Ticket Exchange
- TD Help Board
Customize My Forums- View All Forums
- Show Left Links
- Topic Sort Options
- Trending Topics
- Recent Topics
- Active Topics
Started By
Message
State hack: how was it done?
Posted on 11/23/19 at 9:36 am
Posted on 11/23/19 at 9:36 am
I saw in an article that it started with “a worker making an unauthorized download on a state computer. ”. Was this from phishing? did the user have admin rights to their own PC? I haven’t seen much information In the articles. I’m not sure if I’m missing it or it hasn’t been released.
This post was edited on 11/23/19 at 11:04 am
Posted on 11/23/19 at 10:44 am to ashy larry
Wow, is this what public perception is?
Posted on 11/23/19 at 10:57 am to BeepNode
I haven’t followed the story at all. I saw a couple articles but they focused on the office closures, not the cause. Figured someone here might be more informed.
Posted on 11/23/19 at 10:57 am to BeepNode
(Double post)
This post was edited on 11/23/19 at 10:58 am
Posted on 11/23/19 at 11:42 am to ashy larry
What you described is not what happened. it was a very sophisticated attacked. I will say that users do not have local admin. The security is damn good.
This post was edited on 11/23/19 at 11:44 am
Posted on 11/23/19 at 12:36 pm to broadhead
quote:
What you described is not what happened. it was a very sophisticated attacked. I will say that users do not have local admin. The security is damn good.
Correct. Basically nothing terrible/irreversible happened outside of inconvenience. That's about as good as you can ask for. It's not a matter of if you're going to get breached. It's when.
The state is already heavily invested in security and is essentially run by security. You can't do anything without going through security. A lot of us in the private sector can not run security like they do at the state so we're much more vulnerable. We don't have anywhere near the resources and expensive equipment that the state does. If i put our engineers and developers in a state of paralysis in the name of security they would fire me on the spot.
Even worse, they find work-arounds that are worse than what I was protecting us from.
So instead of hand wringing and complaining, we should A) be glad that no citizen data was compromised or lost and B) demand that the state shares information about how it happened and what they learned in the process. Obviously, without naming names. That way it may help the rest of us.
This post was edited on 11/23/19 at 1:36 pm
Posted on 11/24/19 at 3:41 pm to ashy larry
I have not been told or heard what officially happened but I am still leaning to trickbot being installed and consequently Ryuk being pushed to endpoints for encryption.
Posted on 11/24/19 at 7:42 pm to ashy larry
quote:NERDS!
State hack: how was it done?
Posted on 11/26/19 at 10:29 am to goldengorilla
quote:
Wrong
Your argument intrigues me and I would like to subscribe to your newsletter.
Popular
Back to top
Follow TigerDroppings for LSU Football News