- My Forums
- Tiger Rant
- LSU Recruiting
- SEC Rant
- Saints Talk
- Pelicans Talk
- More Sports Board
- Coaching Changes
- Fantasy Sports
- Golf Board
- Soccer Board
- O-T Lounge
- Tech Board
- Home/Garden Board
- Outdoor Board
- Health/Fitness Board
- Movie/TV Board
- Book Board
- Music Board
- Political Talk
- Money Talk
- Fark Board
- Gaming Board
- Travel Board
- Food/Drink Board
- Ticket Exchange
- TD Help Board
Customize My Forums- View All Forums
- Show Left Links
- Topic Sort Options
- Trending Topics
- Recent Topics
- Active Topics
Started By
Message
re: LA State Computers Hacked (Confirmed)
Posted on 11/18/19 at 7:58 pm to BeepNode
Posted on 11/18/19 at 7:58 pm to BeepNode
quote:
There's absolutely NOTHING in the state's IT department that touches the state's election system. Even the Secretary of State's own IT department has nothing to do with the election systems. It's completely air-gapped in terms of connectivity and people.
Is that publicly documented somewhere?
Anyway, airgapping is a great defense against external threats, but not the end-all-be-all answer since so many threats are internal. All it takes is some lazy employee not following protocol to compromise an air-gapped network. There are also more sophisticated attack techniques out there.
https://hackaday.com/tag/air-gap/
This post was edited on 11/18/19 at 7:59 pm
2
Posted on 11/18/19 at 8:03 pm to FieldEngineer
Yea it's like these IT guys don't realize how the worst hacks work - from the inside
The conspiracy would be an inside hack that bypassed the external securities
The conspiracy would be an inside hack that bypassed the external securities
Posted on 11/18/19 at 8:08 pm to FieldEngineer
quote:
Is that publicly documented somewhere?
I have no idea. I guess I'm documenting it now?
quote:
Anyway, airgapping is a great defense against external threats, but not the end-all-be-all answer since so many threats are internal. All it takes is some lazy employee not following protocol to compromise an air-gapped network.
You're moving the goal posts. We're talking about if the connection between the hack and the election systems. There is no connection. They don't share employees or hardware.
Posted on 11/18/19 at 8:11 pm to BeepNode
Umm there is always a connection, even if it's not obvious (especially if we are talking internal). I'm going to dismiss any IT guy that tells me that point blank.
Posted on 11/18/19 at 8:27 pm to theunknownknight
quote:
Umm there is always a connection, even if it's not obvious (especially if we are talking internal). I'm going to dismiss any IT guy that tells me that point blank.
I'm telling you point blank that these hacked la.gov systems are no more connected to the election system than your home computer is. This is a fact. It may not be the juicy conspiracy theory you want to hear, but it's the truth.
You seem to think some unraveling is about to happen, and I'm trying to let you down gently. :) The state will restore from backups and everything will be just as it were on Saturday, plus new security protocols. I'm guessing a lot of admins will lose some privileges and they will break up some of the larger Active Directory forests into smaller forests.
People will also be suspicious when Dickie gets replaced soon, but Dickie is already retired and a new CIO was already in the works.
This post was edited on 11/18/19 at 8:30 pm
Posted on 11/18/19 at 8:29 pm to BeepNode
quote:
I'm telling you point blank that these hacked la.gov systems are no more connected to the election system than your home computer is. This is a fact. It may not be the juicy conspiracy theory you want to hear, but it's the truth.
So they are connected. If you can get to a port you can anchor the boat.
ETA:
quote:
People will also be suspicious when Dickie gets replaced soon, but Dickie is already retired and a new CIO was already in the works.
CONVENIENT
This post was edited on 11/18/19 at 8:31 pm
Posted on 11/18/19 at 8:30 pm to theunknownknight
IT nerd fight!!!
Posted on 11/18/19 at 8:30 pm to BeepNode
This whole thing reeks of collusion between JBE and some foreign entity.
Posted on 11/18/19 at 8:31 pm to OysterPoBoy
Thinking Ukranian Russian hybrids
Posted on 11/18/19 at 8:31 pm to theunknownknight
It’s never the nefarious truth of big government coverup
This post was edited on 11/18/19 at 8:33 pm
Posted on 11/18/19 at 8:31 pm to BeepNode
Is this the same deal as what happened in Tangipahoa Parish, EBR, and one other school system, back in August?
Posted on 11/18/19 at 8:53 pm to BRgetthenet
Livingston Parish had a similar issue. Things get hairy when random users end up with Administrator access on their PCs.
Posted on 11/18/19 at 9:17 pm to BeepNode
Also, if malware is already in the servers that perform the allocation of votes around the state, then the gap doesn't even matter.
You could easily have state domain counting the votes anyway you see fit if your the domain admin. shite, if the servers are pwn'd you can have it put whatever you want on the display of vote tallying.
And the member of the executive board who would definitely have remote access in Active Directory has a fire at his fricken house the same day that the backups are allegedly gone?
The only way to destroy hard drive disks without looking nefarious(bullet holes, drilling holes in them) is a fricken fire. How convenient. And the same day the new backup system moves to AW fricken S too? The same fricken day. Which means they could say they just got rid of the old data and just started fresh.
If you believe this doesn't look planned to people who check for correct backup configurations, then wake up.
You could easily have state domain counting the votes anyway you see fit if your the domain admin. shite, if the servers are pwn'd you can have it put whatever you want on the display of vote tallying.
And the member of the executive board who would definitely have remote access in Active Directory has a fire at his fricken house the same day that the backups are allegedly gone?
The only way to destroy hard drive disks without looking nefarious(bullet holes, drilling holes in them) is a fricken fire. How convenient. And the same day the new backup system moves to AW fricken S too? The same fricken day. Which means they could say they just got rid of the old data and just started fresh.
If you believe this doesn't look planned to people who check for correct backup configurations, then wake up.
This post was edited on 11/18/19 at 9:17 pm
Posted on 11/18/19 at 9:23 pm to Hunter_H_Helmsley
It is time for the Louisiana GOP's balls to drop and investigate.
Posted on 11/18/19 at 9:24 pm to BeepNode
quote:
I have no idea. I guess I'm documenting it now?
"I have spoken."
quote:
You're moving the goal posts. We're talking about if the connection between the hack and the election systems. There is no connection. They don't share employees or hardware.
Nah, I wasn't suggesting that election systems were compromised. I was simply saying that air-gapping them is not a guarantee of security.
Posted on 11/18/19 at 9:25 pm to MrLSU
quote:
Louisiana just got hit with one of the most sophisticated Ransomware attacks around. The Shadow Kill Hackers are trying to extort the state with a amount of a rumored $20 million dollars
I work in security for k-12 with Texas and LA schools. Ransomware is a bitch right now and is hitting everybody.
I have a couple of customers that have been fired and one that quit and walked off the job site and had to be asked to come back in because a server with student data had been hit with ransomware.
Encrypt your hard drives, change your passwords, shite down c$ shares, and shut down over extending domain admin accounts.
Posted on 11/18/19 at 9:37 pm to lsufan1971
quote:
Ironically the election results website from SOS is down as well. Russian meddling in our elections. I demand an investigation.
I demand Impeachment!
Posted on 11/19/19 at 6:15 am to LafTiger
Any updates this cool, autumn morning?
Posted on 11/19/19 at 7:31 am to 3nOut
quote:
shut down over extending domain admin accounts
And local admin rights, especially if the local admin password is the same across the domain. PTH is unfortunately still a real threat.
This post was edited on 11/19/19 at 7:35 am
Posted on 11/19/19 at 8:36 am to jdd48
Still shut down. Guess I'll have to hand write this permit.
Also, I'm not sure where "workers were sent home" came from. Maybe hourly workers at the DMV and such. DoTD and DEQ had to stay and twiddle thumbs. Same thing today so far.
Also, I'm not sure where "workers were sent home" came from. Maybe hourly workers at the DMV and such. DoTD and DEQ had to stay and twiddle thumbs. Same thing today so far.
Page 5 of 9
Popular
Back to top
Follow TigerDroppings for LSU Football News