1. Attachments are working again! Check out this thread for more details and to report any other bugs.

Featured Colonial Pipeline II

Discussion in 'Prius, Hybrid, EV and Alt-Fuel News' started by bwilson4web, Nov 1, 2016.

  1. ETC(SS)

    ETC(SS) The OTHER One Percenter.....

    Joined:
    Oct 28, 2010
    7,856
    6,658
    0
    Location:
    Redneck Riviera (Gulf South)
    Vehicle:
    Other Non-Hybrid
    Model:
    N/A
    The first line in the us Marine Corps Hymn ends with ..."to the shores of Tripoli." and points to a slightly similar historical model.
    A more recent and perhaps relevant example was the recent response to Somali piracy.....when even the Obama administration practiced a little gunboat diplomacy...sometimes publicly in the form of CTFs....sometimes quasi-publicly, and sometimes off the books.. ;)
    They even stood their ground against some mild backlash.

    I remember being amused when the Rooskies (being typically Russian) were compelled to release some pirates after Russian special forces freed a seized oil tanker - but then publicly stated that they "died before reaching the Somali coast."

    Message sent and acknowledged.
    ULCCs and other large commerce vessels are largely unmolested these days by Somali pirates.

    Private companies having their data exploited is a private company problem....to a point.
    Attacks that negatively affect infrastructure and commerce on a regional or national scale are a different sort of thing, and demand a different response both internally and externally.
    'Internally' means we use the Federal Bureau if INVESTIGATION for their intended role and "incentivize" the hacked entity to cooperate in a root cause analysis. 'Externally" means that the US gets a little more kinetic in dealing with NGOs that perpetrate the attacks and a little less diplomatic with nations that host them.

    Or?
    We can keep doing what we're doing.
    Hopsitals.
    Police Forces.
    Small cities.
    There have been public stories where these entities have already paid the pirates.
    What do we do when they threaten a power grid?
    The second largest power outage that I know about happened in 2003 because of a 'software bug.'

    AND...there are worse things to hack than a pipeline or a power grid.....;)
     
  2. bwilson4web

    bwilson4web BMW i3 and Model 3

    Joined:
    Nov 25, 2005
    27,665
    15,664
    0
    Location:
    Huntsville AL
    Vehicle:
    2018 Tesla Model 3
    Model:
    Prime Plus
    I saw a Canadian YouTube about ‘delayed hang up’. Unique to landlines, they play a dial tone and fake the support desk after cold-calling a report about a false credit/bank transaction. They solicit enough info to exploit a credit card.

    The YouTube listed delayed hang up times except from AT&T.

    Bob Wilson
     
  3. mikefocke

    mikefocke Prius v Three 2012, Avalon 2011

    Joined:
    Nov 3, 2012
    3,760
    1,680
    0
    Location:
    Sanford, NC
    Vehicle:
    Other Hybrid
    Model:
    Limited
    The pretend Federal Reserve call is a new scam.

    I have to laugh, they are calling a house with a lawyer, a former Treasury Dept employee who worked with the Secret Service in handling bank fraud cases and a retired engineer named in multiple OS security patents.

    Why they call I don't know. So much info is already available for peanuts on the dark web. Mine is.

    Been approached twice with a ransom demand.

    Reminds me to do another backup.
     
    #43 mikefocke, May 17, 2021
    Last edited: May 17, 2021
  4. Lee Jay

    Lee Jay Senior Member

    Joined:
    Jun 25, 2009
    5,850
    4,028
    0
    Location:
    Westminster, Colorado
    Vehicle:
    2017 Prius Prime
    Model:
    Prime Advanced
    Best $60 a year I ever spent was getting BackBlaze.
     
  5. jerrymildred

    jerrymildred Senior Member

    Joined:
    Oct 28, 2016
    11,518
    14,128
    0
    Location:
    Tampa, FL
    Vehicle:
    2017 Prius
    Model:
    Two
    Don't forget water supplies. A few months ago a kid hacked into a municipal supply in a small city near us and increase one of the treatment chemicals by about a thousand percent or something like that. Not enough to hurt anyone but enough to show how stupidly vulnerable the system was.
     
    privilege likes this.
  6. fuzzy1

    fuzzy1 Senior Member

    Joined:
    Feb 26, 2009
    17,557
    10,324
    90
    Location:
    Western Washington
    Vehicle:
    Other Hybrid
    Model:
    N/A
    Politico: A federal government left ‘completely blind’ on cyberattacks looks to force reporting
    A bipartisan group of lawmakers wants to make sure the government is never left in the dark about serious hacks again.


    "No federal law or regulation requires pipeline operators to report any cybersecurity incidents to the government. Instead, suggested guidance from the Transportation Security Administration — the federal agency that oversees pipeline cybersecurity — recommends that they tell local and federal officials about significant breaches.

    That’s vastly different from the requirements facing companies that operate key parts of the electric grid, such as generators, substations and large transmission lines, which fall under the jurisdiction of the Federal Energy Regulatory Commission. FERC regulations require those operators to report cyberattacks that compromise or disrupt key equipment, along with any failed compromise attempts. Failure to comply can lead to fines of up to $1.3 million per day per violation."
     
  7. ETC(SS)

    ETC(SS) The OTHER One Percenter.....

    Joined:
    Oct 28, 2010
    7,856
    6,658
    0
    Location:
    Redneck Riviera (Gulf South)
    Vehicle:
    Other Non-Hybrid
    Model:
    N/A
    Indeed I do not!

    Our (PSTN) telecommunications network has been ravaged over the last 20 years by the fact that very few people or businesses have regular old Mk-1, Mod-0, copper-fed, POTS - or Plain Old Telephone Service.
    In some ways this is a very good thing, because----hey.
    Progress, right?

    However (comma!!!) there are still some instances where monitoring and infrastructure circuits are still protected by antiquity........for now.
    In many communities water towers are one of these.
    There are a wide range of others......for now.
    Sewage
    FAA
    Train tracks
    911/E911

    AND others.

    Everybody used to cringe whenever they saw Air Traffic Controllers managing traffic load by pushing paper strips from place to place and how much of a shame that it is that our ATC is so antiquated......without stopping to think that sometimes this is a.....ah....."net" benefit (punn almost unintended.)

    Imagine a world where the FAA's Steve Dickson's EA (he hasn't been replaced yet) gets a call that one or more ARTCCs are down until we pay a gigabuck in bitcoin to some obscure cyber terrorists.
    How long can we leave planes grounded in this country before it "leaves a mark?"

    Unfortunately most of the people who still have POTS are the elderly.....and some of these are more vulnerable to this exploit.
    It's not as profitable as stinging a medium sized city or company, but it happens all too often.

    The Balkans used to be more or less the center of gravity for non-national digital cyber crime but now places like Brazil....Taiwan... and the Turkeys are getting into the game.
    India (stereotypically) used to be THE player in the call center scams.....and one wonders how COVID is affecting this.
    If the pattern holds this sort of crime will probably spread out as well, but unlike digital exploits it will probably decrease over time as people continue to abandon fixed telephony.
     
    #47 ETC(SS), May 18, 2021
    Last edited: May 18, 2021
    privilege likes this.
  8. John321

    John321 Senior Member

    Joined:
    Nov 16, 2018
    1,285
    1,276
    0
    Location:
    Kentucky
    Vehicle:
    2008 Prius
    Model:
    Two
    An interesting piece by Malwarebytes on the Darkside malware that attacked Colonial Pipeline and how running a simple inexpensive anti virus could have prevented Colonial Pipeline from having to extort $5,000,000 from their American Customers and avoided the pipeline shutdown and the associated mess that came with it.

    Threat spotlight: DarkSide, the ransomware used in the Colonial Pipeline attack - Malwarebytes Labs | Malwarebytes Labs

    "Yesterday, the FBI and the US Cybersecurity and Infrastructure Security Agency (CISA) issued a joint cybersecurity advisory (CSA) against DarkSide ransomware. It contains detailed mitigation steps that business should follow to reduce the risk of successful ransomware attacks overall. These include simple steps, such as:

    Organizations of all sectors should take heed of these best practices. Because before the publication of this article, DarkSide appears to have netted another victim."
     
    #48 John321, May 29, 2021
    Last edited: May 29, 2021