Skip to content
Do you have adblock enabled?
 
If you can read this, either the style sheet didn't load or you have an older browser that doesn't support style sheets. Try clearing your browser cache and refreshing the page.

(Ars Technica)   For some reason, having all your young, technology savvy men either go off to die in Ukraine, or flee your country to avoid dying in Ukraine, leaves your infrastructure vulnerable to hackers even when you used to be the world's main source of hackers   (arstechnica.com) divider line
    More: Fail, Saudi Arabia, security company Kaspersky, Saudi Aramco, never-before-seen malware, wiper CryWiper, Attack, Saudi Aramco Residential Camp in Dhahran, Kaspersky researchers  
•       •       •

1222 clicks; posted to STEM » on 03 Dec 2022 at 8:45 AM (9 weeks ago)   |   Favorite    |   share:  Share on Twitter share via Email Share on Facebook



23 Comments     (+0 »)
View Voting Results: Smartest and Funniest
 
2022-12-03 7:36:16 AM  
Hey, to be fair, these are likely hacks BY those technology savvy young men who are looking to avoid going off to die in Ukraine.
 
2022-12-03 8:46:57 AM  
Done in one.
 
2022-12-03 8:52:36 AM  
Just a reminder that Windows has a built in ransomware protection feature, but you have to turn it on.

Yes, Windows 10 Has Ransomware Protection: Here's How To Turn It On (forbes.com)

It's not infallible, but far better than nothing, and no drawback to having it on. It's not like UAC where it pops up all the time when you're trying to do something.
 
2022-12-03 9:17:46 AM  
TBF they are sending older and unsavvy men too
 
2022-12-03 9:43:26 AM  

Carter Pewterschmidt: Just a reminder that Windows has a built in ransomware protection feature, but you have to turn it on.


That should be easy... take a file system snapshot, if there are too many changes in an hour, lock down that snapshot and get ready to rollback everything.  That sort of tech goes back about 15 to 20 years.
 
2022-12-03 9:43:56 AM  

hubiestubert: Hey, to be fair, these are likely hacks BY those technology savvy young men who are looking to avoid going off to die in Ukraine.


i.kym-cdn.comView Full Size
 
2022-12-03 9:44:54 AM  
Attacking things at scale died not mean you're good at defending things at scale.
 
2022-12-03 9:56:12 AM  
I hope that when this invasion ends, the peace treaty includes dealing with international hackers.
 
2022-12-03 11:34:56 AM  

DON.MAC: I hope that when this invasion ends, the peace treaty includes dealing with international hackers.


Including all of the crap that traced back to Ukraine for decades?
 
2022-12-03 11:43:17 AM  
Russian hacking ain't what it's cracked up to be.

Out product had an attempted hack. The IP address traced straight to a known hacker enclave in Moscow (They don't use VPNs?!?!?!)

Attempted log credentials in were (I am not kidding)

Admin Admin
Administrator Admin
Owner Password

Out automatic system blocked them after a few tries.

It was just sad.

Now our company is blocking ALL traffic from Russia and Belarus. We won't do business with them either.

Fark those assholes.
 
2022-12-03 11:52:47 AM  

SpectroBoy: Russian hacking ain't what it's cracked up to be.

Out product had an attempted hack. The IP address traced straight to a known hacker enclave in Moscow (They don't use VPNs?!?!?!)

Attempted log credentials in were (I am not kidding)

Admin Admin
Administrator Admin
Owner Password

Out automatic system blocked them after a few tries.

It was just sad.

Now our company is blocking ALL traffic from Russia and Belarus. We won't do business with them either.

Fark those assholes.


Babytown Frolics
Youtube VmarNEsjpDI
 
2022-12-03 12:32:19 PM  

gyorg: Attacking things at scale died not mean you're good at defending things at scale.


Yep. The sorta' baffling part is that it's only a step or two removed, though. If you can see a lot of vulns and probe for others, you can pentest your own stuff for the same, and that's often only a little bit away from finding ways to mitigate those flaws.


/You know, if you aren't the national equivalent of a rust-bucket rally car with a zip-tied bumper.
 
2022-12-03 3:57:33 PM  

SpectroBoy: Russian hacking ain't what it's cracked up to be.

Out product had an attempted hack. The IP address traced straight to a known hacker enclave in Moscow (They don't use VPNs?!?!?!)

Attempted log credentials in were (I am not kidding)

Admin Admin
Administrator Admin
Owner Password

Out automatic system blocked them after a few tries.

It was just sad.

Now our company is blocking ALL traffic from Russia and Belarus. We won't do business with them either.

Fark those assholes.


Honestly, that is a good starting place for a hack like that. Way too many companies forget to disable default accounts and passwords.
 
2022-12-03 4:03:40 PM  
Fark user imageView Full Size
 
2022-12-03 4:48:30 PM  

Mad_Radhu: SpectroBoy: Russian hacking ain't what it's cracked up to be.

Out product had an attempted hack. The IP address traced straight to a known hacker enclave in Moscow (They don't use VPNs?!?!?!)

Attempted log credentials in were (I am not kidding)

Admin Admin
Administrator Admin
Owner Password

Out automatic system blocked them after a few tries.

It was just sad.

Now our company is blocking ALL traffic from Russia and Belarus. We won't do business with them either.

Fark those assholes.

Honestly, that is a good starting place for a hack like that. Way too many companies forget to disable default accounts and passwords.


Any competent IT system would immediately block an unknown IP attempting to access systems with shiat like that.  If it isn't the correct username/pwd on the first attempt from an unknown IP, blocked until you contact IT.
 
2022-12-03 6:20:36 PM  

GrogSmash2: Mad_Radhu: SpectroBoy: Russian hacking ain't what it's cracked up to be.

Out product had an attempted hack. The IP address traced straight to a known hacker enclave in Moscow (They don't use VPNs?!?!?!)

Attempted log credentials in were (I am not kidding)

Admin Admin
Administrator Admin
Owner Password

Out automatic system blocked them after a few tries.

It was just sad.

Now our company is blocking ALL traffic from Russia and Belarus. We won't do business with them either.

Fark those assholes.

Honestly, that is a good starting place for a hack like that. Way too many companies forget to disable default accounts and passwords.

Any competent IT system would immediately block an unknown IP attempting to access systems with shiat like that.  If it isn't the correct username/pwd on the first attempt from an unknown IP, blocked until you contact IT.


"Competent" being the operative word.

Lot of people have been caught with default account still enabled. Goes back all the way to the incidents mentioned in the Cuckoo's Egg book where military installations were being accessed via default user accounts.
 
2022-12-03 6:31:14 PM  

Mad_Radhu: "Competent" being the operative word.

Lot of people have been caught with default account still enabled. Goes back all the way to the incidents mentioned in the Cuckoo's Egg book where military installations were being accessed via default user accounts.


Lax security goes back to WWII and Enigma operators who used old keys, one who typed an entire test message that consisted of nothing but the letter A, one who sent a message with the previous days key and after realising his mistake sent the same message again with todays key, a gift for Bletchley Park.
 
2022-12-03 6:54:24 PM  
Carter Pewterschmidt:

Lax security goes all the way back.  That's why there was once a greek guy who tattooed the message on a slave's head and waited for the hair to grow back before sending an important message because encryption wasn't a thing yet.

Also, iirc, there was a point before America joined the war where the Brits couldn't crack our messages with germany, but were able to read our messages to the germans when they reported them back to HQ because they'd already cracked the german codes
 
2022-12-03 9:46:57 PM  
Seems like the targeting in this has to do with some imminent prosecution (or revenge for a conviction) of some group of Russian hackers who aren't working for the state already.
 
2022-12-04 11:22:19 AM  

Sexy Jesus: DON.MAC: I hope that when this invasion ends, the peace treaty includes dealing with international hackers.

Including all of the crap that traced back to Ukraine for decades?


Wasn't that Russian propaganda?
 
2022-12-04 12:27:18 PM  

Fireproof: Sexy Jesus: DON.MAC: I hope that when this invasion ends, the peace treaty includes dealing with international hackers.

Including all of the crap that traced back to Ukraine for decades?

Wasn't that Russian propaganda?


"to Ukraine for decades" also means "to Viktor Yanukovych"
 
2022-12-04 12:27:43 PM  
/sounds like BSAB
 
2022-12-04 2:31:01 PM  
Maybe some Ukrainian hacker got their hands on some Russian malware and decided turnabout is fair play.
 
Displayed 23 of 23 comments

View Voting Results: Smartest and Funniest

This thread is closed to new comments.

Continue Farking




On Twitter


  1. Links are submitted by members of the Fark community.

  2. When community members submit a link, they also write a custom headline for the story.

  3. Other Farkers comment on the links. This is the number of comments. Click here to read them.

  4. Click here to submit a link.