Re: [Fed-Talk] Anonymous Hacker Group Strikes Again
Re: [Fed-Talk] Anonymous Hacker Group Strikes Again
- Subject: Re: [Fed-Talk] Anonymous Hacker Group Strikes Again
- From: "Pike, Michael (IHS/HQ)" <email@hidden>
- Date: Mon, 10 Sep 2012 21:15:00 +0000
- Thread-topic: [Fed-Talk] Anonymous Hacker Group Strikes Again
I know I am typically a "troll" as Jason so eloquently put it, but I think it is not off topic for several reasons.
1) This is very scary, bad enough 15-25 million sites were taken off line, at a datacenter that is second to none for security (I bet it rivals some government installations, I know it does ours)... what if this were a power grid? Or a cell network? What about the 911 system? FAA?
Someone said godaddy was back up, we are still unable to get to it here, along with about 15 sites (mostly IT news based, but our television network site is out). I have 15 blade servers I colocate at godaddy, and direct IP access is even out, so its not just a DNS breech, unless GoDaddy shutdown their networks.
I think it's relevant because of all the cloud based stuff we use...
For example, we use ITAS, we use mypay.mil, we use eOPF (which has everything about me, including my 10 year background check)....
On a consumer level side - there is iCloud... there is DropBox....
But the scary thing is where does it end? Right now these guys are just toying around... what if the knowledge gets into the wrong hands? What if a terror plot knocks out communications for a city and havoc breaks loose?
I happened to be monitoring a twitter feed when I saw this Anonymous hacker write, "who wants me to take 90 percent of the internet down?" - and then did it (or he had knowledge of it).
I'll be the first to say I am all for government services monitoring people that can be a threat.
And I'm just under HHS... I have NO idea the stuff you guys probably see everyday... I couldn't handle it and stay sane I am sure.
Mike
On Sep 10, 2012, at 2:46 PM, Moore, Dallas T. wrote:
> "...we can barely agree on even *voluntary* actions that critical infrastructure should take to protect itself or mitigate adverse events."
>
> There's a distinct difference between Government offering a "voluntary" program/framework/initiative and a private entity offering a voluntary program/framework/initiative... But I suppose that would be off topic as well, and fodder for another discussion.
>
> So, in remaining on topic - as far as we know, there is no data breach.
>
> v/r
> Dallas Moore, CISSP
>
>
> -----Original Message-----
> From: fed-talk-bounces+dallas.t.moore=email@hidden [mailto:fed-talk-bounces+dallas.t.moore=email@hidden] On Behalf Of Dave Schroeder
> Sent: Monday, September 10, 2012 4:35 PM
> To: Villano, Paul Mr CIV USA TRADOC
> Cc: email@hidden
> Subject: Re: [Fed-Talk] Anonymous Hacker Group Strikes Again
>
> No. This is not a data breach.
>
> Apparently, nothing in the cyber realm is a matter for the government to handle, and we can barely agree on even *voluntary* actions that critical infrastructure should take to protect itself or mitigate adverse events.
>
> - Dave
>
> _______________________________________________
> Do not post admin requests to the list. They will be ignored.
> Fed-talk mailing list (email@hidden)
> Help/Unsubscribe/Update your Subscription:
>
> This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden