Welcome to DU!
The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards.
Join the community:
Create a free account
Support DU (and get rid of ads!):
Become a Star Member
Latest Breaking News
General Discussion
The DU Lounge
All Forums
Issue Forums
Culture Forums
Alliance Forums
Region Forums
Support Forums
Help & Search
General Discussion
Related: Editorials & Other Articles, Issue Forums, Alliance Forums, Region Forums"We expect panic."
Link to tweet
Tweet text:
Molly McKew
@MollyMcKew
Russian hackers have laid the groundwork for significant disruptions after the US election, including targeting US hospitals and healthcare systems.
We expect panic, they say.
Are we better prepared than 2016? Maybe.
Via @RenewGreatPower
We expect panic.
Russian hackers have laid the groundwork for significant disruptions after the election. Were better prepared than 2016 arent we?
greatpower.us
Molly McKew
@MollyMcKew
Russian hackers have laid the groundwork for significant disruptions after the US election, including targeting US hospitals and healthcare systems.
We expect panic, they say.
Are we better prepared than 2016? Maybe.
Via @RenewGreatPower
We expect panic.
Russian hackers have laid the groundwork for significant disruptions after the election. Were better prepared than 2016 arent we?
greatpower.us
https://www.greatpower.us/p/we-expect-panic
In my last post, I wrote about the latest GRU indictment, and how it documented significant cyberattacks that have been conducted by Russian intelligence operators, and how it was meant to be a warning for the American public about the kinds of capabilities the Kremlin has to disrupt the election or transition, or to cause or inflame unrest in the period between the election and the inauguration. A potential roadmap to our Election Day fears, as it were. The indictment made clear that Russian behavior has been undeterred by any response they have met thus far, and that the Kremlin uses disproportionate displays of force in cyberspace. It also drew a clear list of the kinds of attacks these units have the capabilities to conduct disrupting electrical grids, banking systems, government systems, and far more.
One of them stood out to me as a potential disruption whose time may have arrived: the use of malware/ransomware attacks to disrupt hospital services and delay the delivery of care. In fact, the indictment explicitly highlighted a case where a US hospital system had been disrupted by spillover effects of a prior Russian ransomware attack.
So when the FBI and CISA issued a warning on Wednesday that there is credible information of an increased and imminent cybercrime threat to US hospitals and healthcare providers, that another Russian-based cybercriminal unit has used malware to infect hospital and healthcare systems with ransomware, and that in the past week several hospitals have already been affected well, this seems not great. Of course, the warning assiduously did not mention the word Russia even though the group responsible UNC1878 or wizard spider (yeah, I know) is Russian-based and Russian-speaking, because not mentioning Russian attribution while adding spangles and bells to CHINA and IRAN is how we have to roll these days, I guess.
But this malware/ransomware attack is a Russian threat to critical American systems.
Aside from the warnings in the indictment, theres been a lot of activity directly connected to this threat actor and specific set of tools in the past month signs that there was growing concern about this specific threat before the election.
First, US Cyber Command acted to disrupt the Trickbot botnet. A botnet is a network of computers that have been hijacked by malware that can then be used to do other things; the Trickbot network is the worlds largest. Trickbot malware has been in play since 2016. It allows its operators to copy credentials to access systems, copy mail and data, mine cryptocurrency, or plant ransomware (ransomware encrypts the data on a computer or system until the target pays a fee a ransom to have it unscrambled).
*snip*
InfoView thread info, including edit history
TrashPut this thread in your Trash Can (My DU » Trash Can)
BookmarkAdd this thread to your Bookmarks (My DU » Bookmarks)
3 replies, 1290 views
ShareGet links to this post and/or share on social media
AlertAlert this post for a rule violation
PowersThere are no powers you can use on this post
EditCannot edit other people's posts
ReplyReply to this post
EditCannot edit other people's posts
Rec (9)
ReplyReply to this post
3 replies
= new reply since forum marked as read
Highlight:
NoneDon't highlight anything
5 newestHighlight 5 most recent replies
"We expect panic." (Original Post)
Nevilledog
Oct 2020
OP
Yes. They act with impunity while Trump is in office, but that will change. n/t
Mister Ed
Oct 2020
#3
On Jan. 21, Biden needs to order the NSA to unleash our formidable and superior offensive cyber assets against Putin and his oligarchs, and teach them a lesson they will never forget.
Disaffected
(4,555 posts)2. And why not just cut the bastards off
from the internet (as much as is possible)? This would have to happen with cooperation with other countries but a good case can be made for at least attempting it as many other western nations are also under attack.
These attacks are tantamount to an act of war IMO.
Mister Ed
(5,938 posts)3. Yes. They act with impunity while Trump is in office, but that will change. n/t