Friendly forums for passionate Dems!
More than 91 million posts since 2001
Home Latest Greatest Videos Forums Hide ads Join up!
Home Latest Greatest
Videos Forums Help
Hide ads Join up!
Latest Discussions»Latest Breaking News»Hackers Compromised the T...
Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search

Latest Breaking News

Related: General Discussion, Editorials & Other Articles

blogslut

(37,999 posts) Wed Nov 1, 2017, 09:36 PM Nov 2017

Hackers Compromised the Trump Organization 4 Years Ago and the Company Never Noticed

Source: Mother Jones

Four years ago, the Trump Organization experienced a major cyber breach that could have allowed the perpetrator (or perpetrators) to mount malware attacks from the company’s web domains and may have enabled the intruders to gain access to the company’s computer network. Up until this week, this penetration had gone undetected by President Donald Trump’s company, according to several internet security researchers.

In 2013, a hacker (or hackers) apparently obtained access to the Trump Organization’s domain registration account and created at least 250 website subdomains that cybersecurity experts refer to as “shadow” subdomains. Each one of these shadow Trump subdomains pointed to a Russian IP address, meaning that they were hosted at these Russian addresses. (Every website domain is associated with one or more IP addresses. These addresses allow the internet to find the server that hosts the website. Authentic Trump Organization domains point to IP addresses that are hosted in the United States or countries where the company operates.) The creation of these shadow subdomains within the Trump Organization network was visible in the publicly available records of the company’s domains.

Here is a list of a shadow Trump Organization subdomains.

The subdomains and their associated Russian IP addresses have repeatedly been linked to possible malware campaigns, having been flagged in well-known research databases as potentially associated with malware. The vast majority of the shadow subdomains remained active until this week, indicating that the Trump Organization had taken no steps to disable them. This suggests that the company for the past four years was unaware of the breach. Had the infiltration been caught by the Trump Organization, the firm should have immediately decommissioned the shadow subdomains, according to cybersecurity experts contacted by Mother Jones...

Read more: http://www.motherjones.com/politics/2017/11/hackers-compromised-the-trump-organization-4-years-ago-and-the-company-never-noticed/


Here's that list of subdomains: https://pastebin.com/D0Ux1HxL

This article pertains to one I made in GD yesterday: https://www.democraticunderground.com/10029776059
InfoView thread info, including edit history TrashPut this thread in your Trash Can (My DU » Trash Can) BookmarkAdd this thread to your Bookmarks (My DU » Bookmarks) 12 replies, 3658 views
ShareGet links to this post and/or share on social media AlertAlert this post for a rule violation PowersThere are no powers you can use on this post EditCannot edit other people's posts ReplyReply to this post EditCannot edit other people's posts Rec (42) ReplyReply to this post
12 replies = new reply since forum marked as read
Highlight: NoneDon't highlight anything 5 newestHighlight 5 most recent replies
Hackers Compromised the Trump Organization 4 Years Ago and the Company Never Noticed (Original Post) blogslut Nov 2017 OP
Easily dismissed by Trump supporters as fake news. guillaumeb Nov 2017 #1
How does the fact they didn't immediately decommission the "shadow subdomains" ToxMarz Nov 2017 #2
Guys, they HAD NO IDEA the Russians were using Trump IP addresses and domains. NO IDEA. american_ideals Nov 2017 #3
I wonder if Mueller has checked his in-box lately Brother Buzz Nov 2017 #4
Hack or invited in? tanyev Nov 2017 #5
Twitter thread Russian Subdomains. Sharing servers with Wikileaks?? Roland99 Nov 2017 #6
Sounds way more sinister and threatening than Hillary's emails. NBachers Nov 2017 #7
Something really stinks about this whole story. L. Coyote Nov 2017 #8
Thanks for the follow up - this angle is more to the point TomVilmer Nov 2017 #9
I try to be thorough. blogslut Nov 2017 #10
Well, at least they didn't use a private email server ! eppur_se_muova Nov 2017 #11
No hack! You're the hacker! lagomorph777 Nov 2017 #12

guillaumeb

(42,641 posts)
1. Easily dismissed by Trump supporters as fake news.
Reply to blogslut (Original post)
Wed Nov 1, 2017, 09:38 PM
Nov 2017

Perhaps Mueller will show more interest.

Recommended.

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post

ToxMarz

(2,166 posts)
2. How does the fact they didn't immediately decommission the "shadow subdomains"
Reply to blogslut (Original post)
Wed Nov 1, 2017, 09:47 PM
Nov 2017

mean they were unaware of them. Maybe they were complicit. COLLUSION!

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post

Brother Buzz

(36,416 posts)
4. I wonder if Mueller has checked his in-box lately
Reply to blogslut (Original post)
Wed Nov 1, 2017, 09:55 PM
Nov 2017

Now that the jig is up, some interesting nuggets might suddenly fall his way.

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post

L. Coyote

(51,129 posts)
8. Something really stinks about this whole story.
Reply to blogslut (Original post)
Thu Nov 2, 2017, 01:10 AM
Nov 2017

How could they be unaware of 250 subdomains? Were they using Russia as a point of sale to evade taxes?

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post

TomVilmer

(1,832 posts)
9. Thanks for the follow up - this angle is more to the point
Reply to blogslut (Original post)
Thu Nov 2, 2017, 03:41 AM
Nov 2017

Some hacker gained access to the Trump Organization’s GoDaddy domain registration account. And even though Trump Org only has the best people, somebody was way better to hack it - and the "best people" did not notice. SAD!

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post

lagomorph777

(30,613 posts)
12. No hack! You're the hacker!
Reply to blogslut (Original post)
Thu Nov 2, 2017, 09:26 AM
Nov 2017


Seriously though, I think this was part of normal business operation for the TrumPutin Organization. No hack.
TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post
Reply to this discussion
Latest Discussions»Latest Breaking News»Hackers Compromised the T...
Home | Latest Discussions | Greatest Discussions | Latest Videos | All Forums

About | Copyright | Privacy | Terms of service | Contact

In Memoriam

© 2001 - 2024 Democratic Underground, LLC. Thank you for visiting.