I can't believe that water infrastructure wasn't given the same treatment as our energy infrastructure in terms of doing a nationwide hardening of their networks back around 2018. As for healthcare networks, those companies should be held criminally liable for any patient that dies or is severely negatively impacted by unsophisticated cyber attacks. They have more than enough money to afford proper cybersecurity, so it's criminally negligent not to.
this post was submitted on 10 Dec 2023
102 points (97.2% liked)
Technology
59292 readers
4478 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
unsophisticated cyber attacks
Being this is a state sponsored attack, I was really expecting something meaningful like spoofing, identity exploits, or insider threats, but nope. It's literally just a group of "hackers" typing in the default password of a device and gaining minor remote access.
No the call to increase cyber security on infrastructure was 15+ years ago when we started integrating it with Internet connected computers.. They've ignored it and will continue to until there's a serious terrorist attack or something. Then they'll pass some security theater law that just hurts regular people somehow.
No the call to increase cybersecurity on infrastructure was 16+ years ago before we started integrating infrastructure with networked computers.
This is such a lazy and dumb take. The best time to plant a tree was yesterday, the second best time is today.
This is the best summary I could come up with:
Deputy national security adviser Anne Neuberger said in an interview on Friday that recent attacks on multiple American organizations by the Iranian hacker group “Cyber Av3ngers” were “unsophisticated” and had “minimal impact” on operations.
“Some pretty basic practices would have made a big difference there,” said Neuberger, who serves as a top adviser to President Joe Biden on cyber and emerging technology issues.
The hackers, who U.S. and Israeli officials said are tied to Tehran’s Islamic Revolutionary Guard Corps, breached multiple organizations in several states including a small municipal water authority in the western Pennsylvania town of Aliquippa.
The Aliquippa hack prompted workers to temporarily halt pumping in a remote station that regulates water pressure for two nearby towns, leading crews to switch to manual operation.
But the Biden administration is increasingly voicing concern about Iran attempting to broaden the Israeli-Hamas conflict through proxy groups and publicly warned Tehran about the Houthi rebels’ attacks.
The administration, earlier this year, unveiled a wide-ranging cybersecurity plan that called for bolstering protections on critical sectors and making software companies legally liable when their products don’t meet basic standards.
The original article contains 833 words, the summary contains 185 words. Saved 78%. I'm a bot and I'm open source!