APT28/APT29 & Iowa Primary Caucus
Why does it seem that every couple years, Democrats drop the ball on technology pretty heavily?
Cozy Bear was an effective APT. Even a secure organization could be impacted by a similar attack. I'd give them a pass on this hack if it weren't for APT28 (Fancy Bear).
The thing is, we never knew the external damage. In 2016, a lot of accounts were compromised, but how much data was actually compromised?
For example, most candidates use software called "NGP VAN". This software contains a lot of private information that campaigns have access to; a lot of voter information. If credentials were compromised on these systems (two-factor authentication wasn't required at the time...), then this data was compromised. The effectiveness of this attack leads me to believe members of the DNC used the same credentials across multiple services...
Just imagine giving the opposition party every single one of your records you gathered for the past 8 years. That's effectively what would have happened in 2016, and there's not a single report saying that occurred during the attack.
It is still amazing to me that the *entire* attack was started by spearphishing. If these people actually checked what they clicked on the email, it wouldn't have occurred. Security awareness training should be mandatory for all DNC members.
----
Iowa Primary Caucus was another recent IT failure. The application failed hard. In the IT world, we do something called "postmortems"; i.e. we figure out what went wrong, how to prevent it from going wrong in the future, and learn from the mistakes.
https://landing.google.com/sre/sre-book/chapters/postmortem-culture/
The lack of transparency bothers me. Why can a private corporation release ( https://status.cloud.google.com/incident/cloud-networking/19009 ) more details on a technical failure than a private company designing software for the public and democracy?
if I were chair of the DNC, I'd demand a full postmortem, along with open sourcing the application for public review. We need more transparency in democracy, not less. Let's learn from our mistakes and remain blameless, not ignore past mistakes and cover them up.
= new reply since forum marked as read
Highlight:
NoneDon't highlight anything
5 newestHighlight 5 most recent replies
Renew Deal
(82,802 posts)Are your “postmortems” based on facts? What evidence do you have that hacking groups were involved?
Are you serious?
APT28/APT29 are *well* documented. Next up, you'll say APT38 was fake news.
---
Iowa caucus wasn't a hack. It was a failure of systems. By utilizing postmortem culture, you can bring transparency to IT failures without shifting blame to a specific individual.
---
Don't equate your ignorance of IT with my knowledge.
Renew Deal
(82,802 posts)You said “I'd give them a pass on this hack if it weren't for APT28”
Which hack?
gredinger
(86 posts)APT29 is well documented.
It was even mentioned several times from the Special Council investigation.
Cozy Bear was the more advanced attack. There's a reason we label these attacks "advanced persistent threats". They're backed by powerful entities and have organization similar to military outfits.
Are you even aware of APT28 and APT29? Did you read the actual attack documentation?
It's funny because it's normally the right-wing trolls that say the attack was "fake news" to defend Trump's connection to it. I'm amazed to see it coming from the left too.
Renew Deal
(82,802 posts)Who is the victim?
gredinger
(86 posts)There's *a lot* of victims in these attacks.
I'd say the largest group of victims is the American public having to hear about "her emails" for another year.
Cyber warfare exists today. These attacks aren't limited in scope to just those that are compromised. We lived in a more interconnected world than ever before.
I really only paid attention to domestic victims of these attacks, but there are also international victims. If I remember correctly, Ukraine was also compromised by these APTs.
Renew Deal
(82,802 posts)gredinger
(86 posts)Who made that claim that Iowa was hacked?
Subject: APT28/APT29 & Iowa Primary Caucus
Why does it seem that every couple years, Democrats drop the ball on technology pretty heavily?
Cozy Bear was an effective APT. Even a secure organization could be impacted by a similar attack. I'd give them a pass on this hack if it weren't for APT28 (Fancy Bear).
gredinger
(86 posts)I'd give them a pass on APT29 if it weren't for APT28.
Iowa wasn't hacked. Democrats dropped the ball on technology *without* being hacked. You can have more than one type of IT failure.
Renew Deal
(82,802 posts)I can’t wait to hear your coronavirus theories.
gredinger
(86 posts)You're the first troll to make it to my ignore list on this forum! Congratz!
People like you ruin any actual discourse and stop the Democratic party from moving forward in regard to transparency. I hope you can learn to talk less and read more.
Response to gredinger (Reply #12)
Renew Deal This message was self-deleted by its author.