Iran
Ron Retweeted
Amir Tsarfati
@BeholdIsrael
In the past few hours I hear about multiple reports from credible channels in the Middle East (mostly Iranian sources) that the US has elevated its level of readiness due to a very unusual cyber attack on American military assets within the USA.
11:09 AM · Dec 15, 2020·Twitter for iPhone
https://twitter.com/BeholdIsrael/status/1338878789250666501?s=20
Roscoe B Davis🎖Medium starMedium starMedium star@RoscoeBDavis1 ·5h
Question did @TuckerCarlson or @seanhannity or @IngrahamAngle even mention or dedicate a news block to what is quite possibly on of the largest hacks in US History?
Roscoe B Davis🎖Medium starMedium starMedium star@RoscoeBDavis1·5h
This hack involves our financial infrastructure our Military Defense systems including our only dual nuclear AFB at Kirkland.
What the hell is going on with the blackout of even mentioning it outside of Digital media outlets?
Roscoe B Davis🎖Medium starMedium starMedium star@RoscoeBDavis1 ·3h
FireEye got compromised first & haven't explicitly stated it, but the timing ain't a coincidenceBased on the "highly sophisticated, manual supply chain attack", it sounds like they had someone inside slipping something extra into their patches.
Highly Evasive Attacker Leverages SolarWinds Supply Chain to Compromise Multiple Global Victims…
fireeye.com
Roscoe B Davis🎖Medium starMedium starMedium star@RoscoeBDavis1·3h
SolarWinds confirmed in a security advisory issued late Sunday night that it experienced a manual supply chain attack on versions of Orion released between March and June of this year. MSC traces found on the server say mid April.
Infected SolarWinds Updates Used To Compromise Clients: FireEye crn.com
Roscoe B Davis🎖Medium starMedium starMedium star@RoscoeBDavis1·3h
FireEye says it was SolarWINDS & vise versa, so no one is owning it just blaming the other. Bottom line this falls at the feet of a complacent DHS/CISA. Krebs was fired far too late.
Roscoe B Davis🎖Medium starMedium starMedium star@RoscoeBDavis1 ·3h
We won't know the far reaching impact until all of those companies start doing audits. Step one is stopping the vulnerability, step 2 will be forensics to see if anything got exfiltrated/compromised.
Roscoe B Davis🎖Medium starMedium starMedium star@RoscoeBDavis1·3h
Also depends on the intent of the controller. With it being currently designated as nation-state, it's a big unknown. They could have had a specific target in mind (like FireEye), or they could just be seeing what they could get.
Roscoe B Davis🎖Medium starMedium starMedium star@RoscoeBDavis1 ·3h
What's this mean for the average Joe?
Unknown what the exposure is yet.
I would suggest to keep a close eye on your finances for a bit until this is nailed down, because the financial infrastructure was hit hard.
Expect telecommunication patches soon.
Roscoe B Davis🎖Medium starMedium starMedium star @RoscoeBDavis1 ·3h
Pretty much, the threat actors cycles have probably run and they got everything they needed. But this was a extremely effective supply chain attack that probably allowed them to monitor email accounts for months.
https://twitter.com/RoscoeBDavis1/status/1338845085362950145?s=20
POTUS’s twitter only has one tweet all others gone, tried it a couple of times to refresh
What is twitter doing, check for yourself
https://mobile.twitter.com/realDonaldTrump/with_replies
I couldn’t take a picture because it won’t post, so that’s why I said check it out