DaemonForums  

Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 5th June 2021
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,128
Default Hackers Breached Colonial Pipeline Using Compromised Password

From https://www.bloomberg.com/news/artic...mised-password :

Quote:
The hack that took down the largest fuel pipeline in the U.S. and led to shortages across the East Coast was the result of a single compromised password, according to a cybersecurity consultant who responded to the attack.

Hackers gained entry into the networks of Colonial Pipeline Co. on April 29 through a virtual private network account, which allowed employees to remotely access the company’s computer network ... [snip]

The account was no longer in use at the time of the attack but could still be used to access Colonial’s network [snip]

The account’s password has since been discovered inside a batch of leaked passwords on the dark web. That means a Colonial employee may have used the same password on another account that was previously hacked
So it looks like Colonial never heard of Multi-factor authentication?
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #2   (View Single Post)  
Old 7th June 2021
frcc frcc is offline
Don't Worry Be Happy!
 
Join Date: Jul 2011
Location: hot,dry,dusty,rainy,windy,straight winds, tornado,puts the fear of God in you-Texas
Posts: 335
Default

Looks like a response of some kind.
https://www.reuters.com/article/us-c...-idUSKCN2DJ2BN

The article also stated............
"It was unclear how the FBI gained access to this key." Hmmmmmmmmmmmmmmm!(1)
It does bring into "question" a concensus that "crypto-currencies" are too cryptic to be hacked and that they
are ungovernable by authorities.
.and then.
https://www.cnbc.com/2021/06/08/bitc...al-ransom.html
Hmmmmmmmmmmmmmmm!(2)

If it wasn't for news like this I'd be bored.....



Admin: Not sure where to post this as it is News and Off Topic as far as BSD is concerned? (apologies)

Last edited by frcc; 8th June 2021 at 11:29 AM.
Reply With Quote
  #3   (View Single Post)  
Old 10th June 2021
frcc frcc is offline
Don't Worry Be Happy!
 
Join Date: Jul 2011
Location: hot,dry,dusty,rainy,windy,straight winds, tornado,puts the fear of God in you-Texas
Posts: 335
Default

Quote:
Originally Posted by J65nko View Post
.And. probably did not adhere to corporate policy as:
https://thehackernews.com/2021/06/us...detection.html
I wouldn't personally use the "service", but posted as info for improving passwords if utilized.

Last edited by frcc; 10th June 2021 at 11:38 AM. Reason: clarify response
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Realted 11n Wireless Adapters in the Pipeline - Realtek comments? shep OpenBSD General 6 21st August 2017 04:23 PM
Other SSL CA recently compromised backrow News 0 23rd March 2011 03:46 PM
Almost 2,500 firms breached in ongoing hack attack J65nko News 0 18th February 2010 03:31 PM
Analysis of 32 million breached passwords J65nko News 1 21st January 2010 09:37 PM
Red Hat servers compromised tanked Other BSD and UNIX/UNIX-like 10 25th August 2008 04:41 PM


All times are GMT. The time now is 02:06 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick