https://breakingdefense.com/2020/12/calling-solarwinds-hack-act-of-war-just-makes-it-worse
Main takeaways:
1. It's not an act of war. It's finding stuff spies set up to gather information.
2. Retaliation is a distraction from how security was compromised: we still have to face up to how the spies set up their stuff and how to keep that from happening again.
3. "Keep that from happening again" means a lot more zero-trust setups. And a lot more investigation into the software supply chain. When a vendor ships an update, how can everyone be assured that the update isn't going to set up stuff spies will use to gather information?
Spycraft is a good series on Netflix. This stuff has been going on for generations and has merely extended into the cyber domain. We do it. They do it. Everyone does it.
Quote from: config t on January 24, 2021, 11:02:40 PM
Spycraft is a good series on Netflix. This stuff has been going on for generations and has merely extended into the cyber domain. We do it. They do it. Everyone does it.
What's wildest is when someone compromises malware so that it serves two masters. Hack the hackers, as it is...