https://community.isc2.org/t5/Industry-News/Right-wing-groups-hack-health-officials/m-p/35037#M4378 <P>Looks like a great deal of borrowed attribution. First the hack was attributed to 4Chan (posted on their message board). Then attributed by a source in Brittan as allegedly used by "right wing groups" but in reality gives no basis for her statement but her own conclusions.&nbsp;</P><P>&nbsp;</P><P>Reading the next source: The Washington Post or WaPo gives us a little more useful information, admitting that some of the leaked information was from old hacks against the WHO and that 48 people used passwords containing the word "password". Ultimately, leaked by the Gateso foundation with no attribution to any one group but simply "hackers".</P><P>&nbsp;</P><P>Really, I am disappointed at the level of discipline and analysis put into your statement declaring "right wing groups" without identifying a single culprit or means to back up the statement.</P><P>&nbsp;</P><P>We need to do better than this or accept no one will ever believe "security" now or in the future because we will continue to deserve the credibility we portray.</P><P>&nbsp;</P><P>Interesting set of reads before my evening shift here at work though. We are swamped.</P><P>&nbsp;</P><P>- b/eads</P> Wed, 22 Apr 2020 21:36:38 GMT Beads 2020-04-22T21:36:38Z https://community.isc2.org/t5/Industry-News/Right-wing-groups-hack-health-officials/m-p/35028#M4377 <P>Various right-wing groups seem to be mounting an attack on health (and other) officials by posting purported <A href="https://www.bbc.com/news/technology-52381356" target="_blank" rel="noopener">lists of email accounts and passwords</A>.</P><P>&nbsp;</P><P>Way to help out in a bad situation, guys.</P> Wed, 22 Apr 2020 18:55:16 GMT https://community.isc2.org/t5/Industry-News/Right-wing-groups-hack-health-officials/m-p/35028#M4377 rslade 2020-04-22T18:55:16Z https://community.isc2.org/t5/Industry-News/Right-wing-groups-hack-health-officials/m-p/35037#M4378 <P>Looks like a great deal of borrowed attribution. First the hack was attributed to 4Chan (posted on their message board). Then attributed by a source in Brittan as allegedly used by "right wing groups" but in reality gives no basis for her statement but her own conclusions.&nbsp;</P><P>&nbsp;</P><P>Reading the next source: The Washington Post or WaPo gives us a little more useful information, admitting that some of the leaked information was from old hacks against the WHO and that 48 people used passwords containing the word "password". Ultimately, leaked by the Gateso foundation with no attribution to any one group but simply "hackers".</P><P>&nbsp;</P><P>Really, I am disappointed at the level of discipline and analysis put into your statement declaring "right wing groups" without identifying a single culprit or means to back up the statement.</P><P>&nbsp;</P><P>We need to do better than this or accept no one will ever believe "security" now or in the future because we will continue to deserve the credibility we portray.</P><P>&nbsp;</P><P>Interesting set of reads before my evening shift here at work though. We are swamped.</P><P>&nbsp;</P><P>- b/eads</P> Wed, 22 Apr 2020 21:36:38 GMT https://community.isc2.org/t5/Industry-News/Right-wing-groups-hack-health-officials/m-p/35037#M4378 Beads 2020-04-22T21:36:38Z https://community.isc2.org/t5/Industry-News/Right-wing-groups-hack-health-officials/m-p/35065#M4379 <BLOCKQUOTE><HR /><a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/1214778195">@Beads</a>&nbsp;wrote:<BR /><P>Looks like a great deal of borrowed attribution. ...</P><P>Really, I am disappointed at the level of discipline and analysis put into your statement declaring "right wing groups" without identifying a single culprit or means to back up the statement.</P><P>&nbsp;</P><P>We need to do better than this or accept no one will ever believe "security" now or I have to agree with in the future because we will continue to deserve the credibility we portray.</P></BLOCKQUOTE><P>I have to agree with Brent that there is a chain of unwarranted assumptions in the article itself, compounded by Rob's&nbsp;<a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/1324864413">@rslade</a>&nbsp;'s presumptive statement as to attribution.</P><P>&nbsp;</P><P>We know that attribution is hard to do. We should not fall into personal biases to influence such conclusions without valid evidence.</P><P>&nbsp;</P><P>Craig</P><P>&nbsp;</P> Thu, 23 Apr 2020 16:34:49 GMT https://community.isc2.org/t5/Industry-News/Right-wing-groups-hack-health-officials/m-p/35065#M4379 CraginS 2020-04-23T16:34:49Z https://community.isc2.org/t5/Industry-News/Right-wing-groups-hack-health-officials/m-p/35094#M4383 <P>OK, I probably got caught in a spoof.&nbsp; Of some kind.</P><P>&nbsp;</P><P>Those who have pursued it seem to think <A href="https://twitter.com/elisethoma5/status/1253318042001367040" target="_blank" rel="noopener">it's just made up nonsense</A>, based on a few, possibly old, lists of credentials to give it some feel of veracity.&nbsp; Seems to be <A href="https://anewspost.com/anonymous-hacks-bill-gates-foundation-who-and-wuhan-lab-releases-email-addresses-and-passwords/" target="_blank" rel="noopener">related to 4chan</A>, although whether it is <STRONG>by</STRONG> them or targetted <STRONG>at</STRONG> them is open to question.</P><P>&nbsp;</P><P><A href="https://www.who.int/news-room/detail/23-04-2020-who-reports-fivefold-increase-in-cyber-attacks-urges-vigilance" target="_blank" rel="noopener">Some of the credentials <STRONG>are</STRONG> real and active</A>, and there are ongoing attacks on the WHO.</P> Fri, 24 Apr 2020 17:19:41 GMT https://community.isc2.org/t5/Industry-News/Right-wing-groups-hack-health-officials/m-p/35094#M4383 rslade 2020-04-24T17:19:41Z