independent security researcher Kevin Beaumont and other analysts see evidence that some X origin servers, which respond to web requests, weren’t properly secured behind the company’s Cloudflare DDoS protection and were publicly visible. As a result, attackers could target them directly
oops
You must log in or register to comment.
Melon Husk has access to the innermost systems of the US government, without oversight.
Which of the systems has he and his team of cryptobros left in the DMZ?
And, how much of the masses of data they’ve stolen from those systems has/will be left “somewhat less than totally secure”…
Available to the rest of the world.
🤔
Largest data breach in history, conducted in broad daylight, by some of the most untrustworthy data usurpers (AI’s, crypto’s, etc) available.
🤦♀️
This is reminding me of Al Capone. Having alcohol wasn’t yet illegal, but selling it WAS illegal.
So he would load up his truck with barrels of alcohol, set to be properly disposed of at their destination by officials.
But wouldn’t you know it? The truck was intercepted by theifs, who robbed the truck at gunpoint. So now Capone “didn’t have” that alcohol anymore.
Well what was happening was those theifs, unbeknown to the officials, ALSO worked for Capone. So now that alcohol was unaccounted for, and able to be sold on the black market without oversight or regulation.
Now replace Capone with Musk. Replace alcohol with personal data. Replace the mobsters with a shadow company also paid by musk.
So now, your data can be stolen, and sold to the highest bidder, free of oversight or regulation on the black market.
And if anyone questions it, musk can feign ignorance. See? See? It even happens to my own services! Why would I attack X, if I own X?
The blyats and Pooh have all our shit by now.
I wonder if the security team that left twitter en-masse would have discovered this before the hackers did? Oh well.
I wonder if it’s a coincidence that the security team got the sack and soon after, some servers were found to not be properly buttoned up.
I hope it is for their sake. Some guy just got 10 years for a script he left that caused an outage.
That dude was a special kind of stupid. The attack script had his name on it, usee his account status as the trigger, and was running from his laptop. It attacked other peoples profiles and was extremely explicit in being designed to revenge his firing.
There are for sure idiots in infosec, but when your job is working to close holes and gaps, it gets pretty easy to learn what to “forget” about if you want to cause devastation in a deniable way. There are so, so many ways to fuck this job up, doing it on purpose would be a cake walk.
And the guy running that shit show has his slippery fingers in virtually all US government agency server rooms. How reassuring.
uKraiNE DiD iT
The world became a better place for a few hours without shitter.
So primarily a server administration failure, inviting anyone to take them down.
Fucking idiot enlon…
