What if an attacker just compromised Orion with an exploit like a normal attacker? Or pivoted into its memory space from elsewhere?
What's the difference?
The SolarWinds hack is a fundamental challenge, but I went into work yesterday focused on the same basics.
This may be a game-changer for policy and industry, but the essentials are what make the difference here. It revalidates basic visibility and monitoring. Same as before.
What if an attacker just compromised Orion with an exploit like a normal attacker? Or pivoted into its memory space from elsewhere?
What's the difference?
That doesn't mean it's not incredibly serious. But we're failing way worse than this every single day.
Like, we should be screaming about this. They know this shit works against them.
The fact they hit FireEye seems like a massive mistake since they have internal custom tooling.
More from War
[THREAD] On the recent ISIS Sinai video.
This is done with help from @war_noir, go follow.
As the ISIS insurgency in the Sinai continues, this video shows a very interesting mix of SALW, with some usual suspects appearing, but also more interesting things...
1/
First, the most prominent feature of the video is (as always), large IEDs blowing up army vehicles, with varied effectiveness. This has been a constant for years by now.
IS Sinai retain substantial IED expertise, with these...
2/
Also being laid in an anti personnel manner. Multiple targets are seen hit. Conventional close-range attacks are seen also.
3/
Now, let's turn to small arms. As usual, we see a mix of typical AKs, FALs, etc.
These include Type 56-1 and 2, FN FAL 50.00, FAL Para, AKM variants, and the ever present Libyan AK-103-2 (See thread here). We also see AMD-65.
https://t.co/CLIyU64RUD
4/
When it comes to heavier weapons, the commonly seen DShK/M and Type 54 are seen. These are common.
It is notable that IS Sinai have the operational freedom to use these on Technicals, despite the presence of the Egyptian Air Force. Oh, and 81/2mm mortar (Helwan M-69?)
5/
This is done with help from @war_noir, go follow.
As the ISIS insurgency in the Sinai continues, this video shows a very interesting mix of SALW, with some usual suspects appearing, but also more interesting things...
1/
First, the most prominent feature of the video is (as always), large IEDs blowing up army vehicles, with varied effectiveness. This has been a constant for years by now.
IS Sinai retain substantial IED expertise, with these...
2/
Also being laid in an anti personnel manner. Multiple targets are seen hit. Conventional close-range attacks are seen also.
3/
Now, let's turn to small arms. As usual, we see a mix of typical AKs, FALs, etc.
These include Type 56-1 and 2, FN FAL 50.00, FAL Para, AKM variants, and the ever present Libyan AK-103-2 (See thread here). We also see AMD-65.
https://t.co/CLIyU64RUD
4/
[Large Thread] We've heard a lot about arms transfers from Gaddafi's stocks around the world, but often news articles are vague as to detail.
— C\u1d00\u029f\u026a\u0299\u0280\u1d07 O\u0299s\u1d04\u1d1c\u0280\u1d00 (@CalibreObscura) May 17, 2019
So, one weapon that you would have seen me tweet about a lot is the AK-103-2. This is essentially a 7.62x39mm version of the AK-74M.
1/ pic.twitter.com/pgY66eKOVf
When it comes to heavier weapons, the commonly seen DShK/M and Type 54 are seen. These are common.
It is notable that IS Sinai have the operational freedom to use these on Technicals, despite the presence of the Egyptian Air Force. Oh, and 81/2mm mortar (Helwan M-69?)
5/
You May Also Like
Keep dwelling on this:
Further Examination of the Motif near PRRA Reveals Close Structural Similarity to the SEB Superantigen as well as Sequence Similarities to Neurotoxins and a Viral SAg.
The insertion PRRA together with 7 sequentially preceding residues & succeeding R685 (conserved in β-CoVs) form a motif, Y674QTQTNSPRRAR685, homologous to those of neurotoxins from Ophiophagus (cobra) and Bungarus genera, as well as neurotoxin-like regions from three RABV strains
(20) (Fig. 2D). We further noticed that the same segment bears close similarity to the HIV-1 glycoprotein gp120 SAg motif F164 to V174.
https://t.co/EwwJOSa8RK
In (B), the segment S680PPRAR685 including the PRRA insert and highly conserved cleavage site *R685* is shown in van der Waals representation (black labels) and nearby CDR residues of the TCRVβ domain are labeled in blue/white
https://t.co/BsY8BAIzDa
Sequence Identity %
https://t.co/BsY8BAIzDa
Y674 - QTQTNSPRRA - R685
Similar to neurotoxins from Ophiophagus (cobra) & Bungarus genera & neurotoxin-like regions from three RABV strains
T678 - NSPRRA- R685
Superantigenic core, consistently aligned against bacterial or viral SAgs
Further Examination of the Motif near PRRA Reveals Close Structural Similarity to the SEB Superantigen as well as Sequence Similarities to Neurotoxins and a Viral SAg.
The insertion PRRA together with 7 sequentially preceding residues & succeeding R685 (conserved in β-CoVs) form a motif, Y674QTQTNSPRRAR685, homologous to those of neurotoxins from Ophiophagus (cobra) and Bungarus genera, as well as neurotoxin-like regions from three RABV strains
(20) (Fig. 2D). We further noticed that the same segment bears close similarity to the HIV-1 glycoprotein gp120 SAg motif F164 to V174.
https://t.co/EwwJOSa8RK
In (B), the segment S680PPRAR685 including the PRRA insert and highly conserved cleavage site *R685* is shown in van der Waals representation (black labels) and nearby CDR residues of the TCRVβ domain are labeled in blue/white
https://t.co/BsY8BAIzDa
Sequence Identity %
https://t.co/BsY8BAIzDa
Y674 - QTQTNSPRRA - R685
Similar to neurotoxins from Ophiophagus (cobra) & Bungarus genera & neurotoxin-like regions from three RABV strains
T678 - NSPRRA- R685
Superantigenic core, consistently aligned against bacterial or viral SAgs
Fake chats claiming to be from the Irish African community are being disseminated by the far right in order to suggest that violence is imminent from #BLM supporters. This is straight out of the QAnon and Proud Boys playbook. Spread the word. Protest safely. #georgenkencho
There is co-ordination across the far right in Ireland now to stir both left and right in the hopes of creating a race war. Think critically! Fascists see the tragic killing of #georgenkencho, the grief of his community and pending investigation as a flashpoint for action.
Across Telegram, Twitter and Facebook disinformation is being peddled on the back of these tragic events. From false photographs to the tactics ofwhite supremacy, the far right is clumsily trying to drive hate against minority groups and figureheads.
Declan Ganley’s Burkean group and the incel wing of National Party (Gearóid Murphy, Mick O’Keeffe & Co.) as well as all the usuals are concerted in their efforts to demonstrate their white supremacist cred. The quiet parts are today being said out loud.
The best thing you can do is challenge disinformation and report posts where engagement isn’t appropriate. Many of these are blatantly racist posts designed to drive recruitment to NP and other Nationalist groups. By all means protest but stay safe.
There is co-ordination across the far right in Ireland now to stir both left and right in the hopes of creating a race war. Think critically! Fascists see the tragic killing of #georgenkencho, the grief of his community and pending investigation as a flashpoint for action.
Across Telegram, Twitter and Facebook disinformation is being peddled on the back of these tragic events. From false photographs to the tactics ofwhite supremacy, the far right is clumsily trying to drive hate against minority groups and figureheads.
Be aware, the images the #farright are sharing in the hopes of starting a race war, are not of the SPAR employee that was punched. They\u2019re older photos of a Everton fan. Be aware of the information you\u2019re sharing and that it may be false. Always #factcheck #GeorgeNkencho pic.twitter.com/4c9w4CMk5h
— antifa.drone (@antifa_drone) December 31, 2020
Declan Ganley’s Burkean group and the incel wing of National Party (Gearóid Murphy, Mick O’Keeffe & Co.) as well as all the usuals are concerted in their efforts to demonstrate their white supremacist cred. The quiet parts are today being said out loud.
There is a concerted effort in far-right Telegram groups to try and incite violence on street by targetting people for racist online abuse following the killing of George Nkencho
— Mark Malone (@soundmigration) January 1, 2021
This follows on and is part of a misinformation campaign to polarise communities at this time.
The best thing you can do is challenge disinformation and report posts where engagement isn’t appropriate. Many of these are blatantly racist posts designed to drive recruitment to NP and other Nationalist groups. By all means protest but stay safe.
