General Discussion
Related: Editorials & Other Articles, Issue Forums, Alliance Forums, Region ForumsWhy are critical systems such as the pipeline or meat supply open to the web, or if they need
webservers, why isn't there adequate protections to prevent access to vulnerable websites, phishing emails with malicious attachments, etc.
Ransomware has been known for sometime. Why does it seem that we are always a day late and a dollar short?
NightWatcher
(39,343 posts)I'm shocked we haven't been shut down actually. They, Russian hackers, could cripple u all at once if they wanted. We'd retaliate as soon as we recovered which might take a while and leave us dark, hungry, and unable to move, eat, pump water, or pump gas
JohnSJ
(92,403 posts)Bettie
(16,126 posts)seeing what they can do. There will be bigger/more damaging attacks.
I'm beginning to understand (if not fully agree with) my DH's point of view. He says these are acts of war and should be treated as such and that it is all coming, ultimately, from Putin.
bamagal62
(3,269 posts)Phoenix61
(17,019 posts)hard to justify the expense to the board. Its going to be just as hard to justify how they got jacked but some folks just dont think ahead.
notinkansas
(1,096 posts)Amishman
(5,559 posts)Until recently I was a IT contracting nomad, I've worked for a lot of clients doing rush projects. One of the most common theme is management refusing to spend for IT, especially security and maintenance, until something goes wrong. Damn near every IT department I've ever seen is perpetually understaffed and functioning almost entirely reactively and not proactively.
In other words, their sys admins and net ops people are so busy keeping things running that they have zero time to keep up on emerging vulnerabilities, let alone proactively close them.
Abnredleg
(670 posts)It was the corporate network (ie. email, billing, etc) that was hit.
Disaffected
(4,569 posts)it's pipeline control system is/was isolated from the web - it was their billing and payments system that was jacked.
AFAIK it is the same for other infrastructure such as electricity grids and generator stations.
Brother Buzz
(36,466 posts)All they have to do is find one lazy person who has access, break their password out in the social media world, then access the system through it's password protected portal because there's a good chance the lazy person uses the same password EVERYWHERE.
Throck
(2,520 posts)Pipeline networks are small compared to the nationwide network of electrical infrastructure. The electrical network is currently well aged too.
JohnSJ
(92,403 posts)Hortensis
(58,785 posts)to government requiring expensive security upgrades for free enterprise. So it's left to them... I
If you think meat is bad, take a look at our thousands of independent power companies. Last I read, it sounded like most of their owners were RWers more afraid of, and outraged by, the idea of national security involvement by our government than the now very real possibility of massive death and devastation from going bare. The TX-area outage was nothing, strictly local and temporary.