Thread: Random Thoughts - Part Deux [NO POLITICS]
View Single Post
Old 12-18-2020, 08:34 AM   #74245
ScoobsMcGee
Junior Senior with Cheese
 
ScoobsMcGee's Avatar
 
Join Date: Aug 2014
Drives: 15 BRZ
Location: York, PA
Posts: 3,006
Thanks: 6,837
Thanked 7,049 Times in 2,345 Posts
Mentioned: 13 Post(s)
Tagged: 2 Thread(s)
Quote:
Originally Posted by Ultramaroon View Post
Actually, it says that they've not found any indication during ongoing investigation. They're as careful about keeping their options open as Reuters was about not quite saying there was material damage.
That's fair. The solid no indication is on the use of MS products as an attack vector.

As for Solarwinds, the backdoor was programmed to resolve the external IP of the infected client, and shut down if it was communicating from any internal IP, or from any IP owned by Microsoft. So much so that MS took over the registration domain and made it resolve to one of their own IPs in order to prevent new infections with currently known variants. A lot of people seem to have forgotten that and are making some very bad takes / speculation this morning.
ScoobsMcGee is offline  
The Following 3 Users Say Thank You to ScoobsMcGee For This Useful Post:
Dadhawk (12-18-2020), Spuds (12-18-2020), Ultramaroon (12-18-2020)