EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

06.14.15

Office of Personnel Management (OPM) and Microsoft Windows

Posted in Microsoft, Windows at 6:07 pm by Dr. Roy Schestowitz

Server

Summary: A look at lesser-explored aspects of the so-called OPN hack [sic], especially the systems involved

IN AN EFFORT to understand what repeatedly happened in the undoubtedly significant Office of Personnel Management (OPM) data breach/es [2-8], leaving aside the lack of concrete evidence of Chinese role [1], we tried to understand which platform was to blame. In the case of Sony it was reportedly a Microsoft Windows machine acting as the culprit or attack vector, just like Stuxnet in Iran with similar attempts against North Korea (there are still more articles about it).

“Hundreds of millions of credit card numbers got snatched from Windows.”NSA leaks were due to Microsoft SharePoint (Snowden gained access to the so-called ‘crown jewels’). As we last noted in an article about words from Kaspersky (still in headlines for it [9-12]), Windows is inherently not secure. Commercial targets of data breached that we wrote about before serve to show this. We gave readers a lot of examples over the years. Hundreds of millions of credit card numbers got snatched from Windows. the cost was enormous, but the role of Windows wasn’t ever emphasised in the corporate press.

Rebecca Abrahams published an article co-authored by Dr. Stephen Bryen, Founder & CTO of FortressFone Technologies. Unlike many other articles which point a finger at China (with little to actually back this accusation with), Abrahams does call out Windows and sheds light on what OPM uses:

Second, the government is very slow to improve security on its computers and networks. Many of the computers the government is using are antique. For example OPM still has 12-year old Windows XT as an operating system for its computers. Microsoft no longer supports XT and any vulnerability that develops is the problem of the user, not of the supplier. But even if the old stuff was upgraded it won’t help much because the systems are really clumsy amalgams of disparate parts which as a “system,” have never been properly vetted for security.

So there we go. Windows. We’re hardly surprised to say the least. The author probably means NT or XP (14 years old, not 12, unlike Server 2003), but does it matter much? Any version of Windows, no matter how old, is not secure. It’s not even designed to be secure.

Related/contextual items from the news:

  1. US wronging of China for cyber breaches harm mutual trust

    Out of ulterior motives, some US media and politicians have developed a habit of scapegoating China for any alleged cyber attack on the United States. Such groundless accusations would surely harm mutual trust between the two big powers of today’s world.

  2. The Massive Hack on US Personnel Agency is Worse Than Everyone Thought

    Last week, the human resources arm of the US government, the Office of Personnel Management (OPM) admitted that it had been victim of a massive data breach, where hackers stole personal data belonging to as many as 4 million government workers.

  3. Feds Who Didn’t Even Discover The OPM Hack Themselves, Still Say We Should Give Them Cybersecurity Powers

    We already described how the recent hack into the US federal government’s Office of Personnel Management (OPM) appears to be much more serious than was initially reported. The hack, likely by Chinese state hackers, appear to have obtained basically detailed personal info on all current and many former federal government employees.

  4. China-linked hackers get data on CIA, NSA personnel with security-clearance: report

    China-linked hackers appear to have gained access to sensitive background information submitted by US intelligence and military personnel for security clearances that could potentially expose them to blackmail, the Associated Press reported on Friday.

    In a report citing several US officials, the news agency said that data on nearly all of the millions of US security-clearance holders, including the Central Intelligence Agency (CIA), National Security Agency (NSA) and military special operations personnel, were potentially exposed in the attack on the Office of Personnel Management (OPM).

  5. Second OPM Hack Revealed: Even Worse Than The First

    And yet… this is the same federal government telling us that it wants more access to everyone else’s data to “protect” us from “cybersecurity threats” — and that encryption is bad? Yikes.

  6. Dossiers on US spies, military snatched in ‘SECOND govt data leak’

    A second data breach at the US Office of Personnel Management has compromised even more sensitive information about government employees than the first breach that was revealed earlier this week, sources claim. It’s possible at least 14 million Americans have chapter and verse on their lives leaked, we’re told.

    The Associated Press reports that hackers with close ties to China are believed to have obtained extensive background information on intelligence-linked government staffers – from CIA agents and NSA spies to military special ops – who have applied for security clearances.

    Among the records believed to have leaked from a compromised database are copies of Standard Form 86 [PDF], a questionnaire that is given to anyone who applies for a national security position, and is typically verified via interviews and background checks.

  7. Officials: Second hack exposed military and intel data
  8. Senate Quickly Says ‘No Way’ To Mitch McConnell’s Cynical Ploy To Add Bogus Cybersecurity Bill To NDAA

    Earlier this week, we noted that Senator Mitch McConnell, hot off of his huge flop in trying to preserve the NSA’s surveillance powers, had promised to insert the dangerous “cybersecurity” bill CISA directly into the NDAA (National Defense Authorization Act). As we discussed, while many have long suspected that CISA (and CISPA before it) were surveillance bills draped in “cybersecurity” clothing, the recent Snowden revelations that the NSA is using Section 702 “upstream” collection for “cybersecurity” issues revealed how CISA would massively expand the NSA’s ability to warrantlessly wiretap Americans’ communications.

  9. “Don’t Hack Me! That’s a Bad Idea,” Says Eugene Kaspersky to APT Groups
  10. Russian Software Security Lab Hacked, Indirectly Links Attack To NSA
  11. Israel, NSA May Have Hacked Antivirus Firm Kaspersky Lab

    Moscow-based antivirus firm Kaspersky Lab, famous for uncovering state-sponsored cyberattacks, today dropped its biggest bombshell yet: Its own computer networks were hit by state-sponsored hackers, probably working for Israeli intelligence or the U.S. National Security Agency. The same malware also attacked hotels that hosted ongoing top-level negotiations to curb Iran’s nuclear program.

  12. Protocols of the Hackers of Zion?

    When Israeli Prime Minister Benjamin Netanyahu met with Google chairman Eric Schmidt on Tuesday afternoon, he boasted about Israel’s “robust hi-tech and cyber industries.” According to The Jerusalem Post, “Netanyahu also noted that ‘Israel was making great efforts to diversify the markets with which it is trading in the technological field.’”

    Just how diversified and developed Israeli hi-tech innovation has become was revealed the very next morning, when the Russian cyber-security firm Kaspersky Labs, which claims more than 400 million users internationally, announced that sophisticated spyware with the hallmarks of Israeli origin (although no country was explicitly identified) had targeted three European hotels that had been venues for negotiations over Iran’s nuclear program.

    Wednesday’s Wall Street Journal, one of the first news sources to break the story, reported that Kaspersky itself had been hacked by malware whose code was remarkably similar to that of a virus attributed to Israel. Code-named “Duqu” because it used the letters DQ in the names of the files it created, the malware had first been detected in 2011. On Thursday, Symantec, another cyber-security firm, announced it too had discovered Duqu 2 on its global network, striking undisclosed telecommunication sites in Europe, North Africa, Hong Kong, and Southeast Asia. It said that Duqu 2 is much more difficult to detect that its predecessor because it lives exclusively in the memory of the computers it infects, rather than writing files to a drive or disk.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. Patent Professionals in Europe Have Devolved Into a Marketing Industry

    Lies, buzzwords and hype waves is all that the patent bubble in Europe boils down to these days; loads of bogus patents get granted only for European judges to smack these down (if one can afford the court battle)



  2. Almost Six Months After Iancu Said He Would Make Software Patents Great Again Nothing Has Actually Changed

    We're just a fortnight away from the ludicrous plan of Iancu celebrating 6 months (without accomplishing anything)



  3. Links 20/6/2019: Kubernetes 1.15, Alpine 3.10.0 and Librem 5 June Software Update

    Links for the day



  4. Ignore the EPO's Dumb Festival and Focus on the Abuses Against the Workforce and Its Quality of Work

    Don’t lose sight of the appalling behaviour of the management of the EPO; the last thing it wants is press coverage about its gross abuses and corruption — an aspect it spent literally millions of euros to bury (gaming the news cycle)



  5. Microsoft Attempting to Destroy the Careers of Its Critics, Including Free Software Proponents

    Microsoft isn't changing and has not changed; the tactics described above are still being used, even by its "Open Source" (or "Open at Microsoft") people, who did this to me



  6. Links 19/6/2019: Linux Mint Vs Vista 10, Qt 5.13 Released

    Links for the day



  7. The Linux Foundation's Business Model

    The Linux Foundation's plan, illustrated



  8. Links 18/6/2019: i386 Abandoned by Canonical and a New osquery 'Community'

    Links for the day



  9. Indifference or Even Hostility Towards Patent Quality Results in Grave Injustice

    The patent extravaganza in Europe harms small businesses the most (they complain about it), but administrative staff at patent offices only cares about the views of prolific applicants rather than the interests of citizens in respective countries



  10. Links 18/6/2019: CentOS 8 Coming Soon, DragonFly BSD 5.6 Released

    Links for the day



  11. 'AI Taskforce' is Actually a Taskforce for Software Patents

    The mainstream media has been calling just about everything "HEY HI!" (AI), but what it typically refers to is a family of old algorithms being applied in possibly new areas; patent maximalists in eastern Asia and the West hope that this mainstream media's obsession can be leveraged to justify new kinds of patents on code



  12. Patent Maximalism is Dead in the United States

    Last-ditch efforts, or a desperate final attempt to water down 35 U.S.C. § 101, isn't succeeding; stacked panels are seen for what they really are and 35 U.S.C. § 101 isn't expected to change



  13. Links 18/6/2019: Linux 5.2 RC5 and OpenMandriva Lx 4

    Links for the day



  14. Weaponising Russophobia Against One's Critics

    Response to smears and various whispering campaigns whose sole purpose is to deplete the support base for particular causes and people; these sorts of things have gotten out of control in recent years



  15. When the EPO is Run by Politicians It's Expected to Be Aggressive and Corrupt Like Purely Political Establishments

    António 'Photo Op' Campinos will have marked his one-year anniversary in July; he has failed to demonstrate morality, respect for the law, understanding of the sciences, leadership by example and even the most basic honesty (he lies a lot)



  16. Links 16/6/2019: Tmax OS and New Features for KDE.org

    Links for the day



  17. Stuffed/Stacked Panels Sent Back Packing After One-Sided Patent Hearings That Will Convince Nobody, Just Preach to the Choir

    Almost a week ago the 'world tour' of patent lobbyists in US Senate finally ended; it was an utterly ridiculous case study in panel stacking and bribery (attempts to buy laws)



  18. 2019 H1: American Software Patents Are as Worthless as They Were Last Year and Still Susceptible to Invalidation

    With a fortnight left before the second half of the year it seems evident that software patents aren't coming back; the courts have not changed their position at all



  19. As European Patent Office Management Covers up Collapse in Patent Quality Don't Expect UPC to Ever Kick Off

    It would be madness to allow EPO-granted patents to become 'unitary' (bypassing sovereignty of nations that actually still value patent quality); it seems clear that rogue EPO management has, in effect, not only doomed UPC ambitions but also European Patents (or their perceived legitimacy, presumption of validity)



  20. António Campinos -- Unlike His Father -- Engages in Imperialism (Using Invalid Patents)

    Despite some similarities to his father (not positive similarities), António Campinos is actively engaged in imperialistic agenda that defies even European law; the EPO not only illegally grants patents but also urges other patent offices to do the same



  21. António Campinos Takes EPO Waste and Corruption to Unprecedented Levels and Scale

    The “B” word (billions) is thrown around at Europe’s second-largest institution because a mischievous former EUIPO chief (not Archambeau) is ‘partying’ with about half of the EPO’s all-time savings, which are supposed to be reserved for pensions and other vital programmes, not presidential palaces and gambling



  22. Links 15/6/2019: Astra Linux in Russia, FreeBSD 11.3 RC

    Links for the day



  23. Code of Conduct Explained: Partial Transcript - August 10th, 2018 - Episode 80, The Truth About Southeast Linuxfest

    "Ask Noah" and the debate on how a 'Code of Conduct' is forcibly imposed on events



  24. Links 14/6/2019: Xfce-Related Releases, PHP 7.4.0 Alpha

    Links for the day



  25. The EPO is a Patent Troll's Wet Dream

    The makers of software and games in Europe will have to spend a lot of money just keeping patent trolls off their backs — a fact that seems to never bother EPO management because it profits from it



  26. EPO Spreading Patent Extremists' Ideology to the Whole World, Now to South Korea

    The EPO’s footprint around the world's patent systems is an exceptionally dangerous one; The EPO amplifies the most zealous voices of the patents and litigation ‘industry’ while totally ignoring the views and interests of the European public, rendering the EPO an ‘agent of corporate occupation’



  27. Guest Post: Notes on Free Speech, and a Line in the Sand

    We received this anonymous letter and have published it as a follow-up to "Reader's Claim That Rules Similar to the Code of Conduct (CoC) Were 'Imposed' on LibrePlanet and the FSF"



  28. Links 13/6/2019: CERN Dumps Microsoft, GIMP 2.10.12 Released

    Links for the day



  29. Links 12/6/2019: Mesa 19.1.0, KDE neon 5.16, Endless OS 3.6.0 and BackBox Linux 6

    Links for the day



  30. Leaked Financial 'Study' Document Shows EPO Management and Mercer Engaging in an Elaborate “Hoax”

    How the European Patent Office (EPO) lies to its own staff to harm that staff; thankfully, the staff isn't easily fooled and this whole affair will merely obliterate any remnants of "benefit of the doubt" the President thus far enjoyed


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts