Shields Up…

Ukraine foils Russia-backed cyberattack on the power grid, The Statesman

Topics: Civics, Civil Rights, Cybersecurity, Existentialism, Fascism

Summary

This joint Cybersecurity Advisory (CSA)—coauthored by the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Energy (DOE)—provides information on multiple intrusion campaigns conducted by state-sponsored Russian cyber actors from 2011 to 2018 and targeted the U.S. and international Energy Sector organizations. CISA, the FBI, and DOE responded to these campaigns with appropriate action in and around the time that they occurred. CISA, the FBI, and DOE are sharing this information in order to highlight historical tactics, techniques, and procedures (TTPs) used by adversaries to target U.S. and international Energy Sector organizations.

On March 24, 2022, the U.S. Department of Justice unsealed indictments of three Russian Federal Security Service (FSB) officers and a Russian Federation Central Scientific Research Institute of Chemistry and Mechanics (TsNIIKhM) employee for their involvement in the following intrusion campaigns against the U.S. and international oil refineries, nuclear facilities, and energy companies.[1]

  • Global Energy Sector Intrusion Campaign, 2011 to 2018: the FSB conducted a multi-stage campaign in which they gained remote access to U.S. and international Energy Sector networks, deployed ICS-focused malware, and collected and exfiltrated enterprise and ICS-related data. 
    • One of the indicted FSB officers was involved in campaign activity that involved deploying Havex malware to victim networks. 
    • The other two indicted FSB officers were involved in activity targeting U.S. Energy Sector networks from 2016 through 2018.
  • Compromise of Middle East-based Energy Sector organization with TRITON Malware, 2017: Russian cyber actors with ties to the TsNIIKhM gained access to and leveraged TRITON (also known as HatMan) malware to manipulate a foreign oil refinery’s ICS controllers. TRITON was designed to specifically target Schneider Electric’s Triconex Tricon safety systems and is capable of disrupting those systems. Schneider Electric has issued a patch to mitigate the risk of the TRITON malware’s attack vector; however, network defenders should install the patch and remain vigilant against these threat actors’ TTPs.
    • The indicted TsNIIKhM cyber actor is charged with an attempt to access U.S.-protected computer networks and to cause damage to an energy facility.
    • The indicted TsNIIKhM cyber actor was a co-conspirator in the deployment of the TRITON malware in 2017.

Alert (AA22-083A)

Tactics, Techniques, and Procedures of Indicted State-Sponsored Russian Cyber Actors Targeting the Energy Sector, Cybersecurity & Infrastructure Security Agency (CISA)

So the warning by CISA has some connotations we should think about. Since Nexflix bailed on Russia, they could block streaming services and retaliate rather petty. Another is infrastructure such as public utilities. Yeah, getting your AC turned off when it’s in the eighties outside sucks, but a hospital getting its power cut during an emergency operation, an episiotomy or sinus surgery can cost lives that otherwise wouldn’t be affected. It would affect water and utilities, access to ATMs, and Wall Street trading. Any attack is a move of desperation, not “strength.” Any rat trapped in a corner will strike back, even with its last breath. Sean Hannity tried to give Mango Mussolini a layup question that he couldn’t answer: “is Putin evil?” After bodies stacked like Hurricane Katrina victims, a plethora of war crimes that would embarrass HITLER, he still can’t form his puckered mouth, which strangely looks like an anus, to criticize his handler; he is still the lapdog of a KGB spymaster. I doubt it has anything to do with pee tapes: it’s darker than that. He wants to BE Putin, he wants America to be Russia. He wants Jeff Bezos to bow to him on the floor of the New York Stock Exchange in parody to 2 Thessalonians 2:4. Here is a failed businessman, a serial bankruptcy artist, a short-fingered vulgarian whose college professor stated he was the “dumbest student he EVER had,” using more colorful metaphors. He takes a gig as host of a reality show to pay just enough of his crumbling life expenses to keep up the facade, and never admitted to himself that whatever his father had, he never had, and never will have. A person like that constructs fantasies because reality, “real reality,” is too harsh for malignant narcissists. “Great again” in a sick mind is a dystopian nightmare to the sane rest of us, unless you’re QAnon while reading this.

I think of Edward Snowden at this time. He’s probably a valuable asset to Vladimir Putin and the GRU, despite his rock star status in exposing corruption: he broke the law and fled the country before it could prosecute him. Funny how he ends up in Russia; funny how the malware the GRU started using in 2016 suddenly “sprang up” spontaneously. I’m surprised no one is discussing this as a possibility. If you look at the link that I’ve provided, he boasted a top salary of $200,000 working at the NSA, as he put it, as a “computer Guru,” without the benefit of a college degree. His paint job and privilege greased the skids to his ascension in the intelligence community (an oxymoron if there ever was one) and his six-figure salary. One thinks of the idioms “blowback” and “chicken’s coming home to roost” the second made famous first by Chaucer of The Canterberry Tales before Malcolm X used the idiom to comment on President Kennedy’s demise.

As Ukraine goes further in the crapper for the Russian bear, and Putin gets desperate to pull off a “win” in time for the May 9th festivities (the Soviet victory over Nazi Germany in WWII), cyber warfare is his best option to damage, deter the West, and save “face” at home. Moscow’s Flagship sunk: either from Ukrainian armaments, or Russian naval incompetence. Social media is making it difficult to blame the “special military operation” on ghost Nazis. Since American billionaires hide their money in the Caymans, and Russian oligarchs (tomato, to-MAH-toe) hide their grand theft in western countries, “nuking the joint” just because you’re pissed at looking bad doesn’t make financial sense. Neither does the use of chemical weapons because the optics of killing babies in a majority white country can’t endear you to the crowd that thinks white people are being “replaced.” Free trade after Ukraine is going to have a cost for Vladimir: it’s not going to be free, and like Finland and Sweden considering NATO membership, he may have sparked a global “Green New Deal” revolution that mere logic, and the absolutely sane desire to save the planet couldn’t. The veneer of invincibility so-called strongmen like to exude can’t be as shiny as it was when W “looked into his eyes, and saw his soul.” At least the 46th president called “malarky” on that google-eyed tyrant worship, proto the fascism the right is exhibiting daily.

CPAC stands for “conservative political action committee,” and the action you would THINK they would like to be politically responsible for is the election of conservative lawmakers to enact a platform and state an agenda. As of 2020, there is none, except supporting the American Orange Fuhrer. CPAC is meeting in Hungary, home of authoritarian leader Viktor Orbán, who has packed the courts, squelched the news down to a cheerleading outlet, attacked the LGBT in his country (guilty of the crime of EXISTING), rigged elections to where he cannot lose, demonized minorities and added to that antisemitism. Just the kind of country American Conservatives cum fascists (prior to WWII, there was a German American Bund that openly supported Hitler and the Nazis) would love to form in the US.

The Growth and Opportunity Project stated things that the right has thus far refused to do: change, evolve, give up the “Southern Strategy,” start sounding less racist and appeal to more minorities, and young people. In other words, a functional political party would have taken the 2012 election loss as a wake-up call to course-correct.

What we are currently experiencing isn’t a functional party. The party went from GOP to INGSOC, from Mitt Romney to a Boy From Brazil that had a copy of Hitler’s speeches on his nightstand, that he obviously read. What he leads is more a Congress of sociopaths, people fearful of the changes their hubris wouldn’t let them make. The percentage of black republicans has dwindled steadily since the 2000 RNC convention, but the New York Times managed to cobble a few together to make a point that fascists somehow have “inroads” with the African American community after Associate-Designate Supreme Court Justice Ketanji Brown-Jackson survived what amounted to a Klan coven. Yeah: inroads.

If the DNC isn’t making attack ads with the material the insurrection party gave during her marathon, disrespectful confirmation hearings, it amounts to bringing a butter knife to a bazooka fight. It is political malpractice. Batman doesn’t negotiate with the Joker: he pummels him and sends him back to Arkham. He does it as many times as necessary.

Racists could care less about diversity, equity, and inclusion, and fascists ONLY care about their “superiority” and making sure the necks they stamp on never shift from their places. Put on your flack jackets and gear up for piles of manure dressed up as political discourse. Get ready for malware blackouts and excuses that this direct attack on our homeland is somehow “our fault” because a psychopath believed his yes men, and got out over his skis. Like Dumbo Gambino, we’re finding out the “stable geniuses” are all flatulence and hype.

In the words of Star Trek (any version): “red alert. Shields up!”

Published by reginaldgoodwin

Engineering Physics, Bachelors of Science, December 1984 Microelectronics & Photonics, Graduate Certificate, February 2016 Nanoengineering, Masters, December 2019 Nanoengineering, Ph.D., Summer 2022

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: