Any Half-Decent Hacker Could Break into Mar-A-Lago(propublica.org)
propublica.org
Any Half-Decent Hacker Could Break into Mar-A-Lago
https://www.propublica.org/article/any-half-decent-hacker-could-break-into-mar-a-lago
28 comments
Anyone thought Trump had the "best" security on his servers and networks? How long before we find out that his entire network has been hacked by the chinese, russians and many other countries.
Or somebody could get in there and start publishing his data for public good.
This should tell you everything you need to know:
https://twitter.com/GossiTheDog/status/788489976266780672
https://twitter.com/GossiTheDog/status/788489976266780672
And waste their youth in prison.
I assume by now his political hacks have fired everyone that has recommended that Trump not be around unsecured network devices. If Trump can't Tweet, you're fired.
Our security is very powerful, second-to-none, it's a beauty.
All those networks and systems are almost certainly completely pwned. I'm sure they were as soon as he emerged as the Republican frontrunner.
Seems very likely given that the Russians have hacked the White House in the past:
Even after spending millions of dollars on security, the White House admitted in 2015 that it was hacked by Russians.
Even after spending millions of dollars on security, the White House admitted in 2015 that it was hacked by Russians.
Trump will just file suit those who conduct the intrusion, or (more likely) even those who inform of the possibility.
I expect ProPublica will get a visit from Secret Service soon.
I expect ProPublica will get a visit from Secret Service soon.
I'd expect he'll also order taxpayers to foot the bill for enhancements to the infrastructure of communications at all of his properties.
Will he? What if the intruders blackmail him, do you think he'll publicly sue them?
Considering how effective his previous lawsuits have been, it might be a good way to claim malfeasance by a 3rd party (even if it isn't the one who might be blackmailing him).
A show of force is always satisfying for a big ego.
A show of force is always satisfying for a big ego.
"The security aspect of cyber is very very tough! And maybe it's...it's hardly doable"
Does anyone know what antenna that is? Ive been meaning to make or buy an extremelely powerful (sensitive?) Wifi antenna for years now. I know nothing about antennas or radios and one of these days ill have to change that!
From their description it's probably a cantenna
If trump is as evil as people claim they can all expect CFAA arrests. There is a disturbing trend developing of "its okay to hack the government because I dont like the guy in charge this year". Something tells me that the federal government can weather the storm a lot better than these sort of people.
Huh. So how long until somebody pwns their wifi network, gets access to their security DVRs, and uses the information that the obtain from this to gain an edge in the stock market.
Or to blackmail the President...
If gizmodo is reporting on it, then it's already happening
I wonder if one of the computers at Mar-A-Lago has a copy of Trump's tax returns stored on it.
In other news,
Network/facility with normally lax/low security requirements utilizes normally lax/low security protocols to protect it, author creates piece conflating regular security levels processes with those needed for certain high security visitors who utilize differing security protocols when visiting said facillities.
alternately:
Public world not so secure! High security figures should use high security when visiting!
Network/facility with normally lax/low security requirements utilizes normally lax/low security protocols to protect it, author creates piece conflating regular security levels processes with those needed for certain high security visitors who utilize differing security protocols when visiting said facillities.
alternately:
Public world not so secure! High security figures should use high security when visiting!
That's why Mar-a-Lago guests were taking pictures with the guy who carries around the nuclear football and posting them on social media, complete with (unblurred in other copies) face. Because the security is so great there.
http://www.independent.co.uk/news/world/americas/us-politics...
Trump is a security chump.
http://www.independent.co.uk/news/world/americas/us-politics...
Trump is a security chump.
So is the independent. Trivial to run that through tin-eye.
Of course this isn't a surprise to any of the HN crowd, but it is still good to have publicly documented.
Plus it sets journalists up to ask more pointed questions. It's the difference between "What measures are being taken to ensure the security of Mar-a-Lago during the President's visits?" and "Given ProPublica's dismal analysis of Mar-a-Lago's normal security, what additional security measures are being taken during the President's visits?". The first is a softball, the second applies real political pressure to get it right.
Plus it sets journalists up to ask more pointed questions. It's the difference between "What measures are being taken to ensure the security of Mar-a-Lago during the President's visits?" and "Given ProPublica's dismal analysis of Mar-a-Lago's normal security, what additional security measures are being taken during the President's visits?". The first is a softball, the second applies real political pressure to get it right.
I would agree with you if Trump did not make super sensitive decisions and meet with other heads of state there.
Exactly, this is like zero surprise. I see AD deployed all the time without SSL/TLS. They always answer "but it's internal only, who cares?!"
http://imgur.com/a/G4RZo
In this particular case it doesn't even matter if the WiFi at the resorts he stays at is not secure, the resort focused applications many of his guests are likely using aren't secure, allowing a networked MitM on either a rogue WiFi or LTE network to ask and collect information of choice from guests.
Disclaimer: I've not compromised any Trump related servers, have not modified traffic to any back-end applications, but rather intercepted and modified a server response on my network to the mobile application running within my environment. No systems not in my direct control were harmed in this demonstration.