Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Kim Zetter Profile picture
@KimZetter
Dec 14, 2020 7 tweets 2 min read Read on X
Someone asked me to provide a simple description of what this SolarWinds hack is all about. So for anyone who is confused by the technical details, here's a thread with a simplified explanation of what happened and what it means.
The maker of software that is used in the highest echelons of gov, including the White House and NSA, was compromised by attackers who slipped malicious code into the software maker's trusted code without the software maker knowing it. The code got distributed to its customers
That malicious code, once it infected customer systems, opened a backdoor into those systems and contacted the hackers to let them know the door was open for them to surreptitiously enter those systems and begin stealing sensitive data on those networks.
The hackers did this back in March and their activity was only recently discovered - this means they have been inside gov systems all these months stealing data and spying on gov workers without anyone knowing until now. They also infected telecoms and other company networks.
Here is a list of some of the customers who use the software made by the software maker (their name is SolarWinds). All of these were potentially compromised. Image
What does this mean for average person and their data? This is a national security hack conducted by a nation-state (Russia) and focused on high-value targets/data. While it's possible yr personal data could have been compromised, it's more likely not what the hackers were after.
But there's a lot that's still unknown about the operation -- who all was compromised and what data or secrets were stolen.

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Kim Zetter

Kim Zetter Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @KimZetter

Kim Zetter Profile picture
Feb 14
New info about DC crash: Around time plane was told to change runways, helicopter pilot said chopper was at 300 ft, while instructor aboard chopper said they were at 400 ft. About a minute later, instructor said they were at "300 feet descending to 200" people.com/dc-plane-crash…
31 secs before impact plane began to roll left to turn toward runway. 20 secs before impact cockpit voice recorders on both aircraft recorded msg from tower asking helicopter crew if plane was in sight. A "conflict alert" could be heard in background of tower radio transmission
17 secs before impact, tower transmission was audible on both voice recorders telling helicopter to pass behind plane. However, the words "pass behind the" may not have been heard by helicopter crew because crew began to communicate with tower at same time.
Read 6 tweets
Kim Zetter Profile picture
Feb 4
A "DOGE worker named Marko Elez who has admin privileges on Treasury systems that control 95% of gov payments, including Social Security checks/tax refunds, "has already made extensive changes to the code base for these critical payment system" talkingpointsmemo.com/edblog/musk-cr…
"The changes that have been made all seem to relate to creating new paths to block payments and possibly leave less visibility into what has been blocked.... [T]he described changes are not being tested in a dev environment...but have already been pushed into production."
"no payments have as yet been blocked and...the ...engineering team was able to convince Elez to push the code live to impact only a subset of the universe of payments the system controls.... [He has], however, looked extensively into ...how certain payments can be blocked"
Read 4 tweets
Kim Zetter Profile picture
Dec 23, 2024
Mossad's exploding pager op began 10 yrs ago with explosives in walkie-talkies. Hezbollah bought 16,000+ of these, but Mossad didn't detonate them until this yr. In 2022 Mossad began booby-trapping pagers too. Unlike walkie-talkies, which only got worn in battle, Hezbollah wore pagers all the time cbsnews.com/news/israeli-m…
To embed explosives, Mossad created pagers identical to model Hezbollah was using, but slightly larger to hold explosive. A Mossad agent claims they ran tests to determine how much explosive would injure the person carrying the pager without harming anyone next to them.
"If you push the button the only one that will get injured is the terrorist himself. Even if his wife or his daughter will be just next to him he's the only one that's going to be harmed. We test everything...multiple times in order to make sure there's minimum damage" - former Mossad agent
Read 11 tweets
Kim Zetter Profile picture
Jul 14, 2024
AT&T paid hackers $370,000 to delete call records stolen from its Snowflake account. They provided video to AT&T showing deletion. It's believed to be the only complete set of the data stolen, though the hackers shared small snippets with a few people wired.com/story/atandt-p…
AT&T learned about breach mid-April and paid the hackers on May 17, but didn't report the breach publicly until this last Friday when the published a blog post and a filed a regulatory disclosure with the SEC. AT&T had received a reporting exemption to withhold public reporting.
When AT&T paid the hackers in May, the one allegedly directly responsible for stealing it - John Erin Binns - is believed to have already been arrested in Turkey where he was living. The arrest was not for the AT&T breach, however, but for the breach of T-Mobile back in 2021.
Read 4 tweets
Kim Zetter Profile picture
Oct 23, 2023
Car bomb that killed daughter of Putin ally Alexander Dugin was smuggled into Russia in hidden compartment of a cat crate. The op was part of a raging shadow war being conducted by Ukraine's SBU spy agency, which has forged deep bonds with CIA since 2014
washingtonpost.com/world/2023/10/…
"The cluttered car carrying a mother and her 12-year-old daughter seemed barely worth the attention of Russian security officials as it approached a border checkpoint. But the least conspicuous piece of luggage — a crate for a cat — was part of an elaborate, lethal plot."
Since 2015, CIA has spent millions to transform Ukraine’s intel services into allies against Putin. It's provided advanced surveillance systems, trained recruits in Ukraine/US, built a new headquarters for Ukraine's military intel agency, and shared unprecedented amounts of intel
Read 8 tweets
Kim Zetter Profile picture
Oct 19, 2023
Thousands of IT workers contracting with US companies have for years secretly sent millions of dollars of their wages to North Korea to fund its weapons programs. They worked remotely with companies around US and used false identities to get jobs, per FBI apnews.com/article/north-…
According to DoJ, North Korea dispatched thousands of skilled IT workers to live in China and Russia with the goal of getting hired by companies in the US and elsewhere as freelance remote employees. In some cases the workers infiltrated company networks and stole info from them
"the workers used various techniques to make it look like they were working in the US, including paying Americans to use their home Wi-Fi connections"
Read 5 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

Send Email!

:(