DNC Says Reported Hack Attempt Was a False Alarm

furry_wookie writes: A suspected attempt to hack into the Democratic National Committee's voter database was actually a cybersecurity test [Editor's note: the originally submitted article might be paywalled; an alternative source], the organization said. The DNC, which was [allegedly] hacked by Russian intelligence officers during the 2016 presidential campaign, said Tuesday it had contacted the Federal Bureau of Investigation after being alerted to an apparent phishing scheme by the computer security firm Lookout Inc., which uncovered a replica of the login page to the DNC's Votebuilder database during an online scan. In a statement early Wednesday, Bob Lord, the DNC's chief information security officer, said the DNC and its partners who reported the site 'now believe it was built by a third party as part of a simulated phishing test.'

They finally learned...

[mi]

So, as Equifax and Ashley Madison — to name just a few — before, DNC has learned to take data-security seriously the hard-way. A welcome change nonetheless, for sure.

Would it to be proper to mention, that the RNC has successfully foiled such an attack back in 2016? No? Too partisan? Ok...

Or, maybe, it is not too partisan to call out the same guys, who have once mocked an opponent for being computer illiterate?

You are idiot

FBI to this day have not had access to hacked DNC servers.
To this day there is no expert witness who has viewed DNC servers willing to state Russia hacked them in court.

Pakistan intelligence has the contents of that DNC server, but our FBI does not.
26 people from the FBI/DOJ have now been fired or forced to resign because of their inappropriate behavior on the job concerning this and investigating Trump. Does this sound like actions of "its just normal stuff" to you?

We have the #2 at the DOJ on perjury and abuse of power in signing a FISA warrant with known false information to spy on a citizen for political reasons. Yes, a program to catch terrorist was abused by the DOJ to spy on citizens for political reasons, and now he runs the Muller investigation. If Muller had any credibility he would insist on Rosenstein being fired immediately for corruption, but he doesn't.

Instead we get retards like you claiming using FISA warrants against citizens who have done nothing wrong is ok as long as it helped Clinton.

Re:Russians

[anegg]

In what way did this event involve the Russians? I don't have any problem believing the Russians are bad actors. Their whole "pretend we are doing nothing and that it is sad how everything thinks we are bad guys" while they are busy playing every dirty trick in the book is so time-worn that it deserves nothing but raised eyebrows at this point. But...

The news article that this Slashdot post is about describes how a cybersecurity exercise that involved an external web page (built by a third party involved in the test) had that web page spotted by yet another third party (who then reported it to the DNC) and whereupon it ended up being reported by the DNC as an action by a malicious actor. This can happen when the cybersecurity response function isn't 100% up to date on what the cybersecurity testing function is involved in, unfortunately. But there is no evidence in the report that it is part of a desensitization action on the part of the Russians (in this case), because the Russians didn't create the false alarm.

You might be able to make a case that the DNC cybersecurity response function was overly sensitive due to previous Russian actions, but properly evaluating threats is something every cybersecurity function has to deal with.