As it appears that my rebuttal is not going to be deleted in /r/security,
can I suggest we take this discussion there, rather than yet more noise
here?
https://www.reddit.com/r/security/comments/9ljcny/the_bloomberg_article_about_supermicro_is_bogus/
I will address your points there!
On Fri, 5
1 - Denials by Apple & Amazon are qualified
2 - Bloomberg are a reputable news agency
3 - They quote multiple sources
4 - They quote 30 approx companies affected
5 - This is a feasible vector, which means it's a risk
Kind regards
Paul Wilkins
On Fri, 5 Oct 2018 at 15:05, Matthew Moyle-Croft
Fairly robust rebuttal from the usually very silent Amazon.
https://aws.amazon.com/blogs/security/setting-the-record-straight-on-bloomberg-businessweeks-erroneous-article/
MMC
On Fri, Oct 5, 2018 at 2:18 PM Rob Thomas wrote:
> Odd. I've messaged the mods, I had a bit.ly link in it, which may
Odd. I've messaged the mods, I had a bit.ly link in it, which may have
triggered the spamfilter.
I've pastebin'ed the text here -- https://pastebin.com/mVpqNa38
--Rob
On Fri, 5 Oct 2018 at 14:43, Bill Woodcock wrote:
>
>
> > On Oct 4, 2018, at 9:39 PM, Rob Thomas wrote:
> >
> > I posed to
> On Oct 4, 2018, at 9:39 PM, Rob Thomas wrote:
>
> I posed to /r/netsec if anyone cares to take the discussion there
Posted seven minutes ago, and already removed?
-Bill
signature.asc
Description: Message signed with OpenPGP
I posed to /r/netsec if anyone cares to take the discussion there, and
expanded on my original post a bit. I'm even more certain that this is
fabricated, the more I think about it.
https://www.reddit.com/r/netsec/comments/9lj7mx/the_bloomberg_article_about_supermicro_is_bogus/
?
--Rob
On Fri,
I've been doing some research on my own, to see if ANYTHING corroborates
this, and I'm coming up empty handed. (This is the bonus of being
unemployed!)
Let's go through a few assertions in the original article.
1. It was an extremely small chip ('grain of rice'), disguised as a signal
coupler
Seems a lot easer just to legislate that software company’s are compelled to
install malware that can be remotely activated by the government.
Surely only an evil foreign power would do something so Orwellian.
Matt
--
/* Matt Perkins
Direct 1300 137 379 Spectrum Networks Ptd.
Folks,
There is no guarantee that latency to particular service stays in any
pre-defined range (while, indeed, the goal is to keep it as low as
possible). There are numerous legitimate reasons for temporary latency
increase. It would come back to usual value eventually.
The corresponding team is
Hi All,
Did anyone else read SuperMicro’s response as not a denial but an invitation or
Governments to get in and share information in the interests of Cyber Security?
I’m just making sure I am not alone in what I read into their response.
Kind Regards,
Jim.
From: AusNOG On
> -Original Message-
> From: AusNOG On Behalf Of Scott
> Weeks
> Sent: Friday, 5 October 2018 10:34 AM
> To: ausnog@lists.ausnog.net
> Subject: Re: [AusNOG] supermicro stocks dive
>
> That would be the FSB (was KGB) or CIA and you
> don't have a choice. They both have AIs that
> do.
Hi,
I've heard those denials too, but experience tells us there's no smoke
without fire... not that I use supermicro anyway so my data only goers
to NSA, not the MSS :)
cheers
On 05/10/2018 10:20, Florian Valette wrote:
> HI,
>
> It seems to be a Fake News...?
>
> Supermicro refutes :
This is the response from the players
https://www.bloomberg.com/news/articles/2018-10-04/the-big-hack-amazon-apple-supermicro-and-beijing-respond
On Fri, 5 Oct 2018 at 10:37, Paul Wilkins wrote:
> Posted on Bloomberg October 4, 2018 ergo, not fake news. The meta story
> here is that Apple and
Been noticing this as well. Might be time to switch to cloudflare's 1.1.1.1 __
Server: 8.8.8.8
Address:8.8.8.8#53
Non-authoritative answer:
www.supermicro.com canonical name = prospective.shared.global.fastly.net.
Name: prospective.shared.global.fastly.net
Address:
Posted on Bloomberg October 4, 2018 ergo, not fake news. The meta story
here is that Apple and Amazon are officially denying it.
Three senior insiders at Apple say that in the summer of 2015, it, too,
found malicious chips on Supermicro motherboards. Apple severed ties with
Supermicro the
--- jayb...@gmail.com wrote:
From: Jay Dixon
As our previous security manager at work put it
in his thick Russian accent...
"you know, you have 2 choices about who reads
your email; KGB, or FBI"
That would be the FSB (was KGB) or CIA and you
Negatory on the fake news.
https://www.bloomberg.com/news/features/2018-10-04/the-big-hack-how-china-used-a-tiny-chip-to-infiltrate-america-s-top-companies
On Fri, 5 Oct 2018 at 10:25, Jay Dixon wrote:
> As our previous security manager at work put it in his thick Russian
> accent...
>
> "you
As our previous security manager at work put it in his thick Russian
accent...
"you know, you have 2 choices about who reads your email; KGB, or FBI"
On Fri, Oct 5, 2018 at 10:00 AM Noel Butler wrote:
> given when this broke a couple days ago
>
>
>
HI,
It seems to be a Fake News…?
Supermicro refutes :
https://www.supermicro.com/newsroom/pressreleases/2018/press181004_Bloomberg.cfm
Apple denied too :
“Over the course of the past year, Bloomberg has contacted us multiple times
with claims, sometimes vague and sometimes elaborate, of an
Buy low, sell high, that’s my motto!
-Homer Simpson
But to actually contribute something to this thread.
They could be talking about Hengzhi chips. They’re basically Chinese TPMs, but
worse; they don’t follow trusted computing group guidelines, and as a result of
this, no one knows anything
given when this broke a couple days ago
https://www.securityweek.com/china-used-tiny-chips-us-computers-steal-secrets-report
overnight nasdaq supermicro stocks down 41%
seems cant trust much coming out of China these days. though, you cant
trust anything coming out of the USA either.
--
Hey Guys
Does anyone have any suggestions for shelf's that fit the racks at NextDC.
Don't want to get one just in the off chance it wont fit.
--
Bradley Amm
0420 501 801
___
AusNOG mailing list
AusNOG@lists.ausnog.net
22 matches
Mail list logo
