Oh, to connect the dots: As regard the report they put out tonight, I wrote:
So, I’m a computer developer with security programming training, specifically, Federal training.
THIS IS INDEED A LAME GARBAGE REPORT.
There is ZERO offered evidence any of this was Russian in origin, and merely details pretty industry-standard best practices and talks about very common attacks.
One particular one popped out at me: XSS. Cross Site Scripting. GOOD GOD, YOU PEOPLE HAVEN’T HARDENED AGAINST SIMPLE SCRIPT-KIDDY ATTACKS??? This attack is the simplest to carry out, and the simplest to defend against.
This ‘report’ is a litany of incompetance and half of the space is taken up with the industry’s ‘best practices’ in defending against attacks.
And not ONE LICK of evidence Russia was involved.
Not ONE LICK.
Please use whatever ‘juice’ you have, offsite, and get this message before as much of the public as you can.
Didn’t Podesta use something like “passw0rd” as his password and fail to change it when someone pointed out that wasn’t secure? Darn near anyone could hack that, even a non IA/Security+ guy like me.
It’s not a lame garbage report... it’s extremely significant.
Come on, if you’ve worked in federal IT then you know what happens when you get an order to produce a report that is completely at odds with the facts - you fill it with boilerplate from a textbook and weasel words.
It’s basic CYA, which is the primary skill of any bureaucrat.