Cyber expert says he found the SolarWinds “backdoor”: Computer expert Andrew Morris says he downloaded the infected installer from SolarWinds Orion

Election Wiz ^ | 12/15/2020

[SeekAndFind]

Computer expert Andrew Morris says he downloaded the infected installer from SolarWinds Orion and found the “backdoor” is still contained on the installer on SolarWinds’ website.

Morris is the founder of GreyNoise, a cyber security firm that specializes in finding comprised devices and detecting internet threats.

SolarWinds Orion is part of the SolarWinds suite of network and computer management tools used by the US government.

Reports indicate that someone, possible Russia, managed to modify SolarWinds Orion in the spring of this year. The modification created a “backdoor” which allowed the hacker to spy on numerous government agencies, including the Treasury, Commerce, Homeland Security, and the Pentagon.

The “backdoor” was identified by cyber security firm FireEye, and dubbed the backdoor “Sunburst.”

The SolarWinds attack seemingly went undetected for months as hackers were able to sneak into U.S. government agencies, putting sensitive information at risk of theft.

Unconfirmed news broke last night that federal agents and Texas Rangers “raided” SolarWinds headquarters in Austin, Texas.

[TheZMan]

Election Wiz has a moron for an author, and a non-existent editor. If you can’t be bothered to write above a 5th grade level, you don’t deserve to have your crap read by anyone.

[SeekAndFind]

OK, he’s not the best writer in the world. But do you have any objections to the INFORMATION provided in the article other than the author is not the second coming of Bill Buckley Jr.?

[proxy_user]

Here are additional articles that go into more depth:

https://arstechnica.com/information-technology/2020/12/18000-organizations-downloaded-backdoor-planted-by-cozy-bear-hackers/

https://arstechnica.com/information-technology/2020/12/solarwinds-hackers-have-a-clever-way-to-bypass-multi-factor-authentication/

[glorgau]

Nice hack, infect the network monitoring tools.

[ClearCase_guy]

I’m still not completely clear on the connection people are making between SolarWinds and Dominion Voting.

SolarWinds was hacked in March. Malware was inserted. Perhaps by Russia. This compromised a lot of systems. Okay. I get that.

But I think people are hinting that this allowed the FBI and Texas Rangers to seize Dominion servers and gain access to auditable logs showing election fraud? Or something?

I’m not getting this connection.

[TheZMan]

Hard to say. I can’t read dumb.

[LastDayz]

“Reports indicate that someone, possible Russia...”

Russia, Russia, Russia.... my azz. More likely China, China, China as they have the most to lose.

[Steve Van Doorn]

SolarWinds is used in Dominion Voting systems
Orion was a patch for solarwinds it's not a version. Dominion systems adviser said today that he has very limited information but implied this was a package that Dominion doesn't use. Though he implied they do use solarwinds in his testimony today. the problem with that is they used solarwinds and updated regularly they took the package.

Types of patch's
Hotpatch - A quick bug fix for a specific software issue.
Orion - A cloud based software solution produced by SolarWinds (large IT software company) used by IT administrators to managed workstations/servers/devices
Patches - Normal software updates & security updates.
Usually released on a regular schedule, as opposed to hotpatches, which are quickly released for a specific issue

this is the log screen capture of the log of in Dominion systems

My opinion if the FBI is involved they're securing the banks and military systems. They will not even look at if dominion used solarwinds