• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Hackers Launch Major Attack on US Military Labs

Polaris573

Senior Moderator
Joined
Feb 26, 2005
Messages
4,268 (0.59/day)
Location
Little Rock, USA
Processor LGA 775 Intel Q9550 2.8 Ghz
Motherboard MSI P7N Diamond - 780i Chipset
Cooling Arctic Freezer
Memory 6GB G.Skill DDRII 800 4-4-3-5
Video Card(s) Sapphire HD 7850 2 GB PCI-E
Storage 1 TB Seagate 32MB Cache, 250 GB Seagate 16MB Cache
Display(s) Acer X203w
Case Coolermaster Centurion 5
Audio Device(s) Creative Sound Blaster X-Fi Xtreme Music
Power Supply OCZ StealthXStream 600 Watt
Software Windows 7 Ultimate x64
Hackers have succeeded in breaking into the computer systems of two of the U.S.' most important science labs, the Oak Ridge National Laboratory (ORNL) in Tennessee and Los Alamos National Laboratory in New Mexico. In what a spokesperson for the Oak Ridge facility described as a "sophisticated cyber attack," it appears that intruders accessed a database of visitors to the Tennessee lab between 1990 and 2004, which included their social security numbers and dates of birth. Three thousand researchers reportedly visit the lab each year, a who's who of the science establishment in the U.S.

The attack was described as being conducted through several waves of phishing emails with malicious attachments, starting on Oct. 29. Although not stated, these would presumably have launched Trojans if opened, designed to bypass security systems from within, which raises the likelihood that the attacks were targeted specifically at the lab.

ORNL director, Thom Mason, described the attacks in an email to staff earlier this week as being a "coordinated attempt to gain access to computer networks at numerous laboratories and other institutions across the country."

"Because of the sensitive nature of this event, the laboratory will be unable for some period to discuss further details until we better understand the full nature of this attack," he added.

The ORNL has set up a web page giving an official statement on the attacks, with advice to employees and visitors that they should inform credit agencies so as to minimize the possibility of identity theft.

Less is known about the attacks said to have been launched against the ORNL's sister-institution at Los Alamos, but the two are said to be linked. It has not been confirmed that the latter facility was penetrated successfully, though given that a Los Alamos spokesman said that staff had been notified of an attack on Nov. 9 - days after the earliest attack wave on the ORNL - the assumption has to be that something untoward happened there as well, and probably at other science labs across the U.S.

The ORNL is a multipurpose science lab, a site of technological expertise used in homeland security and military research, and also the site of one of the world's fastest supercomputers. Los Alamos operates a similar multi-disciplinary approach, but specializes in nuclear weapons research, one of only two such sites doing such top-secret work in the U.S.

Los Alamos has a checkered security history, having suffered a sequence of embarrassing breaches in recent years. In August of this year, it was revealed that the lab had released sensitive nuclear research data by email, while in 2006 a drug dealer was allegedly found with a USB stick containing data on nuclear weapons tests.

"This appears to be a new low, even drug dealers can get classified information out of Los Alamos," Danielle Brian, executive director of the Project On Government Oversight (POGO), said at the time. Two years earlier, the lab was accused of having lost hard disks

The possibility that the latest attacks were the work of fraudsters will be seen by some as optimistic - less positive would be the possibility of a rival government having been involved. Given the apparently coordinated nature of events, speculation will inevitably point to this scenario, with the data theft a cover motivation for more serious incursions.

View at TechPowerUp Main Site
 

kwchang007

New Member
Joined
Jan 27, 2007
Messages
3,962 (0.61/day)
Location
Severn, MD, USA.
Processor C2D T7200@2 ghz vcore: .9875
Motherboard generic laptop board
Cooling fan control and antec notebook cooler
Memory 2 GBs@ 533 mhz ddr2
Video Card(s) x1400 mobile, overclocked: 526mhz core/ 882mhz ddr
Storage 120 GB@ 5400 rpm fujitsu
Display(s) 15.4" 1440x900
Audio Device(s) integrated
Software vista 32 bit home premium
Ouch, not good news for these labs.
 
Joined
Oct 19, 2007
Messages
8,261 (1.32/day)
Processor Intel i9 9900K @5GHz w/ Corsair H150i Pro CPU AiO w/Corsair HD120 RBG fan
Motherboard Asus Z390 Maximus XI Code
Cooling 6x120mm Corsair HD120 RBG fans
Memory Corsair Vengeance RBG 2x8GB 3600MHz
Video Card(s) Asus RTX 3080Ti STRIX OC
Storage Samsung 970 EVO Plus 500GB , 970 EVO 1TB, Samsung 850 EVO 1TB SSD, 10TB Synology DS1621+ RAID5
Display(s) Corsair Xeneon 32" 32UHD144 4K
Case Corsair 570x RBG Tempered Glass
Audio Device(s) Onboard / Corsair Virtuoso XT Wireless RGB
Power Supply Corsair HX850w Platinum Series
Mouse Logitech G604s
Keyboard Corsair K70 Rapidfire
Software Windows 11 x64 Professional
Benchmark Scores Firestrike - 23520 Heaven - 3670
Reminds me of the movie Live Free or Die Hard.
 

kwchang007

New Member
Joined
Jan 27, 2007
Messages
3,962 (0.61/day)
Location
Severn, MD, USA.
Processor C2D T7200@2 ghz vcore: .9875
Motherboard generic laptop board
Cooling fan control and antec notebook cooler
Memory 2 GBs@ 533 mhz ddr2
Video Card(s) x1400 mobile, overclocked: 526mhz core/ 882mhz ddr
Storage 120 GB@ 5400 rpm fujitsu
Display(s) 15.4" 1440x900
Audio Device(s) integrated
Software vista 32 bit home premium

Woah Mama!

New Member
Joined
Oct 1, 2007
Messages
497 (0.08/day)
Location
Australia
Processor AMD Athlon X2 3800+ Toledo (2.0ghz for now) (Looking for Opty)
Motherboard DFI LanParty UT NF4 Ultra-D
Cooling Zalman CNPS9700 NT + 6 120mm Zalman ZM-F3GL case fans through Zalman ZM-MFC1
Memory 2GB OCZ Platinum DDR400 + 2 GB for spare (Or Vista)!
Video Card(s) PNY 8800GTS 320MB
Storage 2x Western Digital 320GB 16MB Cache SATAII Raid 0
Display(s) 17" Philips 107S6E CRT (226BW early `08)
Case CoolerMaster Centurion 534 with upcoming modifications
Audio Device(s) SoundBlaster Audigy
Power Supply Thermaltake TR2 550W (Soon to be ToughPower 750W)
Software Windows XP SP2

FatForester

New Member
Joined
Mar 14, 2007
Messages
970 (0.15/day)
Processor Intel e2180 2.0ghz @ 2.8ghz w/ stock volts
Motherboard ASUS P5K-e Wifi-AP
Cooling Zalman 9500 w/ AS5
Memory G.Skill Black PI's DDR2 @ 896MHz 4-4-4-12 1.9v
Video Card(s) EVGA 8800GT w/ Zalman VF-900
Storage 2x Crucial C300 64GB, Samsung F3 2TB & 1TB, F1 1TB & 750GB
Display(s) ASUS VW246H 24" 16:9
Case Ultra / Chieftec Black Tower
Audio Device(s) X-fi XtremeMusic -> Z-5300e's
Power Supply PCP&C 610 Silencer
Software Windows 7 x64
Crap! I was gonna work at ORNL next summer...
 
Joined
May 9, 2006
Messages
2,116 (0.31/day)
System Name Not named
Processor Intel 8700k @ 5Ghz
Motherboard Asus ROG STRIX Z370-E Gaming
Cooling DeepCool Assassin II
Memory 16GB DDR4 Corsair LPX 3000mhz CL15
Video Card(s) Zotac 1080 Ti AMP EXTREME
Storage Samsung 960 PRO 512GB
Display(s) 24" Dell IPS 1920x1200
Case Fractal Design R5
Power Supply Corsair AX760 Watt Fully Modular
Its good to know US research is finding its way into the right hands (drug dealers).
 
Joined
Oct 19, 2007
Messages
8,261 (1.32/day)
Processor Intel i9 9900K @5GHz w/ Corsair H150i Pro CPU AiO w/Corsair HD120 RBG fan
Motherboard Asus Z390 Maximus XI Code
Cooling 6x120mm Corsair HD120 RBG fans
Memory Corsair Vengeance RBG 2x8GB 3600MHz
Video Card(s) Asus RTX 3080Ti STRIX OC
Storage Samsung 970 EVO Plus 500GB , 970 EVO 1TB, Samsung 850 EVO 1TB SSD, 10TB Synology DS1621+ RAID5
Display(s) Corsair Xeneon 32" 32UHD144 4K
Case Corsair 570x RBG Tempered Glass
Audio Device(s) Onboard / Corsair Virtuoso XT Wireless RGB
Power Supply Corsair HX850w Platinum Series
Mouse Logitech G604s
Keyboard Corsair K70 Rapidfire
Software Windows 11 x64 Professional
Benchmark Scores Firestrike - 23520 Heaven - 3670

panchoman

Sold my stars!
Joined
Jul 16, 2007
Messages
9,595 (1.51/day)
Processor Amd Athlon X2 4600+ Windsor(90nm) EE(65W) @2.9-3.0 @1.45
Motherboard Biostar Tforce [Nvidia] 550
Cooling Thermaltake Blue Orb-- bunch of other fans here and there....
Memory 2 gigs (2x1gb) of patriot ddr2 800 @ 4-4-4-12-2t
Video Card(s) Sapphire X1950pro Pci-E x16 @stock@stock on stock
Storage Seagate 7200.11 250gb Drive, WD raptors (30/40) in Raid 0
Display(s) ANCIENT 15" sony lcd, bought it when it was like 500 bucks
Case Apevia X-plorer blue/black
Audio Device(s) Onboard- Why get an sound card when you can hum??
Power Supply Antec NeoHe 550-manufactured by seasonic -replacement to the discontinued smart power series
Software Windows XP pro SP2 -- vista is still crap
wonder whats gonna be next
 

Mr.President

New Member
Joined
Dec 2, 2007
Messages
85 (0.01/day)
Processor Inter C2D E6750 air cooled(tepms* 28'c idle 47'c load)
Motherboard ASUS P5Q P45 Express + ICH10R
Cooling 2x120mm Aerocool Silver lightning+xtreme Tubine 3x120 C.M Fans
Memory Corsair 2GB dual channel PC-5400
Video Card(s) BFG 8500GT (GTX 260 maxcore comingup)
Storage seagate 320GB(7200.10 sata ll)& 40GB WD-250gb(sata ll)&120gb
Display(s) View Sonice VX2262WM 22" LCD
Case Cooler Master CM-690 :D
Audio Device(s) Realtek 8.1ch HD sound
Power Supply Coolermaster 600watts xtreme power DUO
Software Xp Sp3
lol @ drug dealers :p
 

hat

Enthusiast
Joined
Nov 20, 2006
Messages
21,747 (3.29/day)
Location
Ohio
System Name Starlifter :: Dragonfly
Processor i7 2600k 4.4GHz :: i5 10400
Motherboard ASUS P8P67 Pro :: ASUS Prime H570-Plus
Cooling Cryorig M9 :: Stock
Memory 4x4GB DDR3 2133 :: 2x8GB DDR4 2400
Video Card(s) PNY GTX1070 :: Integrated UHD 630
Storage Crucial MX500 1TB, 2x1TB Seagate RAID 0 :: Mushkin Enhanced 60GB SSD, 3x4TB Seagate HDD RAID5
Display(s) Onn 165hz 1080p :: Acer 1080p
Case Antec SOHO 1030B :: Old White Full Tower
Audio Device(s) Creative X-Fi Titanium Fatal1ty Pro - Bose Companion 2 Series III :: None
Power Supply FSP Hydro GE 550w :: EVGA Supernova 550
Software Windows 10 Pro - Plex Server on Dragonfly
Benchmark Scores >9000
Oh dead god... nuclear weapons research...
 

kwchang007

New Member
Joined
Jan 27, 2007
Messages
3,962 (0.61/day)
Location
Severn, MD, USA.
Processor C2D T7200@2 ghz vcore: .9875
Motherboard generic laptop board
Cooling fan control and antec notebook cooler
Memory 2 GBs@ 533 mhz ddr2
Video Card(s) x1400 mobile, overclocked: 526mhz core/ 882mhz ddr
Storage 120 GB@ 5400 rpm fujitsu
Display(s) 15.4" 1440x900
Audio Device(s) integrated
Software vista 32 bit home premium
Joined
Jun 20, 2007
Messages
3,942 (0.62/day)
System Name Widow
Processor Ryzen 7600x
Motherboard AsRock B650 HDVM.2
Cooling CPU : Corsair Hydro XC7 }{ GPU: EK FC 1080 via Magicool 360 III PRO > Photon 170 (D5)
Memory 32GB Gskill Flare X5
Video Card(s) GTX 1080 TI
Storage Samsung 9series NVM 2TB and Rust
Display(s) Predator X34P/Tempest X270OC @ 120hz / LG W3000h
Case Fractal Define S [Antec Skeleton hanging in hall of fame]
Audio Device(s) Asus Xonar Xense with AKG K612 cans on Monacor SA-100
Power Supply Seasonic X-850
Mouse Razer Naga 2014
Software Windows 11 Pro
Benchmark Scores FFXIV ARR Benchmark 12,883 on i7 2600k 15,098 on AM5 7600x

kwchang007

New Member
Joined
Jan 27, 2007
Messages
3,962 (0.61/day)
Location
Severn, MD, USA.
Processor C2D T7200@2 ghz vcore: .9875
Motherboard generic laptop board
Cooling fan control and antec notebook cooler
Memory 2 GBs@ 533 mhz ddr2
Video Card(s) x1400 mobile, overclocked: 526mhz core/ 882mhz ddr
Storage 120 GB@ 5400 rpm fujitsu
Display(s) 15.4" 1440x900
Audio Device(s) integrated
Software vista 32 bit home premium
Not good news for the hackers either. They'll find them, and then it's butt-seks time!

That's the hope. But I doubt they can find all of them.
 

imperialreign

New Member
Joined
Jul 19, 2007
Messages
7,043 (1.11/day)
Location
Sector ZZ₉ Plural Z Alpha
System Name УльтраФиолет
Processor Intel Kentsfield Q9650 @ 3.8GHz (4.2GHz highest achieved)
Motherboard ASUS P5E3 Deluxe/WiFi; X38 NSB, ICH9R SSB
Cooling Delta V3 block, XPSC res, 120x3 rad, ST 1/2" pump - 10 fans, SYSTRIN HDD cooler, Antec HDD cooler
Memory Dual channel 8GB OCZ Platinum DDR3 @ 1800MHz @ 7-7-7-20 1T
Video Card(s) Quadfire: (2) Sapphire HD5970
Storage (2) WD VelociRaptor 300GB SATA-300; WD 320GB SATA-300; WD 200GB UATA + WD 160GB UATA
Display(s) Samsung Syncmaster T240 24" (16:10)
Case Cooler Master Stacker 830
Audio Device(s) Creative X-Fi Titanium Fatal1ty Pro PCI-E x1
Power Supply Kingwin Mach1 1200W modular
Software Windows XP Home SP3; Vista Ultimate x64 SP2
Benchmark Scores 3m06: 20270 here: http://hwbot.org/user.do?userId=12313
reminds me of a phrase:


HACK THE PLANET!!


:D
 
Joined
Aug 12, 2006
Messages
3,278 (0.49/day)
Location
UK-small Village in a Valley Near Newcastle
Processor I9 9900KS @ 5.3Ghz
Motherboard Gagabyte z390 Aorus Ultra
Cooling Nexxxos Nova 1080 + 360 rad
Memory 32Gb Crucial Balliastix RGB 4.4GHz
Video Card(s) MSI Gaming X Trio RTX 3090 (Bios and Shunt Modded) 2.17GHz @ 38C
Storage NVME / SSD RAID arrays
Display(s) 38" LG 38GN950-B, 27" BENQ XL2730Z 144hz 1440p, Samsung 27" 3D 1440p
Case Thermaltake Core series
Power Supply 1.6Kw Silverstone
Mouse Roccat Kone EMP
Keyboard Corsair Viper Mechanical
Software Windows 10 Pro
oh noes... now common thugs will be popping outa thin air in their newly stolen nano-suits :(
 
Joined
Aug 10, 2006
Messages
4,413 (0.66/day)
Processor Intel Core i7-7700K
Motherboard ASUS ROG Strix Z270E Gaming
Cooling Arctic Cooling Freezer i11
Memory 4x 8GB DDR4 Corsair Vengeance LPX @ 2133MHz
Video Card(s) 2x NVIDIA GTX 1080 Ti FEs
Storage 512GB SSD, 2x2TB HDD
Display(s) AOC U2879VF, AOC G2260VWQ6
Case Corsair 750D Airflow Edition
Power Supply EVGA Supernova 850G
Software Windows 10 x64 Pro
WTF? Why do the thieves get nano-suits? I'm much more deserving of one.
 

Rambotnic

New Member
Joined
Jul 29, 2005
Messages
84 (0.01/day)
Location
In the middle of nowhere---Estonia
System Name Human
Processor Brain
Cooling Water
Memory Sucks
Video Card(s) Eyes
Storage Working
Case Skeleton
Audio Device(s) Quiet
Benchmark Scores Highschool certificate
Joined
Jun 3, 2006
Messages
1,328 (0.20/day)
Location
London
Not quite that severe of a breach.

dailytech said:


Two labs of America's top scientists have fallen for the oldest trick in the hackers' book

DailyTech featured a blog yesterday on how the media frequently reports on so called "hacks" with little understanding of what happened, participating in a irresponsible brand of journalism that borders on alarmism. The problem is exacerbated in that people really do fall victim to Internet scams, even rather smart ones, which reporters dubiously dub "hacks."

One such report featured on ABC News concluded that two nuclear labs had been "hacked." The true story is a bit more entertaining and the reveals that there is no threat to the country's nuclear safety. Real threats such as concerted "hacks" conducted by the Chinese against the U.S. government are certainly a concern, but the only thing dangerous about the compromise at these labs is the stupidity of a few scientists and workers at the plants.

The Oak Ridge National Laboratory (ORNL) in Tennessee and Los Alamos National Lab in New Mexico have made a habit of collecting the social security numbers, names, and birth dates of scientists who visit the plants. The information is put into a database, which reads like a who's who of America's top scientists.

Unfortunately, nobody thought such a practice might be a bit insecure. Starting October 29, workers at the labs began receiving phishing emails, which followed a traditional attack pattern of containing malicious Trojan-containing attachments.

There is no evidence that the attacks were specifically geared at the lab. If the attacks were just a general Internet attack, those responsible might have been excited at the big fish they caught. The two labs both have reported that the phishing emails gained access to their system, which indicates at least two employees -- one at each plant -- were foolish enough to click the attachment and commence the damage. The result was that the database with the scientists' information was compromised.

The phishers gained access to the records of all visitors at the plant between 1999 and 2004.

Don't blame the news networks solely for sensationalizing the attack and making it sound like a sophisticated assault. Leaders at the labs have gone on record trying to fudge the facts in statements, making the attacks sound more complex than they really are and icing over that the attacks only succeeded due to employee failures.

For example, ORNL director Thom Mason stated that the attacks were, "coordinated attempt to gain access to computer networks at numerous laboratories and other institutions across the country," and continued, "Because of the sensitive nature of this event, the laboratory will be unable for some period to discuss further details until we better understand the full nature of this attack."

Los Alamos has been more silent about what appears to prove the old adage that the greatest hole in security on the average computer network is the network's users.

In 2006 Los Alamos fell victim to social engineering and phishing when its emails were stolen and ended up on the USB stick of a drug dealer found in a police raid. The emails contained data of simulated nuclear weapons tests considered sensitive.

At the time executive director of the Project On Government Oversight (POGO), Danielle Brian blasted Los Alamos for their lax security stating, "This appears to be a new low, even drug dealers can get classified information out of Los Alamos."

Expect more pressure for ORNL and LANL as the smoke of sensationalism begins to blow away, revealing atrocious security due to user stupidity. Looks like some of America's top minds have just fallen for the one of the oldest tricks in the hackers' book.
 
Joined
Mar 28, 2007
Messages
2,490 (0.38/day)
Location
Your house.
System Name Jupiter-2
Processor Intel i3-6100
Motherboard H170I-PLUS D3
Cooling Stock
Memory 8GB Mushkin DDR3L-1600
Video Card(s) EVGA GTX 1050ti
Storage 512GB Corsair SSD
Display(s) BENQ 24in
Case Lian Li PC-Q01B Mini ITX
Audio Device(s) Onboard
Power Supply Corsair 450W
Mouse Logitech Trackball
Keyboard Custom bamboo job
Software Win 10 Pro
Benchmark Scores Finished Super PI on legendary mode in only 13 hours.
The biggest defense budget in the world, yet these jokers can't figure out how to properly isolate a database so that it's not available to the outside world. Great.

"Phishing emails with malicious attachments?" Why are they allowing emails to even have attachments at a facility like this? I'm not just second-guessing here, either -- this is just plain stupid.
 

hacker111

New Member
Joined
Nov 6, 2007
Messages
332 (0.05/day)
Location
MA United States
WOW I thought the military would be harder to bypass than that...That seems to easy...:nutkick:
 
Top