I really hate that the exaggerated future of Watchdogs is becoming reality but not the exaggerated group of highly experienced black hat hackers doing crazy post compromise shenanigans that would make national news.
The problem is the same reason why a Robin Hood type of character already doesn’t really exist in modern history. There will always be thousands of highly skilled people in defense of the very system you wish to see dissolved.
You would need the resources of at least a highly advanced APT, which often means you’re funded by a nation state which has very specific compromise goals.
Everyone else falls into cybercrime, which is much less sophisticated and is almost always after money.
Hence why most highly publicized attacks end in bitcoin ransoms.
EDIT:
Also at the risk of giving too much info about my career, big banks are absolutely notorious for having extremely tight security. Even if you managed to jump over the custom EDR, pivot your way through a massive amount of proprietary systems, and land in a suitable position to carry out the motherload of a supply chain attack, the bank could just halt their infrastructure and manually nullify whatever transactions they want with full backing from the government.
The closest I ever hypothetically witnessed was being able to manipulate the loan data for a small credit union. And emphasis on hypothetical, a real attacker would have needed some hard internal access to a heavily restricted subnet.
The only way I can see this successfully happening is like if the Chief Network Architect of say Chase also happened to be a highly competent hacker who uses his decades of experience to formulate a plan with an APT over the course of several years.
I really hate that the exaggerated future of Watchdogs is becoming reality but not the exaggerated group of highly experienced black hat hackers doing crazy post compromise shenanigans that would make national news.
The problem is the same reason why a Robin Hood type of character already doesn’t really exist in modern history.
As someone who has also been all up inside bank infrastructure I can agree with the rest of your post, the complexity to access some of those proprietary boxes would almost not be worth it, especially with things like offsite backups.
Yeah I know about them, and they were actually the inspiration for Dedsec in Watchdogs, but they shuttered after the FBI caught one and flipped him real quick lol.
I could be wrong, but I don’t think we ever really saw a group like LulzSec again with the same level of notoriety and success.
That’s fair, as you said most are smashed these days by capitalism and thus focus on ransomware.
The thing is if a group wanted to remain in operation, being public is against their own interest. Back then it was easier to get away with things. Cloudflare wasn’t as advanced/heavily utilized, load balancers weren’t considered and lots of old architecture riddled with vulns made things fun. Web security was also extremely poor via xss.
I really hate that the exaggerated future of Watchdogs is becoming reality but not the exaggerated group of highly experienced black hat hackers doing crazy post compromise shenanigans that would make national news.
The problem is the same reason why a Robin Hood type of character already doesn’t really exist in modern history. There will always be thousands of highly skilled people in defense of the very system you wish to see dissolved.
You would need the resources of at least a highly advanced APT, which often means you’re funded by a nation state which has very specific compromise goals.
Everyone else falls into cybercrime, which is much less sophisticated and is almost always after money.
Hence why most highly publicized attacks end in bitcoin ransoms.
EDIT:
Also at the risk of giving too much info about my career, big banks are absolutely notorious for having extremely tight security. Even if you managed to jump over the custom EDR, pivot your way through a massive amount of proprietary systems, and land in a suitable position to carry out the motherload of a supply chain attack, the bank could just halt their infrastructure and manually nullify whatever transactions they want with full backing from the government.
The closest I ever hypothetically witnessed was being able to manipulate the loan data for a small credit union. And emphasis on hypothetical, a real attacker would have needed some hard internal access to a heavily restricted subnet.
The only way I can see this successfully happening is like if the Chief Network Architect of say Chase also happened to be a highly competent hacker who uses his decades of experience to formulate a plan with an APT over the course of several years.
Huh? https://en.wikipedia.org/wiki/LulzSec
As someone who has also been all up inside bank infrastructure I can agree with the rest of your post, the complexity to access some of those proprietary boxes would almost not be worth it, especially with things like offsite backups.
Yeah I know about them, and they were actually the inspiration for Dedsec in Watchdogs, but they shuttered after the FBI caught one and flipped him real quick lol.
I could be wrong, but I don’t think we ever really saw a group like LulzSec again with the same level of notoriety and success.
Fuck Sabu, all my homies hate Sabu
That’s fair, as you said most are smashed these days by capitalism and thus focus on ransomware.
The thing is if a group wanted to remain in operation, being public is against their own interest. Back then it was easier to get away with things. Cloudflare wasn’t as advanced/heavily utilized, load balancers weren’t considered and lots of old architecture riddled with vulns made things fun. Web security was also extremely poor via xss.