this post was submitted on 08 Mar 2024
333 points (97.4% liked)
Europe
8324 readers
1 users here now
News/Interesting Stories/Beautiful Pictures from Europe ๐ช๐บ
(Current banner: Thunder mountain, Germany, ๐ฉ๐ช ) Feel free to post submissions for banner pictures
Rules
(This list is obviously incomplete, but it will get expanded when necessary)
- Be nice to each other (e.g. No direct insults against each other);
- No racism, antisemitism, dehumanisation of minorities or glorification of National Socialism allowed;
- No posts linking to mis-information funded by foreign states or billionaires.
Also check out [email protected]
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
That is an expensive way to lose your job!
"Intelligence" services cost taxpayers billions a year, so the billion dollar question is why is it possible to dial in to "official" military communications over insecure channels at all?
Why doesn't the government run their own signal or matrix infra? Why are they paying Cisco, and introducing the numerous attack vectors of a proprietary optionally-encrypted service?
The threat of surveillance capitalism isn't just in the dragnet surveillance of the population. It's in the profiteering of "partnerships" between private and public โ the drive of corrupt and incompetent political and military leadership to direct funds to sub-optimal proprietary services and protocols, instead of leveraging public funding to contribute to open-source and make hardened systems ubiquitous.
The funny thing is, that the Bundeswehr actually has a communications platform based on Matrix: bwMessenger goes live for Bundeswehr, element.io
Why they're not using it? Who knows...
That's what I'm getting at. This ultimately isn't the fault of some technobozo who dialled in from hotel wifi. If the system were fit for purpose, technobozo could dial in over any network.
The is the fault of German politicians, military, and "intelligence". This type of compromise should not exist as a matter of circumstance. It should only be possible when an end users device is directly compromised.
Probably the client runs poorly on the cutting edge Nokia 3310s those generals use
We are talking about the person/department that has ensured that they run an especially secure, certified, version of webex losing their job right?
As much as I'd like to think that senior military people have some basic awareness about security, this is really a tool that was considered secure by the organisation. Sounds like a big gaping whole letting dialin enabled for anyone to use.
Vut it shouldnt even happen. They were in Singapore at the time that, they had to join in remotely. There is a whole department responsible for running the infrastructure and make sure its secure, this is, hardly the end users fault.
Shit they probably could have just asked the US to use the local SCIF. It's not like we don't already know the information.
Not even. A Pringles can and some wire.