From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-ej1-x636.google.com (mail-ej1-x636.google.com [IPv6:2a00:1450:4864:20::636]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by lists.bufferbloat.net (Postfix) with ESMTPS id A0A903B2A4 for ; Fri, 23 Feb 2024 14:32:26 -0500 (EST) Received: by mail-ej1-x636.google.com with SMTP id a640c23a62f3a-a3fd9063261so102332066b.1 for ; Fri, 23 Feb 2024 11:32:26 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1708716745; x=1709321545; darn=lists.bufferbloat.net; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=CJEhUB6aHUwqFEtboW3VRIQjT7LYmt6/Vq26XDNIvWA=; b=VDDl2RxBC4AXFtboDOKf7NduyzfOEEdFxuJUpZJnpl4WbmxMx50ovShqMVQoLmAl3m ylWVAs9fBW/5g6VfEveh35Hf0tV0sfCYqWTnoxI3nXDnDcW7AFWo1ju3XcqFlFfjkYp1 JWP6hkkyZDoAduwFJ6fPMkWIY5AX/jh0vRzS4jPj6PvEys9jjaVD4wKOLW72dvDDFiRh Nexd2l5y3O40l1DQKbs3eGcKTECfmd5y5uC6wY6W0aKMMIYFtyUjoWkj4qhNOUHo0jeV UqfPA60rFhjtW2JbOPWRu/NXaHBweEANhHDIzsOv5gh8Fijua/HR6VjZo9aCS7R74Dl/ Blqg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1708716745; x=1709321545; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=CJEhUB6aHUwqFEtboW3VRIQjT7LYmt6/Vq26XDNIvWA=; b=BNQhTzHPIX1jTB9gDQSAmH74zpmfGgSIQU7K9c0A2J/GUaLlbnz3hA40/rQaf+GTB8 GbZl26LSoCpZVLmsOwO08/ERacFDUsy97sD1da/eOHvFsDiOZby8DNxv8lsy6K9jyjhF 7u0UbIR3s2/sziwHhLzud8ZFHOVKc+KUQQ3U5KSQ9xD6T/BrVkkOFbbJaCIBywUNVUL2 nglwKu0doBFPskt+MWmfxpGY8rjV505RfoBnQRfdJaON6JUQuEkyin5Y269YxkvTkfW6 xQN6vgSlq728dK9he9SjTh4jVoOfYx/PVdMSgrUZah6NXgnSDYXY2LdQAwhiGj2Lw8t+ 1lpg== X-Forwarded-Encrypted: i=1; AJvYcCXQNQyQ0j0Up4vjrnnPd9fGW0UZu5f/OFYGPYesqjyHhtONHFty3doAOVA/0qia7RSAOhSJJ5NDiYZVgyMXbN7jg9pWGFdPAXVyCuEMyw== X-Gm-Message-State: AOJu0Yxx4Tapaw0Ik01p/yxmnpavFw/k6zv/3c2jL94vbNB7rZ9i0s0o uMMQHXbA49jufM0mUubvLzrsVLIbpMUPIVNmw1aQyFKqJxRNXr6zG90EDVSLY+IY3+dbW2PQ4/3 GZ66UeRj9g2NsFWKxJ/UqLxTFTdAtHlLGqUM= X-Google-Smtp-Source: AGHT+IE8tTW6CMPGbaUiL+F5ijekNNErlti50bSXvx5AisVzMEeicTl/SPoPXSnCtrA7EDe9A+hh59ApM15BekDDkLA= X-Received: by 2002:a17:906:ae54:b0:a3f:d67f:233e with SMTP id lf20-20020a170906ae5400b00a3fd67f233emr504733ejb.60.1708716744748; Fri, 23 Feb 2024 11:32:24 -0800 (PST) MIME-Version: 1.0 References: In-Reply-To: From: "David Bray, PhD" Date: Fri, 23 Feb 2024 14:31:47 -0500 Message-ID: To: thejoff@gmail.com, =?UTF-8?Q?Network_Neutrality_is_back=21_Let=C2=B4s_make_the_technical_aspect?= =?UTF-8?Q?s_heard_this_time=21?= Content-Type: multipart/alternative; boundary="00000000000097b2cf0612119e28" Subject: Re: [NNagain] Cellular outage in US hits AT&T, T-Mobile and Verizon users, Downdetector shows + Cyberattacks on hospitals are likely to increase, putting lives at risk, experts warn X-BeenThere: nnagain@lists.bufferbloat.net X-Mailman-Version: 2.1.20 Precedence: list List-Id: =?utf-8?q?Network_Neutrality_is_back!_Let=C2=B4s_make_the_technical_aspects_heard_this_time!?= List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 Feb 2024 19:32:26 -0000 --00000000000097b2cf0612119e28 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Recognizing that AT&T appears to have been an technical issue... UnitedHealth Group on the otherhand is being reported as a cyberattack tied to a nation-state: https://www.msn.com/en-us/news/technology/cyberattack-hits-unitedhealth-gro= up-unit-by-actor-with-suspected-nation-state-ties/ar-BB1iJtnk UnitedHealth Group disclosed Thursday one of its subsidiaries was hit this week by a cyberattack from an actor with a suspected nation-state association. After detecting the incident, Minnetonka-based UnitedHealth said it isolated the impacted information technology systems from other connecting systems in order to contain, assess and remediate the problem. UnitedHealth did not specify what the impacted systems are used for, but Rhode Island-based CVS Health =E2=80=94 one of the nation's largest pharmac= y operators =E2=80=94 said some of its business operations were impacted by t= he network interruption. CVS Health said there was no indication that its systems had been compromised. "We're continuing to fill prescriptions but in certain cases we are not able to process insurance claims, which our business continuity plan is addressing to ensure patients continue to have access to their medications," the company said in a statement to the Star Tribune. In a regulatory filing Thursday, UnitedHealth Group said it learned Wednesday of a "nation-state associated cyber security threat actor" that had gained access to some information technology systems at Change Healthcare, a business unit that's part of the company's OptumInsight division. On Thu, Feb 22, 2024 at 4:38=E2=80=AFPM le berger des photons via Nnagain < nnagain@lists.bufferbloat.net> wrote: > given the plus minus statistics of the american health care system puttin= g > them out of business might save more lives than it takes, except that > they'll just kill those people later. > > On Thu, Feb 22, 2024 at 10:11=E2=80=AFPM Dave Taht via Nnagain < > nnagain@lists.bufferbloat.net> wrote: > >> On Thu, Feb 22, 2024 at 3:52=E2=80=AFPM David Bray, PhD via Nnagain >> wrote: >> > >> > >> https://www.msn.com/en-gb/money/technology/cellular-outage-in-us-hits-at= -t-t-mobile-and-verizon-users-downdetector-shows/ar-BB1iHBMF >> >> I had feared this was the natural outgrowth of the devastating DNS >> KEYTRAP attack that was announced yesterday: >> >> https://www.darkreading.com/cloud-security/keytrap-dns-bug-threatens-wid= espread-internet-outages >> >> But so far the bet on nanog is that "oops, cisco deleted the sim >> database." >> >> I think they are being snarky about "the" sim database. I=C2=B4m pretty >> sure they are just being snarky... >> >> > A cellular outage in the United States was reported by AT&T, T-Mobile, >> Verizon and other network users on Thursday, according to outage trackin= g >> website Downdetector.com. >> > >> > The number of reports of AT&T outages peaked at 31,931 at around 4:30 >> a.m. ET, data from Downdetector, which tracks outages by collating statu= s >> reports from sources including user-submitted errors on its platform, >> showed. >> > >> > More than 800 service outages of U.S. wireless carriers Verizon and >> T-Mobile were also reported on the platform. >> > >> > Verizon, T-Mobile and AT&T did not immediately reply to Reuters' >> requests for comment. >> > >> > And this - I was just on a call where it's clear this is increasing: >> https://www.msn.com/en-us/health/health-news/cyberattacks-on-hospitals-a= re-likely-to-increase-putting-lives-at-risk-experts-warn/ar-BB1ihhll >> > >> > WASHINGTON (AP) =E2=80=94 Cybersecurity experts are warning that hospi= tals >> around the country are at risk for attacks like the one that is cripplin= g >> operations at a premier Midwestern children's hospital, and that the U.S= . >> government is doing too little prevent such breaches. >> > >> > Hospitals in recent years have shifted their use of online technology >> to support everything from telehealth to medical devices to patient >> records. Today, they are a favorite target for internet thieves who hold >> systems' data and networks hostage for hefty ransoms, said John Riggi, t= he >> American Hospital Association=E2=80=99s cybersecurity adviser. >> > >> > -- >> > David Bray, PhD Principal, LeadDoAdapt Ventures, Inc. >> > Loomis Innovation Council Co-Chair & Distinguished Fellow >> > Henry S. Stimson Center, Business Executives for National Security >> > _______________________________________________ >> > Nnagain mailing list >> > Nnagain@lists.bufferbloat.net >> > https://lists.bufferbloat.net/listinfo/nnagain >> >> >> >> -- >> 40 years of net history, a couple songs: >> https://www.youtube.com/watch?v=3DD9RGX6QFm5E >> Dave T=C3=A4ht CSO, LibreQos >> _______________________________________________ >> Nnagain mailing list >> Nnagain@lists.bufferbloat.net >> https://lists.bufferbloat.net/listinfo/nnagain >> > _______________________________________________ > Nnagain mailing list > Nnagain@lists.bufferbloat.net > https://lists.bufferbloat.net/listinfo/nnagain > --00000000000097b2cf0612119e28 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Recognizing that AT&T appears to have been an technica= l issue... UnitedHealth Group on the otherhand is being reported as a cyber= attack tied to a nation-state:

https://www.msn.com/en-us/news/techno= logy/cyberattack-hits-unitedhealth-group-unit-by-actor-with-suspected-natio= n-state-ties/ar-BB1iJtnk

UnitedHealth Group disclosed Thursday one of its subsidiaries was hit this week by a cyberattack from an actor with a suspected nation-state association.

<= p>After detecting the incident, Minnetonka-based UnitedHealth said it isolated=20 the impacted information technology systems from other connecting=20 systems in order to contain, assess and remediate the problem.

UnitedHealth did not specify what the impacted systems are used for, but Rhode=20 Island-based CVS Health =E2=80=94 one of the nation's largest pharmacy = operators =E2=80=94 said some of its business operations were impacted by the networ= k=20 interruption. CVS Health said there was no indication that its systems=20 had been compromised.

"We&#= 39;re continuing to fill prescriptions but in certain cases we are not able=20 to process insurance claims, which our business continuity plan is=20 addressing to ensure patients continue to have access to their=20 medications," the company said in a statement to the Star Tribune.

In a regulatory filing Thursday, UnitedHealth Group said it learned=20 Wednesday of a "nation-state associated cyber security threat actor&qu= ot;=20 that had gained access to some information technology systems at Change=20 Healthcare, a business unit that's part of the company's OptumInsig= ht=20 division.


= On Thu, Feb 22, 2024 at 4:38=E2=80=AFPM le berger des photons via Nnagain &= lt;nnagain@lists.bufferblo= at.net> wrote:
given the plus minus statistics of the american heal= th care system putting them out of business might save more lives than it t= akes, except that they'll just kill those people later.

On Thu, Feb 22, = 2024 at 10:11=E2=80=AFPM Dave Taht via Nnagain <nnagain@lists.bufferbloat.net> wrote:
On = Thu, Feb 22, 2024 at 3:52=E2=80=AFPM David Bray, PhD via Nnagain
<nnag= ain@lists.bufferbloat.net> wrote:
>
> https://www.msn.com/en-gb/money/techno= logy/cellular-outage-in-us-hits-at-t-t-mobile-and-verizon-users-downdetecto= r-shows/ar-BB1iHBMF

I had feared this was the natural outgrowth of the devastating DNS
KEYTRAP attack that was announced yesterday:
http= s://www.darkreading.com/cloud-security/keytrap-dns-bug-threatens-widespread= -internet-outages

But so far the bet on nanog is that "oops, cisco deleted the sim datab= ase."

I think they are being snarky about "the" sim database. I=C2=B4m = pretty
sure they are just being snarky...

> A cellular outage in the United States was reported by AT&T, T-Mob= ile, Verizon and other network users on Thursday, according to outage track= ing website Downdetector.com.
>
> The number of reports of AT&T outages peaked at 31,931 at around 4= :30 a.m. ET, data from Downdetector, which tracks outages by collating stat= us reports from sources including user-submitted errors on its platform, sh= owed.
>
> More than 800 service outages of U.S. wireless carriers Verizon and T-= Mobile were also reported on the platform.
>
> Verizon, T-Mobile and AT&T did not immediately reply to Reuters= 9; requests for comment.
>
> And this -=C2=A0 I was just on a call where it's clear this is inc= reasing: https://www.msn.com/en-us/= health/health-news/cyberattacks-on-hospitals-are-likely-to-increase-putting= -lives-at-risk-experts-warn/ar-BB1ihhll
>
> WASHINGTON (AP) =E2=80=94 Cybersecurity experts are warning that hospi= tals around the country are at risk for attacks like the one that is crippl= ing operations at a premier Midwestern children's hospital, and that th= e U.S. government is doing too little prevent such breaches.
>
> Hospitals in recent years have shifted their use of online technology = to support everything from telehealth to medical devices to patient records= . Today, they are a favorite target for internet thieves who hold systems&#= 39; data and networks hostage for hefty ransoms, said John Riggi, the Ameri= can Hospital Association=E2=80=99s cybersecurity adviser.
>
> --
> David Bray, PhD Principal, LeadDoAdapt Ventures, Inc.
> Loomis Innovation Council Co-Chair & Distinguished Fellow
> Henry S. Stimson Center, Business Executives for National Security
> _______________________________________________
> Nnagain mailing list
> Nna= gain@lists.bufferbloat.net
> https://lists.bufferbloat.net/listinfo/nnagain



--
40 years of net history, a couple songs:
https://www.youtube.com/watch?v=3DD9RGX6QFm5E
Dave T=C3=A4ht CSO, LibreQos
_______________________________________________
Nnagain mailing list
Nnagain@= lists.bufferbloat.net
https://lists.bufferbloat.net/listinfo/nnagain
_______________________________________________
Nnagain mailing list
Nnagain@= lists.bufferbloat.net
https://lists.bufferbloat.net/listinfo/nnagain
--00000000000097b2cf0612119e28--