|
|
|
|
|
|
by arca_vorago
3230 days ago
|
|
|
>pretty well respected company Not well respected, especially after their multiple past fuckups. >fairly random set of unrelated things VIPS report, relevant donation information of crowdstrike affiliated persons, a report from a third-party who crowdstrike allowed to look at data... not unrelated at all. A start for transparency to relieve skepticism would be to release the data that shows the C&C ip's match past Russian affiliated attacks. That's what it boils down to, Crowdstrike claims that those ip's match a past or known group of Russian pivot servers, but haven't offered the data to verify this. I have training in computer/network forensics. Do you? |
|
|
>Not well respected
Did you criticize Crowdstike before the 2016 election? Because they're very highly regarded.
>You are taking crowdstrike at their word.
You don't have to trust Crowdstrike, as there are other organizations that did analysis. Most of my links were not from Crowdstrike.
The analyses do not rely solely on C&C IPs, and the fact that you keep harking on that makes me think you haven't read those links. There's lots of TTP and malware analysis.
>that's their defense for not handing over the servers/drives.
It is extremely common for groups to share imaged versions of a computer.