←back to thread

Foreign hackers breached a US nuclear weapons plant via SharePoint flaws

(www.csoonline.com)
433 points zdw | 1 comments | 21 Oct 25 15:51 UTC | HN request time: 0s | source
Show context
zelphirkalt ◴[21 Oct 25 18:16 UTC] No.45659480[source]
Hahaha, how stupid must anyone be to deploy SharePoint anywhere near anything of national security relevance! How can it still be a thing, that anyone entrusted with such sensitive matter dates to even touch MS products of the kind of SharePoint? That includes the complete MS Office 365 disaster suite, MS Teams and Edge.

Sounds like they need to seriously redesign their security policies.

replies(4): >>45659991 #>>45660466 #>>45660486 #>>45660738 #
jahewson ◴[21 Oct 25 19:46 UTC] No.45660738[source]
What would you recommend instead?
replies(1): >>45661065 #
baobun ◴[21 Oct 25 20:13 UTC] No.45661065[source]
For security-critical or sensitive situations, auditability should be a requirement. That implies access to source code and capabilty to build it.

Decisions like these need to be done from first principles. SharePoint shouldn't even have been a contender here if looked at seriously. Do your own homework.

replies(3): >>45661491 #>>45664033 #>>45665985 #
Havoc ◴[22 Oct 25 01:42 UTC] No.45664033[source]
Think you answered just about everything except the question asked
replies(1): >>45665065 #
rcbdev ◴[22 Oct 25 05:04 UTC] No.45665065{3}[source]
I think this guy wants OpenBSD running on a POWER-based Mainframe at every governmental organization.
replies(1): >>45672713 #
1. saltcured ◴[22 Oct 25 17:52 UTC] No.45672713{4}[source]
Well, if you can't manage text emails with BSD mailx from the CLI, you probably shouldn't be working on nuclear weapons in the first place...