This feels funny to read, for some reasons.
Where's the technical ignorance?
It's not saying anything technically untrue, and emphasising the aspects it does arguably makes sense within the context of what the concept is being brought up for, but it comes across as an odd framing for people familiar with the concept in general (using containers for standardization/scaling/etc.)
We use them for standardization and scaling exactly because they are opaque. I personally believe the explanation shows a deep understanding of the technology, but also a good grasp of what matters politically.
I think it could potentially be improved with a more general/typical definition first ("Containers are self-contained environments that bundle all dependencies a piece of software needs to run and are commonly used to streamline deployment across different machines, but can also ...")
They intentionally turned off logging. Only attackers and criminals do that.
Then of course they are surprised nobody takes them seriously anymore
The media companies ate so well and grew so fat covering the rise of fascism they didn't think what would happen when it finally gained power.
So even if 2/3rds of America decide this is too much, they aren’t sufficient to shift what is covered in the idea economy and the political economy.
I just found out there’s even a book that did the ground work to make this case, in 2018. (Network propaganda.)
This is the prime reason I recommend all democracies look beyond their current leaders and grapple with the structural issues caused by capture of the media ecosystem.
Do note - this isn’t an issue of bias. There’s a protectionist economy on the right, where reality is whatever storyline they need to share.
The same Pentagon, which is current run by this person? https://apnews.com/article/hegseth-signal-chat-houthis-attac...
As others have said but I can't reply to, it's because the Pentagon is run by a traitor and they stop any investigations under threat of dismissal.
But I hope people are keeping notes and will come forward, so that all of these people will face the consequences.
Anywho, this whole "opaque" or "untrusted" code running in a VM is the same lingo that big corporates use to gatekeep newer technologies that bypass traditional processes. E.g. "oh sorry you can't test locally because you need to use our officially licensed and expensive Oracle DB instance. Oh and BTW, you can't use the free container image that Oracle provides free of charge. It's running 'untrusted' code in our network." and endless variations of that.
That's the beautiful thing about democracy, you get exactly the government that you deserve.
Now I think about it, that can also be the terrifying thing about democracy as well, but you get the idea.
You deserve no better, nor any worse, than what you have.
"Now I think about it..." work on that some more going forward. The country is complicated and Democracy has grades. We're getting an F at the moment.
You're just a few steps away from a russian version of democracy if you define it so loosely in the first place
Democracy is about how the people (demos) in a state or other community coexist by negotiating their individual and collective needs and priorities. Reducing it down to "you didn't vote so you don't count", or worse still, "you voted for the losing side so you don't count" is a gross distortion. Its not just about the vote, its what happens after that.
> That's the beautiful thing about democracy, you get exactly the government that you deserve.
This makes no sense. There isn't something out there that renders a singular judgement on what people deserve. There's only us.
* The two-party system dominates the process, and actively excludes 3rd parties. Look into changing requirements for debate participation.
* The Democratic party argued in court that they have no obligation to use a "fair" primary to select candidates. This was in response to a lawsuit from donors claiming the party mislead them by tipping the scales against Bernie Sanders in 2016.
* Gerrymandering continues to enable parties to win large majorities in state legislatures while losing the popular vote at the state level.
* Many of our current troubles have been caused by the Supreme Court, which is not democratically elected.
* The Electoral College and Senate apportionment continue to give more power to voters in low-population states.
No, it wasn't. It was what about half voted for. There was no consensus. Consensus means general agreement, not a small majority.
That they're elected by majority (never mind the indirections) is a key reason why it is important that the executive is not allowed to wield too much power unilaterally.
(And a key reason why the executive in most countries have far less power than a US president...)
Red Team/Blue Team isn't Democracy, its Oligarchy with extra steps - self-evident by the recent actions of an ultra-wealthy elite to shape political decision-making in ways that increase their wealth.
You need only look as far as the inauguration of 47 to be slapped in the face by the audacity of it - flanked by the Railway Barons of Silicon Valley - Elon Musk, Jeff Bezos and Mark Zuckerberg - and bolstered by Tim Cook, Sam Altman, and Bernard Arnault.
> Berulis [...] and his colleagues grew even more alarmed when they noticed nearly two dozen login attempts from a Russian Internet address (83.149.30,186) that presented valid login credentials for a DOGE employee account — one that had been created just minutes earlier. Berulis said those attempts were all blocked thanks to rules in place that prohibit logins from non-U.S. locations.
> “Whoever was attempting to log in was using one of the newly created accounts that were used in the other DOGE related activities and it appeared they had the correct username and password due to the authentication flow only stopping them due to our no-out-of-country logins policy activating,” Berulis wrote. “There were more than 20 such attempts, and what is particularly concerning is that many of these login attempts occurred within 15 minutes of the accounts being created by DOGE engineers.”
Somehow each paragraph reveals something even worse than the last.
> Berulis [...] and the associate CIO were informed that “instructions had come down to drop the US-CERT reporting and investigation and we were directed not to move forward or create an official report.” Berulis said it was at this point he decided to go public with his findings.
In the same way that it's relatively easy to find a hitman on the dark web, it's considerably harder for them to actually not be law enforcement.
You -> Russian IP -> US IP
then you'd get anonymity via the Russian hop but aren't geoblocked due to your final hop being in the US.
If you're blocking non-US IPs, you trpically block at the IP layer, before a login attempt can even begin.
Why allow someone to even log in at all?
Not saying this is a Fortigate or that the federal government didn't change the low effort configuration, but it's certainly not unusual, Fortinet is a huge presence.
Also I see no flagged other comment and some people just downvote downvotecommentors.
Are you aware of the "krasnow" theory?
I see no proof there, but indeed strong indications to seriously look into it.
https://www.reuters.com/world/white-house-seeks-plan-possibl...
He does owe Russia for the email hack and leaks that he publicly requested. Not to mention sticking it to Ukraine after they didn't find/fabricate evidence against the Biden family.
Seems plausible that they could have used that tool when logging in and it happened to bounce off a Russian IP.
Homeland Security and co need to step in, but they're controlled by hostile agents.
If I am testing a login I don't need 20+ failed attempts to know it's not working. Sometimes the simple answer is the correct one. The series of events does not read as someone, whose job has been reported to disable security and demand root access to systems, testing the already in place login system to make sure Russian IPs (specifically) can not log in.
https://krebsonsecurity.com/2025/02/teen-on-musks-doge-team-...
- "“Tesla.Sexy LLC controls dozens of web domains, including at least two Russian-registered domains,” Wired reported. “One of those domains, which is still active, offers a service called Helfie, which is an AI bot for Discord servers targeting the Russian market. While the operation of a Russian website would not violate US sanctions preventing Americans doing business with Russian companies, it could potentially be a factor in a security clearance review.”"
edit: Here's the old HN thread,
https://news.ycombinator.com/item?id=42981756 ("Teen on Musk's DOGE team graduated from 'The Com' (krebsonsecurity.com)" — 1895 comments)
What's interesting here is how these two things are seemingly mixing. At this point I have two pet theories:
- One of the DOGE staffers is a Russian agent: This one I'm putting in the camp of "highly highly unlikely" but still possible given those login attempts from Russia.
- The more likely theory is this is just some braindead attempt to "own the libs". If we look back 6-8 years to when all the Trump Russia stuff came out and turned into a nothingburger. This could be some idea like: "Yo I've got this VM in Russia, let's own the libs and make them thin the Russians are invading again!"
I guess DOGE wanted to write a report how they saw Russian IPs login in but it back fired because the people at NLRB have proof DOGE created the accounts.
EDIT: edited for clarity.
How many scandals we have to endure?
How many evil things need to be done?
How many people need to be unnecessarily fired?
Edit: the parent comment was edited
It’s a matter of identity, he’s their guy and they stick to him through malpractice and treason.
These days I was reading on effective altruism, sbf, ftx debacle and macaskill influence on sbf. It's weird how long it is possible to go to justify someone's actions
"Automobile deaths are bad and numerous, we want to get rid of them with driverless cars, which will kill people in the course of their development, but that's okay because remember we told you about the deaths we will prevent in the future? Therefore we can expend as many lives as we want now because by doing so we will save infinite lives. This is why we must be permitted to operate beta robots on public roads."
The rationale continues on to starship and neuralink. We have to go to Mars to save humanity, therefore you must tolerate starships exploding and destroying the ecosystem over your house. We have to invent this important medical device to save people, therefore we must conduct morally gray research on implanting devices into human brains. The justifications and rationalizations are endless.
Paint me surprised
Isn't that instead to suspect them of a nefarious plan to basically cripple labour law enforcement?
> There were more than 20 such attempts, and what is particularly concerning is that many of these login attempts occurred within 15 minutes of the accounts being created by DOGE engineers.
Is it me or does this sound like someone trying to create a Russia connection here? Why whould Russian intelligence do this so amateurishly? As if they want to get caught. - Cui bono?
Chaos.
no. as if they don't care about being caught.
Further, saying "someone trying to create a Russia connection" sounds rather incredible. The Russia connections have been so absolutely overwhelming at every turn that it's infinitely beyond deniable now.
Russia just had to be a predominately white nation that paid lip service to Christian nationalism and that hilarious show turned them into the US far-right's best pals. It would be nice if we moved beyond pretending this is conspiratorial when it has been in the open and stated in the open repeatedly for years.
[1] DOGE is completely disregarding all security norms -- they think it's an annoying slowdown to not just install whatever they want and to open whatever ports they want, etc -- so the likelihood that vast troves of US data has been exfiltrated by enemy states is approaching 100%.
Everyone knew it was Russia. They were still like "I don't know what you're talking about".
It's all power games.
So they hack their enemy, and then use that to reinforce the false narratives they tell their own people. It's gaslighting at the national level. Russia is as if your emotionally abusive partner was your government. America is becoming the same.
What do they want with NLRB days in the first place? Maybe they have an idea; maybe not. The goal is "we got your data, be worried". Getting caught furthers that.
The use of the nlrb data on the other hand is pretty clear. They had a number of ongoing cases against Musk's companies. Involving Russia is unnecessary to explain the motive.
There are literally dozens of ways to kill a guy, if you must poison him, which are cheaper in every possible way and can be sourced locally by someone with the sort of basic chemistry knowledge an intelligence agency would have on payroll, or from a drunk undergrad.
Which is to say: Russia's MO has at no point been "subtlety", it's been vranyo: a lie they tell where you know they're lying, but are obliged to pretend the other party is not.
I also don't understand why the HN comment section is full of people trying to make excuses or explanations.
What I generally don't get, is that in so many hacks they state "this came from a Russina|Chinese|Iranian IP address", hinting that it came from that country probably.
Can someone in the security industry maybe elaborate if this makes sense or not?
It’s possible to route traffic such that assuming the crypto is perfect, the actual vps is not able to decrypt data.
I also think that it I were a doge member and _wanted_ to leak data to Russia, this is the exact opposite of how I’d go about doing it.
It makes me sick we're even considering "trolling" as a motivation here but, given that we are, it's clear we're at the level of stupid that they would brazenly leak data to Russia. These people are not the best, they are not the brightest, and there's no reason to assume they are playing 4D chess when checkers is working for them.
Also "attribution engineering" is really quite easy and difficult to see through.
Often the purpose of a hack is not to exfiltrate data or sabotage systems but is exactly to direct blame (or sometimes distract/misdirect)
Indeed in vault 5 of Snowden's NSA leaks an "attribution engineering toolkit" was a interesting find. Malware is almost always engineered to throw forensic investigators off the scent.
That all said, I think this incident happening in US gov, in the current climate, without immediate urgent investigation is scandalous and in itself an indicator of deeper and very serious skulduggery.
Having said that. I doubt they checked and who cares where it landed? Its out.
Occam's Razor on doge (and the admin as a whole) points to opportunist amateurs, fraternizing on bravado & loyalty while willing to entertain treason by jumping through hoops for why it can't bother them.
Looking for deeper layers is a distraction. Nostalgic even.
I can empathize.
Though also, who knows, could just be Russian script-kiddies.
(and even if that is what happened, it goes back into "holy shit how did that happen?")
Looking at the IP it might be a mobile connection.
> Russia
> MOW
> Moscow
> Moscow>
> 144700
> 55.7558
> 37.6173
> MegaFon
So, lets say it was one of the contracted private individuals that just happened to be travelling in RU for WHATEVER reason and wanted to test the login decided to just use their hotspot.
Given the level of incompetence here it wouldn't surprise me. But this is what whistleblowers are for, starting investigations. Now we will have to wait month and years of bureaucratic nonsense and legal challenges to every information request required for the investigation to even get started.
It's incredibly frustrating.
Also I haven't played with eSIM cards either and so I'm not sure their behaviour.
Go with the most probable case - one of the shiba-doge amateurs had a virus on his laptop, and after creating an account those credentials were automatically siphoned to some bot farm in the Ruzzian segment, from where a few automated attacks were initiated by a botnet, which were blocked by a regional firewall.
And then, they tried to get it shut off as soon as they found out it existed.
DOGE needed to hide its activities while it collected data for the president so that the private citizens chosen by his associates can run analytics on it offsite and decide which cases to pursue. And Russia has a login because they are friendly to the new era of American interests.
It sounds so stupid, I can’t believe people still support this madness…
Eh. June 2018.
Since we’re spitballing, Why not try giving them the opposite of benefit of doubt, as well? Something like, the administration is clearly compromised by Russia and hired a bunch of low status hackers, and we’re seeing massive bombs being dropped all over our cybersecurity defenses?
Second, if you are the "playing devil's advocate" type, make sure your post contains your real, own, personal opinion. You can't just go say morally objectionable things and brush it off as that.
To be wafer-thin fair to Trump et al, that was started by Bush with Guantanamo.
This is all under the auspices of Trump, which is figuring out how to get away with ‘deporting’ US citizens to El Salvador without due process.
Connected the dots yet? How long do you think until union organizers are getting black-bagged in the middle of the night and disappeared to El Salvador? A month? Less?
> About a decade ago, engineer Cristina Balan called out a safety concern about a design flaw on a Tesla vehicle. Shortly after, Balan says she was forced to resign. Now, she's explaining the leverage Tesla allegedly used to get her signature.
> At Tesla CEO Elon Musk's own request, Balan went straight to the top to solve a problem in 2014, which involved floor mats in the Model S curling near the pedals, affecting braking. But instead of being granted a meeting with Musk, "HR and the legal department had another plan for me," Balan said in an interview with Times Radio over the weekend.
> "They told me that if I'm not resigning on the spot, they will deport my entire team…because the entire interior team was backing me up," said Balan, who is from Romania and has said many of her team members were waiting on green card applications. "And their plan—Tesla's plan and legal department plan—was to convince the entire team and myself to close the internal investigation that we opened in the company to fix a serious safety issue." Notably, Tesla has been among the leading employers of H-1B visa holders, who perform work in specialty occupations.
https://www.chron.com/culture/article/tesla-engineer-deporta...
90% of people who were sent to the gulags survived and came back. This is much, much worse.
https://www.npr.org/sections/thetwo-way/2016/01/23/464129029...
Most Americans on the right live in a protected information market. I am not talking about media bias — both sides have that. The issue is deeper: on the right, the marketplace of ideas has been captured. There's no free trade between ideas, only ‘subsidized’ narratives and ‘tariffs’ on dissent. That’s how Trump — or anyone like him — thrives. Realists, by contrast, get priced out.
This isn’t culture war stuff, this is structural failure. The traditional metaphor of American free speech — the Holmesian "marketplace of ideas" — breaks down when one side captures the market.
There is no competition of ideas when there is no fair fight.
If you’ve got a couple of million bucks to spend, my guess is start buying up and supporting local news channels in the rust belt, and then let them work on whatever they want to work, as long as they can show actual independence.
Or perhaps gift people subscriptions to things like groundnews or something. I don’t know if theres any science that shows it effectively diversifies information consumption of its users.
I don’t know what the napkin math is for a tipping point, but I suspect its not as expensive as litigating an entire administration.
The checks and balances have all been used up and failed.
While we should not elect influential people, we want persuasive, charismatic people in office. Catch 22. But I much prefer presidential candidates I'd never heard of before the campaign cycle began to any celebrity.
But putting someone massively influential in the executive branch, so influential that they've negated the entire legislative branch, has crippled our guard-rails / checks and balances.
Just about every Republican member of congress cares more about what Trump will do if they do not fall in line. To be sure, the overall issue of partisanship does cross the aisle, and has been an issue for decades. But being quite so beholden to the President over constitutional rules and law is largely a new and devastating phenomena.
The door is supposed to be completely open.
Or maybe I'm giving this situation too much credit and we should call a spade by its name.
"Berulis told KrebsOnSecurity he was in the process of filing a support ticket with Microsoft to request more information about the DOGE accounts when his network administrator access was restricted. Now, he’s hoping lawmakers will ask Microsoft to provide more information about what really happened with the accounts."
Why does Microsoft have login and account information for a government institution? I'd prefer a mainframe without Windows or Internet access in the basement.
Undoubtedly Office365. Difficult to run a bureaucracy without Word or Outlook.
(French/German governments investing in a replacement for this kind of reason: https://www.techspot.com/news/107225-france-germany-unveil-d... )
AWS, Azure, Oracle, SUSE (via Rancher) and I am sure GCP all have confidential & classified (C/S/TS) clouds, as well as lower FedRAMP clouds to get that sweet sweet federal money.
Not sure what questions it raises, it has been a thing for decades.
There’s some history of Russian intelligence being rather blatant here (presumably deliberately, as a way of making a statement). Remember Guccifer 2.0? That persona not only used a Russian ip address, but one which was _assigned to the GRU headquarters building_.
How much incentive do they have to continue to commit as much crime as possible in order to keep Trump in power?
Every single story you read about these sorts of things os not only a horrible violation of constitutional rights and the rule of law, it is the creation of an army of incredibly dangerous people who desperately want trump to remain in power and can commit crimes with impunity in order to keep him there.
Labor actions is the most powerful tool that ordinary people have and this is an effort to take that away. Citizens are already being kidnapped. Dissenter legal immigrants are being dissappeared.
Anyone that believes the administration is doing any business other than seizing more power is a useful tool.
Edit: but yes, that is a bit in the noise compared to the attempt to end democracy in the us that is underway. If some combination of protests and judicial action manage to wake up congress to act for country instead of party, maybe we could use the momentum to do something good. I'd recommend closing the attack vector in our electoral system that creates two parties that can be so easily polarized against each other. Ranked choice voting and proportional representation or mmp for both house and electoral college would probably generate 4-8 parties and wouldn't require any amendments. Just 60 votes to allow the pr/mmp and then the hard part of convincing all the states to implement it in unison rather than delay to give their dominant party advantage.
Downvote and move on.
What a weird complaint.
Indeed. And if you look at the picture of the email from the deputy CIO he mentions SCuBA (see here: https://www.cisa.gov/resources-tools/services/secure-cloud-b...). Cleaning up unnecessary admin roles is exactly the kind of thing that CISA itself is requiring agencies to go in and do.
You assume that "suddenly none of the IT employees at the agency could do their jobs properly anymore" is whining and not substantial?
Shouldn't be least privilege principle a culture (a standardised and automated process) and not something that happens ad hoc?
Which no one in the opposition will allow anyone in the opposition to do. Potentially for good reason (it would make them a legitimate target for violent retribution), but which just means the war was lost before it started.
Which is why people aren’t fighting back much either - because the smart ones are looking at the score going ‘I’m just going to get murdered fighting a war you already lost’.
How can this be true?
What exactly sounds unbelievable? Considering Berulis was an administrator and DOGE requested administrator accounts, they'd both have the ability to turn on/off logging as they wish, wouldn't they?
>"But we don't have laws," she says, "so it's just another chain."
Following laws is not exactly of the highest priority.
Source: https://www.cisa.gov/resources-tools/services/secure-cloud-b...
"A minimum of two users and a maximum of eight users SHALL be provisioned with the Global Administrator role."[1]
and
"Privileged users SHALL be provisioned with finer grained roles instead of Global Administrator."[2]
So at least for the agency-wide removal of security administrator roles, that would seem to be unrelated to anything DOGE was doing. The NLRB was supposed to be doing that anyway.
[1] https://www.cisa.gov/resources-tools/services/m365-entra-id#... [2] https://www.cisa.gov/resources-tools/services/m365-entra-id#...
But if Russian spies wanted to access US Gov resources, why would they use their own IPs as the origin? Unless getting caught was deliberate, to foment discord?
[1] https://en.wikipedia.org/wiki/Edward_Coristine
[2] https://krebsonsecurity.com/2025/02/teen-on-musks-doge-team-...
I don't know what the Russia connection is. Blue MAGA types like to contend that Trump is a Russian asset. There are definitely some weird connections going back to Trump purchasing TVs for a hotel in the 1980s [3] and some weird timings of the movements of Viktor Orban between Putin and Trump [4] but I just don't buy the Russian asset narrative.
I consider it way more likely that individual DOGE people have been compromised by foreign actors and possibly without their knowedge (eg compromised email or computers).
We're only 3 months into this. The amount of damage that is going to be done over the next 4 years is hard to comprehend.
[1]: https://news.ycombinator.com/item?id=43701222
[2]: https://www.businessinsider.com/tesla-pay-vs-ford-gm-uaw-uni...
[3]: https://www.youtube.com/watch?v=O1FHtBu5H8w&t=36s
[4]: https://www.axios.com/2024/07/12/trump-orban-meeting-mar-a-l...
cruzcampo•2h ago
zakki•1h ago
Gigachad•1h ago
teknopaul•1h ago
Trump will pardon anyone on his team.
The existence of Presidential pardons is a disgrace. There is no pretence of the rule of law.
raverbashing•1h ago
Make no mistake the 'kids' in doge will be the first to be thrown under the bus
jfengel•1h ago
I'd say we didn't use them nearly enough. And now they're being used exclusively for crime. Yet another sound idea turned against us. There just isn't any way to govern a nation which has a majority in favor of destroying democracy.
mapcars•1h ago
a_bonobo•1h ago
diggan•33m ago
StopDisinfo910•1h ago
The article only mentions a Russian IP.
freen•1h ago
That’s a great idea!
Muromec•43m ago
bogantech•1h ago
honeybadger1•1h ago
candiddevmike•1h ago
tremon•1h ago