Nuvem
Selected Exhibit: Oct 17, 2023; This is a “master key”
Plaintiff warns Nuvem leadership of SolarWinds requiring a “master key” sysadmin account.
Sent: Tuesday, October 17, 2023 5:47 PM;
Subject: Solar Winds system access
Gents,
Solar Winds requires a database user that can access system tables to query database statistics. (This is a “master key” Solar Winds will have as you now.)
I was talking with Demetrios over lunch.
I look forward to reviewing our SQL-Server code for our eligibility process, learn more and help where I can, especially with our slowly changing dimensions (SCD Type 1 and 2) and Change Data Capture (CDC).
Kind Regards,
Albert
More technical notes…
SQL Server has a system view sys.dm_os_performance_counters which I will put $ on Solar Winds is querying (think Oracle Statspack)
sys.dm_os_performance_counters" is equivalent to "being a Server admin or an Azure Active Directory admin"
Selected Exhibit: Oct 19-20, 2023; Plaintiff alerts Nuvem
Oct 19, 2023 2:11 pm Nuvem VP states; "Please send the confirmation you received from hhs.gov regarding the claim you submitted for our files."
Oct 19, 2023 2:45 pm Nuvem IT Ops states; "As of this morning, the DB Enhancment project with Madeira is on hold."
Oct 19, 2023 8:59 pm Plaintiff states: "Please archive this email with my folder. I think it's fair to say I helped protect Nuvem this week, my first week from a very close-call with our IT team executing a sanctioned activity, which was provisioning an administrator key yo our 2M+ 340b patient data with an offshore group."
Oct 19, 2023 10:47 pm Plaintiff states; "Thank you for sitting with me and explaining our "communication" policy.... I received no comminucation or ascknowledgment since Tuesday Oct 17th. Per policy, I submitted a potential breach notice with hhs.gov this morning, Oct 19. Exhbit [breach notice.pdf... I am proud to see that our IT department has put a hold with the Solar Winds engagment, protecting over 2M+ 340b clients and their PII information... My actions today saved Nuvem froma potential lawsuit giving access to PIII medical and finacnial data to an offshore operation which is against the law..."
- Oct 20, 2203 6:07 pm Plaintiff states; "send me that 6 digit quick assist code?"
- Nuvem IT (Joel Ignatovich) states; 728712 AQXPE8
- Plaintiff states; "Good meeting you virtually. I appreciate the “process”. I’m the one that killed the Solar Winds provisioning yesterday. Nobody gets a sysadmin account on my watch"
- Nuvem IT (Joel Ignatovich) states; "LoL that was my concern as well. We were on the same page for that. Pleasure meeting you virtually as well!"
Oct 20, 2203 8:32 am Nuvem HR states; "I will save this to your files"
Oct 19, 2023 8:59 pm Plaintiff states: "Please archive this email with my folder. I think it's fair to say I helped protect Nuvem this week, my first week from a very close-call with our IT team executing a sanctioned activity, which was provisioning an administrator key yo our 2M+ 340b patient data with an offshore group."