Collaborate Disseminate
Crime doesn’t pay, even if you have the audacity to try to sell your employer its own, free software and personal data on your own colleagues. Continue reading Ex-Inspector General indicted for stealing data on 250k govt colleagues
The contractor with whom it shared the data has a vulnerable, unpatched network. Continue reading FEMA Exposes PII for Millions of Hurricane, Wildfire Survivors
It’s just one of many SOP SNAFUs of a pilot program for advanced searches of travelers’ devices that doesn’t even have performance metrics. Continue reading Border agents are copying travelers’ data, leaving it on USB drives
Federal investigators traced a malware infection at the U.S. Geological Survey (USGS) to an employee’s habit of viewing adult content. On 17 October, the Office of Inspector General (OIG) submitted a report in which it revealed its discovery of s… Continue reading Malware Infection at USGS Traced to Employee’s Habit of Viewing Adult Content
“At its current rate, we project Boeing will expend at least $8.9 billion through 2021—double the amount initially planned—while delivery of the first Core Stage has slipped 2½ years.” Continue reading NASA’s Mars Rocket is Over Budget and Behind Schedule, Audit Finds
A report from the Department of Justice Inspector General revealed a mundane technical glitch was behind the 2016 Twitter beef. Continue reading A ‘Technical Malfunction’ Made an FBI Twitter Account Seem Anti-Clinton in the Final Days of the Election
The FBI has formed a unit inside its Operational Technology Division (OTD) to specifically address law enforcement’s efforts to bypass encryption on various devices, a problem it refers to as “going dark.” The unit comes as a result of a Justice Department’s Inspector General report that finds poor communication within the FBI during its prolonged encryption battle with Apple in 2016. The new “going dark” unit is designed to help streamline technical investigations within the FBI, including finding a weak point into various iPhone models. The IG issued a report Tuesday that examines the FBI’s work during the San Bernardino terror attack investigation. That investigation led to a subsequent debate over the FBI’s inability to access shooter Syed Farook’s iPhone. The device, an iPhone5c, was protected by built-in encryption. The report concluded that none of the FBI’s public testimony was false — they did not have the capability to access the iPhone’s contents — but poor […]
The post FBI has unit solely devoted to its ‘going dark’ problem appeared first on Cyberscoop.
Continue reading FBI has unit solely devoted to its ‘going dark’ problem
An internal audit of the Department of Health and Human Services’ cybersecurity posture found that four HHS divisions need to improve their security controls, according to a summary report released Tuesday. The HHS’s Office of Inspector General said that it conducted penetration testing on four of HHS’s 11 operating divisions throughout fiscal year 2016 with the help of contractor Defense Point Security. The summary did not specify which divisions were part of the audit, but said that OIG identified “configuration management and access control vulnerabilities.” The OIG hasn’t released the full report to the public, saying that some of the information is restricted. The OIG says it issued recommendations to HHS to improve security controls, but didn’t specify the recommendations. The summary also said that the HHS operating divisions have corrected or are correcting the vulnerabilities, but that the OIG hasn’t validated those corrections yet. Cybersecurity was identified as a focus area in the OIG’s 2017 report […]
The post Watchdog group calls on HHS to improve cyber defenses appeared first on Cyberscoop.
Continue reading Watchdog group calls on HHS to improve cyber defenses
The Office of Personnel Management continues to struggle with cybersecurity more than two years after the agency first publicly acknowledged they were breached due to poor security practices, according to a newly released Office of the Inspector General report. The report, which focuses on the state of systems during fiscal year 2017, concludes that while OPM has “made improvements in its Security Assessment and Authorization (Authorization) program,” inspectors were nonetheless able to find a “significant deficiency in OPM’s information security management structure.” This translated to a poor overall cybersecurity score, as defined by the National Institute of Standards and Technology, of two out of five for OPM. The score from the OIG is supposed to define the “maturity” level of an organization in relation to the security of information systems. This lackluster rating is due in large part to inaction by the agency regarding prior security recommendations referenced in other audits. “OPM is not […]
The post More than two years after historic breach, OPM continues to struggle with cybersecurity appeared first on Cyberscoop.
Some things really, really shouldn’t be turned into IoT devices – including vending machines Continue reading CIA contractors fired for stealing from hacked IoT snack machines