State Department Hit With Many More Break-Ins 143
adjust28 writes to tell us CNN is reporting that the US State Department has been dealing with a number of computer break-ins with regards to their headquarters and offices dealing with China and Korea over the past couple of weeks. From the article: "Investigators believe hackers stole sensitive U.S. information and passwords and implanted backdoors in unclassified government computers to allow them to return at will, said U.S. officials familiar with the hacking."
Lack of motivation (Score:5, Interesting)
The government seems to have never placed much importance on computer security. I recently read Cliff Stoll's 1989 chronicle of a hacking, The Cuckoo's Egg [amazon.com] . Back then the government was slow to respond and pretty unmotivated, and it seems like little has changed today. Yet, once they catch someone, they give him a draconian punishment that ruins his life, just look at Mitnick. The government can't seem to decide it's priorities. It'll punish you more for cracking than for murder, but at the same time it won't secure it's own systems and heed experts.
Homeland security is a joke (Score:5, Interesting)
It was a long process to penetrate all his defenses. Finally, I ended up chatting with the cracker a la Yahoo Chat, including video. He was from Romania, and liked diet 7-up.
So, I get all the sources together with which he compromised the server. I had everything, down to IP addresses. I called the FBI and they referred me to some web page that didn't even allow enough upload to report everything I had found.
I submitted what I could. I didn't even gt a "thank you" email. I would have been happy with a "thank you" message. But I got nothing.
My opinion of the dept of Homeland Security as well as the FBI sank immeasurabily as a result.
The horse has bolted (Score:5, Interesting)
I don't want to trigger a Windows/Linux debate, but relevant is this quote from a recently slashdotted interview with McKinnon:
Source here [bbc.co.uk]
Even if it is considered right to treat such breakins so seriously: how many times must the horse bolt before the barn door?
Disabling security (Score:3, Interesting)
Wait a minute, they actually disabled their security after they got hit with an attack??!? Someone tell me if I'm wrong about secure sockets layer being a security measure of sorts.
Re:Disabling security (Score:2, Interesting)
I believe their target were the incoming SSL connexions.
The Ethics Of Housebreaking (Score:3, Interesting)
I can sympathise with a desire to see the correct terminology used, but in this instance, I'm not sure I can see the harm.
The trouble is that hacking is, in terms of human society, comparatively new. Everyone understands the times when it is right or wrong to enter someone else's house. The same is not clear for remote computer access.
So, it makes sense to look for an situation analagous to unathorised access and reason from that starting point. A lot of people, myself included, find the housebreaking metaphor apt.
Of course, it remains an analogy, and necessarily inexact, but it does provide a useful frame of reference. I'm not sure it's possible to consdier the issue without one. Is there anything intrinsically good or bad in accessing a computer system? Why should permission alter the scenario? At least if we talk about houses and bolts we make our presumptions clear from the start.
Do you think the analogy is unhelpful? Do you have a better starting point? I can't see how else to approach the problem.
Re:Ask Slashdot: Why do gov't 'puters have net acc (Score:3, Interesting)
Re:It may not be illegal, but... (Score:4, Interesting)
Actually, I'd guess that in this political climate, it's helping their subscribership quite a bit.
Two things:
1) The Bush administration has failed to realize that the "trust us, we know what we're doing" meme has died. Every time they push it these days their numbers go down.
2) The facts of this particular story was out YEARS before the NYT (and two other papers, btw) put it in the public eye. As those facts come out (and they have been) it will exascerbate #1 above.
Gov: "Realeasing this information will kill us all!!"
NYT: "So why did you release it on government websites two years ago?"
Gov: "UUUhhhhhh.... MMmmmmmMMmmm...."