Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Submission + - Hackers Find Security Gaps In Pentagon Websites (go.com)

An anonymous reader writes: High-tech hackers brought in my the Pentagon to breach Defense Department websites were able to burrow in and find 138 different security gaps, Defense Secretary Ash Carter said Friday. The white-hat hackers were offered various bounties if they could find vulnerabilities on five of the Pentagon's internet pages. The Pentagon says 1,410 hackers participated in the challenge and that the first gap was found just 13 minutes after the hunt began. Overall, 1,189 vulnerabilities were found, though only 138 were deemed valid and unique. The experiment cost $150,000, and about half of it was paid to the hackers as bounties. The "Hack the Pentagon" program will be followed by a series of initiatives, including a process that will allow anyone who finds a security gap in Defense Department systems to report it without fear of prosecution.

Submission + - FBI May Be Hiding Facial Recognition Databases From GAO

blottsie writes: A Government Accountability Office (GAO) report released this week revealed that the FBI is using images culled from driver’s licenses, as well as passport and visa applications, in its criminal facial recognition database, something civil liberties advocates find highly problematic.

Perhaps more worrisome, however, is that the GAO report only reveals what the FBI told GAO investigators—meaning the bureau may have far more facial recognition databases that it's hiding.

So how many libraries does the FBI have? “Oh, who knows,” FBI CJIS privacy attorney Roxane Panarella said, followed by some laughter. “There might be hundreds, or thousands, but there will only be some that are valuable to the FBI and some that are going to be legally allowed to be searched by us.”

Submission + - Would you trust medical data stored on AWS by CareMonkey? (caremonkey.com)

rolandw writes: My teenage daughter's school in the UK wants me to approve the storage of her full medical details in CareMonkey. CareMonkey say that this data is stored on AWS and their security page says that it is secured by every protocol ever claimed by AWS (apparenlty). As a sysadmin and developer who has used AWS extensively for non-secure information my alarm bells are sounding. Should I ignore them and say yes? Why would you refuse?

Submission + - Report says 99% of feds 'fully successful' or better at work. Is that credible? (washingtonpost.com)

schwit1 writes: Feds deserve much respect, but rating more than 99 percent as fully successful strains credibility. It diminishes the truly successful and could deny the less successful the assistance they need to improve. The report gives a boost to those who seek to overhaul the civil service system, which critics say is short on employee accountability. Federal employee unions have not been anxious to embrace civil service reform, though there are indications that is changing.

“The system is obviously not working in that it’s not providing meaningful differentiation between solid employees and truly exceptional ones,” said Max Stier, president and chief executive of the Partnership for Public Service, which studies the federal workforce. “It’s not being implemented consistently or with the original intent of what it means to be ‘outstanding’ or ‘fully successful.’”

Slashdot Top Deals

Real Users are afraid they'll break the machine -- but they're never afraid to break your face.

Working...