Mapping The CIA Nonclassified Network

jeffy124 writes "A security firm Matta Security in London has mapped the CIA non-classified network. Using only legal and open sources, the company mapped topology of machines and even found networks otherwise closed to the public. The company never port scanned or probed the network directly. Among items they found were emails and phone numbers of sys admins and other employees. Amazingly, they did all this in two days."

wonderful

[crystalplague]

in the same page as the network map is

Related Stories: Report warns of al-Qaeda's potential cybercapabilities
don't you just love when we do half the terrorists jobs for them then wonder how they pull off elaborate attacks?

Makes for interesting headlines, but not much else

[Ryu2]

Last I checked, air gaps (to the extent of TEMPEST shielding to avoid crosstalk between nets) were still in use to physically separate classified and unclassified networks.

Of course, if someone was stupid enough to physically transfer data from classified to unclassified nets, like what that dude at Lawrence Livermore (I think?) did, by accident, that is a problem. And of course, social engineering. But HOW MANY TIMES MUST IT BE SAID, YOU CAN'T HACK INTO THE REAL SECRET STUFF VIA THE INTERNET!!!