Slashdot Mirror

← Back to Stories (view on slashdot.org)

Lax TSA Website Exposed Travelers' Information

Posted by kdawson on from the speaking-truth-to-stupidity dept.

sjbe sends in an old story with a poetic justice ending. Almost a year ago Chris Soghoian blogged about multiple security holes exposing visitors to a TSA site to possible identity theft. Wired and others picked up the story and the TSA took down the insecure site and fixed the problems. On Friday the US House of Representatives Committee on Oversight and Government Reform released a report (PDF; HTML summary) finding that the TSA contractor, Desyne Web Services, had received a no-bid contract for the faulty site from a former employee who was then a TSA project manager. TSA has taken no action to sanction the responsible parties for the vulnerabilities. The poetic justice is that Soghoian had been investigated for 6 months by the FBI and TSA because he pointed out a vulnerability in the US air transport system; no charges were ever filed.

2 of 81 comments (clear)

  1. Re:What I want to know is ... by ScrewMaster · · Score: -1, Offtopic

    All Americans suck because their sigs aren't funny.

    Keep trying, Anonymous Karma Whore.

    --
    The higher the technology, the sharper that two-edged sword.
  2. Anyone by Anonymous Coward · · Score: -1, Offtopic

    think this was to do with Irish Travellers when reading the title?

    Ok... Move along... nothing to see here... *whistles*