Slashdot Mirror

← Back to Stories (view on slashdot.org)

Pentagon Hid Magnitude of Data Loss From Recent Breach

Posted by Soulskill on from the it's-just-a-flash-wound dept.

blueton tips us to a brief story about recent revelations from the Pentagon which indicate that the attack on their computer network in June 2007 was more serious than they originally claimed. A DoD official recently remarked that the hackers were able to obtain an "amazing amount" of data. We previously discussed rumors that the Chinese People's Liberation Army was behind the attack. CNN has an article about Chinese hackers who claim to have successfully stolen information from the Pentagon. Quoting Ars Technica: "The intrusion was first detected during an IT restructuring that was underway at the time. By the time it was detected, malicious code had been in the system for at least two months, and was propagating via a known Windows exploit. The bug spread itself by e-mailing malicious payloads from one system on the network to another."

4 of 218 comments (clear)

  1. army net security is indeed ridiculous. by r00t · · Score: 5, Interesting

    Sysadmins must apply patches IF AND ONLY IF they are army approved.

    Sounds decent so far, hmmm?

    The army has some committee that regularly decides which patches to approve.

    Still not too bad, hmmm?

    The committee approves patches for things that are being actively exploited.

    Ponder that one for a moment. It means that every security hole will be exploitable on the army networks. Every security hole gets a chance, since "not exploited yet" means "not a problem".

  2. Re:Windows strikes again. by SethJohnson · · Score: 5, Interesting



    2) Decent firewall alerting you to connections to chinese IP space,

    Duhh.. these guys weren't amateurs. They wouldn't have been communicating directly with the compromised hosts. There'd be like three or more hops of compromised boxes between them and the Pentagon. Not to mention that the intrusion might have originally been thanks to a viral botnet where the controllers recognized some interesting IPs within their herd. Then used the command-control structure to issue specific commands to those boxes to further infiltrate the Pentagon. Probably was always outbound connections uploading data and grabbing new marching orders (encrypted in both cases).

    Seth

    --
    $5 / month hosted VPS on linux = awesome!
  3. Re:Windows strikes again. by Hemogoblin · · Score: 5, Interesting

    Speaking as someone who has worked as an Immigration Officer with the Canada Border Services Agency, I can say that our immigration laws are quite fine, thank you. In addition, our antiterrorism laws are quite robust, and I would argue that the United States' laws are needlessly draconian. Thank you for your time.

  4. Honey pot. by dsmatthews · · Score: 4, Interesting

    It would not be the first time that a government has gone to great length to convince others that the stolen data they have is real, when really it is not, rather it is carefully crafted misinformation designed to fubar any project or plans it is used in.