Slashdot Mirror

← Back to Stories (view on slashdot.org)

FBI, US Marshals Hit By Virus

Posted by Soulskill on from the nothing-tommy-lee-jones-can't-handle dept.

Norsefire writes "The FBI and US Marshals were forced to shut down part of their computer network after being hit by a 'mystery virus.' FBI spokesman Mike Kortan said, 'We are evaluating a network issue on our external, unclassified network that's affecting several government agencies.' Nikki Credic, spokeswoman for the US Marshals, said that no data has been compromised but the type of virus and its origin is unknown."

10 of 156 comments (clear)

  1. Sensitive networks should be treated as such by davidwr · · Score: 5, Interesting

    More and more, sensitive corporate and government networks will need to be isolated or at least mostly isolated from non-sensitive networks and the Internet.

    They may not need an air gap but they will need to be isolated enough to prevent general problems like viruses.

    They also need to be run with the philosophy of "every other machine or user on my network could become compromised (infected or bribed) at any time."

    A couple of possible solutions:
    *Give employees 2 computers with a KVM, one for surfing the web and access to non-secure data, one to access secure data.
    *Give employees a multi-homed, ROM+read-only-USB-stick-for-configuration-data-boot "thin client" that's stripped down and hardened, with no copy-and-paste, no network bridging, and other designed way for one remote server to influence the other. Then have them connect to different servers on different networks for different needs.

    If your security requirements are extreme, use an air gap.

    In either case, don't forget to take countermeasures against human idiocy, ignorance, and bribery/blackmail.

    --
    Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
  2. Bold claim by Daimanta · · Score: 4, Insightful

    "said that no data has been compromised but the type of virus and its origin is unknown."

    How do they know that there was no data compromised if they don't even know the type of the virus?

    --
    Knowledge is power. Knowledge shared is power lost.
  3. Re:Linux... by Darkness404 · · Score: 4, Interesting

    How many people have gotten a virus from surfing a site using Linux? Very, very, very, few, to non existent. Sure, Linux is vulnerable but it isn't targeted, the diversity in distros, kernel versions, browsers, etc. help keep the target moving. About the only way to get a virus, in the wild is to download and explicitly install a virus or a trojan.

    --
    Taxation is legalized theft, no more, no less.
  4. Re:They should use macs by psnyder · · Score: 5, Funny

    They DO use Macs. And Dell. They were shown VERY CLEARLY inside FBI headquarters during season 7 of 24.

  5. UNIX email virus by Gary+W.+Longsine · · Score: 4, Funny

    Please copy this file to your hard drive, decompress it, untar it, chmod it, and place an entry in the root crontab... so I can have your advice.

    --
    If you mod me down, I shall become more powerful than you could possibly imagine.
  6. Typical Bold Claim, Scenario A14 by Gary+W.+Longsine · · Score: 5, Insightful

    This claim is made by nearly every spokesperson for any major organization which is forced to disclose a malware attack to the public. In nearly every case the claim cannot be substantiated. Run of the mill malware often scans hard drives and uploads data to remote servers over encrypted connections. Most organizations have no way of knowing if these even happened. They don't know how long they have been infected. They don't know if the attack is directed at them, specifically (and thus might be smarter about hiding its activity). These folk really don't know yet what the extent of the damage is. The stock line should be, "we don't know", not, "nothing bad happened". Something bad happened -- malware got on your network and spread. That much is clear.

    --
    If you mod me down, I shall become more powerful than you could possibly imagine.
  7. Re:They should use macs by Anonymous Coward · · Score: 4, Informative

    93,000?
    That's a mighty low estimate.

  8. Re:They should use macs by sopssa · · Score: 4, Insightful

    Also, most mac users think and they're told that theres no malware and they're secure, so they have the mentality of "nothing can hit me" and even tho theres a few mac av's, almost noone runs them.

    Hell, there's botnets running inside _routers_. What makes it think that mac is somehow some bulletproof solution. You dont need root to send spam or ddos either.

    Mac is also a standardized os, so its a lot easier to make malware for it than the tons of different linux os's. And its already true, but because of this mentality Apple and Mac users have given to everyone, they think they're safe. It's really stupid from Apple's part, because the problem keeps just rising and one day it gets hit badly and no one has prepared because of their assumptions.

  9. Re:They should use macs by clang_jangle · · Score: 4, Insightful

    Trojans can run on any OS, once the user is tricked into installing them. IOW,they're extremely easy to avoid. However, viruses are only found in the wild on Windows systems. And only Windows can be infected by simply visiting a web site.

    --
    Caveat Utilitor
  10. Re:Linux... by Animaether · · Score: 4, Insightful

    Step 4: watch a lower ranking employee click on the HappyFunTime executable in their mail
    Step 5: Priceless.