Slashdot Mirror

← Back to Stories (view on slashdot.org)

Pentagon Confirms 2008 Computer Breach — 'Worst Ever'

Posted by timothy on from the ok-ok-uncle-sam dept.

jowifi writes "The New York Times reports that the Pentagon has confirmed that, in 2008, a foreign agent instigated 'the most significant breach of US military computers ever' using a USB flash drive. While the breach was previously reported on Wired and the LA Times, this is the first official confirmation of the attack that led to the banning of USB drives on government computers."

5 of 157 comments (clear)

  1. Re:This is likely why MS has GPOs in W7 by rikkards · · Score: 3, Interesting

    The thing that is stupid about it is that sure block exes from being run from a USB, then the user will copy it to the machine and run it there.
    BTW, GPOs from day one have had the ability to disable Autoplay and autorun.

  2. Where there's a USB port ... there's a way by PolygamousRanchKid+ · · Score: 4, Interesting

    A US Army dental surgeon told me that their computers were "fixed", so they could not copy pictures of their operations to any external media. The surgeons needed anonymous pictures of operations that they had performed, for preparing for their careers after their service. Like, applying for a job somewhere.

    One of them figured a way to use the USB port in the Canon printer that they had. They could toss pictures at the printer, and land them on the USB stick. Circumventing any blocks on the PCs from accessing the PCs' USB ports.

    So any unprotected port is, well, a potential source of a leak.

    --
    Schroedinger's Brexit: The UK is both in and out of the EU at the same time!
  3. Re:This is likely why MS has GPOs in W7 by rickb928 · · Score: 3, Interesting

    I have this dim recollection that we could do this with GPOs in Win XP.

    And we could use ZenWorks to do it also. Much nicer editor, and volatile accounts are a blessing in school labs.

    Disabling removable media isn't new, just overlooked.

    --
    deleting the extra space after periods so i can stay relevant, yeah.
  4. Re:This is likely why MS has GPOs in W7 by Lehk228 · · Score: 4, Interesting

    there should be a way to restrict execution to only code signed by the owning organization's IT security.

    --
    Snowden and Manning are heroes.
  5. This is why DoD needs to put a bullet in M$ by SgtChaireBourne · · Score: 3, Interesting

    In 2008 any standard issue Army computer would've...

    But were they able to track down and deal with the individual(s) that deployed Microsoft products?

    The military procurement procedures produce a solid paper trail even if on some occasions they produce nothing else. Had they deployed properly engineered products rather than brands infamous for bad design the problem would not have arisen. The US Navy will focus on open systems only, if it can stay clear of the old M$ contractors and M$ resellers.

    --
    Beta is broken and the link to classic doesn't work. Stop wasting our time or there won't be anybody left here.