Slashdot Mirror

← Back to Stories (view on slashdot.org)

Got Malware? Get a Hammer!

Posted by timothy on from the sorry-but-it's-the-only-way dept.

FuzzNugget writes "After the Economic Development Administration (EDA) was alerted by the DHS to a possible malware infection, they took extraordinary measures. Fearing a targeted attack by a nation-state, they shut down their entire IT operations, isolating their network from the outside world, disabling their email services and leaving their regional offices high and dry, unable to access the centrally-stored databases. A security contractor ultimately declared the systems largely clean, finding only six computers infected with untargeted, garden-variety malware and easily repaired by reimaging. But that wasn't enough for the EDA: taking gross incompetence to a whole new level, they proceeded to physically destroy $170,500 worth of equipment (PDF), including uninfected systems, printers, cameras, keyboards and mice. After the destruction was halted — only because they ran out of money to continue smashing up perfectly good hardware — they had racked up a total of $2.3 million in service costs, temporary infrastructure acquisitions and equipment destruction."

6 of 254 comments (clear)

  1. Wow! by Enry · · Score: 5, Funny

    You mean I get to release my pent-up anger by destroying physical systems *and* get paid a boatload of money to do it? Where do I sign up?

  2. Couldn't they just have nuked the site from orbit. by Serif · · Score: 5, Funny

    You know, to be sure?

  3. the discourse as it stood by nimbius · · Score: 5, Funny

    EDA: did you guys just smash a bunch of computers with a hammer because of viruses?
    DHS: Yes, but there havent been any terrorist attacks since we smashed everything with hammers. clearly the operation was a massive success.
    EDA: I dont even.....
    DHS: yep. Freedom isnt free.

    --
    Good people go to bed earlier.
  4. Re:Economic Development Administration? by Tridus · · Score: 5, Insightful

    Because, RTFA?

    "The total cost to the taxpayer of this incident was $2.7 million: $823,000 went to the security contractor for its investigation and advice, $1,061,000 for the acquisition of temporary infrastructure (requisitioned from the Census Bureau), $4,300 to destroy $170,500 in IT equipment, and $688,000 paid to contractors to assist in development a long-term response. Full recovery took close to a year."

    --
    -- "So they told me that using the download page to download something was not something they anticipated." - Bill Gates
  5. Re:Economic Development Administration? by Anonymous Coward · · Score: 5, Informative

    Devil's advocate:

    I've worked at private companies, for education institutions, in the public sector, and in the Federal government. None are perfect, none are completely horri-bad.

    All places have had those people who I had zero clue what their function was, but they always had a nice office.

    It is easy to pick on government, but go to almost any work environment, and you will find the same thing.

  6. Re:Economic Development Administration? by mellon · · Score: 5, Insightful

    Yup. Likely what happened here is that the million-dollar security contractors gave the advice to do this bug hunt in the first place, and then provided the temporary replacement infrastructure, and walked away from the whole fiasco with a tidy profit. The reason this happens is because the government isn't generally allowed to hire people to do work like this, because "private industry is better." Of course, this sort of private industry is just a mechanism for siphoning off tax dollars, and the people who believe that hiring government employees to do government work is wasteful are actually responsible for fiascos like this, which are depressingly common.

    Even when the contractors aren't crooked, the cost of employing them instead of federal employees is typically several times higher. But "corporations good, government wasteful." If we keep repeating that long enough maybe it will come true.