Slashdot Mirror

← Back to Stories (view on slashdot.org)

New NSA Leak Exposes Red Disk, the Army's Failed Intelligence System (zdnet.com)

Posted by msmash on from the so-nothing-new? dept.

Zack Whittaker, reporting for ZDNet: The contents of a highly sensitive hard drive belonging to a division of the National Security Agency have been left online. The virtual disk image contains over 100 gigabytes of data from an Army intelligence project, codenamed "Red Disk." The disk image belongs to the US Army's Intelligence and Security Command, known as INSCOM, a division of both the Army and the NSA. The disk image was left on an unlisted but public Amazon Web Services storage server, without a password, open for anyone to download. Unprotected storage buckets have become a recurring theme in recent data leaks and exposures. In the past year alone, Accenture, Verizon, and Viacom, and several government departments, were all dinged by unsecured data.

7 of 67 comments (clear)

  1. Remind me by 93+Escort+Wagon · · Score: 5, Insightful

    The people managing this data are the same ones many politicians think should be given a master key to all of our sensitive personal information, right?

    --
    #DeleteChrome
  2. Intentional? by IMightB · · Score: 4, Insightful

    Seriously... In this day and age, do you really think that this is an accident? Unless more info is know, I'm inclined to believe that this is fully intentional, and any idiot that attempts to run this software is going to get what he deserves.

  3. Re:Mandatory Protection? by ShanghaiBill · · Score: 5, Interesting

    Nearly all classified information is mundane garbage that nobody cares about. This "red disk" is a good example. TFA says it contains "sensitive information" but fails to list a single item of any significance.

    I had a "secret" clearance for decades, and I would regularly see classified reports about stuff that had been in the newspaper months before. Even more ridiculous, some of these reports were reporting that a newspaper had reported on a report that was not supposed to be reported on.

    More than 5 million Americans have security clearances. There are huge warehouses and data centers filled with "secrets". Meanwhile, our national debt is $20.5 trillion dollars.

  4. Unmanaged by DarthVain · · Score: 4, Interesting

    More likely it was a bunch of contractors involved in a particular project that was unsuccessful and abandoned, leaving it "unmanaged". With the project over, and no people around that was involved anymore, probably no one even knew it it was out there. This is a common problem for large organizations that try to minimize the amount of IT staff on-hand, and outsource everything externally (not the leak necessarily, but the apparent lack of institutional awareness/knowledge). However on the books it looks like the employee footprint is smaller, which I guess is the point.

    1. Re: Unmanaged by F.Ultra · · Score: 2

      So in other words it was exactly the people who would handle the master keys.

  5. Re: Mandatory Protection? by gnick · · Score: 2

    Good idea. No secrets. We'll just publish our nuclear weapon designs online so that everyone's on a level playing field.

    --
    He's getting rather old, but he's a good mouse.
  6. A Picture Is Worth a Thousand Words by chill · · Score: 2

    http://www.jklossner.com/humannature/

    John Klossner hit this on the head back in 2006.

    --
    Learning HOW to think is more important than learning WHAT to think.