FBI Computer System So Screwed Up, You Need To Hack It To Get Stuff Done
from the not-very-comforting dept
The incredible saga of the FBI's overbudget $500 million computer system that needed to be scrapped after it turned out it was useless in fighting terrorism apparently had some other problems as well. The news has come out today that a contractor hired to work on the computer system was so frustrated by the bureaucracy he needed to go through to do something as simple as adding a printer to the network, that he used some free internet tools to breach the network and get access to the usernames and passwords of 38,000 FBI employees, including director Robert Mueller. The contractor pleaded guilty to various charges, though even the FBI admits that he only appears to have done what he did to actually get work done. It's not clear which part is more disturbing: that the FBI's computer system was so easily hacked, or that the best way to get work done at the FBI is to breach its computer security.Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Reader Comments
Subscribe: RSS
View by: Time | Thread
[ link to this | view in thread ]
[ link to this | view in thread ]
[ link to this | view in thread ]
Re:
You scare the hell out of me. You should go to jail with him and be his Colon bitch. The Feds involved should be in the cell next door.
/.
[ link to this | view in thread ]
[ link to this | view in thread ]
Re: Re:
[ link to this | view in thread ]
Re: Re:Paranoia will destroy yah
Would it be better if the world didn't publish this crap trying to sell papers by creating a hysterical environment where open WiFi is the devil's work, you can't walk with a cell phone and talk or you will get hit by a train or lightning, and the government is watching you take a shower in the morning? Oh My Lord would it be....the problem is that there are just too many news outlets now with everyone trying to get those adsense bucks one tenth of a cent at a time that they will make every story out to be the end of the world.
I am certain of one thing, the people that buy into this crap are also the ones who felt that Y2K was going to end the world, that aliens on X-Files are real, that the US Military piloted the planes into the WTC, and that Bert and Ernie were gay lovers.
[ link to this | view in thread ]
Re: Re:
Where did you get that they were on the Federal Witness Protection Program? It did not say that. You are, ehum, assuming that.
So what if he does use it for personal gain?! Won't that land him in jail?!!!!!!!!
The VA Director of Computer Security made out with 50,000.00 records containing names, SSN's, addresses etc., etc.. What about him? He was a DIRECT EMPLOYEE for crying out loud.
I would rather trust a contract who sees thousands of ID information on a daily basis and can't remember but 1 or 2, than a full timer!
No I am not a contracter.
[ link to this | view in thread ]
Follow the last link, it is in that article.
[ link to this | view in thread ]
anyway back to my normal state. well to get through a company network its simple. You don't
It'd be really nice if they would give you passwords and crap but no... My company seems to be so darn stupid that I have to get a juniour administrator to open the computer before I , a Technition can get into the damn thing.
[ link to this | view in thread ]
Re:
[ link to this | view in thread ]
Re: Hacking the FBI
[ link to this | view in thread ]
Ha
And remember' Joey from Brooklyn is always happy to see ya
[ link to this | view in thread ]
Re: Re: FBI Computer System So Screwed Up, You Nee
[ link to this | view in thread ]
Re: Re: Re:Paranoia will destroy yah
[ link to this | view in thread ]
Re: Ha
[ link to this | view in thread ]
This is crazy...
[ link to this | view in thread ]
Wow. No, really, wow.
Amazing. How could that possibly have happened?
[ link to this | view in thread ]
Re: Wow. No, really, wow.
[ link to this | view in thread ]
Seems to like some have missed important facts her
If No, then provide him with all he will need to complete the job.
We can note 2 things here:
1-The process was in place. Under normal circumstances, this is referred to as change management and it was not adhered to. (kind of silly to me. You need me to feed and walk the dog but provide not dog food or a leash. and I go to walmart and buy both to get the job done and I get punished) Just that it needed to be better implemented. First we must assume that the purpose of the contractor may not have been fully defined. Otherwise, you would know all that he would be required to do and place him in a group that already have those pre-defined privelliges, or have some other personel with the rights available to make the changes required. You should have provided the resources necessary to complete the job. Seems like the Project Manager had little idea of how to implement a project. Adding of a printer does not seem to be a serious security issue anyways. That is if we actually mean a print device ( cannon, HP Brother etc) and not a print server. In fact I can hardly envision a situation where one would not have a need to use a printer during the course of their job.
2- This contractor was brought inside the company and given administrative rights and also a computer which he could perform administrative functions.
The fact is that there are thousands of simple security measures and policies that could have prevented this breach. If you expect a plumber to fix your leaking faucet in your master bedroom, then lock away your jewelry in a safety box. Lock away your sterling silver. Otherwise, before the job is started, asked what will he need to get the job done, what resources will be needed to get the job done and provide it up front. If that cannot be done, make provision for it to be provided on demand.
Then again what systems are we dealing with here? Windows? Novell?'NIX?
[ link to this | view in thread ]
Shooting the messenger
Now, the question is - has any been charged for pouring $500 Million dollars down a rat hole. Seems to me that it would take a life time of effort by 1000 ordinary Americans to scrap together that amount of money and someone has thrown away the equivalent of that 1000 life times of effort.
[ link to this | view in thread ]
I Feel his pain
[ link to this | view in thread ]
Don't Use Windows
My Suggestion: Don't use Microsoft Windows. Use Linux, Unix, Solaris...anything else but windows if security is of concern to you.
Plus, you end up saving loads of money, and less hassle if you wish to add more functionality to the system.
[ link to this | view in thread ]
Secure work around.
I swear to God.
If you keep up with the news I will give you 1 guess what school it was...
Dover High of Pennsylvania, the same school board that braught up the teaching evolution in school bologna. Those idiots finaly got fired for that one.
[ link to this | view in thread ]
Secure work around.
I swear to God.
If you keep up with the news I will give you 1 guess what school it was...
Dover High of Pennsylvania, the same school board that braught up the teaching evolution in school bologna. Those idiots finaly got fired for that one.
[ link to this | view in thread ]
[ link to this | view in thread ]
Re: Re: Re:
"The break-ins, which occurred four times in 2004, gave the consultant access to records in the Witness Protection Program and details on counterespionage activity, according to documents filed in U.S. District Court in Washington. "
Please go back and read TFA.
[ link to this | view in thread ]
Re: Re: Re: FBI Computer System So Screwed Up, You
If you read my first post you might comprehend the fact that I was criticizing, not standing up for, the FBI behavior. Please develop some reading skills and get back to me. At the very least learn to follow the thread.
[ link to this | view in thread ]
No regular visitor on any forum posts without mistakes all the time. We are all usually in a hurry to get our thoughts down and out before proofreading or spellchecking.
If your thoughts get communicated clearly enough then there is no blaming necessary. It's just casual conversation and arguing and no grades are given out. This isn't English class.
[ link to this | view in thread ]
Re: Re: Re:
[ link to this | view in thread ]
Re: Ha... but no
from a person with logic.
[ link to this | view in thread ]
[ link to this | view in thread ]
And We trust them?
[ link to this | view in thread ]
Re:
[ link to this | view in thread ]
hah
[ link to this | view in thread ]
[ link to this | view in thread ]
[ link to this | view in thread ]
SUCK!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
[ link to this | view in thread ]