Chinese hackers broke into Department of Homeland Security computers and made off with “many megabytes” of data, and the contractor charged with securing the department’s networks attempted to cover up the breaches, according to Congressional investigators who have asked the department’s inspector general to investigate the computer security breaches.
The Federal Bureau of Investigation has launched a separate investigation into Unisys Corp., which for $1.75 billion was supposed to install and monitor network intrusion devices for the Transportation Security Administration and at DHS headquarters, but failed to install and monitor the devices properly, according to a letter (PDF) signed by House Homeland Security Committee chairman Bennie Thompson (D-Miss.) and Subcommittee on Emerging Threats, Cybersecurity, Science and Technology chairman James Langevin (D-R.I.) and sent to DHS inspector general Richard Skinner.
The FBI would not confirm whether it had launched an investigation.
The subcommittee has been investigating “hacking activity against Federal agencies” for several months, and the allegations against Unisys are the latest find. In April, the committee heard that Chinese hackers had infiltrated Department of Commerce computers and left “little evidence behind them” of who they were or what files they had copied, the letter said.
“The department is the victim not only of cyber attacks initiated by foreign entities, but of incompetent and possibly illegal activity by the contractor charged with maintaining security on its networks,” Thompson wrote in his letter, which included 27 pages of prior correspondence (PDF) with DHS chief information officer Scott Charbo.
A Unisys spokeswoman, Lisa Meyer, said that “no investigative body has notified us formally or informally of a criminal investigation” on the matter and added that she could not comment on specific security incidents.
She said that Unisys has provided DHS “with government-certified and accredited security programs and systems, which were in place throughout 2006 and remain so today.”
Among the security devices Unisys had been hired to install and monitor were seven “intrusion-detection systems,” which flag suspicious or unauthorized computer network activity that may indicate a break-in. The devices were purchased in 2004, but by June 2006 only three had been installed — and in such a way that they could not provide real-time alerts, according to the committee. The rest were gathering dust in DHS storage closets and under desks in their original packaging, the aide said. — Washington Post
I don’t know how your computer works, but mine doesn’t do anything while it’s still in the box it was shipped in.
Department of Homeland Security spokesman Russ Knocke declined to comment on allegations Unisys covered up evidence of hacking.
“We take cyber security very seriously and there have been major improvements since the administration’s cyber security strategy announced in 2003,” he said.
Knocke said DHS has responded to “malicious cyber activity directed at the U.S. government over the past few years,” and such activity is “growing more sophisticated and frequent.” — CNN
Meanwhile, DHS grows more bloated and incompetent, unable to protect its own networks, let alone the country’s critical infrastructure.
(No Ratings Yet)
Loading ...
Ultimately, the war supporters in Congress prevailed in the vote on the resolution. Still, the vote was significant because it places every member of Congress on the record as supporting or not supporting the unconstitutional, costly, violent occupation of a country that never attacked us. This vote should serve as an important reminder to the American people of where their representatives really stand when it comes to policing the world, empire building, and war.
Gardner Goldsmith explains why claims by politicians that consumers can become "irrational" and why claims by the same politicians that government can help "fix" markets are both false and misleading. He also explains what the terms Praxeology and Epistemology mean, which is key in understanding how to place free markets in their proper place among human history.
Except where otherwise noted, content on this site is licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works license.
Video published by this site is licensed under a Creative Commons Sampling+ license.
Facebook
Digg
del.icio.us
reddit.com
Newsvine
Anonymous
Oct 01, 2007
Unisys is the contractor for the MTA computer systems in NYC. I knew they were bad business.
What BS...
Oct 01, 2007
Another prime example of a bunch of Pigs selling out the USA!!!
Fixer
Oct 03, 2007
“We take cyber security very seriously…”
Of course you do.
“…and there have been major improvements since the administration’s cyber security strategy announced in 2003.”
Of course there have.
Peception is reality, after all. If you keep telling me to feel more secure, I’ll feel more secure. Why don’t those pesky Chinese stop meddling so I can feel more secure?
Kvoii
Oct 03, 2007
Stupid bush.I knew he would get haxxored sooner rather than later.
Sad but true.....
Oct 03, 2007
The sad part is that it probably did not take much… What will happen next??? A 10 year old genius will take over the world with his computer??? Who knows!!!
Wayne K Dolik
Oct 04, 2007
It is chilling that this Company left the software security devises sitting on the floor for so long. They should have had security experts/programmers install this equipment immediately.
This company had a 1.75 billion dollar contract. Tax Payers should be outraged by this flaky behavior by this company.
Fraud Guy
Oct 04, 2007
I sat through a webinar yesterday that was put together by a security provider who has investigated the breach and the hackers.
One salient situation struck me. The leader of the hackers has one several competitions that had been sponsored by the Chinese Army (People’s Liberation Army, or PLA). They have competitions between hackers recruited by various military district, with cash prizes, and shortly after winning a national prize, his group went on to make the attacks. They also have a monthly stipend provided by an unknown benefactor that went up 2.5 times after the attacks.
The attacks were based on spear phishing methods, enticing the mid-level recipients into opening Office documents which contained malformed code.
It doesn’t change the fact that various executives in DHS don’t know better than opening unexpected documents from unverified sources. But, they’re homeland security, not IT Security, I guess.
markhehe
Oct 05, 2007
donno about those darn chinese hackers, but those Chinese mamas are surly hot and sexy!!
CJ
Oct 08, 2007
Look for the thread that ties Israel to this ‘hack’. Nothing of this nature happens without their knowledge or ‘approval’.
Don’t believe it? Who do you think Chertoff works for? Hint: It ain’t DHS.
Bob
Oct 09, 2007
Now it’s all the Jews fault again? I’m not Jewish and don’t know many Jews. I like to study history. I feel that I have an unbiased opinion. I will say this.
All through recorded history, the people of Israel have been persecuted, enslaved, stolen from and set apart by almost every other nation and people on the face of the earth. Up until about 60 years ago, they didn’t even have their own nation to work from. If they can rise above that to(as some suggest),dominate and control the world’s wealth and politics then I suggest that maybe we should be trying to learn something from them. They seem to be a very enduring and capable group of people. My hat is off to them. Quite the opposite can be said of Abraham’s other decendants.
FlibbleDeeFlobble
Oct 12, 2007
Unisys is a bloated government creature from WAAAAY back (the 1960s, I believe). Security? They got hired for SECURITY?!?! That’s like hiring a Baskin-Robbins scooper to install your car alarm – you deserve whatever you get. Last thing I heard, these departments were all using McAfee anyway – the “Yugo” of security suites – hooking the boxes up wouldn’t have even helped. What a joke (and waste of taxpayer money). What’s next, tanks and guns from Wal-Mart???
Jake Wizard
Oct 13, 2007
A couple years ago, I accessed the chinese hacker network known as the hacker empire. Of course, I stole data from them, but yet it was worth it because those kinds of infos and softwares run up to millions of dollars.
I believe they are still looking for me. awww well.. I am not that worried about them. Maybe I should get back in the game… alittle cyber war with the chinks! ? lol
In response to post #5 on this list:
You’re right. :)
aybabtu
Oct 13, 2007
A couple months ago, I accessed Jake Wizard’s computer and stoled lots of datas from him. The datas was very special and and worth lots of moneys. I was estimate the datas is worth a gajillion dollars. Datas is pretty. I like them.
Big V
Oct 15, 2007
A nation with the BIGGEST national security fund, all the super duper gadgets and super secret Nazi scientists who successfully installed the Fourth Reich called ‘Stars and Stripes’ falls victim to a bunch of Chinese teens who dunnit during their tea time. ROFL
yhnctsmyt
Oct 19, 2007
Only a REAL hacker would know what the name of #13 means. My name is my response.
Hellotheworld
Oct 25, 2007
Chinese baby hackers are not so bad. They won’t take you anything good. Most possibly they take from your computers data on skills of killing, murdering, slaughtering, assassinating, and the like. You, Bullshit has.
michael
Nov 06, 2007
Oh, You just fail to see the genius of President Bush.
Since it’s obvious we need to outsource American security to China he just initiated the projec. Of course, You start with providing necessary information to Your outsource partner.
But doing it through normal processes would require a long Congress discussion and can take years.
It’s much easier to hire an incompetent contractor. This way he both let our partners pick up all necessary info and proves to everyone there is no other way but outsourcing our security.
1776resister
Dec 23, 2007
Ha, Ha, Ha, you couldn’t make this stuff up. Well, Government jobs are like that, aren’t they? We know that. Down the road, it could work for us when the shadow govenment comes for us.
BruceKen
Jan 15, 2008
I just found this one — I must comment simply must:
I am a retired Fed. Most of my “career” was spent in Computer related jobs. I have seem much and know even more.
Government procurement personnel are under extremely heavy pressure to ensure “maximum competition” when awarding contracts and purchase orders. This translates into awarding contracts/POs to firms that could not make their way or survive in the private sector. Many of these small, woman owned, disadvantaged operations really need developmental “hand up” assistance. They are trying to make a success and grow in the private sector but need government contracts to gain revenue, a proven track record, and a “name” for themselves. Many others are in the line for handouts — who are they — firms that stay on the Small Business Admin [federal gov agency] {SBA} rolls as long as they can, often closing one company that is about to be graduated from SBA protections and start a new one with a different name, PO address, and officers [straw officers.]
The SBA exists to get as many firms into their programs not, as far as I cam tell, to ensure good contractors for the Gov and the tax payers. Why? Because that is way politicians in the Congress and the Administrative Branch made it that way. Why? To show certain special interest groups that they support women and minorities in business to curry favor with them at election time, nothing more.
Then, there are large companies that are unable to compete in the private sector and get political support because of the number of jobs at stake, political support and contributions, promise of future employment, and other less than stirling reasons. These are large firms with little business in the private sector and much in the public sector. These are companies unable or unwilling to compete in the private sector and would disappear without therp handouts.
An economic system based on competition weeds out the inept, the stupid, the out of date. There is nothing wrong with this as long as the survivers do not use illegal or unethical methods. It is a form of economics Darwinism — survival by winning in competition wither others. It just requires a gentle correction from time to time.
Such companies as Unysis, Computer Sciences, Booz Allen & Hamilton, and National Cash Register come to mind. These companies tend to border the illegal [favors, possible bribes, lies, substandard work, below cost bidding, and many more] in the way they do business. The among the reasons often given to support them are complaints that other companies such as IBM, Microsoft, Dell, Intel, etc. use improper business activities to gain advantage. While there maybe considerable truth to these accusations, the fact that those who make them are simply too inept/unable to compete in a fair competition.
The result of both of these general conditions is that too many Gov contracts/POs are given to firms unable to perform.
In the case of computer systems, the result is poorly functioning or non-functioning systems.
Dec 08, 2009
Misc. News Headlines - 3-OCT-2007 « 0DayNews.org