August 22, 2005 2:54 PM PDT
Air Force hit with security breach
Air Force officials are busy notifying more than 33,000 airmen that a security breach has occurred with the Air Force's online assignment and career management system. Officials with the Air Force Personnel Center noticed "unusually high activity on a single user's Assignment Management System account in June," according to an Air Force announcement released on Friday. The attacker accessed and downloaded such personal information as birthdates and social security numbers via a user's legitimate log-in information.
The incident occurred at the Randolph Air Force Base in Texas. Officials at the base have contacted the Air Force and federal investigators and an investigation is ongoing, according to a military spokeswoman.
See more CNET content tagged:
security breach, career, security
that the Gov't. was signing onto a sweet multi-hundred million
dollar deal to use Microsoft software on all the armed forces
networks and systems. It sounded funny then, knowing the
Gov't. had just wasted how much time and money to sue
Microsoft in court, and then gave up when the woman judge,
with no brains or balls, told the 2 sides to work it out, how
brilliant; instead, the Gov't. gave in, letting them off. So after
that, to hear they are going to supply software to the military
was like a joke, anyone who knew software, knew Microsoft did
not build secure systems, so how could the military expect to
have anything but a ticking bomb waiting in a security breach
like this. Just goes to show you where your tax dollars are
wasted on Gov't. spending, both in courts, and now in fixing the
breach. Plus how much money businesses and people have to
spend daily, to clean up after Microsofts broken software with
glitches, patches, updates, rebuilds, breaches, recovery, etc etc
etc. Now you know why MSFT is one of the only companies that
made over $1 billion per month last year, while the rest of the
US industry and economy is ogoing to hell in a hand basket.
Something looks lopsided about all the money they make, it
seems more like theft.
But this is serious business when the US Military is hacked for
SS#'s, identity theft due to lame MS-OS.
YES I get it that C/NOT did not (will not) reveal the USAF OS, but
we already know that the Gov't & MS are in bed together & that
MS-OS IS currently on US Navy battleships & aircraft carrier
command computers....
WAKE UP PEOPLE! (it bears repeating this previous comment)
Microsith OS: A cyber terrorist Window of opportunity.
Posted by: Llib Setag
Posted on: August 19, 2005, 11:12 AM PDT
Story: Week in review: Worm wallops Windows
Have you ever noticed that when CNN shows the troops
capturing & dragging suspected terrorists from the caves, they
frequently find their MS Windows PC laptops & search for
terrorist activity on the hard drives? Coincidence? Hugh amounts
of money & they use MS PC Windows laptops?
US DOJ had their chance & they agreed that Microsith is an illegal
monopoly, but refused to break the monopoly apart or control
their illegal activities worldwide. MS Monopoly money goes very
deep into the pockets of the U.S. Government in Washington
D.C.
U.S. Gov't. has suggested that MS should be considered for a
national ID card for all citizens & immigrants of the USA, as part
of their homeland security defense. Citizen Gates with the Dept.
of Homeland Security would "manage" all important data of all
citizens.
U.S. Gov't. has recently suggested that MS Internet Explorer be
the ONLY Internet Browser of the Government.
MS-OS control battleship & aircraft carrier computers.
But noooooooooo, the terriorist wouldn't think of taking
advantage of the structural weaknesses of the US-MS software
that is on the governments computers, the US military
computers, the US airports computers, the banking +
investment computers & the majority of the US citizens
computers. Why would they want to do that...?
WAKE UP PEOPLE!
These worldwide cyber attacks are not just some smart punk
kids having a laugh. These attacks are effecting millions of
businesses & costing them BILLIONS of dollars. These "phishing"
scams through IE Outlook are ripping off money from innocent
people & growing identity theft is a major problem.
Don't make it easy for criminals / terrorists by using faulty
software full of security holes that Citizen Gates can't plug fast
enough.
Don't allow a Cyber-911 to happen.
Wow. I am impressed. Never let facts, or lack of, get in the way of a good rant.
- USAF uses MSIE "security version"?
- by Llib Setag August 23, 2005 2:33 PM PDT
- Get the facts before you ASSume that others are wrong AG...
- Like this Reply to this comment
-
-
- I am assuming nothing except your bias
- by Andrew J Glina August 23, 2005 6:17 PM PDT
- 1. It does not say when the OS will be the norm. From my experience it is common for a 1-2 year change-over. Nor does it say that Microsoft is the sole software supplier.
- Like this View reply
Processing -
(8 Comments)23 November 2004
US military gets its own secure version of Windows
By Ellen Messmer, Network World Fusion
The US Air Force has had enough of Microsoft's security
problems.
But rather than switch to an alternative, it has struck a deal with
CEO Steve Ballmer for a specially configured version of Windows
to be used by all its 525,000 personnel and civilian support
staff.
Air Force CIO John Gilligan said the department wants to use a
single version of Microsoft products, built with extra security, on
its desktops and servers to help it reduce the problems it faces
in applying software patches whenever Microsoft announces new
vulnerabilities.
The new deal sees the consolidation of 38 separate contracts
with just two. The new contracts involve Microsoft supplying a
version of its desktop and server operating system and
applications that include System Management Server 2003,
Office 2003, and Exchange. The new arrangement will save the
Air Force about $100 million, according to Gilligan.
The Air Force will receive automated patch updates under a
program in which Microsoft will give the Air Force special
attention to identify new vulnerabilities early on.
The laborious patch testing and distribution process would be
automated through a single center. All Microsoft software
purchasing will also be made centrally from now on.
The Microsoft products will be configured under guidelines still
to be determined but expected to be based on input from the
National Security Agency, Defense Information Systems Agency
as well as the Center for Internet Security.
The Air Force endures about one network-based attack per week
that successfully exploits new vulnerabilities, Gilligan said.
"There's some disruption and loss of capability," he pointed out,
noting that Air Force bases all over the world support the
operations of the war in Afghanistan and Iraq. "We're spending
more money patching and fixing than buying software," said
Gilligan. It's not unusual for patching of vulnerabilities to take
months to complete, he said.
Gilligan acknowledged that in grappling with the patch-update
issue, the Air Force had considered transitioning to open-source
software but determined the transition costs would simply be
too high. Also, he noted that all software from all vendors, as
well as open source, faces the problem of newly-discovered
vulnerabilities that have to be patched.
The Air Force operates several hospitals, and many medical
devices used in operating rooms also use commercial operating
systems, including Microsoft's Windows. Gilligan said the Air
Force is mindful that these medical devices also face patching
issues and that medical devices can also be vulnerable to attack
when they are left unpatched
But more importantly...
2. The issue of infiltration method has not been addressed. You instantly assumed that it was a Microsoft related flaw when the story did not say that at all.
But there is no need for name calling.