funsec mailing list archives

Previous By Date Next
Previous By Thread Next

FWD: [ISN] Information-sharing platform hacked

From: Paul Ferguson <fergdawgster () gmail com>
Date: Thu, 14 May 2009 02:22:11 -0700
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

FYI.

- - ferg

On 5/13/09, InfoSec News <alerts () infosecnews org> wrote:


http://fcw.com/articles/2009/05/13/web-dhs-hsin-intrusion-hack.aspx

By Ben Bain
FCW.com
May 13, 2009

Homeland Security Information Network suffers intrusions

The Homeland Security Department’s platform for sharing sensitive but
unclassified data with state and local authorities was hacked recently,
a DHS official has confirmed.

The intrusion into the Homeland Security Information Network (HSIN) was
confirmed to Federal Computer Week by Harry McDavid, the chief
information officer for DHS’ Office of Operations Coordination and
Planning. McDavid said the U.S. Computer Emergency Readiness Team
reported an intrusion into the system in late March. The initial hack
was brief and limited, and it was followed by a more extensive hack in
early April, McDavid said.

The hacker or hackers gained access to the data by getting into the HSIN
account of a federal employee or contractor, McDavid said. The bulk of
the data obtained was federal, but some state information was also
accessed, he added, and the organizations that owned the data and
Congress were notified of the intrusion.

The files that were accessed contained administrative data such as
telephone numbers and e-mail addresses of state and federal employees.
However, an investigation into the incidents has found that no Social
Security numbers, driver's license numbers or financial data were
obtained, McDavid said.

[...]



-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.5.3 (Build 5003)

wj8DBQFKC+Kvq1pz9mNUZTMRAlgqAJwN2VTdihxwFgwURdKK1WL0EAHAMACgu4pC
BfWfN7mPnDwIXX/tmCnlMg4=
=77WH
-----END PGP SIGNATURE-----



-- 
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawgster(at)gmail.com
 ferg's tech blog: http://fergdawg.blogspot.com/

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
Previous By Date Next
Previous By Thread Next

Current thread: