US authorities plug leak of bioterror data that had been stored on an unsecured website since 2007!
Highly sensitive data: The US Department of Homeland Security (DHS) stored highly sensitive data relating to the US national anti-bioterrorism program for over a decade on an unsecured website, where it was virtually on display for hackers. The explosive material included, among other things, the secret locations of “BioWatch” measuring stations installed in public places to detect anthrax or other airborne biowarfare agents, lists of pathogens and medical agents, and emergency plans for attacks by bioterrorists.
Technology too complex for staff
“The fact that such security leaks continue to occur at the official level – nationally and internationally – shows how complex the security issue has now become,” explains digitalization expert Thomas R. Köhler to pressetext. Ultimately, even for institutions as powerful and financially well-positioned as the DHS, it is difficult to keep up with rapid technological developments. “It is somewhat surprising, however, that such sensitive information could remain relatively unsecured on the web for such a long period of time,” emphasizes Köhler.
In the present case, the question arises as to whether those responsible may have traded security for convenience. “This is the cause of many security breaches. Another reason could simply be negligence,” says the expert. The technology used is often too complex for the employees. “That’s why it’s important not only to regularly update the security software, but also to train employees. In the case of particularly critical systems, you should not use the cheapest security provider and leave the testing to independent companies,” advises Köhler.
“Danger to National Security”
According to a report in the Los Angeles Times, the BioWatch program, which costs US taxpayers over $1.6 billion (around €1.4 billion), doesn't exactly have the best reputation in internal circles. Critics have often complained in the past that the technology can only detect a few pathogens and is unable to offer real protection against terrorist attacks. The Government Accountability Office, which is a non-partisan investigative body of the US Congress, also admitted in 2015 that the system had already triggered 149 false alarms since 2003.
The lax security in dealing with the relevant data collected as part of BioWatch was also said to have been described as “critical” and “highly risky” after a security assessment in 2017. When a former security manager wanted to address this openly and pointed out that there was a “threat to national security,” colleagues are said to have laughed at him.
Source: pte
Article image: Shutterstock / By DavidBautista
Notes:
1) This content reflects the current state of affairs at the time of publication. The reproduction of individual images, screenshots, embeds or video sequences serves to discuss the topic. 2) Individual contributions were created through the use of machine assistance and were carefully checked by the Mimikama editorial team before publication. ( Reason )