Krypt3ia

(Greek: κρυπτεία / krupteía, from κρυπτός / kruptós, “hidden, secret things”)

Archive for April 24th, 2009

Speaking of DHS and Bad Cyber Security…

leave a comment »

OK: Personal Data Of 1M On Stolen DHS Laptop

April 23, 2009 by admin
Filed under: Government Sector, Theft, U.S.

Well, here’s a laptop theft that will probably cost more than $50,000….. KOCO reports that a laptop stolen from an employee’s vehicle on April 3 contained personal information of up to 1 million people. According to the Oklahoma Department of Human Services, the computer had names, Social Security numbers and birthdates of people who receive state assistance. NewsOK has a bit more on the incident.

Update 1: OKDHS has a notice on its web site about the incident that says “The personal information included names, Social Security numbers, dates of birth and home addresses of clients who receive Medicaid; Child Care assistance; Temporary Assistance to Needy Families (TANF); Aid to the Aged, Blind and Disabled; and Supplemental Nutrition Assistance (SNAP or Food Stamps). The data did not contain driver’s license numbers, credit card or banking information. The potential breach did not affect Child Welfare services.”

So, here’s my thing…

1) Why in the holy hell did DHS did have 1 Million users data for MEDICAID on a DHS asset?

2) What you say? No ENCRYPTION? WTF!

3) Just when will we learn?

Written by Krypt3ia

2009/04/24 at 18:05

Hmmm DHS, I really think they are not in the game anymore…

leave a comment »

DHS Recruiting Ethical Hackers

DHS Seal

News, yesterday, of significant recruiting efforts being brought to bear by the United States Department of Homeland Security. This time, they are on the prowl of ethical hackers to join the Department’s ranks. More information, including a snippet of the original article appears after the jump.

From The Register’s John Leyden: “DHS hunts for white-hat hackers

“The Department of Homeland Security is looking to recruit white-hat hackers to help defend the US’s critical internet infrastructure…” “An ad by General Dynamics Information Technology on behalf of of the DHS seeks applicants who can “think like the bad guy”, understand hacking tools and tactics, analyse net traffic and identify vulnerabilities in federal systems. In a budget request, Defense Secretary Robert Gates requested funds to increase the number of experts it trained each year from 80 to 250 by 2011…”

Gee, last I checked DHS Sucked ass at Cybersec AND the Obama Administration was considering moving all of the issues to a new “autonomous” cyber security agency to be named later.

I wouldn’t take a job at DHS anyway… So far they have not been so swift and I am sure will continue to be mired in “stupid”