Archived material Access restricted Article
Rantburg

Today's Front Page   View All of Tue 07/12/2011 View Mon 07/11/2011 View Sun 07/10/2011 View Sat 07/09/2011 View Fri 07/08/2011 View Thu 07/07/2011 View Wed 07/06/2011
1
2011-07-12 Science & Technology
Anonymous Breaches Booz Allen Hamilton to Reveal 90,000 Military Passwords
Archived material is restricted to Rantburg regulars and members. If you need access email fred.pruitt=at=gmail.com with your nick to be added to the members list. There is no charge to join Rantburg as a member.
Posted by tipper 2011-07-12 03:49|| || Front Page|| [2 views ]  Top

#1 banks and big companies ... why don't they firewall properly?
Posted by Water Modem 2011-07-12 08:55||   2011-07-12 08:55|| Front Page Top

#2 Because the decision makers at the top are old creatures who have no real grasp of tech. They're not the ones with i'whatevers but have had secretaries and assistants doing the interface with modern technologies enough to understand their implied requirements for privacy and anonymity.
Posted by Procopius2k 2011-07-12 10:47||   2011-07-12 10:47|| Front Page Top

#3 Also the concept of a front end and back end server arrangement along with some crypto between the two. You can keep out 99.999999% of hackers with just that. With proper permissions for users, you can even keep the spear phishing to minimum damage.

Mostly it comes to money. The upper management sees it as an acceptable risk. Do you spend 1 million on a lock tight solution against something that has a 2% chance of happening each year, or do you use that money for upgrades and R&D?

The other question I have is why the fuck are 90,000 military passwords kept in an area that has connectivity to the internet? Everything that is used for authentication is CAC card related for day to day use for non-secured stuff.
Posted by DarthVader 2011-07-12 12:32||   2011-07-12 12:32|| Front Page Top

#4 Darth, IKO for retirees is not cac. Guess I need to get the list to find out what my password for IKO is...
Posted by 49 Pan 2011-07-12 13:13||   2011-07-12 13:13|| Front Page Top

#5 They had 90,000 passwords on their server IN THE CLEAR (rather than stored as SHA-256 hashs)? Idiots!
Posted by CincinnatusChili 2011-07-12 20:58||   2011-07-12 20:58|| Front Page Top

00:07 JosephMendiola
23:59 trailing wife
23:52 USN,Ret.
23:49 JosephMendiola
23:46 SteveS
23:41 JosephMendiola
23:35 SteveS
23:35 JosephMendiola
23:29 JosephMendiola
22:58 JosephMendiola
22:53 USN,Ret.
22:52 JosephMendiola
22:42 USN,Ret.
21:42 Alaska Paul
21:29 DarthVader
21:13 Secret Asian Man
21:09 trailing wife
21:07 Pappy
21:06  de Medici
21:01 Frank G
20:58 CincinnatusChili
20:54 GolfBravoUSMC
20:42 Frank G
20:41 Frank G









Paypal:
Google
Search WWW Search rantburg.com