[Home]  [Headlines]  [Latest Articles]  [Latest Comments]  [Post]  [Sign-in]  [Mail]  [Setup]  [Help] 

Status: Not Logged In; Sign In

Mass job losses as major factory owner moves business overseas

Israel kills IDF soldiers in Lebanon to prevent their kidnap

46% of those deaths were occurring on the day of vaccination or within two days

In 2002 the US signed the Hague Invasion Act into law

MUSK is going after WOKE DISNEY!!!

Bondi: Zuckerberg Colluded with Fauci So "They're Not Immune Anymore" from 1st Amendment Lawsuits

Ukrainian eyewitnesses claim factory was annihilated to dust by Putin's superweapon

FBI Director Wray and DHS Secretary Mayorkas have just refused to testify before the Senate...

Government adds 50K jobs monthly for two years. Half were Biden's attempt to mask a market collapse with debt.

You’ve Never Seen THIS Side Of Donald Trump

President Donald Trump Nominates Former Florida Rep. Dr. Dave Weldon as CDC Director

Joe Rogan Tells Josh Brolin His Recent Bell’s Palsy Diagnosis Could Be Linked to mRNA Vaccine

President-elect Donald Trump Nominates Brooke Rollins as Secretary of Agriculture

Trump Taps COVID-Contrarian, Staunch Public Health Critic Makary For FDA

F-35's Cooling Crisis: Design Flaws Fuel $2 Trillion Dilemma For Pentagon

Joe Rogan on Tucker Carlson and Ukraine Aid

Joe Rogan on 62 year-old soldier with one arm, one eye

Jordan Peterson On China's Social Credit Controls

Senator Kennedy Exposes Bad Jusge

Jewish Land Grab

Trump Taps Dr. Marty Makary, Fierce Opponent of COVID Vaccine Mandates, as New FDA Commissioner

Recovering J6 Prisoner James Grant, Tells-All About Bidens J6 Torture Chamber, Needs Immediate Help After Release

AOC: Keeping Men Out Of Womens Bathrooms Is Endangering Women

What Donald Trump Has Said About JFK's Assassination

Horse steals content from Sara Fischer and Sophia Cai and pretends he is the author

Horse steals content from Jonas E. Alexis and claims it as his own.

Trump expected to shake up White House briefing room

Ukrainians have stolen up to half of US aid ex-Polish deputy minister

Gaza doctor raped, tortured to death in Israeli custody, new report reveals

German Lutheran Church Bans AfD Members From Committees, Calls Party 'Anti-Human'


Neocon Nuttery
See other Neocon Nuttery Articles

Title: The White House's impending email security disaster
Source: Kos
URL Source: http://www.dailykos.com/story/2007/3/28/112424/169
Published: Mar 28, 2007
Author: Vyan
Post Date: 2007-03-28 12:29:33 by ...
Keywords: None
Views: 186
Comments: 9

Yesterday my boss - who isn't the most net savvy guy in the world - got an email from Paypal claiming that there was a problem with his credit card, so he logged into his account and updated his information.

Today he discovered an unexplained withdrawal for $2,600 from his Checkcard account. This is just minutes after I'd taken a look at this suspicious email and discovered that it didn't come from Paypal at all and instead directed the user to a domain called http://dancesforlifes.com which featured a facimile of the paypal login and html code that then sent his Id, Password and credit card information to a Gmail address.

Oh shit!.

All of this I mention just to point out that email security is not a joke and that many people will go to great lengths to get at the sensitive information we'd prefer to protect. Oh, and it appears that some of the staff of the White House have switched from the secure wh.gov server to using not just the RNC, but personal email accounts!.

From Thinkprogress.

Via Muckraker, U.S. News reports that "just a week after E-mails in the U.S. attorneys case became a main focus of congressional Democrats probing the firings, several aides said that they stopped using the White House system except for purely professional correspondence."

"We just got a bit lazy," said one aide. "We knew E-mails could be subpoenaed. We saw that with the Clintons but I don't think anybody saw that we were doing anything wrong."

But rather than use RNC accounts, "they have subsequently bought their own private E-mail system through a cellular phone or Blackberry server. When asked how he communicated, one aide pulled out a new personal cellphone and said, ‘texting.’"

As was pointed out in the Recommended Diary by citizen92 earlier this week, allowing their communications to be stored on unsecured non-government servers is a major security threat simply waiting to be exploited. All someone needs to do is crack the password and they're in.

The White House is a huge target for electronic espionage by friendly and hostile foreign powers. For those of you who may have visited Washington, this may be evident when you stroll by the various embassies scattered around the city -- with their unusual sculptures of antennas and wires on their roofs. The Russians have a compound just three blocks north of the White House.

The US Government spends undisclosed amounts on countermeasures to protect its critical information and its secure networks. And it has the experts to make sure that those countermeasures are working.

But what if someone in the White House chooses to not use those counter-measures (simply to avoid leaving a subpoena-able trail of bread-crumbs) and as a results gets their password jacked?

I personally know how easy this is to accomplish. Not simply because of what happened to my boss yesterday, but because once upon a time one of best friends was a hacker. Not just any hacker - The Hacker. Kevin Mitnick and I went to High School together (he later spent several years on the run from federal authorities, I - after realizing I didn't want to go Kevin's way, went on to work for the IT department at Northrop-Grumman). Way back in the late 70's I got to see first hand how he used to create password phishing programs just like the one I described at the top of this post to access LAUSD, USC and UCLA logon accounts.

Ah, the classics never fade away it seems.

Besides the security issues, this also may blow WH claims of extended executive priviledge completely out of the water. From Josh Marshall.

"[T]his may have been too clever by half. If the president’s aides were using RNC emails or emails from other Republican political committees, they can’t have even the vaguest claim to shielding those communications behind executive privilege."

And they certainly can't use that claim to protect emails on their personal blackberry and cell phone now can they?

Oh, and by the way - other federal agencies have banned this practice for security reasons.

A reader who has a security role at a federal agency writes, "On the issue of using outside/unofficial e-mail address from official sites, the CIO at [redacted] has expressly forbade the practice for security reasons as it is all too easy to put sensitive information in an e-mail. ... Needless to say, hearing that the WH does not mandate that practice and lets [Rove] do 95% of his e-mailing from a blackberry, presumably with access to an unofficial address, is quite shocking. Still find it absolutely amazing that his clearance has not been revoked."

"Amazing" simply isn't the world for it.

Getting zapped for a couple grand is pretty bad, but just imagine how much of the nation's assets are being put a risk by these WH jackasses?

I think Fraking Criminally Negligent is a good set of words for it - how 'bout that?

Post Comment   Private Reply   Ignore Thread  


TopPage UpFull ThreadPage DownBottom/Latest

Begin Trace Mode for Comment # 4.

#2. To: ... (#0) (Edited)

Needless to say, hearing that the WH does not mandate that practice and lets [Rove] do 95% of his e-mailing from a blackberry, presumably with access to an unofficial address, is quite shocking. Still find it absolutely amazing that his clearance has not been revoked."

There's a little bit of BS here.

Blackberries can be set up to use the enterprise's (in the case WH's) mail servers. I have little doubt that Rove's BB is tied into the WH's. Blackberries are some of the most secure wireless communications devices if properly configured. In addition, the WH has its own super-secure BB setup. While most BB communications pass through a Canadian hub before being directed to their destination, the WH has its own minihub and they completely avoid passing through Canada when doing WH BB to WH BB communications.

How do I know these little details. Well... I will not have to kill you but someone will if I tell you.

a vast rightwing conspirator  posted on  2007-03-28   13:12:38 ET  Reply   Untrace   Trace   Private Reply  


#4. To: a vast rightwing conspirator (#2)

Besides, it deosn't matter if the Blackberry security is ten million times better than the Whitehouse security, the Blackberry channel isn't authorized for this type of communication. If it is deliberately used for secure communication, a felony security breach has been committed. The same as burying a secret document in the woods in order to keep it safe. It might actually be safe there, but the document can legally only be stored in an approved security container.

...  posted on  2007-03-28   13:52:56 ET  Reply   Untrace   Trace   Private Reply  


Replies to Comment # 4.

#5. To: ... (#4)

Blackberry to any WH email recipient communications are handled by WH or NSA servers only. They are as secure as you can get these days. And, yes, the messages ARE stored/archived on a WH server.

Of course, on a BB you can also have Gmail/Gtalk, Yahoo mail/Messenger and whatever else but that's not the BB's email component. When you are using the Blackberry's email service, you are safe.

a vast rightwing conspirator  posted on  2007-03-28 14:25:21 ET  Reply   Untrace   Trace   Private Reply  


End Trace Mode for Comment # 4.

TopPage UpFull ThreadPage DownBottom/Latest


[Home]  [Headlines]  [Latest Articles]  [Latest Comments]  [Post]  [Sign-in]  [Mail]  [Setup]  [Help]