The government seems to be having some problems lately. Last week it started with the hack of the Department of Justice’s website, which was closely followed by attacks targeting the United States Sentencing Commission twice and an internal compromise of the Department of Energy. Now the Federal Reserve is joining the action with the breach of an internal website that led to Anonymous releasing logins, IP addresses and contact information for a number of bank execs.
The website, which is used “to store a database for banks to use in the event of a natural disaster,” has also been referred to as non-public. Although the Federal Reserve won’t provide any details, there’s a pretty huge difference between “internal” and “non-public.” And I got bad news for them … if it’s connected to the Internet, then it’s public.
I feel for them though … security is hard but the Federal Reserve did do one thing right … they fixed it quickly. This is one thing that we definitely need to get better at. It’s impossible to be 100% secure so being able to quickly respond is the next best thing.
While many were watching the Super Bowl Sunday night, Anonymous was claiming it had hacked into the Federal Reserve and posted the names of more than 4,000 bank executives on another .gov website. Now, the Federal Reserve has confirmed that an internal portion of its website was hacked.
“The Federal Reserve system is aware that information was obtained by exploiting a temporary vulnerability in a website vendor product,” a spokeswoman said, according to Reuters.
“Exposure was fixed shortly after discovery and is no longer an issue. This incident did not affect critical operations of the Federal Reserve system,” the spokeswoman continued.
Those whose personal information was obtained, which ZDNet reported included logins, IP addresses and contact information, have been notified.
Today’s post pic is from RawStory.com. See ya!