Posted on 06/24/2015 10:04:44 AM PDT by MeshugeMikey
WASHINGTON (AP) -- A CIA-backed technology company has found logins and passwords for 47 government agencies strewn across the Web - available for hackers, spies and thieves. Recorded Future, a social media data mining firm backed by the CIA's venture capital arm, says in a report that login credentials for nearly every federal agency have been posted on open Internet sites for those who know where to look. According to the company, at least 12 agencies don't require authentication beyond passwords to access their networks, so those agencies are vulnerable to espionage and cyberattacks. The company says logins and passwords were found connected with the departments of Defense, Justice, Treasury and Energy, as well as the CIA and the Director of National Intelligence.
(Excerpt) Read more at hosted.ap.org ...
There's a certain kind of aggressive moronity that transcends mere stupidity and becomes criminal.
46 of them were just “password”
Yes, there is. Companies, and individual people, do it every day.
But as usual, the government is incompetent. Password-only authentication is inadequate, and superior security has been available for decades.
My clients and my company require a VPN connection to get beyond the firewall, and setting up a VPN connection requires both a traditional password (which I must remember) and a pseudo-random password that changes every 20 seconds, and can only be used once.
I have the same technology (commonly called "two-factor authentication") for my Apple, Google, and Microsoft accounts. An app on my phone generates the pseudo-random part.
Even my bank requires two-factor authentication, by sending me a pseudo-random code in a text message, before I can login.
46 of them were just password —
I’m not sure how, just yet, but I AM sure that is ‘rassis’.
This is exactly why I stated in an earlier thread (about the Chinese hackers) that our government/media is trying to blame the Chinese for gaining access to Federal Personnel Databases when the truth is that no hacking was even needed to gain access.
Well, in a way, I did use the letters E, D & R.
We are no longer allowed to use any words with the letters C, J, D, R, E, L in them.
Confederate starts with the letter C
J, D banned because of Jefferson Davis
R, E, L for Robt E Lee.
Agree. Most, if not all, were likely put out there on purpose.
“Oh look over THERE ..... a Confederate flag!”
Is it deflated?
Yes, I can’t believe how stupid putting our ‘PRIVATE’ info on computers/internet, all in the name of ‘helping you as fast as possible.’
Plus they print out more paper than ever.
Heaven help us from the idiots/enemies!
how they can continue week after week month after month Year After YEAR with this sort of MESS
That I don’t doubt...sadly!
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.