Posted on 06/16/2016 2:03:44 PM PDT by jazusamo
Full title: New Homeland Security Records Reveal Top Officials Were Exempted from Strict Ban Placed on Web-Based Personal Email Accounts Despite Heightened Security Concerns
(Washington, DC) Judicial Watch today announced it obtained 693 pages of Department of Homeland Security records revealing that Secretary Jeh Johnson and 28 other agency officials used government computers to access personal web-based email accounts despite an agency-wide ban due to heightened security concerns. The documents also reveal that Homeland Security officials misled Rep. Scott Perry (R-PA) when Perry specifically asked whether personal accounts were being used for official government business.
The records were obtained in response to a February 2016 court order by the U.S. District Court for the District of Columbia following a Judicial Watch Freedom of Information Act (FOIA) lawsuit ( Judicial Watch v. Department of Homeland Security (No. 1:15-cv-01772)).
The Judicial Watch lawsuit was filed in October 2015 after the Department of Homeland Security failed to comply with a July 2015 FOIA request seeking the following:
Judicial Watch sought the documents following a Bloomberg News report revealing that 29 high-level Homeland Security officials, including Johnson, obtained exemptions from a February 2014 agency-wide ban on the use of web-based email systems due to increased security concerns. The waivers were granted despite security officials warning of the risks of malicious attacks and data exfiltration from webmail use.
Included among the records is a February 19, 2014 memorandum from security officials at the Department of Homeland Security strongly warning: According to the Office of the Chief Information Officer, access to webmail using DHS networks is responsible for almost half of all attempts to compromise DHS network security. The memo explains that webmail use resulted in 14 Trojan-Horse attacks in August 2013 and 25 attacks in December 2013 on Homeland Security computer networks.
As a result, in the same memo, Department of Homeland Security officials imposed a total ban on employee use of web-based email systems:
New restrictions are being implemented that will no longer allow employee access to personal webmail sites from government computers [Emphasis added]. This action is being taken to strengthen cybersecurity and enhance protection of the Departments computer networks. Effective tonight, access to webmail sites like AOL, Hotmail, Comcast, Gmail, Yahoo, and other email services will be prohibited.
The records reveal that despite this strict prohibition, Johnson was given an exemption from the ban on the first day of its implementation simply because he liked to check his personal email from the office everyday. In an April 7, 2014 email, DHS Deputy Director for Scheduling and Protocol Mary Ellen Brown wrote to DHS Chief of Staff for the Under Secretary for Management Vincent Micone: Hi Vince I wanted to flag that S1 [Secretary Johnson] accesses his [redacted] account every day and I didnt know if we could add his computer to the waiver list? Let us know at your convenience. Thanks! ME
Micone responds several minutes later: ME, This will be done no problem. Thanks, Vince
The documents also reveal that on April 29, 2014, Connie LaRossa, then- director of legislative affairs for Homeland Security, was granted a waiver to use her web-based email account for official government business. The justification LaRossa used for requesting access to Yahoo email was that some congressional staffers wanted to send her political information that they do not want to transmit via government mail.
Despite LaRossas waiver, in an April 7, 2014, seems to contradict answers prepared Rep. Scott Perry in response to his query about the use of personal email accounts for official business, Homeland Security explicitly denied it was being done. In one question, Rep. Perry asked: Are DHS officials permitted to maintain private email accounts that are used to conduct official business? If so, who and under what circumstances?
Homeland Security officially responded: To date, no requests have been approved to use a private email account for official business.
Others Homeland Security officials included among those receiving waivers permitting them to use personal, web-based email on government computers despite the official ban included:
ANMS2 [Alejandro N. Mayorkas, deputy secretary]
Bunnell, Stevan E. [general counsel]
Chavez, Richard [director of the Office of Operations Coordination]
Gottfried, Jordan [Chief of Staff]
JCJ [Jeh Charles Johnson, secretary of Homeland Security]
Kronisch, Matthew [associate general counsel (Intelligence)]
Marrone, Christian [chief of staff]
Meyer, Jonathan [deputy general counsel]
Rosen, Paul [deputy chief of staff]
Shahoulian, David [deputy general counsel]
Silvers, Robert [deputy chief of staff]
Taylor, Francis X [undersecretary for intelligence and analysis]
Veitch, Alenandra [acting deputy assistant secretary]
Waters, Erin [director of strategic communication]
The use of personal email accounts on Homeland Security computers continued for more than a year after the official ban was put in place in April 2014, until July 2015 over four months after revelations about Hillary Clintons controversial email practices. In a July 20, 2015 email, Luke McCormack, then-Chief Information Officer of the Justice Department, ordered Jeanne Etzel, Executive Director of Homeland Securitys Next Generation Program, to pull down the personal webmail email accounts of the 29 Department of Homeland Security executives previously approved to use personal email accounts, except for that of Secretary Jeh Johnson [S1].
McCormack ordered this at the DUSMs direction. (Deputy Undersecretary for Management, Charles Fulghum.) This order came the same day a Bloombergstory was published regarding Homeland Security officials bending the rules on personal email use on government computers. The next day, Secretary Johnsons webmail access also was blocked.
Jeh Johnson and top officials at Homeland Security put the nations security at risk by using personal email despite significant security issues, said Judicial Watch President Tom Fitton. And we know now security rules were bent and broken to allow many these top Homeland officials to use personal emails to conduct government business. This new Obama administration email scandal is just getting started. If the waivers were appropriate, then they wouldnt have been dropped like a hot potatoe as soon as they were discovered by the media. And why does Jeh Johnson continue to access his personal email from his DHS computer despite the rules?
[yawn]....lying to Congress...not like it’s going to affect their funding or anything
Doesn’t he think he’s special.../s
Web e-mail used to coordinate crap they dare not speak of on official channels...
It's a pretty dumb way to do it, as webmail is not secure. Some of the services have gone to SSL connections, but there are ways around that for people that aren't careful.
The truth is: I don't know why anyone would want to check personal email on a work computer. You can do everything you want on a personal cell phone.
Our criminal government is replete with criminals. However, our quisling congress is also.
Was this testimony given to Congress while under oath?
L
I don’t know but the thing that really gripes me is anyone who is before a Congressional committee answering questions shouldn’t have to be under oath, truth should be expected.
There has to be a waiver for compliance with those requirements too. That way they can fully comply with the law (which, cough cough, includes a waiver provision exempting certain persons from complying with the law)
Who woulda thunk it?
Doesn't matter anyway, who's going to charge them, the DOJ? Who's going to arrest them, the U.S. Marshall Service? Who's going to investigate them, the FBI? Elections make a BIG difference folks! Imagine what it would be like if the Hilldebeest was the puppeteer.
In secure areas that deal with classified information personal cell phones are not permitted. There are electronic gadgets which detect cell phones in case one "forgets" that he has it in his pocket.
Hopefully Homeland Security is mostly in a classified area.
Not all of them. It depends on the level of classification, because complete security requires Tempest certification (basically a large Faraday cage). Inside, cell phones simply won't work.
But, there's a very good reason for keeping people out of personal email accounts (and even unverified websites) on any government computer: it's the mostly likely vector for compromise.
Hopefully Homeland Security is mostly in a classified area.
Johnson's office may be, but not everyone else -- at least not in an area that is Tempest certified. It's enormously expensive to house that many people.
This new information shows that Hillary is in the clear. Everyone did it.
/S, as if it’s necessary.
Judicial Watch sought the documents following a Bloomberg News report revealing that 29 high-level Homeland Security officials, including Johnson, obtained exemptions from a February 2014 agency-wide ban on the use of web-based email systems due to increased security concerns. The waivers were granted despite security officials warning of the risks of malicious attacks and data exfiltration from webmail use.
Interesting... Mayorkas was invoved in a big scandal involving the Clintons , McAuliffe, and Harry Reid and so on, helping them procure visas
And Christian Marrone was involved in a big scandal in Philadelphia
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.