BRIAN ROSS REPORTS
Stray Guns in Baghdad
For McCain, Another Problem FundraiserTOP BLOTTER CATEGORIES
- Abramoff Lobbying Scandal
- American Al Qaeda
- Avian Flu
- Beirut Hospital Out of Gas
- CIA
- CIA Secret Prisons
- D.C. Madam Affair
- FBI
- Federal Air Marshal Service
- Homeland Security
- Hurricane Katrina
- Mark Foley Internet Scandal
- Millionaire Sex Scandal
- Nigerian E-mail Scams
- Norman Hsu, Clinton Fundraiser
- NSA: Wiretapping
- Osama bin Laden
- Payola
- Pharmacy Investigation
- Speaker of the House Dennis Hastert
- Terror
- U.K. Airline Terror Plot
- U.K. Bombing Attempts
- Wen Ho Lee
- William Jefferson
- Zarqawi
Mystery Hacker Breaks Into Naval War College Computer System
Email
Print
ShareDecember 01, 2006 4:05 PM
The Web site and computer system at the Naval War College have been offline for more than two weeks following a mysterious hacking incident. The hacker broke into unclassified sections of the network, which include the e-mail system for staff and students, most of which are senior level members of the military.
While this is not the first time a Naval computer system has been taken offline due to an intrusion, one expert says two weeks is a long time for the system to be down.
"It's very unusual," said Richard Clarke, the former U.S. Cyber Security Czar and now an ABC News Consultant. "In addition to finding out how this happened, they may be doing a physical check on every computer to make sure there isn't a timebomb waiting for them, to ensure the data isn't ex-filtrated once they go back online."
THE BLOTTER RECOMMENDS
A spokesperson at the Navy Cyber Defense Operations Command in Norfolk, Va., said they "detected an intrusion" in mid-November and that they decided to pull the plug and go offline in order to mitigate the problem and update the firewalls. Lt. Doug Gabos at NCDOC said the hacking is an isolated incident, and no other Department of Defense computers nor any classified information was compromised.
"The Washington Times" reported that Chinese hackers were responsible for the breech. Clarke, however, said that in many cases hackers will use a Chinese router as their 'last hop' in order to make China look like the origin attack.
Some previous incidents have been traced back to Chinese hackers, but no previous incidents have been traced back to the Chinese government.
While this is the first attack on the system at the Naval War College, there have been a series of attacks on DOD computer systems in the past few years, which U.S. authorities have codenamed "Titan Rain."
"Typically they originate overseas," said Clarke. "They defeat our cyber-defenses and firewalls which show they are quite sophisticated."
In most incidents, once inside the hackers or viruses begin copying databases. After that, "we don't know where they go," said Clarke.
Before Titan Rain, there was Moonlight Maze in the late 1990s, in which U.S. authorities discovered intrusions into the Pentagon and other DOD computer systems. Investigators traced the hacking back to some routers in Moscow, but it is still unknown from whom and from where those hackings originated. The case is still being investigated.
December 1, 2006 | Permalink | User Comments (7)
With an anonymizer you could look like you were coming from anywhere in the world. A shifty hacker will leave a string of different sized foot prints. Kind of like the Unabomber tried to do with false soles on his shoes or planting hair fibres he found to throw investigators. It's just digital versions.
Obviously the type of data accessed is at the root here. Building forensics out is a litte more complicated than analyzing time date stamps for file changes or elevation in user priveledges. With log analyzers they would have had that right away.
After 6 years with DoD the focus is less on security and more on regulating it's users to death. Im not surprised at this breach or that is was a campus IT environment which inherently less secure.
My experience with DoD Infosec is this, we will shut the door but we used a childs plastic lock to secure it. That lock by the way cost us 30K and three years to develop at which time it became outdated.
Posted by: Napolean | Dec 1, 2006 6:26:58 PM
Wierd
Posted by: Caleb | Dec 1, 2006 6:42:40 PM
The "Dunkin Donuts" ad is very
distracting. I am tempted to go
to another webpage, just to get
away from the constant "blinking"
A real pain in the ( ).
I know they want "attention"
So does my 4 year old "hyper"
grandson. Trash the ad....
Posted by: Spencer McCormick | Dec 1, 2006 6:54:43 PM
Yeah, because the flipping ad has anything to do with the article in question.
Where there are computer systems, there will always be someone wanting to break in. With something like a government system, it'll happen frequently, and sometimes I am surprised it doesn't happen more often. That said, it might happen more often without anyone outside knowing.
Keeping the systems offline is a good call too, until they are absolutely sure it's all clear.
Posted by: Griefy McGriefer | Dec 1, 2006 10:00:31 PM
need to investigate
Posted by: bing | Dec 2, 2006 9:56:51 AM
While Bush and republicans wage war on Iraq for their oil supply and destroys U. S. both economical and militarily, China builds its knowledge, economy and military. Seems like "NO ONE" has a problem hacking into any of our security systems, our economy data bases and has the ability to gain access to any data in U.S. it wishes. Seems like Bush and the republicans with their greed for power and oil has let America sink
Posted by: Pete Sea | Dec 2, 2006 3:21:16 PM
A newly elected Democrat, and former Pentagon analyst, is going on record that he's certain Saddam Hussein had links to al Qaeda?
Looks like it.
Posted by: Mark | Dec 4, 2006 3:00:35 PM
Post a comment
