Ride the Lightning

Working for Uncle Sam is Risky: Chinese Breach OPM

July 15, 2014

The Washington Post reported last week that there had been a breach of the computer networks of the Office of Personnel Management, which stores detailed data on up to 5 million U.S. government employees and contractors who hold sensitive security clearances.

Authorities have traced the intrusion to China, but investigators don't yet know whether the attackers worked for the Chinese government. Our government said that the data is encrypted and that no personal data appears to have been stolen.

While I am rarely comforted by government reassurances, I am pleased that the OPM and the Department of Homeland Security were alerted to the breach in mid-March through an automated monitoring system. The intrusion was detected early enough that a DHS computer emergency readiness team, working with the agency, was able to block the intruder and minimize the harm.

This represents real progress, having effective intrusion detection systems in place.

However, as many commentators have noted, some kinds of encryption have been compromised and others will be compromised. The very idea that the Chinese may get, through whatever means, detailed information about those who hold security clearances is unnerving. Simply breaking encryption schemes is of concern, but so is the idea that the information gleaned could lead to sophisticated spearphishing or other attacks which, if successful, could lead to the possibility of access to highly secured networks.

It does seem like cyberwarfare was declared by many governments long ago – and they have no more clue about how to stop it than they once did about halting the progress of the atomic bomb. Yet again, we are (you must forgive the phrase) riding the lightning.

E-mail:    Phone: 703-359-0700
Digital Forensics/Information Security/Information Technology
http://www.senseient.com
http://twitter.com/sharonnelsonesq