Data of some ministries of the federal U.S. Government were protected by passwords which aren’t recommended to be used even for accounts of e-mail of civilians, is spoken in the Congress report.
Such passwords as “QWERTY” and personal names of users made vulnerable networks of several government agencies of the USA, is spoken in the report of the Homeland Security Department, published on Tuesday in the device Committee on Homeland Security & Governmental Affairs of U.S. Congress.
As reported Security Newswire, weak passwords are only an iceberg top in an information security system of federal institutions which more than once faced loss of confidential data.
Nuclear Regulatory Commission (NRC) stored details of system of safety on ordinary CD without any protection. Hackers stole information on a condition of federal dams, including their engineering weakness and accident threat.
Weak places in cybersafety of the federal government threatened power supply networks, our financial markets, our systems of emergency reaction, and also personal information of our citizens”, told Tom Coburn, senator from Oklahoma .
It is already known that departments of internal security, justice, defense, work, power, trade, NASA, EPA, human resource management, the Federal Reserve System, Commodity Futures Trading Commission, U.S. Copyright Office and National Weather Service became victims of hackers. All of them faced theft the confidential data. And it only episodes which became known the public.
Meanwhile revealed damage from breakings was rather comedy, than catastrophic — in one case, for example, hackers used system of an emergency broadcast to warn on television about flash of epidemic of the zombie. However further, it is spoken in the report, it is impossible to hope for similar luck in view of prevalence of a problem.
According to the Commission on nuclear regulation, the system of safety of IT on some nuclear power plants is so weak that some employees started buying own computers and establish the separate protected networks, that creates absolutely new configuration of an information security system.
However, in Homeland Security Department situation it isn’t much better. Only one example — when checking 10 passwords written down on a sheet of paper, 15 unregistered documents for the office using, six unblocked laptops and two credit cards” were found in office of the director of information technology, is spoken in the report.