FAA Network Hacked 110
coondoggie writes "The Federal Aviation Administration has joined the growing list of government agencies that have had their supposedly safe systems hacked. The agency this week notified about 45,000 employees that one of its servers was hacked into and employee personal identity information was stolen.
The FAA was quick to say the server that was accessed was not connected to the operation of the air traffic control system or any other FAA operational system. It did say two of the 48 files on the breached computer server contained personal information about more than 45,000 FAA employees and retirees who were on the FAA's rolls as of the first week of February 2006."
Re:24? (Score:3, Informative)
They may have told the current employees... (Score:5, Informative)
Re:NOTE: This is NOT the ATC network (Score:3, Informative)
Re:operation of the air traffic control system (Score:2, Informative)
Here's the e-mail the FAA sent out to Employees (Score:5, Informative)
Re:operation of the air traffic control system (Score:1, Informative)
A couple of things.
The FAA has been in a broad transition to becoming more secure. This is mainly pointed at the administration network, as ATC and all operations run on an internal network that in no way touches the outside world.
Some things that have happened and are happening on the admin network.
-Wirless intrusion detection (complete, alarms go off if any new wireless devices are detected)
-Network access control (will be completed soon, anything that is not registered will not touch the network)
-Encryption (all laptops are currently encrypted, workstations will be in the future)
-ID Cards (Cards readers will be used to access any machine, in progress)
-Centralized secure proxies (Proxies that were run separately and with different rules will be homogenized and secured)
I know this sounds like standard security features, but trust me...five years ago none of this stuff was standard. They (we) are getting there.