The quicker a phone's answered in sales, the slower it's answered in customer services - Brownridge's Law
|
|
|
US defence workers lose USB privileges
THE US DEPARTMENT of Defense has issued rules against the use of removable drives within the US Armed Forces in an attempt to curb virus and malware infections of the Sipper and Nipper networks. The Department acted in reaction to the threat of a “global virus” which was later identified as the Agent.btz worm, a little worm that specifically seeks out removable media for propagation.
Initial reports indicate the DoD has formed flash-drive collecting battalions and recalled all the drives that were issued to employees. Further probing into the matter indicates that US military bases throughout have also received notice that this is also valid for GI Joe/Jane: no removable media use allowed on bases – including precious iPlods and other MP3 players (we wonder what that does to troop morale?).
Several armed forces throughout the world already implement similar measures, including the Israeli Defense Forces, according to our resident towel-donning military affairs expert Sylvie Barak.
We’re a bit at a loss as to why the SIPRNet and NIPRNet anti-virus scanners wouldn’t pick up the malware on removable media drives, but if they aren’t capable of the most simple AV tasks, we’d recommend banning email and any sort of internet communication altogether, resorting to carrier pigeons as the only true form of military communication.
What does sound a bit more reasonable is the fact that several serious data loss incidents have occurred over the course of 2008, including a USB stick that was stolen in Japan but contained data pertaining to joint strategic US/Japanese SDF troop deployments. The stick was later retrieved, but the fact that it was 'lost' in the first place did raise some eyebrows.
Regardless of these facts, big corporations usually issue employees serialised thumb-drives, so if in fact a leak or infection occurs the employee will be traced in no time. Another option is to simply reduce user privileges so as to not be able to install the USB drive's drivers, most admins already do this to cut down on their monthly aspirin budget. Windows 2000 did that some, uhm, eight years ago… (and even before that if USB drives were around).
We’re as partial to a conspiracy theory as the next person, and touting the DoD’s network insecurity can be a great way of getting the newly-elected US President to give a good long look at what’s going on in the (cyber)world, and boosting the Cybercommand budget.
We hear they’re investing in something called SkyNET. µ
Share this:
Share
People have been occasionally caught for years leaving Silicon Valley/SFO to return across the Pacific with briefcases full of CD-ROM's. Most workers are honest but the few make for spectacular security failures in a business environment.. Now that affordable SD cards in the gigabyte range are so available it would seem that few will be caught in the future. Most Silicon Valley companies probably have little private IP these days. Not running fast - generating more - because of the recession will cost a lot, IMHO.

Years ago Sun workstations/Unix separated eecute and read file permissions making copying, say, CAD packages more difficult. Windows, of course, doesn't do that and still doesn't do a lot of what a commercial system would be expected to do. IT does have blade PC's available of course but the crucial uses in engineering usually demand a local PC and often administrative permissions and operation with the covers off.
Several units are not waiting for the IT people to fix this. A common low tech solution involves a tube of epoxy being used to fill the USB ports. This fix is instantaneous and actually fool proof.
getting rid of windows instead?
Any sort of removeable usb flash storage device. USB drives, external hard drives, media cards, you name it. Anything that can store data and hooks up via USB.

The major issue for us is that there was zero warning, no advanced notice. So now there are piles of people who pictures, documents or other job realted data made inaccessiable.

If only there were a fair selction of programs that they could buy made to look for exaclty what they are worried about. It would have been even nicer if these programs have been on the market for years and have proven themself reliable.

Oh wait ...
...until the carrier pigeons get Bird Flu. Then we're back to smoke signals, until second hand smoke catches up.
I tunes in itself is a virus.
What wasn't reported: Some people in the Army have to use digital cameras to do their job... and digital cameras are "removable media", too... Ooops!
Are you sure about the ipod and such being included? They after all are not running in file mode and need itunes to transfer songs, making it a bit unlikely that a virus would land on them and then would crawl back onto another computer