Unbelievable: Gov’t Outsourced Database Management to IT Workers With TOTAL ACCESS… in CHINA
The technical details are a little difficult here so let’s put it this way – idiotic and utterly incompetent government officials outsourced IT management of highly sensitive information to companies that had some workers in China, and gave them complete and total access to that database.
From Ars Technica:
Some of the contractors that have helped OPM [Office of Personnel Management] with managing internal data have had security issues of their own—including potentially giving foreign governments direct access to data long before the recent reported breaches. A consultant who did some work with a company contracted by OPM to manage personnel records for a number of agencies told Ars that he found the Unix systems administrator for the project “was in Argentina and his co-worker was physically located in the [People’s Republic of China]. Both had direct access to every row of data in every database: they were root. Another team that worked with these databases had at its head two team members with PRC passports. I know that because I challenged them personally and revoked their privileges. From my perspective, OPM compromised this information more than three years ago and my take on the current breach is ‘so what’s new?'”
Here’s some responses from people who understand all that technical gobbledygook, and how royally screwed we are:
"Reinventing government" via outsourcing was always a scam. But letting IT people in China have root access to OPM… http://t.co/d06zJgyan7
— John Schindler (@20committee) June 17, 2015
@20committee At a loss for words. We do better vetting for cooks in the mess halls in Afghanistan than OPM did for IT contractors. Sickening
— Tom (@ElSnead) June 17, 2015
Giving IT contractors in China root access to OPM…I said there was "systemic failure" here but this exceeds even that. Words fail here.
— John Schindler (@20committee) June 17, 2015
Yup. Let that sink in, folks. Your tax dollars went to PAYING the Chinese to steal your info. @20committee https://t.co/LBut4TWj4C
— Avi Woolf (@AviWoolf) June 17, 2015
.@20committee @instapundit Obama literally contracted out America's national security to China. Awesome.
— John Rivers (@JohnRiversToo) June 17, 2015
Trying to think how USG could make it easier than outsource-to-China #OPMhack to let FI services rob us blind. Not coming up with much.
— John Schindler (@20committee) June 17, 2015
This is bad, people. So bad. And it will have consequences, and no one will know that we should have pinned it on Obama’s government, because we’re all obsessed with Bruce Jenner’s genitals and Rachel Dolezar’s suntan lotion. Speaking of which, click that link below, it’s CRAZY!!!