{"id":4735,"date":"2017-10-11T14:39:09","date_gmt":"2017-10-11T18:39:09","guid":{"rendered":"http:\/\/community.mis.temple.edu\/mis5211sec001fall17\/?p=4735"},"modified":"2017-10-11T14:39:09","modified_gmt":"2017-10-11T18:39:09","slug":"dont-overlook-physical-controls","status":"publish","type":"post","link":"https:\/\/community.mis.temple.edu\/mis5211sec001fall17\/2017\/10\/11\/dont-overlook-physical-controls\/","title":{"rendered":"Don&#8217;t overlook physical controls"},"content":{"rendered":"<p>USA Today reports the NSA&#8217;s Tailored Access Operation unit had a serious data breach.\u00a0 This is one of the largest incidents at NSA over the last five years.<\/p>\n<p>The story reports, the access controls at the TAO&#8217;s locations are &#8220;porous&#8221;, allowing workers to easily remove information by digitally removing or by simply walking out the front door.<\/p>\n<p>Here are a few quotes from the story:<\/p>\n<p>&#8220;Physical security wasn\u2019t much better, at least at one TAO operator\u2019s facility. He told The Daily Beast that there were \u201cno bag checks or anything\u201d as employees and contractors left work for the day\u2014meaning, it was easy smuggle things home. Metal detectors were present, including before Snowden, but \u201cnobody cared what came out,\u201d the second source added. The third source, who visited TAO facilities, said bag checks were random and weak.&#8221;<\/p>\n<p>\u201cIf you have a thumb drive in your pocket, it\u2019s going to get out,\u201d they said.<br \/>\nUnsurprisingly, workers need to swipe keycards to access certain rooms. But, \u201cin most cases, it\u2019s pretty easy to get into those rooms without swipe access if you just knock and say who you\u2019re trying to see,\u201d the third source added.<\/p>\n<p>&#8220;The TAO is the tip of the NSA&#8217;s offensive hacking spear, and could have access to much more sensitive information&#8221;.<\/p>\n<p>&#8220;Defense Department\u2019s inspector general completed in 2016 found that the NSA\u2019s \u201cSecure the Net\u201d project\u2014which aimed to restrict access to its most sensitive data after the Snowden breach\u2014fell short of its stated aims. The NSA did introduce some improvements, but it didn\u2019t effectively reduce the number of user accounts with \u2018privileged\u2019 access, which provide more avenues into sensitive data than normal users, nor fully implement technology to oversee these accounts\u2019 activities&#8221;<\/p>\n<p>I guess the Top Secret classification doesn&#8217;t mean what it used too&#8230;<\/p>\n<p>http:\/\/www.msn.com\/en-us\/news\/technology\/elite-hackers-stealing-nsa-secrets-is-%E2%80%98child%E2%80%99s-play%E2%80%99\/ar-AAtiWhO?li=AA4Zoy&#038;ocid=spartandhp<\/p>\n","protected":false},"excerpt":{"rendered":"<p>USA Today reports the NSA&#8217;s Tailored Access Operation unit had a serious data breach.\u00a0 This is one of the largest incidents at NSA over the last five years. The story reports, the access controls at the TAO&#8217;s locations are &#8220;porous&#8221;, allowing workers to easily remove information by digitally removing or by simply walking out the [&hellip;]<\/p>\n","protected":false},"author":14419,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[716352],"tags":[],"class_list":{"0":"post-4735","1":"post","2":"type-post","3":"status-publish","4":"format-standard","6":"category-week-07-policy-documents-video","7":"entry"},"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall17\/wp-json\/wp\/v2\/posts\/4735","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall17\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall17\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall17\/wp-json\/wp\/v2\/users\/14419"}],"replies":[{"embeddable":true,"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall17\/wp-json\/wp\/v2\/comments?post=4735"}],"version-history":[{"count":1,"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall17\/wp-json\/wp\/v2\/posts\/4735\/revisions"}],"predecessor-version":[{"id":4736,"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall17\/wp-json\/wp\/v2\/posts\/4735\/revisions\/4736"}],"wp:attachment":[{"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall17\/wp-json\/wp\/v2\/media?parent=4735"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall17\/wp-json\/wp\/v2\/categories?post=4735"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall17\/wp-json\/wp\/v2\/tags?post=4735"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}