91av

FBI data open to ‘insider attacks’

The US's leading law-enforcement agency is failing to use simple security procedures – like passwords – to protect data from malicious insiders

The irony of it. America’s leading law enforcement agency is wide open to criminals wanting to steal its secrets. That’s the conclusion of a damning report into the internal network security of the Federal Bureau of Investigation.

According to the Government Accountability Office in Washington DC, the FBI fails to consistently apply such standard authentication measures as passwords and biometrics to guard against unauthorised access to its computer files. All a potential data thief need do is get a job there, and so gain physical access to a computer. This lets them reach sensitive data, regardless of their security status.

The FBI also fails to log the retrieval of critical data, and sensitive information is stored unencrypted in plain text files, says the GAO in its public report ().

Topics: Computer crime