A data breach this spring resulting in over 24,000 files being stolen, the Pentagon revealed as it unveiled its long-awaited “Strategy for Operating in Cyberspace.” Spokespersons acknowledged the attack as one of the most aggressive to date, but described much of the data stolen as “mundane” although some information concerning sensitive military systems was involved.
The fact that defense department systems are under constant attack comes as no surprise. Officials have long acknowledged that new malicious programs and threats are discovered every day. The fact that so many files were obtained in a single breach, and that the Pentagon was able to keep it a secret, did come as a surprise to many.
But it isn’t the first time the Pentagon has remained mum when it comes to cybersecurity. It only recently acknowledged a 2008 attack involving a flash drive, which caused so much damage the entire defense network quickly banned the use of any portable drives on government systems.
So how does the Pentagon lose 24,000 sensitive files? It isn’t disclosing details, but Deputy Secretary of Defense William Lynn acknowledged that it was a “foreign” attack on a defense contractor. Cybersecurity experts are speculating that the breach is likely to have been the result of a spear phishing or data mining campaign targeting users with access. Another friendly reminder to view emails, links and internet postings with caution.
