« 東大寺二月堂修二会(しゅにえ=お水取り)第二日@3/2 | トップページ | 東大寺二月堂修二会(しゅにえ=お水取り)第三日@3/3 »

2009-03-03

オバマ大統領や政府高官の利用する米海兵隊ヘリVH60の設計図がP2Pでイランに漏れる

何だって、こんな間抜けな話に。
共同より。


米大統領ヘリの設計情報流出 ネット通じイランの端末に
2009.3.3 12:35

 米主要メディアは2日、オバマ大統領が利用する海兵隊ヘリコプター「マリーンワン」の設計などにかかわる情報が流出、イラン国内のコンピューターに保存されていたと報じた。
 東部ペンシルベニア州ピッツバーグに本社のあるネットワーク管理の専門企業が数カ月前に流出に気づいた。米政府などが流出の原因などを調べている。
 この企業によると、流出したのは大統領やホワイトハウス高官が利用するヘリのうち、VH60の構造情報など。誰かが政府関連のネットワーク上から安易に情報をダウンロードしたため、部外者にもアクセス可能な状態になったとみられている。(共同)

共同の記事だとわかりにくいんだけど、ITproにもう少し突っ込んだ内容がある。


認識不足の疑いも:米大統領専用ヘリコプターの機密情報、P2Pで漏えいか

米大統領専用ヘリコプター「Marine One」に関する機密情報がファイル交換ソフトを通じて漏えいした可能性があると報道各社が伝えている。

2009年03月03日 07時55分 更新

 バラク・オバマ米大統領の専用ヘリコプター「Marine One」に関する重要情報がファイル交換ソフトウェア(P2P)のネットワークに流出した可能性が指摘されている。米報道各社が3月1日付けで伝えた。

 それによると、P2Pネットワークを監視する米Tiversaの従業員がイランのIPアドレス情報を基に、Marine Oneの設計データや同型機に関する製造費用などの詳細なデータをP2Pのネットワーク上で発見した。

 流出元は米国内の防衛システム関連メーカーとみられるが、流出情報の詳細内容は公表されていない。Tiversaのボブ・ボバックCEOが報道各社に寄せたコメントでは、「われわれは、具体的にどのような情報がどこから漏えいしたかを特定している」と述べている。

 また同氏は、「漏えいさせた人物は、P2Pを利用することでコンピューター内の重要情報が世界中のユーザーにさらされる危険性を十分に認識していなかったようだ」と指摘し、P2Pの安易な利用について警鐘を鳴らしている。

ロイターによると、当該機はオバマ大統領の移送には使われたことがないようなのだが、それでも、この手の情報が漏れるのは信じられない失態。
P2Pで一体何をやってたんだか。
尚、次期大統領専用ヘリの情報は含まれていないとのこと。

White House helicopter data found on Iranian computer Mon Mar 2, 2009 8:58pm EST

By Andrea Shalal-Esa

WASHINGTON (Reuters) - Engineering documents about one of two types of helicopters in the U.S. presidential fleet were found on a computer in Iran after they were inadvertently disclosed by an American defense industry executive last year, according to a cybersecurity company.

The defense contractor and the U.S. government are investigating the incident, said Keith Tagliaferri, director of operations at Tiversa, a Pennsylvania-based company that monitors data breaches linked to peer-to-peer file sharing.

Tagliaferri declined to name the U.S. contractor or give any information about the identity of the Iranian computer where the file was found on February 25.

Pentagon spokesman Geoff Morrell said the government was notified about the data disclosure last summer and fully investigated it. He stressed the data was not classified and involved the VH-60 helicopter built by Sikorsky Aircraft Corp, a unit of United Technologies Corp.

The VH-60 is used to carry White House staff and guests, not the president. A larger Sikorsky helicopter, the V-3, is the model used for the president.

"The information should not have been released, but it did not involve any helicopters that transport the president," Morrell said. The presidential helicopters are operated by the Marine Corps, a part of the Navy.

President Barack Obama has expressed grave concern about cybersecurity issues, and has ordered a 60-day review of computer security efforts across the federal government.

Tiversa said it notified the Bethesda, Maryland-based company responsible immediately after the data breach was discovered, and the company alerted the U.S. government.

Navy spokesman Lt. Clay Doss said an internal review conducted in June 2008 found that all the documents were marked either unclassified or "for official government use only," but they were relatively dated and "not particularly sensitive."

He said cost data in the documents, part of a cockpit upgrade for the current fleet of VH-60N helicopters, would have a minor impact on future contract awards. The documents did not include critical technical data and the risk of someone using the data to harm the helicopters was "very low," he said.

The findings were provided to the Naval Criminal Investigative Service and the Defense Security Service for appropriate action, he said, declining comment to name the company involved or whether any charges were filed.

The data breach did not involve the new generation of presidential helicopter being developed by Lockheed Martin Corp, which is also based in Bethesda, Maryland. That VH-71 helicopter project, which is more than 50 percent over budget, was singled out by President Barack Obama last week as an example of the Pentagon's procurement process "gone amok".

Lockheed spokesman Troy Scully said the company was not responsible for the data breach.

Connecticut-based Sikorsky said it was investigating the incident and declined further comment. Doss said Sikorsky was not the source of the data breach.

Tagliaferri said the employee was a high-level executive, but the breach took place outside the company's offices, indicating the executive may have had the helicopter data on a home or personal computer that was also used to share music or movies. The disclosure was likely unintentional, he said.

The file was found on an Iranian computer on February 25.

He said the U.S. defense contractor was not a Tiversa customer, which meant his company had not noticed the data breach until some time after it occurred.

Tiversa downloads more than 100,000 files a day that are inadvertently disclosed through peer-to-peer music and movie sharing software, which give users around the world direct access to another person's computer. The files can include Social Security numbers, payroll data, tax returns and many other sensitive documents, Tagliaferri said.

"This is like a stolen laptop times a million," Tagliaferri said. Data breaches through file-sharing networks are becoming more common as more people share electronic versions of movies and music, he said, and hackers and criminals are becoming more savvy in pinpointing such files.

|

« 東大寺二月堂修二会(しゅにえ=お水取り)第二日@3/2 | トップページ | 東大寺二月堂修二会(しゅにえ=お水取り)第三日@3/3 »

コメント

コメントを書く



(ウェブ上には掲載しません)


コメントは記事投稿者が公開するまで表示されません。



トラックバック

この記事のトラックバックURL:
http://app.cocolog-nifty.com/t/trackback/109312/44231432

この記事へのトラックバック一覧です: オバマ大統領や政府高官の利用する米海兵隊ヘリVH60の設計図がP2Pでイランに漏れる:

« 東大寺二月堂修二会(しゅにえ=お水取り)第二日@3/2 | トップページ | 東大寺二月堂修二会(しゅにえ=お水取り)第三日@3/3 »