U.S. President Barack Obama and family arrive from Chicago aboard Marine One on the South Lawn of the White House February 16, 2009. (Photo by Ron Sachs-Pool/Getty Images)
by Frank James
A Pittsburgh TV station is reporting that a computer file containing sensitive information about presidential helicopter Marine One's communications equipment and security features was accessed by a computer in Iran.
The weak link was evidently a Bethesda, Md. defense contractor with an employee who downloaded peer-to-peer file-sharing software onto a computer with the sensitive file, a major security mistake. The breach was discovered by a Pittsburgh-area Internet security company.
An excerpt of the WPXI.com story:
PITTSBURGH -- Target 11 has learned a Cranberry company that monitors peer-to-peer file-sharing networks discovered what it said is a potentially serious security breach involving President Barack Obama's helicopter.Tiversa employees found engineering and communications information about Marine One at an IP address in Tehran, Iran.
Bob Boback, CEO of Tiversa, said, "We found a file containing entire blueprints and avionics package for Marine One,which is the president's helicopter."
The company was able to trace the file back to its original source.
"What appears to be a defense contractor in Bethesda, MD had a file sharing program on one of their systems that also contained highly sensitive blueprints for Marine One," Boback said.Tiversa also found sensitive financial information about the cost of the helicopter on that same computer.
Boback said someone from the company most likely downloaded a file-sharing program, typically used to exchange music, not realizing the potential problems.
"When downloading one of these file-sharing programs, you are effectively allowing others around the world to access your hard drive," Boback said.
Retired Gen. Wesley Clark, an adviser to Tiversa, said, "We found where this information came from. We know exactly what computer it came from. I'm sure that person is embarrassed and may even lose their job, but we know where it came from and we know where it went."
This story will no doubt help Tiversa raise its profile and perhaps will boost its chances of getting new internet-security business.
Something we don't know is whether the U.S. was aware of this breach before Tiversa learned of it. U.S. intelligence agencies are presumably constantly probing the computers of foreign nations so it may be that this breach had already been discovered.
In any event, it's another reminder of how porous U.S. computer networks are since they're always at the mercy of the weakest links in the network which often are the humans.
Comments
Blaming the tool for the failure of the person wielding it does nothing to prevent further problems.
Posted by: Bill | March 1, 2009 1:06 PM
what did Wes Clark mean by "may lose their job", this idiot SHOULD lose his job and be named so he can't get another security position.
Posted by: bob | March 1, 2009 1:08 PM
This is so bogus I can't take it. As one of the people who wrote a good deal of LimeWire, the supposed file sharing program in question, I know the only files that are available are the ones *you explicitly share.* Our buddy Boback says "When downloading one of these file-sharing programs, you are effectively allowing others around the world to access your hard drive," intentionally misleading people into thinking installing a p2p program exposes *all of the files*. Why would he do this? To drum up business, plain and simple. He gets paid to monitor file sharing networks. The more bogus paranoia there is out there, the more money he makes. Disgusting.
Posted by: Adam Fisk | March 1, 2009 1:23 PM
Yeah well, I think more than just that one person may/should lose their job. It shouldn't have been possible for that employee to install any programs on their work computer in the first place, it shouldn't have been possible for them to go to any download sites on the internet, possibly not even to the internet, period, and most importantly, there shouldn't have been sensitive files stored on their computer at all. Standard operating procedure for any company, never mind a defense contractor.
So the question is, was their network security non existent, or, was this whole thing done intentionally, as a setup. Could it be someone was after just such an IP number?
Hm... either that or I watch entirely too many spy flicks and thrillers.
Posted by: Laz | March 1, 2009 1:24 PM
P.S. This is just the thing with humans, they are usually eilther the weakest or the strongest link. The trick is, how do we know which?
Posted by: Laz | March 1, 2009 1:32 PM
You know, I had written here about this (not this particular incident) about healthcare.
My healthcare company has "Internet/online" checking, with all my information on it. I don't want that to become accessible, or made easier "in the wild", by some idiot like the above article, or some hacker.
Oh yeah, it's safe, BULL. The article is proof of incompetence or how to make a quick buck. We'll probably never know if this was done on purpose. It's to much of an embarrassment.
Maybe incompetence and security will work in the next century, but as of NOW, nope.
Posted by: PG | March 1, 2009 1:39 PM
OOPS!
Posted by: Eric | March 1, 2009 1:41 PM
I am always amazed at just how easy these security breaches, leaks etc happen.
Guess we are lucky the bad guys are apparently as inept as we are in exploiting these breaches.
Posted by: Big Al | March 1, 2009 1:48 PM
The BushCo neocons have connections in the Middle East who would be delighted to do their bidding. Let's face it, the neocons and the ultra-right-wing lunatic fringe here in America are breathing fire and I wouldn't put ANYTHING past them.
The Republicans party is dying a slow painful death and like a wounded animal they're lashing out. I hope the secret service is keeping an eye on their activities.
Posted by: Doug Vader, son of Darth | March 1, 2009 2:06 PM
Music file sharing while at work? How stupid is that?
Posted by: lochnessmonster | March 1, 2009 2:49 PM
Ugh.
Posted by: Ugh | March 1, 2009 2:50 PM
Guess he will have to leave it home when he visits Tehran. Better yet, lets see some of that famous campaign rhetoric on diplomacy to have it returned. Obama will learn the hard way about these radicals (note; did not use Muslins). I just hope the rest of us, who believe that Iran is a clear and present danger, continue to press for a strong isolation and resistance to the mullahs and their proxies.
Posted by: bubba Porter | March 1, 2009 3:07 PM
If the truth were known, it would be that most of the government's "top secrets" are routinely the common knowledge of friend and foe alike. In practical terms, the so-called tight security maintained by the government conceals their secrets only from the public they're supposedly serving.
Posted by: Sam Thornton | March 1, 2009 3:09 PM
How do we know Tiversa isn't in cahoots with Boeing? Boeing is afraid that the White House will cancel it's $6B order for new helicopters. If there is concern that the plans for the current Marine 1 have been compromised, maybe the new order will be more likely go forward. In addition to that, if we find a reason to go to war again, Boeing will be able to continue justifying the colossal contracts it's been receiving from the Pentagon. War is the lifeblood of large sectors of our economy.
Posted by: Hilary Smith | March 1, 2009 3:21 PM
It may be a bit of a stretch, but the reported security breach will probably be used as an excuse to add more costly changes to the project. Considering that the primary use of Marine 1 is to ferry the President to and from airports, it might also be a good reason to drop the whole program. Considering the many vulnerabilities of helicopters, he'd probably be safer in the presidential limo than in a chopper.
Posted by: Larry-T | March 1, 2009 3:26 PM
If it's now functionally obselete for our President, I would gladly take it off your hands. Just park it next to my apartment, and leave the keys in my box. Thank you.
Posted by: Brian Pellin | March 1, 2009 3:54 PM
WRONG! The aircraft designation in the video is the MH/VH-60. The chopper used by the president is the VH-3! LIES, by the Media-Industrial Complex!
Posted by: Brian | March 1, 2009 4:38 PM
Iran has developed an extensive cyber-war system. Obama just got a taste of their capabilities.
He wants to talk to the Iranians. Maybe if he invites them for tea and talks nice to them they will give him the files back.
Dumb, dumb, dumb, dumb.....
Posted by: Jorge | March 1, 2009 4:49 PM
Adam Fisk is correct about the only files accessible for others are the files in your "shared" folder.
Now comes the scary part. If that file WAS in the shared folder, that would mean the computer user himself either copied it over to that folder intentionally, intending to make it available to anyone that searched for it, or he/she downloaded it from another file sharer on Limewire which indicates that someone else is selling out on it.
The chance of it being a false report would be preferable over the other two.
And old saying from my days in the service: "A -*possible*- compromise is worse than a known compromise."
Posted by: Quick Joey Small | March 1, 2009 6:13 PM
Does this mean the Obama’s will not be taking Spring Break this year in Iran?
Posted by: Bob in Naperville | March 1, 2009 6:51 PM
What did you expect when the Chosen One named Rupert Murdoch to co-chair the Senate Intelligence Committee.
Posted by: Greg | March 1, 2009 6:58 PM
A couple of responses to previous posts.
To Hilary Smith - How do we know Tiversa isn't in cahoots with Boeing?
The new presidential helicopter program is a Lockheed Martin program and is not being run by Boeing.
To Brian - WRONG! The aircraft designation in the video is the MH/VH-60. The chopper used by the president is the VH-3! LIES, by the Media-Industrial Complex!
Currently the presidential helicopter(s) is 2 different models including a variation of the MH-60.
A little research is always a good thing...
Posted by: Mike R | March 1, 2009 7:33 PM
They were probably running Windows.
Posted by: Rob | March 1, 2009 7:38 PM
To Doug Vader:
Of course this is all Bush's fault. Go back in the closet and put on your tin foil hat.
Posted by: dalmatian847 | March 1, 2009 7:48 PM
Bob Boback, CEO of Tiversa claims using P2P allows access to complete hard drive. Comment #3 Adam Fisk claims he is one of the people who wrote a good deal of LimeWire, the supposed file sharing program in question and that,as I believed they only access what you allow them access to.
So which person is right? I would like to know. Does having a program like LimeWire allow someone that has the ability, to gain access to your hard drive?
Comment #4 Laz, I totally agree. There is no excuse for this kind of thing to happen. I personally don't think the whole story is being published, which is probably best. The meathead defense contractor and his superiors should have criminal charges filed against them. There should be zero tolerance for this.
Posted by: eugene real estate | March 1, 2009 7:56 PM
The problem, all you Twitterers and texters, is the desk top computer.
Main frames were defendable, but as soon as you have tens of millions of independent operating systems on desk tops, it's all over.
Our own desktops will be the end of us all.
Enjoy.
Posted by: C.Morris✈ | March 1, 2009 8:08 PM
Do ya get the feeling McCrazy likes the idea of BHO flying around in this death trap?
Had he won do you think he would real anxious to cancel the new helo contract?
Just wondering.
Posted by: C.Morris✈ | March 1, 2009 8:34 PM
I have a bit of the reaction I had on 9/11.
Govt. bungling. In 9/11 if visas hadn't been given out freely in Saudi, if Hart Commission report had been implemented, if CIA and FBI weren't like dogs marking their turf and had instead shared info, the whole thing could have been prevented.
This most grave security lapse must be investigated and this time, unlike 9/11, some govt. bumbler should be sacked or worse.
Posted by: ornery | March 1, 2009 10:16 PM
If there was a computer system during WWII, as we have to day, there would not be a shared folder system, there would be no down loading to disks or memory sticks. Personal computers, I-pods, cell phones, mp-3s or head phones brought into the facility. There would be a closed computer operating system not compatable with any personal operating system. You would be search before you went into the facility.
When leaving the facility you would be search before leaving the building and again at the main gate.
The Cranberry employee would have been tried and sent to Levinworth along with the Boback.
A personal message to Doug "half-a-man" Vade. Only a self loathing socialist cult follower is obsessed with ragging on Bush and conservatives.
Posted by: Jean Au Pokealone | March 1, 2009 11:10 PM
Maybe this is retribution for Obama's canceling an order for new helicopters.
Or worse.
Maybe the right wing figured a way to make an attempt on him and "plausibly blame" Iran.
Whatever, a major investigation is warranted.
Posted by: ornery | March 2, 2009 2:06 AM
This person will lose their job and Obama will make them a national hero along with giving him/her full compensation and benefits from American tax dollars for the rest of their life.
Posted by: Tank | March 2, 2009 6:57 AM