Close
Results 1 to 4 of 4
  1. 09-17-2013, 11:00 #1
    Gman
    Gman is offline
    Possesses Antidote for "Cool" Gman's Avatar
    Join Date
    Oct 2005
    Location
    Puyallup, WA
    Posts
    17,848

    Default Maryland state security sloppiness exposes personal data

    http://www.zdnet.com/maryland-state-...ta-7000020752/
    Securing data can be hard work. It can be complicated. It can be expensive. And then sometimes you see people putting so little effort into it that there's just no excuse.

    An example of this was sent to me by a reader. In anticipation of new gun control laws scheduled to take effect October 1, tens of thousands of citizens of Maryland applied for gun permits, which requires a background check.

    The Maryland State Police, charged with performing the background checks, don't have the resources to do it soon enough, and, according to the Baltimore Sun, "Gov. Martin O'Malley said ... that the state is mustering all necessary resources" to complete the task in time.

    "Mustering all necessary resources" in this case means "cutting corners."

    First the state scanned the forms. Then, in order to expand access to the data necessary to perform the background checks to over 200 data entry personnel in non-law enforcement agencies, the state set up a publicly-accessible web site with a single shared username and password.

    The data entered in the site included driver's license numbers, social security numbers, addresses and other personally identifying information.
    Gotta' love how our government/s disregard the security of the people in so many ways.
    Last edited by Gman; 09-17-2013 at 11:05.
    Liberals never met a slippery slope they didn't grease.
    -Me

    I wish technology solved people issues. It seems to just reveal them.
    -Also Me

    Reply With Quote Reply With Quote
  2. 09-17-2013, 12:15 #2
    clublights
    clublights is offline
    Grand Master Know It All clublights's Avatar
    Join Date
    Jun 2009
    Location
    Denver
    Posts
    2,517

    Default

    JEsus...


    they couldn't take the hour or two it would take to set up 200 users?

    or at least narrow it down to the agencies they work for ? ( figure 4 or 5 at least )

    even if you named the users temp1 temp 2 so on and so on ... then hashed random passwords.... no more then an hour or two of work I would think. ( at least on my server that is all it would take )
    Reply With Quote Reply With Quote
  3. 09-17-2013, 12:18 #3
    sellersm
    sellersm is offline
    Grand Master Know It All sellersm's Avatar
    Join Date
    Jun 2011
    Location
    Montrose
    Posts
    4,999

    Default

    If a 'private business' did this, they'd be hurting right now. Where's the accountability of this g-v agency? That's right. Nowhere to be found... The lack of the g-v accountability bites the citizen yet again. Tell me again why we put up with this?
    http://disciplejourney.com

    Make men large and strong and tyranny will bankrupt itself in making shackles for them.” – Rev. Henry Ward Beecher (1813-1887) US Abolitionist Preacher

    CIPCIP
    Reply With Quote Reply With Quote
  4. 09-17-2013, 22:07 #4
    cstone
    cstone is offline
    MODFATHER cstone's Avatar
    Join Date
    Mar 2010
    Location
    Baltimore, MD
    Posts
    7,472

    Default

    Quote Originally Posted by sellersm View Post
    If a 'private business' did this, they'd be hurting right now. Where's the accountability of this g-v agency? That's right. Nowhere to be found... The lack of the g-v accountability bites the citizen yet again. Tell me again why we put up with this?
    I chose to leave my native state of Maryland, never to reside there again. Consider that the choice of an informed consumer.
    Corruptissima re publica plurimae leges.

    My Feedback
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules