Misconfigured Pentagon servers could have been exploited for cyberattack

By Jonathan Keane February 3, 2017

vulnerable pentagon servers the united states department of defense

A cybersecurity researcher has discovered a number of misconfigured servers belonging to the Department of Defense that could have left internal networks vulnerable to outsider access and attack.

According to Dan Tentler of Phobos Group, these vulnerable servers could have been used, in theory, to carry out cyberattacks to make them look like they were perpetrated by United States actors. No classified information could be accessed through these vulnerabilities however.

“There were hosts that were discovered that had serious technical misconfiguration problems that could be easily abused by an attacker inside or outside of the country, who could want to implicate the U.S. as culprits in hacking attacks if they so desire,” Tentler told ZDNet.

Last year the Department of Defense launched its first bug bounty program. It allows accredited white hat hackers to test various (but not all) of the Pentagon’s public facing networks for bugs. Hackers are limited to the department’s services on the defense.gov and .mil domains. The servers that Tentler discovered were within these domains.

Tentler said it was “very likely” that these servers have been exploited already. The Pentagon was allegedly made aware of the misconfigured servers eight months ago but has yet to patch the flaws. Tentler reported the bugs to HackerOne, which operates bug bounty programs, but given the rules of the program, he is limited in what he can disclose publicly.

Tentler himself is critical of the cybersecurity preparedness of the Pentagon, and the government in general. “The Pentagon has created a circumstance where the good guys can’t find the problems because we’re not allowed to scan, or go out of scope, or find things on our own,” he said, while bad actors can tinker away at these systems with little or no regard.

Much has been made about how the Trump administration will handle cybersecurity. Tentler added that leaked plans to carry cyber reviews on federal systems every 60 days “demonstrates a complete lack of understanding what the existing problems are.”

Editors' Recommendations

Topics

Former Digital Trends Contributor

Jonathan is a freelance technology journalist living in Dublin, Ireland. He's previously written for publications and sites…

Computing

This HP 15-inch laptop is discounted from $460 to $300

hp 15 6 inch laptop deal may 2023 15t featured image lifestyle

If you're planning to buy a new laptop but you don't need all the bells and whistles to keep the cost low, you should check out the HP Laptop 15z. It's currently on sale from HP at $160 off, which pulls its price down to an affordable $300 from $460 originally. With the growing importance of owning a dependable laptop, there's always high demand for offers like this one, so you'll have to proceed with the purchase immediately if you don't want to miss out on the discount.

Why you should buy the HP Laptop 15z
The HP Laptop 15z won't blow you away with its specifications, as it's humbly equipped with the AMD Athlon Silver 7120U processor and AMD Radeon Graphics, with 8GB of RAM that's considered by our guide on how much RAM do you need as a starting point for laptops. The device won't be able to edit large video files or play the latest video games like the best laptops, but it will do a fine job in helping you complete daily tasks like browsing the internet, editing documents, working with spreadsheets, and preparing presentations. It can also serve as a decent entertainment hub with its 15.6-inch HD display that's surrounded by narrow bezels on three sides.

Computing

Now’s a great time to buy Google Home, Android and Chromebook

The Google Nest Hub Smart Display on a nightstand.

This content was produced in partnership with Best Buy.
Best Buy has a huge variety of cool tech seeing discounts right now, with Google Home and Android products stealing the show, along with some major discounts on Chromebooks. If you’re in the market for one of the best smart home devices or need to land something practical for work or school, it’s worth browsing these deals to see if a discount is available on the piece of tech you have your eye on. You’ll find all sorts of great devices with discounted prices, from Google smart displays to wireless security cameras and from HP Chromebooks to Samsung Galaxy smartphones.
Why you should shop the Google Home sale

Google has really settled into itself as a maker of smart home devices and ecosystems, and right now at Best Buy you can pounce on all sorts of things to add to your smart home setup. Pricing starts as low as and savings reach as high as $500 on a . Low prices on popular products reach across the board, with the , and the 4K model of the . If you’ve already got a fairly complete smart home setup, you can easily shop for a new device that or . Whether you shop for an upgrade to your smart home or shop just to land some savings, get over to Best Buy now and browse the Google Home discounts.

Computing

Apollo, a Reddit app featured during WWDC, is being shuttered

The Reddit app icon on an iOS Home screen.

On Thursday, the developer of the popular Apollo app for Mac, which is a third-party interface for Reddit, announced that the app would be closing. The app will remain live until June 30.

The developer announced the change in a Reddit post, saying "Eight years ago, I posted in the Apple subreddit about a Reddit app I was looking for beta testers for, and my life completely changed that day... Today's a much sadder post than that initial one eight years ago." The developer originally went to the social media platform to protest Reddit's changes to API pricing. After talks turned "ugly," they said Apollo would be closing.