""DHS advertises HSIN as secure and says the information it holds is sensitive, critical national security information," says attorney for the Brennan Center for Justice Spencer Reynolds. "But this incident raises questions about how seriously they take information security. Thousands and thousands of users gained access to information they were never supposed to have.""
""the report included no assessment of impact on the many other agencies that trust the hub to share their information.""
"439 I&A products on the platform were inappropriately accessed 1,525 times. Out of those unauthorized accesses, 518 were found to be from the private sector. 46 were from non-American citizens."
A programming error on a DHS intelligence-sharing platform (HSIN) exposed sensitive national security information from March to May 2023. The platform was used by the DHS Office of Intelligence and Analysis (I&A) and contained intelligence on surveillance of Americans, foreign hacking and disinformation campaigns, law enforcement tips, and domestic protest examinations. Some records were accessed; 439 I&A products were inappropriately accessed 1,525 times, including 518 accesses from the private sector and 46 from non-American citizens. Foreign unauthorized accesses were concentrated on cybersecurity topics, with 39% of accessed products involving cybersecurity. The report provided no assessment of impact on other agencies that rely on the hub.
Read at Securitymagazine
Unable to calculate read time
Collection
[
|
...
]