"An internal DHS memo obtained by a Freedom of Information Act (FOIA) request and shared with WIRED reveals that from March to May of 2023, a DHS online platform used by the DHS Office of Intelligence and Analysis (I&A) to share sensitive but unclassified intelligence information and investigative leads among the DHS, FBI, the National Counterterrorism Center, local law enforcement, and intelligence fusion centers across the US was misconfigured, accidentally exposing restricted intelligence information to all users of the platform."
"Access to the data, according to a DHS inquiry described in the memo, was meant to be limited to users of the Homeland Security Information Network's intelligence section, known as HSIN-Intel. Instead it was set to grant access to "everyone," exposing the information to HSIN's tens of thousands of users. The unauthorized users who had access included US government workers focused on fields unrelated to intelligence or law enforcement such as disaster response, as well as private sector contractors and foreign government staff with access to HSIN."
From March to May 2023, a DHS online platform used by the Office of Intelligence and Analysis (I&A) to share sensitive but unclassified intelligence and investigative leads was misconfigured, granting access to all HSIN users. The misconfiguration changed intended HSIN-Intel access to "everyone," exposing restricted intelligence to tens of thousands of users across government, private contractors, and foreign partners not authorized to view the material. Exposed content included intelligence on domestic surveillance and other sensitive information. The incident demonstrates weaknesses in access controls on critical intelligence-sharing systems and raises concerns about oversight, data handling, and protections for information about Americans.
Read at WIRED
Unable to calculate read time
Collection
[
|
...
]