Defense Department Pretty Much Incompetent In Dealing With Online Threats

from the but-of-course dept

Last year, we noted that there was something of an internal executive branch fight over who had the mandate to deal with so-called “cybersecurity” threats: the Defense Department (mainly the NSA) or Homeland Security. Neither group is ideal, obviously, but the Defense Department’s claims were definitely much more ridiculous, in that it seemed like the entire point of asking for control over online security was to grant the NSA more spying powers. In fact, we found it somewhat hilarious that the DoD seemed to think that one of its best qualifications for managing digital security issues was its own incompetence in dealing with massive security breaches. Yes, the logic was basically “we had crappy security, so we know that online threats are real.” Yeah.

Now, as a bunch of folks have been pointing out, the GAO has put out a brutal report, explaining just how incredibly incompetent the Pentagon has been in both understanding and dealing with any kind of online threats. The full report (pdf) is pretty direct in suggestion that the DoD has known about problems for ages, but has only just started addressing the problems — and the report says it’s too early to tell if they’ve had any real impact at all.

While we’ve long said that the risk of “cyberwar” is blown way out of proportion, that doesn’t mean that there aren’t many attempts to breach government digital security. Tragically, this report suggests that the DoD is woefully unprepared to deal with the issues, and is only just now trying to catch up (potentially from a position well behind any adversaries.).

Filed Under: , ,

Rate this comment as insightful
Rate this comment as funny
You have rated this comment as insightful
You have rated this comment as funny
Flag this comment as abusive/trolling/spam
You have flagged this comment
The first word has already been claimed
The last word has already been claimed
Insightful Lightbulb icon Funny Laughing icon Abusive/trolling/spam Flag icon Insightful badge Lightbulb icon Funny badge Laughing icon Comments icon

Comments on “Defense Department Pretty Much Incompetent In Dealing With Online Threats”

Subscribe: RSS Leave a comment
Deviant (profile) says:


This article is bullshytt. I worked for DoD, NSA, and CIA, when I was in the Military blocking cyber attacks. The equipment they have is so far more advance then anything I have seen at an Intel, Microsoft, or Google. This is just a reason to pay high salaries to civilian employees. My friend works for the NSA Network Security and starting salary… yeap 170,000 a year.

That Anonymous Coward (profile) says:

Re: Bullshytt

And with a handful of flash drives scatter in different places, I can own your entire network.

There is a difference between fending off “cyberwarriors” in the ongoing “cyberwar” and the simple fact that they might have a shiny happy “cyberwar” room to work out of and the rest of their systems are happily mailing spam out as part of a botnet.

They have thrown lots of money at people who promise them they have the solution, and we get no good results… so we throw more money on the old problem and ignore the new ones.

Maybe step 1 in securing their network, should be looking at all of the .mil and .gov emails that were registered on and eliminate those peoples use of computers because they can not be bright enough to have used a different password on each site they encounter.

Oh and while you decry this as BS… don’t forget the guy who blew the whistle on NSA wasting tons of money on a crappy product, and then they tried to ruin him for daring to point out they had screwed up.

One Tom too Many (profile) says:

Couldn't Agree More...

Having worked for the military for longer than I care to admit, I REALLY don’t have any faith in what they can do in “cybersecurity” since they can’t even figure out just “what” it is. The Air Force is the most comical of the bunch since they “obviously” know that “Space” is part of “Cyberspace” and should, therefore, have CYBER Command up under SPACECOMMAND run by “Spacemen” or Pilots or even Missileers rather than, oh say, in an agency with someone who just might grok what the hell it really is and what it should do (something about that “operational stink adding validity to it). Anyway, wishful thinking on my part and I’m hanging up my geek cred since it has been tainted by guvvie work, so I probably don’t know what the hell I’m talking about.

However, if the US Gov’t WERE so competent in their cyberspace dealings (in a Hollywood imagined reality) there would NOT have been a Bradley Manning in the first place and Wikileaks would have been Wiki-tightened before anything got out in a hot ASSange minute. The MafiAAs aren’t even that good either so I guess I’ll stick to free-tarding it.

And that’s about all I have to say on those matters other than I also would not work at any of the aforementioned organizations since their leadership are either old-school military technophobes still trying to figure it out or DHS/FBI gumshoe detectives that can’t follow the law as correctly as they should as is evidenced by all the techdirt articles and the incestuous relationship they have with Big Business, Big Pharma, Big Entertainment, and the MafiAAs.

chris says:

It doesn’t matter that the US spends way more on defense than other countries since most of it is wasted getting screwed by contractors and inflated salaries. I guarantee that China can do more with 1/10 of the amount we spend.

I’m worried that we’re spending billions on Windows licenses while other countries use a free OS and learn more about computers in the process. Meanwhile our solders are being lead into battle by Clippy.

Chargone (profile) says:

Re: Re:

if by ‘the government’ you mean ‘the US government in it’s current incarnation’ then it’s very easy to agree with you.

if you mean the concept of government in general this statement is flat out wrong. Human nature ensures that any anarchy will, in relatively short order, default into small scale organised governments. if you’re Lucky that means a city state with a good setup. far more likely it means warlords. in the latter case if you’re Lucky, again, you end up with at least some leaders who consider more than their own enrichment and power to be important and they don’t get completely owned, and you end up with a feudal system. if you’re unlucky you end up with someone less pleasant on top and get some combination of authoritarian dictatorship on a conquering spree, assassination and civil war.

or you just get invaded by a neighbour who does still have a functional government. either way.

AMusingFool (profile) says:

Re: Re:

The govt is worse than useless, we’d be better off without it.

Sure, if you like the idea of a sharecropper lifestyle, without widespread education and unlimited poisoning of the environment. Because that’s what would be left.

And if you had any money left over to invest, you probably wouldn’t want to invest in any company in which you didn’t have inside info. Because otherwise you’d probably get wiped out by those who did have that info.

And the very idea of a retirement? Nope; work until you’re physically unable, then hope your kids will take care of you.

Not saying the government ain’t got flaws (far from it), but let’s be realistic, ok?

And the really sad thing about this article is that if the GAO were to analyze DHS, they’d find it just as incompetent as DoD (maybe more so).

timlash (profile) says:



I agree that most of the cyberwarfare hyperbole is unwarranted. However, you’ve written about your interest in the Stuxnet story. Wouldn’t you classify that incident as a cyberwarfare attack, and isn’t that the prototype attack of the future that we should begin to seriously contemplate? That is: an attack conducted via computer code that causes damage in real life?

AnonyMouse says:

BS is right

I took the time to read the report. Can I get a Gov Voucher for that time back?
I cannot believe we pay someone so much money to write and read this drivel.
I am a security pro. I would not want to deal with this type of BS, so who’s going to actually do the work?
I don’t care what equipment or personel is trained on it, as long as this is what we throw money at all you end up with is experts at using the buraeucracy.
US Gov Sucks.

Add Your Comment

Your email address will not be published. Required fields are marked *

Have a Techdirt Account? Sign in now. Want one? Register here

Comment Options:

Make this the or (get credits or sign in to see balance) what's this?

What's this?

Techdirt community members with Techdirt Credits can spotlight a comment as either the "First Word" or "Last Word" on a particular comment thread. Credits can be purchased at the Techdirt Insider Shop »

Follow Techdirt

Techdirt Daily Newsletter

Techdirt Deals
Techdirt Insider Discord
The latest chatter on the Techdirt Insider Discord channel...