|Home » Security
Talk about repeat offenders.
The Obama crew moving into the White House were shocked at what they saw. These Mac geeks used to using sensible technology found dusty old Windows boxes with MS Office 2003.
But they have more to look after. And a good place to start is with all the government offices in defiance of a directive from the GAO to not use MS web technology because it's endemically flawed and cannot be repaired.
USAJOBS borrow technology from Monster. Monster just had their site hacked. It turned out Monster didn't bother encrypting passwords. How retarded is that?
Both sites rely on Microsoft web technologies long since condemned by both the GAO and Gartner Research as endemically flawed and impossible to repair.
Now watch Mary Volz-Peacock of USAJOBS try to brush over and dismiss the incident.
As is the case with many companies that maintain large databases of information, our technology provider (Monster) often is the target of illegal attempts to access and extract information from its database. We recently learned that the Monster database was illegally accessed and certain contact and account data were taken, including user IDs and passwords, email addresses, names, phone numbers, and some basic demographic data. The information accessed does not include resumes. The accessed information does not include - sensitive data such as social security numbers or personal financial data.
As a further precaution, we want to remind you that an email address could be used to target 'phishing' emails. USAJOBS® will never send an unsolicited email asking you to confirm your username and password, nor will Monster ask you to download any software, 'tool', or 'access agreement' in order to use your USAJOBS® account.
In order to help assure the security of your information, you may soon be required to change your USAJOBS® password upon logging onto the site. Please follow the instructions on the site. We would also recommend you proactively change your password yourself as an added precaution. We regret any inconvenience this may cause you, but feel it is important that you take these preventative measures.
We continue to devote significant resources to ensure USAJOBS® (Monster) has security controls in place to protect our infrastructure and stakeholder's information. We hope that these efforts are helpful, and continue to allow users to defend themselves against similar attacks.
Please note that Volz-Peacock admits the 'stolen' data includes the following.
- User IDs.
- Email addresses.
- Phone numbers.
- 'Basic demographic data'.
And her grandiose conclusion is this doesn't include 'sensitive data'?
The United States government and the people of the United States need more conscientious people running the show.