department Mission performed by the Department of Homeland Security Domestic surveillance Privacy advocates have been following the group’s first creation since the September 11 attacks. Now, the data leak affecting the DHS smart department not only sheds light on how the department collects and stores this sensitive information (including its surveillance of Americans), but also how that data leaves the data to thousands of governments, private sector workers, and even foreigners who have never been authorized to see it.
one Internal DHS Memorandum By a Freedom of Information Law (FOIA) requires and share requirements with the link, from March 2023 to May 2023, the DHS Office of Intelligence and Analysis (I&A) uses sensitive but unclassified intellectual information and investigation leaders FBI, FBI, FBI, the national counter-terrorism center, the national temporary convergence and cross-border intelligent convergence, is a coincidence, a coincidence, and a range of our accidental convergence. platform.
According to the DHS query described in the memorandum, access to the data is intended to be limited to users of the intelligent part of the Homeland Security Information Network (called HSIN-Intel). Instead, it is to grant “everyone” access, exposing information to tens of thousands of users of Hsin. Unauthorized users of access include U.S. government workers, focusing on areas that are not related to intelligence or law enforcement, such as disaster response, as well as private sector contractors and foreign government employees, and gaining access to HSIN.
“DHS publicizes it as security and says the information it has is sensitive, critical national security information,” said Spencer Reynolds, an attorney for the Brennan Justice Center. “But the incident raises questions about their seriousness in taking information security. Thousands of users can access information they have never had before.”
Hsin-Intel’s data includes everything from law enforcement leadership and skills to foreign hacking and disinformation campaigns to analyzing domestic protest movements. For example, the memorandum on HSIN-Intel’s violation specifically mentioned that a report discusses “protests related to police training institutions in Atlanta” – which could be a stop to police protests against the creation of the Atlanta Public Safety Training Center, rather than introducing media actions such as throwing stones, fireworks, fireworks and Moro Islands in the media as a sign of action in the media. ”
Overall, the 439 I&A “product” on the Hsin-Intel section of the platform was improperly visited 1,525 times, according to the memo of DHS’ internal query. Of those unauthorized access instances, the report found 518 were private sector users and another 46 were non-U.S. citizens. The report notes that instances of foreign user access focus “almost entirely” on cybersecurity information, while 39% of all intelligence products involving inappropriate access to cybersecurity, such as foreign state-sponsored hacking groups and foreign targets of government IT systems. The memorandum also states that some unauthorized U.S. users who view the information some unauthorized information are eligible to access restricted information if they are required to authorize.
“When this error was discovered, I&A immediately resolved the issue and investigated any potential harm,” a DHS spokesman told Wired in a statement. “After extensive review, multiple supervisory agencies determined that there were no impact or serious security violations. The DHS took all security and privacy measures seriously and was committed to ensuring that its intelligence was shared with federal, state, state, local, tribal, territorial and private sector partners to protect our homeland from the numerous confrontational threats we face.”
