Employee ignored automated security warnings, law enforcement says Sep 15, 2009 | 05:23 PM By Tim Wilson DarkReading
A federal government employee is under arrest this week after venturing into a classified system he was not authorized to access.
But he was given the user name and password. Or his user name had such access.
According to an affidavit (PDF) filed on Friday in Virginia and posted in a Wired magazine article yesterday, Brian Keith Montgomery used the password he had obtained legitimately for another classified message to access data about a terrorism investigation by the FBI and the U.S. Army.
Montgomery works for the National Geospatial-Intelligence Agency, a spy agency that collects aerial and satellite data. According to the affidavit, Montgomery was working on a covert operation that was unrelated to the terrorism investigation, and although he had some privileges to classified data, he was not authorized to access the terrorism system.
The affidavit says Montgomery ignored automated security warnings that told him not to proceed, even though he had a working password. Montgomery says he saw the warnings, but didn’t read them and didn’t know the system was being monitored by the FBI.
"Do Not Enter the System"
M: Me no speak Engrish. Me no read Engrish.
Imagine a burglur using this excuse: "
Montgomery was on the system for two hours on April 9, and accessed the system again on April 14, according to the affidavit.
Although there is no indication that Montgomery did anything with the data, he is accused of endangering the investigation and causing "harm" to the FBI and the Army. He is charged with a single count of gaining unauthorized access to a protected computer.
M was on system for two hours and did nothing to the data. Looking at the data is fine, and if there are secrets looking at them is fine too.
That’s what happens when user access is not reviewed periodically. A simple task that Administrators are suppose to perform.