Federal computer systems are under attack using exploits from long ago. CISA alerts federal agencies of ancient bugs still being exploited
The Cybersecurity and Infrastructure Security Agency (CISA) - which was named by The Department of Redundancy Department of the US government - has been forced to point out to federal agencies that they are being incredibly stupid.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has updated its list of known exploited vulnerabilities with 15 new security issues that serve as a frequent attack vector against federal enterprises.
The list of bugs being exploited run back as far as 2013, with 2015, 2017, 2018, and 2019 on the list as well.
Because why bitch and moan about being forced to update systems in the face of new vulnerablities in your systems, when you can ignore stuff from years ago as well.
You tax dollars being stupidly spent.
And aside from having perhaps the most ridiculous agency name, the logo for CISA seems like it is straight out of a 1970s B, science fiction movie.
As an IT director, I expect I'd have been fired in such an instance. I'm simply glad that I've retired and the younger generation is dealing with it. While they still know everything. :-)
ReplyDeleteThe difference is that if you work for the .gov you can be wrong and not do basic stuff and still have a job. And I would bet that someone in one of the agencies that left active exploits in place since 2013 or 2015 or whatever got promoted. Time in grade and all that.
Delete