NextGov: THIRD-PARTY SOFTWARE WAS ENTRY POINT FOR BACKGROUND-CHECK SYSTEM HACK

Hackers broke into third-party software in 2013 to open personal records on federal employees and contractors with access to classified intelligence, according to the government’s largest private employee investigation provider.

That software apparently was an SAP enterprise resource planning application. It’s unclear if there was a fix available for the program flaw at the time of the attack. It’s also not clear whether SAP—which was responsible for maintaining the application—or USIS would have been responsible for patching the flaw.

>>> Full story

Advertisements

CYBERCOM TO OUTSOURCE $475 MILLION WORTH OF OFFENSE AND DEFENSE WORK – NextGov

The emerging Pentagon division that coordinates military cybersecurity and cyberattacks is asking private contractors to help finish standing up the Cyber Command. Among the tasks to be assigned under a request for proposals issued Thursday are support for eavesdropping to detect threats and assistance with repelling hacks equivalent to an armed attack against the nation.

via CYBERCOM to Outsource $475 Million Worth of Offense and Defense Work – Nextgov.com.